$ rpki-client -vvf rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa File: 4D36C07677C311EF84D38A3BC4F9AE02.roa (raw, json) Hash identifier: 6DTPGl0cK90vpMXpajrInMal5HqM8aVrjHYhHLus/gk= Subject key identifier: 4A:F5:F6:0F:89:B7:94:FD:3E:30:D9:F7:A2:54:41:B5:F2:BF:66:D6 Certificate issuer: /CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Certificate serial: 03 Authority key identifier: FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa Signing time: Sat 21 Sep 2024 02:43:37 +0000 ROA not before: Sat 21 Sep 2024 02:43:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132530 IP address blocks: 103.24.192.0/24 maxlen: 24 103.24.193.0/24 maxlen: 24 2001:df3:b2c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Validity Not Before: Sep 21 02:43:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66ee32d9-09ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:de:6e:8b:d3:da:aa:20:10:25:e3:23:66: 16:64:f3:be:c0:a5:bf:1b:2c:cf:07:5d:23:86:9c: 01:ac:9d:a6:a9:19:fd:75:c7:65:c8:a4:9f:6f:ca: 30:98:67:6c:36:4c:04:ea:ff:6f:7a:b7:75:4f:76: 1a:a0:52:12:23:4b:06:4b:6b:d4:c9:36:87:9d:f0: b0:44:20:e3:89:91:cf:2e:ed:bd:8e:0c:14:a5:79: 9a:ce:0c:4f:51:28:5a:9b:20:53:24:2d:44:73:02: 03:0c:d1:a4:37:6a:8f:4d:8b:21:ca:df:47:ce:11: 45:cc:cc:2e:c8:3c:5b:7d:ec:44:af:25:50:65:46: d5:07:fd:21:c6:e4:f2:de:b5:e8:66:1e:f9:e2:d5: 5b:80:f3:45:85:42:0c:05:80:cb:57:ea:84:8c:01: bf:55:d8:6f:08:03:56:09:16:49:ff:95:34:21:ea: 3d:d4:76:88:b6:eb:43:48:32:31:62:fd:28:8c:e7: c6:32:ae:4e:ef:4e:d1:d4:a6:ad:63:8d:3a:21:02: a2:70:24:e3:6a:15:24:cb:b8:60:a9:50:3a:d3:17: 72:b4:0e:79:fb:63:74:81:aa:b6:af:24:83:75:00: 7a:25:0e:77:d0:66:1a:72:e6:dc:77:48:80:4d:3e: aa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F5:F6:0F:89:B7:94:FD:3E:30:D9:F7:A2:54:41:B5:F2:BF:66:D6 X509v3 Authority Key Identifier: keyid:FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/4D36C07677C311EF84D38A3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.192.0/23 IPv6: 2001:df3:b2c0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:90:0a:09:18:5f:80:b3:97:60:c8:ce:fb:58:5c:71:db:42: 9c:75:b4:b4:68:b6:b9:fa:50:e1:e1:d2:e5:e4:31:a1:0d:de: cb:6f:04:11:9d:66:81:39:48:45:b0:98:e0:7c:5b:77:cd:a0: c9:5f:f2:ac:ad:84:b8:68:ad:c4:27:84:6f:56:65:fd:cf:35: f7:3a:fc:14:f8:3f:2d:97:eb:6d:49:a2:85:e9:d7:7d:80:e8: af:a2:19:b5:e2:8c:1c:de:21:26:d8:8d:fa:a2:f2:3c:e9:ba: ff:c5:55:ab:95:db:09:92:e1:e2:29:2d:b3:67:b2:54:d9:d4: 1e:3c:66:ef:a0:b0:32:5c:fb:29:a5:97:42:dd:a4:63:f7:0b: 39:79:e4:82:c9:07:87:b4:ec:bb:3c:21:c2:a4:f1:1a:75:b3: 68:ea:c3:ee:3a:e1:4d:a7:fb:75:70:43:aa:ec:5f:fb:ad:f2: be:cd:24:8c:1a:74:ea:64:42:66:84:dc:f9:e4:3c:79:d1:f4: 64:6e:31:20:45:7f:cd:c9:fe:6d:e7:f6:65:87:31:5b:ae:bc: 31:bb:9e:59:53:8b:f0:d1:b3:3f:6b:64:9c:60:0e:a2:37:2b: 1b:c6:03:25:cb:20:97:a5:a5:ad:6f:10:0a:eb:15:a8:ef:0d: bb:84:e1:20 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MTc2OTExMC8GA1UEBRMoRkY5MjM0N0Y1RDU0Njg4MTFGRDI1M0E0OEJGQzY5RkU1 NzBBQTQ1MDAeFw0yNDA5MjEwMjQzMzdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWUzMmQ5LTA5YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHpt5ui9PaqiAQJeMjZhZk877Apb8bLM8HXSOGnAGsnaapGf11x2XIpJ9vyjCY Z2w2TATq/296t3VPdhqgUhIjSwZLa9TJNoed8LBEIOOJkc8u7b2ODBSleZrODE9R KFqbIFMkLURzAgMM0aQ3ao9NiyHK30fOEUXMzC7IPFt97ESvJVBlRtUH/SHG5PLe tehmHvni1VuA80WFQgwFgMtX6oSMAb9V2G8IA1YJFkn/lTQh6j3Udoi260NIMjFi /SiM58Yyrk7vTtHUpq1jjTohAqJwJONqFSTLuGCpUDrTF3K0Dnn7Y3SBqravJIN1 AHolDnfQZhpy5tx3SIBNPqrFAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUSvX2D4m3 lP0+MNn3olRBtfK/ZtYwHwYDVR0jBBgwFoAU/5I0f11UaIEf0lOki/xp/lcKpFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkxNzY5L0QyNkREREIwNzdC RTExRUY5RjJBNDU0N0M0RjlBRTAyL181STBmMTFVYUlFZjBsT2tpX3hwX2xjS3BG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzVJMGYxMVVhSUVmMGxPa2lfeHBfbGNLcEZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTc2OS9EMjZERERCMDc3QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi80RDM2QzA3Njc3 QzMxMUVGODREMzhBM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWcYwDAPBAIAAjAJAwcAIAEN87LAMA0GCSqGSIb3DQEBCwUA A4IBAQAukAoJGF+As5dgyM77WFxx20KcdbS0aLa5+lDh4dLl5DGhDd7LbwQRnWaB OUhFsJjgfFt3zaDJX/KsrYS4aK3EJ4RvVmX9zzX3OvwU+D8tl+ttSaKF6dd9gOiv ohm14owc3iEm2I36ovI86br/xVWrldsJkuHiKS2zZ7JU2dQePGbvoLAyXPsppZdC 3aRj9ws5eeSCyQeHtOy7PCHCpPEadbNo6sPuOuFNp/t1cEOq7F/7rfK+zSSMGnTq ZEJmhNz55Dx50fRkbjEgRX/Nyf5t5/ZlhzFbrrwxu55ZU4vw0bM/a2ScYA6iNysb xgMlyyCXpaWtbxAK6xWo7w27hOEg -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org