$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/3EACF95EEBB511ECA410BF6DC4F9AE02.roa File: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (raw, json) Hash identifier: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es= Subject key identifier: AC:6B:7D:78:01:0B:82:17:EE:06:30:46:56:8C:45:4D:1F:D3:F6:26 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 0607 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/3EACF95EEBB511ECA410BF6DC4F9AE02.roa Signing time: Thu 14 Nov 2024 22:41:45 +0000 ROA not before: Thu 14 Nov 2024 22:41:45 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4826 IP address blocks: 103.198.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Nov 14 22:41:45 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67367ca8-7dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:80:b3:a2:ac:7f:b6:75:ee:4d:32:f7:42:2a: 61:b6:0a:2b:9d:69:10:10:5b:5c:b3:2c:1c:c0:74: e4:df:08:04:05:11:c8:71:d5:fd:2d:6e:c8:95:1d: c6:06:69:28:71:5c:7e:91:db:61:f6:eb:45:7e:2b: 8c:9d:6c:6e:5c:b0:78:a8:67:f8:cf:9b:7c:03:a4: 62:5b:be:ff:a9:40:21:71:a2:35:92:ea:65:79:6d: 8b:fb:e1:a2:84:b2:cc:9e:87:b4:cd:9d:c0:0f:4b: ec:21:40:59:88:5b:b2:a6:ed:28:47:cc:90:4d:ae: 10:98:bf:7b:c5:32:79:34:c8:f9:35:2c:8b:bb:62: 5f:c1:38:2e:59:60:11:fd:f5:29:ca:c9:21:8f:d3: c1:ff:a3:84:62:c8:22:35:f6:42:47:0b:ea:48:44: a3:be:7f:ad:ad:c8:2c:34:dc:bc:33:85:09:57:29: 34:c6:ea:4a:cb:09:bb:9d:a3:f1:dd:32:05:44:48: 80:e9:b9:9f:da:da:19:7d:89:53:09:f5:13:0f:87: e8:06:15:ac:78:8f:b9:a1:b7:77:f3:f8:64:46:bb: bb:ed:9d:82:4b:d1:67:0b:ab:4b:3c:b0:c3:d6:33: 47:0f:a5:f5:17:1d:48:e5:a5:11:39:ea:fb:2d:00: 63:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6B:7D:78:01:0B:82:17:EE:06:30:46:56:8C:45:4D:1F:D3:F6:26 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/3EACF95EEBB511ECA410BF6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.92.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:21:df:e0:66:55:a3:36:c3:0b:f4:20:2f:40:2a:8b:bf:9f: bd:10:d7:7d:de:d4:e2:6a:84:13:68:6d:98:60:ff:b1:e0:35: 1a:ca:42:a8:db:94:e8:6e:b1:0b:00:33:8f:e3:01:d8:fe:d2: 2e:67:67:2d:06:da:00:ef:33:26:5e:df:9a:b6:bf:ec:de:98: cc:11:61:8a:a0:5f:7f:27:c9:db:48:b8:3d:e7:42:31:c0:db: 46:68:b2:f0:e1:a2:ed:65:77:91:91:e3:61:09:11:dc:b2:e6: 1e:db:51:f4:e3:30:49:b2:4a:c7:f2:85:1a:38:41:cb:37:e9: e1:52:d4:08:d7:6e:ac:57:14:bc:fc:0c:9e:a1:dc:c3:66:76: 4e:66:47:bd:50:98:77:1f:01:a1:95:7d:e6:38:2f:57:88:ce: 57:e0:34:1b:23:87:51:3a:ed:59:e4:28:53:e0:d3:ea:e2:37: b1:f4:a0:fd:aa:af:cc:e0:a7:4d:64:66:29:98:2a:d4:6b:bc: 84:9e:af:a5:c6:03:27:b4:59:61:5d:02:69:32:14:63:bc:24: 64:96:50:c1:56:0f:de:f0:56:2c:88:3c:cc:46:3d:20:2b:5e: 2a:a1:8e:cf:42:e6:e1:49:91:56:c0:fe:03:39:bb:4d:7f:79: 3d:03:51:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjQxMTE0MjI0MTQ1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2N2NhOC03ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24Czoqx/tnXuTTL3QiphtgornWkQEFtcsywcwHTk3wgEBRHIcdX9LW7IlR3G BmkocVx+kdth9utFfiuMnWxuXLB4qGf4z5t8A6RiW77/qUAhcaI1kupleW2L++Gi hLLMnoe0zZ3AD0vsIUBZiFuypu0oR8yQTa4QmL97xTJ5NMj5NSyLu2JfwTguWWAR /fUpyskhj9PB/6OEYsgiNfZCRwvqSESjvn+trcgsNNy8M4UJVyk0xupKywm7naPx 3TIFREiA6bmf2toZfYlTCfUTD4foBhWseI+5obd38/hkRru77Z2CS9FnC6tLPLDD 1jNHD6X1Fx1I5aUROer7LQBjrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxrfXgB C4IX7gYwRlaMRU0f0/YmMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0QjcvRTE4MENFN0E4NTFFMTFFQjg0MTlCMzI3QzRGOUFFMDIvM0VBQ0Y5NUVF QkI1MTFFQ0E0MTBCRjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxlwwDQYJKoZIhvcNAQELBQADggEBAH8h3+BmVaM2wwv0 IC9AKou/n70Q133e1OJqhBNobZhg/7HgNRrKQqjblOhusQsAM4/jAdj+0i5nZy0G 2gDvMyZe35q2v+zemMwRYYqgX38nydtIuD3nQjHA20ZosvDhou1ld5GR42EJEdyy 5h7bUfTjMEmySsfyhRo4Qcs36eFS1AjXbqxXFLz8DJ6h3MNmdk5mR71QmHcfAaGV feY4L1eIzlfgNBsjh1E67VnkKFPg0+riN7H0oP2qr8zgp01kZimYKtRrvISer6XG Aye0WWFdAmkyFGO8JGSWUMFWD97wViyIPMxGPSArXiqhjs9C5uFJkVbA/gM5u01/ eT0DUdo= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:30 2024 by rpki-client on console-fra.rpki-client.org