$ rpki-client -vvf rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/230576C0784C11EE9C354422C4F9AE02.roa File: 230576C0784C11EE9C354422C4F9AE02.roa (raw, json) Hash identifier: 8xFUYP8CysuOSr+JhXC7vja6PLPsWt9zigT7v//9EFY= Subject key identifier: 2A:26:BB:73:B9:AA:86:04:EA:06:87:04:7E:9C:6D:CC:28:7E:A7:72 Certificate issuer: /CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Certificate serial: 08 Authority key identifier: 54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/230576C0784C11EE9C354422C4F9AE02.roa Signing time: Wed 01 Nov 2023 00:20:27 +0000 ROA not before: Wed 01 Nov 2023 00:20:27 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151976 IP address blocks: 103.67.56.0/23 maxlen: 24 2401:47a0::/32 maxlen: 32 2401:47a0:3000::/48 maxlen: 48 2401:47a0:3001::/48 maxlen: 48 2401:47a0:3002::/48 maxlen: 48 2401:47a0:3004::/48 maxlen: 48 2401:47a0:300f::/48 maxlen: 48 2401:47a0:30ff::/48 maxlen: 48 2401:47a0:3fff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189AA3/serialNumber=54A5D8FBF84E3EDF31FA24E45C6C672A93B65AD0 Validity Not Before: Nov 1 00:20:27 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654199ca-0e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:80:3a:0b:06:8a:5e:43:cb:a7:2f:17:d7: 66:aa:c3:30:80:17:a6:f3:15:ce:f7:e4:c2:30:00: 3c:ce:a3:55:6a:61:7b:78:2b:e6:f4:2d:32:64:6a: a5:76:16:60:ba:a6:77:e6:b1:c7:e7:df:e2:69:46: 69:c0:07:60:e3:74:3d:7d:51:f8:9f:58:1c:ea:de: a3:b4:4a:60:b0:4e:32:68:c3:31:4b:5b:88:c4:bc: da:ae:9f:1f:a8:09:b5:b8:e4:c2:a6:c9:43:f0:7c: 62:0c:12:bc:89:ea:4c:5e:1e:50:00:6e:08:d1:1c: 07:28:ea:f1:a1:54:aa:87:53:e1:b2:6a:1b:36:7f: 87:4d:4e:48:ca:ca:f0:17:8d:5d:6f:72:f7:35:da: 1d:99:e3:ab:e2:6f:a1:71:41:27:12:3b:d7:80:2a: d2:eb:56:72:f1:60:88:9e:94:81:69:a8:f1:7c:c6: ea:7b:78:f2:16:83:56:28:71:ea:11:5c:45:64:f0: 90:d0:96:aa:93:8c:71:a2:53:ae:9e:a0:50:53:f0: 00:1e:82:48:c7:21:90:bc:65:4f:9c:8a:8a:a7:f8: 78:5b:79:45:64:47:20:15:eb:ab:ac:b8:cd:91:9c: f4:00:4e:d7:01:c5:fe:2f:dc:64:45:86:51:5e:62: bc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:26:BB:73:B9:AA:86:04:EA:06:87:04:7E:9C:6D:CC:28:7E:A7:72 X509v3 Authority Key Identifier: keyid:54:A5:D8:FB:F8:4E:3E:DF:31:FA:24:E4:5C:6C:67:2A:93:B6:5A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/VKXY-_hOPt8x-iTkXGxnKpO2WtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKXY-_hOPt8x-iTkXGxnKpO2WtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189AA3/0A2CB786784B11EEA4D7DB77C4F9AE02/230576C0784C11EE9C354422C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.56.0/23 IPv6: 2401:47a0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:cd:e6:32:48:51:51:62:6c:ed:6a:b0:f2:ff:03:14:7f:54: 77:8c:bc:2d:7d:d6:ef:79:e1:7a:69:5c:35:c1:42:04:b6:df: 1a:e1:14:31:df:4a:04:61:9d:e5:a9:05:67:42:c5:76:e3:b3: 69:6c:6e:71:86:23:53:43:44:01:d2:e9:37:b9:bf:ab:62:0f: e6:b5:a9:12:4e:c7:0e:24:3a:fa:fe:6c:0e:c7:7d:10:bb:63: ce:e5:c0:d0:71:b1:7a:39:51:43:18:85:b6:14:5a:db:b2:cd: 50:d3:e3:e6:ab:b1:f5:44:c8:a9:23:90:00:d0:83:b9:3b:53: 66:32:4c:4e:ff:dd:79:1b:48:29:5d:6f:3a:e4:c8:c3:18:7f: 76:9b:9f:2c:4a:9b:6a:e5:da:fc:5d:2b:7a:da:1e:4c:3b:83: 0c:ef:ee:bb:59:72:ed:e6:bf:11:59:3c:c6:df:10:14:ea:20: 8a:87:03:1b:e1:8e:84:74:72:ea:d6:ff:6b:7e:78:fc:e3:85: 93:ae:dc:65:ff:33:f6:fc:14:8e:0a:03:22:87:34:31:5f:d9: 8e:f9:0c:75:f6:e7:51:1d:35:87:09:e2:8e:26:a1:e0:27:b1: a5:c0:dc:52:d7:4a:f3:17:ad:68:1f:fc:a0:05:96:71:a0:c1: 7b:2b:a3:83 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUFBMzExMC8GA1UEBRMoNTRBNUQ4RkJGODRFM0VERjMxRkEyNEU0NUM2QzY3MkE5 M0I2NUFEMDAeFw0yMzExMDEwMDIwMjdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NDE5OWNhLTBlMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBfYA6CwaKXkPLpy8X12aqwzCAF6bzFc735MIwADzOo1VqYXt4K+b0LTJkaqV2 FmC6pnfmscfn3+JpRmnAB2DjdD19UfifWBzq3qO0SmCwTjJowzFLW4jEvNqunx+o CbW45MKmyUPwfGIMEryJ6kxeHlAAbgjRHAco6vGhVKqHU+Gyahs2f4dNTkjKyvAX jV1vcvc12h2Z46vib6FxQScSO9eAKtLrVnLxYIielIFpqPF8xup7ePIWg1YoceoR XEVk8JDQlqqTjHGiU66eoFBT8AAegkjHIZC8ZU+cioqn+HhbeUVkRyAV66usuM2R nPQATtcBxf4v3GRFhlFeYrw3AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUKia7c7mq hgTqBocEfpxtzCh+p3IwHwYDVR0jBBgwFoAUVKXY+/hOPt8x+iTkXGxnKpO2WtAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QUEzLzBBMkNCNzg2Nzg0 QjExRUVBNEQ3REI3N0M0RjlBRTAyL1ZLWFktX2hPUHQ4eC1pVGtYR3huS3BPMld0 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktYWS1faE9QdDh4LWlUa1hHeG5LcE8yV3RBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUFBMy8wQTJDQjc4Njc4NEIxMUVFQTREN0RCNzdDNEY5QUUwMi8yMzA1NzZDMDc4 NEMxMUVFOUMzNTQ0MjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWdDODANBAIAAjAHAwUAJAFHoDANBgkqhkiG9w0BAQsFAAOC AQEAD83mMkhRUWJs7Wqw8v8DFH9Ud4y8LX3W73nhemlcNcFCBLbfGuEUMd9KBGGd 5akFZ0LFduOzaWxucYYjU0NEAdLpN7m/q2IP5rWpEk7HDiQ6+v5sDsd9ELtjzuXA 0HGxejlRQxiFthRa27LNUNPj5qux9UTIqSOQANCDuTtTZjJMTv/deRtIKV1vOuTI wxh/dpufLEqbauXa/F0retoeTDuDDO/uu1ly7ea/EVk8xt8QFOogiocDG+GOhHRy 6tb/a354/OOFk67cZf8z9vwUjgoDIoc0MV/ZjvkMdfbnUR01hwnijiah4CexpcDc UtdK8xetaB/8oAWWcaDBeyujgw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org