$ rpki-client -vvf rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa File: 54AE11C6AD3211E9B3BC7385C4F9AE02.roa (raw, json) Hash identifier: a2Zz+SuX3DCfdSuIf8QT+Sa+cHmZnSxsIqO80zeBe3c= Subject key identifier: 09:4A:A9:FF:0C:DC:A2:16:7E:7B:7B:C7:9F:1B:A7:25:C5:A3:1F:77 Certificate issuer: /CN=A9192491/serialNumber=34C38D6649B90D68D3CE6C09F1EB94D3E579FC9D Certificate serial: 0D84 Authority key identifier: 34:C3:8D:66:49:B9:0D:68:D3:CE:6C:09:F1:EB:94:D3:E5:79:FC:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa Signing time: Mon 16 Sep 2024 18:06:46 +0000 ROA not before: Mon 16 Sep 2024 18:06:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133742 IP address blocks: 103.76.2.0/24 maxlen: 24 2001:df5:6a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.crl rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192491/serialNumber=34C38D6649B90D68D3CE6C09F1EB94D3E579FC9D Validity Not Before: Sep 16 18:06:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e873b6-e5d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:9a:41:ee:83:59:a5:c6:34:a4:fb:c4:ce: 67:d0:02:47:aa:ff:b7:14:cb:3d:44:03:4a:20:4b: 92:ec:be:7c:37:23:9c:c9:c5:e1:6a:e9:8e:a6:31: 87:0c:3f:5f:e5:89:bd:3b:f9:f2:03:e4:ad:fe:70: 9b:82:06:56:f8:f2:8b:5e:d3:32:89:62:cc:6b:44: 66:16:00:b7:cf:62:65:f6:a2:4f:f4:a2:b2:f9:2d: 14:0a:cc:58:49:3b:78:3c:fc:db:eb:f4:27:d8:63: 7b:66:17:51:d9:93:37:a0:8a:85:43:61:b6:c1:9c: 1b:f8:1d:08:40:28:f6:93:98:6d:18:18:88:ab:d2: 4e:43:47:bf:be:ac:f3:10:4f:f1:19:90:e5:97:79: 96:67:b4:fc:2f:cd:6a:dc:2d:9f:e9:a7:a9:df:c9: 09:53:96:f2:59:75:0b:92:5c:35:81:da:32:94:78: df:f4:ef:c5:2f:22:15:a4:f6:c0:04:83:23:a3:20: 84:bb:f9:f1:90:01:8a:a8:5a:35:3a:57:54:a2:bc: af:a5:a2:c0:14:6d:b5:79:bf:d8:48:f5:6d:0d:b2: 60:1c:f8:a6:a7:59:01:91:a9:cd:e1:3d:36:51:73: 21:11:78:db:ac:1a:fa:60:6b:45:1b:59:ba:d9:16: 15:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:4A:A9:FF:0C:DC:A2:16:7E:7B:7B:C7:9F:1B:A7:25:C5:A3:1F:77 X509v3 Authority Key Identifier: keyid:34:C3:8D:66:49:B9:0D:68:D3:CE:6C:09:F1:EB:94:D3:E5:79:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/NMONZkm5DWjTzmwJ8euU0-V5_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NMONZkm5DWjTzmwJ8euU0-V5_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192491/D0626D92AD2F11E98FF8D77FC4F9AE02/54AE11C6AD3211E9B3BC7385C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.2.0/24 IPv6: 2001:df5:6a00::/48 Signature Algorithm: sha256WithRSAEncryption 19:fb:f8:07:46:4c:c1:2e:54:76:29:3e:23:50:4b:88:ae:9a: bb:a7:cd:06:1f:db:87:fc:b6:db:0d:02:28:af:62:df:4e:64: 43:7e:b4:ba:60:5f:9d:b4:95:fe:4e:1e:df:3b:55:c4:40:25: 4b:a4:01:80:69:0f:01:31:04:89:c5:fc:3c:49:23:29:51:37: 6a:1e:da:66:1f:22:b4:09:77:9e:be:1f:bd:62:7c:66:78:7a: 24:d0:f9:6b:7f:b6:96:10:0e:10:87:95:f7:9a:5f:1c:82:46: 09:6d:a2:63:ae:df:a9:03:e0:53:95:d9:a0:b9:1d:0b:43:3c: b5:82:64:7c:6b:d7:f0:c5:9e:ee:2b:f2:4b:d6:03:68:84:89: 8e:b6:c4:ca:a4:e9:bd:0b:69:90:9a:39:26:cc:04:6f:a4:56: 35:84:17:07:4c:9d:42:d1:57:f1:0a:0b:b2:6d:47:d8:bc:1f: c4:47:de:3b:05:21:ab:f7:a0:89:09:11:a5:0c:e2:f6:c7:75: 61:6a:54:df:4c:0e:1b:48:50:00:56:75:dd:db:1a:f5:d4:cf: 62:cc:1c:20:28:7f:7d:0a:cb:2a:04:ed:cd:d3:90:bd:11:de: d9:b8:37:5c:ff:3e:72:84:ca:42:68:38:62:d7:b0:de:ac:03: 36:23:7a:e2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI0OTExMTAvBgNVBAUTKDM0QzM4RDY2NDlCOTBENjhEM0NFNkMwOUYxRUI5NEQz RTU3OUZDOUQwHhcNMjQwOTE2MTgwNjQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NzNiNi1lNWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteuaQe6DWaXGNKT7xM5n0AJHqv+3FMs9RANKIEuS7L58NyOcycXhaumOpjGH DD9f5Ym9O/nyA+St/nCbggZW+PKLXtMyiWLMa0RmFgC3z2Jl9qJP9KKy+S0UCsxY STt4PPzb6/Qn2GN7ZhdR2ZM3oIqFQ2G2wZwb+B0IQCj2k5htGBiIq9JOQ0e/vqzz EE/xGZDll3mWZ7T8L81q3C2f6aep38kJU5byWXULklw1gdoylHjf9O/FLyIVpPbA BIMjoyCEu/nxkAGKqFo1OldUoryvpaLAFG21eb/YSPVtDbJgHPimp1kBkanN4T02 UXMhEXjbrBr6YGtFG1m62RYVmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAlKqf8M 3KIWfnt7x58bpyXFox93MB8GA1UdIwQYMBaAFDTDjWZJuQ1o085sCfHrlNPlefyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjQ5MS9EMDYyNkQ5MkFE MkYxMUU5OEZGOEQ3N0ZDNEY5QUUwMi9OTU9OWmttNURXalR6bXdKOGV1VTAtVjVf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05NT05aa201RFdqVHptd0o4ZXVVMC1WNV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI0OTEvRDA2MjZEOTJBRDJGMTFFOThGRjhENzdGQzRGOUFFMDIvNTRBRTExQzZB RDMyMTFFOUIzQkM3Mzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnTAIwDwQCAAIwCQMHACABDfVqADANBgkqhkiG9w0BAQsF AAOCAQEAGfv4B0ZMwS5Udik+I1BLiK6au6fNBh/bh/y22w0CKK9i305kQ360umBf nbSV/k4e3ztVxEAlS6QBgGkPATEEicX8PEkjKVE3ah7aZh8itAl3nr4fvWJ8Znh6 JND5a3+2lhAOEIeV95pfHIJGCW2iY67fqQPgU5XZoLkdC0M8tYJkfGvX8MWe7ivy S9YDaISJjrbEyqTpvQtpkJo5JswEb6RWNYQXB0ydQtFX8QoLsm1H2LwfxEfeOwUh q/egiQkRpQzi9sd1YWpU30wOG0hQAFZ13dsa9dTPYswcICh/fQrLKgTtzdOQvRHe 2bg3XP8+coTKQmg4Ytew3qwDNiN64g== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org