$ rpki-client -vvf rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/6985BF0062D611EEB5C5721CC4F9AE02.roa File: 6985BF0062D611EEB5C5721CC4F9AE02.roa (raw, json) Hash identifier: v8Ohi2heIavbMrsxkeCZxN8LxhYk0piFR46tFcvgr/o= Subject key identifier: 88:56:D6:56:FC:5A:69:99:93:38:F6:D8:60:A1:35:62:30:E0:1E:1C Certificate issuer: /CN=A91896D4/serialNumber=4AB7079A9699D2AB9D68DE4AE4327C40BB2C50DB Certificate serial: 015A Authority key identifier: 4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/6985BF0062D611EEB5C5721CC4F9AE02.roa Signing time: Fri 23 Aug 2024 04:17:10 +0000 ROA not before: Fri 23 Aug 2024 04:17:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 150774 IP address blocks: 103.167.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.crl rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91896D4/serialNumber=4AB7079A9699D2AB9D68DE4AE4327C40BB2C50DB Validity Not Before: Aug 23 04:17:10 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66c80d46-a91e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:75:8a:1e:ad:52:bf:e1:c2:fd:79:22:4a:0c: 9b:b3:9c:56:a1:da:82:98:86:28:d4:15:2f:97:0d: f7:99:f1:6b:12:9c:98:a0:cd:a4:e1:1b:5d:e8:be: 92:61:7d:ed:4f:b0:66:b0:44:50:c5:19:49:17:8a: d7:79:bc:76:f7:81:79:5f:89:ea:5b:8a:ba:d0:ea: 7f:ad:12:2e:40:60:a2:71:c6:04:11:fa:aa:ee:a0: 38:c8:17:1f:0f:6d:29:f2:6f:30:be:99:91:67:45: 1d:c0:7e:af:12:ea:09:7a:7a:15:7d:63:f2:ec:3c: 32:2e:c9:5f:54:6e:c2:00:d2:77:b2:8b:b7:a2:57: 8c:12:a9:fe:97:25:6e:4b:47:ff:44:a3:10:b4:85: 35:24:0f:d3:2a:d8:89:68:5e:f8:3c:9a:a6:ac:68: 88:c1:bc:11:bb:47:11:a6:0e:55:d3:21:78:ca:05: 58:59:2d:78:8b:4a:cb:c4:25:9f:72:07:6d:cf:c1: b5:cb:a3:ac:e5:7c:01:55:83:b2:e6:e7:cb:9f:b6: fd:4f:91:5a:5e:44:5b:91:0f:d9:6f:b0:9d:06:f0: 46:e8:1d:ef:89:74:c1:3f:c3:d3:13:30:58:97:79: 63:2b:8e:32:eb:35:22:1e:36:ef:91:94:33:61:5f: 6c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:56:D6:56:FC:5A:69:99:93:38:F6:D8:60:A1:35:62:30:E0:1E:1C X509v3 Authority Key Identifier: keyid:4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/6985BF0062D611EEB5C5721CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.208.0/24 Signature Algorithm: sha256WithRSAEncryption de:cb:69:fc:26:57:0d:13:f4:07:65:af:b1:37:a3:29:6d:3f: 61:f6:ec:36:35:ad:03:af:c8:94:48:22:fe:09:8a:de:e4:84: fd:1d:d3:50:c5:4f:ea:de:b0:16:bd:fd:a9:42:4e:11:53:18: ed:0b:0e:35:c8:eb:22:8b:cf:1a:d5:d0:a8:c5:12:6c:3e:d2: 86:d7:fb:95:5e:12:6f:01:77:38:17:39:1a:5f:4b:6d:88:12: e3:8b:fd:7f:b2:86:55:e6:76:12:58:44:d6:2a:17:58:bc:2e: fe:57:83:b2:aa:c7:47:d1:e6:29:98:9d:57:ed:dc:fb:5d:07: 75:fd:c4:ee:84:cb:a4:7c:9f:d2:b0:b8:c6:c8:a9:10:0f:90: e7:4f:e6:e4:f5:04:b5:f9:3e:54:f5:bb:67:ef:f6:e6:ce:99: 17:a1:80:35:05:9f:e6:0f:ca:1a:4c:eb:32:22:a2:0f:91:5e: 64:25:96:4f:3c:28:5f:7f:93:0b:10:2b:f5:4f:f1:a6:2e:1c: 92:90:ad:21:31:ab:b5:77:70:82:7c:f4:f9:24:71:fc:b7:44: 32:2f:39:1d:53:45:9f:f4:0a:f3:04:b1:53:76:cf:7c:d6:99: e7:ae:dd:b6:b7:16:47:fd:cf:c0:25:fe:5f:d9:6c:79:b8:81: 1a:fb:76:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk2RDQxMTAvBgNVBAUTKDRBQjcwNzlBOTY5OUQyQUI5RDY4REU0QUU0MzI3QzQw QkIyQzUwREIwHhcNMjQwODIzMDQxNzEwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4MGQ0Ni1hOTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33WKHq1Sv+HC/XkiSgybs5xWodqCmIYo1BUvlw33mfFrEpyYoM2k4Rtd6L6S YX3tT7BmsERQxRlJF4rXebx294F5X4nqW4q60Op/rRIuQGCiccYEEfqq7qA4yBcf D20p8m8wvpmRZ0UdwH6vEuoJenoVfWPy7DwyLslfVG7CANJ3sou3oleMEqn+lyVu S0f/RKMQtIU1JA/TKtiJaF74PJqmrGiIwbwRu0cRpg5V0yF4ygVYWS14i0rLxCWf cgdtz8G1y6Os5XwBVYOy5ufLn7b9T5FaXkRbkQ/Zb7CdBvBG6B3viXTBP8PTEzBY l3ljK44y6zUiHjbvkZQzYV9sfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIhW1lb8 WmmZkzj22GChNWIw4B4cMB8GA1UdIwQYMBaAFEq3B5qWmdKrnWjeSuQyfEC7LFDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTZENC81RTlFNjQzNDdC OTYxMUVEOEJERkUzMTFDNEY5QUUwMi9TcmNIbXBhWjBxdWRhTjVLNURKOFFMc3NV TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyY0htcGFaMHF1ZGFONUs1REo4UUxzc1VOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk2RDQvNUU5RTY0MzQ3Qjk2MTFFRDhCREZFMzExQzRGOUFFMDIvNjk4NUJGMDA2 MkQ2MTFFRUI1QzU3MjFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp9AwDQYJKoZIhvcNAQELBQADggEBAN7LafwmVw0T9Adl r7E3oyltP2H27DY1rQOvyJRIIv4Jit7khP0d01DFT+resBa9/alCThFTGO0LDjXI 6yKLzxrV0KjFEmw+0obX+5VeEm8BdzgXORpfS22IEuOL/X+yhlXmdhJYRNYqF1i8 Lv5Xg7Kqx0fR5imYnVft3PtdB3X9xO6Ey6R8n9KwuMbIqRAPkOdP5uT1BLX5PlT1 u2fv9ubOmRehgDUFn+YPyhpM6zIiog+RXmQllk88KF9/kwsQK/VP8aYuHJKQrSEx q7V3cIJ89Pkkcfy3RDIvOR1TRZ/0CvMEsVN2z3zWmeeu3ba3Fkf9z8Al/l/ZbHm4 gRr7dkc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org