$ rpki-client -vvf rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa File: 0E0E73A8EBFB11ED8184D438C4F9AE02.roa (raw, json) Hash identifier: GOPGKEBm5eskFEYXZyjw1YogofV1M4ZMcIp168cRTSU= Subject key identifier: 06:8A:EA:87:CD:93:1A:62:26:E2:5C:60:67:86:D7:A4:BB:D6:FD:84 Certificate issuer: /CN=A91889C2/serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Certificate serial: 024C Authority key identifier: 65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa Signing time: Fri 05 Jul 2024 03:04:52 +0000 ROA not before: Fri 05 Jul 2024 03:04:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 49367 IP address blocks: 103.188.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889C2/serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Validity Not Before: Jul 5 03:04:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668762d3-4019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0a:9e:95:3d:cb:ef:a6:bd:8d:a6:e7:03:0a: cd:18:03:0b:f4:10:42:80:20:59:81:77:dd:06:e2: 93:a7:86:95:59:e8:ab:aa:fb:24:35:11:29:0b:91: f7:86:2c:d4:38:f4:83:1c:29:b0:59:7d:d1:db:85: 7f:96:4a:e1:57:44:fb:f0:87:29:2e:f4:8d:37:6a: 24:aa:d4:15:00:18:a5:bd:0b:af:e6:72:31:40:58: e8:a3:d1:88:ba:ee:5b:a4:fe:dd:20:5c:41:13:bf: 99:45:73:63:00:33:3d:53:42:94:78:8c:c9:15:f0: aa:6b:5e:f0:4f:99:09:d8:72:53:25:85:c1:e6:00: a4:a1:4e:7b:99:11:35:ff:d5:d2:52:27:75:0c:24: 22:f4:c6:15:be:4e:25:93:cc:52:ca:b4:53:3d:4b: e8:95:c8:47:6e:35:72:1b:f6:3c:64:a0:f1:23:e3: 9e:3e:c9:6d:5f:37:53:cf:70:0b:f0:c5:ea:a8:73: 6e:31:bc:59:a4:1f:29:cf:79:0b:dd:cd:cd:b3:7d: bc:1d:fd:c9:95:e4:dc:73:58:03:90:16:4d:82:30: 4c:8e:c4:80:93:3e:a4:23:10:55:80:c0:56:20:46: 02:16:5b:f9:85:63:a3:3b:38:be:f3:fb:97:00:f5: 66:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:8A:EA:87:CD:93:1A:62:26:E2:5C:60:67:86:D7:A4:BB:D6:FD:84 X509v3 Authority Key Identifier: keyid:65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/0E0E73A8EBFB11ED8184D438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.231.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:a5:65:e0:27:6b:ff:18:fc:2a:40:17:01:41:7c:1d:66:1a: 4e:ae:87:a6:e8:44:13:22:5b:2e:c4:d9:fa:9c:0b:1c:dd:19: ae:2b:99:0f:81:25:55:d5:0f:bf:08:76:6c:ed:a7:f0:9f:d0: ff:87:44:94:1f:75:97:15:b6:9e:1c:8f:aa:de:d2:65:c0:5a: 2b:e7:da:20:54:c8:3e:fa:9d:41:5c:49:78:15:9a:80:6b:48: d5:fd:96:a5:af:82:9f:13:76:b7:f6:cb:f1:b6:9a:8a:ef:51: 15:a6:79:a6:d2:f8:59:05:01:e3:54:3f:7a:df:be:cc:70:76: df:bc:a4:57:34:c3:99:f7:58:98:0b:16:a4:5c:86:2c:a8:0d: 2e:02:7b:31:19:95:32:6f:28:95:3d:35:fb:11:2f:17:78:0f: 2a:05:46:96:e7:64:92:65:13:80:d7:78:1f:b6:20:c7:6e:0c: 7c:5c:2c:e1:5e:f0:0e:1e:7e:6f:96:77:c4:61:f0:bc:8e:a7: 72:2a:4d:14:18:80:44:20:ed:cb:b4:fa:22:22:a4:4d:fb:bc: e2:8b:2e:83:57:57:14:d6:45:31:82:92:dd:63:e5:64:c7:78: 03:a7:88:eb:9c:53:71:da:5e:4d:f8:06:36:56:71:8d:94:3b: fd:59:c3:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QzIxMTAvBgNVBAUTKDY1RTUyNDI1RkY4NDFFMEUzNDhENTJGQjExN0NBOTY5 MEEyMEJFNTQwHhcNMjQwNzA1MDMwNDUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3NjJkMy00MDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AqelT3L76a9jabnAwrNGAML9BBCgCBZgXfdBuKTp4aVWeirqvskNREpC5H3 hizUOPSDHCmwWX3R24V/lkrhV0T78IcpLvSNN2okqtQVABilvQuv5nIxQFjoo9GI uu5bpP7dIFxBE7+ZRXNjADM9U0KUeIzJFfCqa17wT5kJ2HJTJYXB5gCkoU57mRE1 /9XSUid1DCQi9MYVvk4lk8xSyrRTPUvolchHbjVyG/Y8ZKDxI+OePsltXzdTz3AL 8MXqqHNuMbxZpB8pz3kL3c3Ns328Hf3JleTcc1gDkBZNgjBMjsSAkz6kIxBVgMBW IEYCFlv5hWOjOzi+8/uXAPVmHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAaK6ofN kxpiJuJcYGeG16S71v2EMB8GA1UdIwQYMBaAFGXlJCX/hB4ONI1S+xF8qWkKIL5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlDMi9CRDczNjA0NEUy MzYxMUVDOEM3Rjg1MjBDNEY5QUUwMi9aZVVrSmYtRUhnNDBqVkw3RVh5cGFRb2d2 bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plVWtKZi1FSGc0MGpWTDdFWHlwYVFvZ3ZsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg5QzIvQkQ3MzYwNDRFMjM2MTFFQzhDN0Y4NTIwQzRGOUFFMDIvMEUwRTczQThF QkZCMTFFRDgxODRENDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvOcwDQYJKoZIhvcNAQELBQADggEBAIqlZeAna/8Y/CpA FwFBfB1mGk6uh6boRBMiWy7E2fqcCxzdGa4rmQ+BJVXVD78Idmztp/Cf0P+HRJQf dZcVtp4cj6re0mXAWivn2iBUyD76nUFcSXgVmoBrSNX9lqWvgp8Tdrf2y/G2morv URWmeabS+FkFAeNUP3rfvsxwdt+8pFc0w5n3WJgLFqRchiyoDS4CezEZlTJvKJU9 NfsRLxd4DyoFRpbnZJJlE4DXeB+2IMduDHxcLOFe8A4efm+Wd8Rh8LyOp3IqTRQY gEQg7cu0+iIipE37vOKLLoNXVxTWRTGCkt1j5WTHeAOniOucU3HaXk34BjZWcY2U O/1Zwwg= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org