$ rpki-client -vvf rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa File: A63F9024AB6B11EDA5C53A0AC4F9AE02.roa (raw, json) Hash identifier: 67QdihmJWNEdpWctmJLskykPLPRUaTyZfL1MUDXMOe4= Subject key identifier: 7D:25:A5:69:39:66:FD:1A:04:6D:B9:C1:0D:D7:AA:C4:4F:7B:59:20 Certificate issuer: /CN=A91933FE/serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900 Certificate serial: 0156 Authority key identifier: B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa Signing time: Mon 25 Nov 2024 02:26:15 +0000 ROA not before: Mon 25 Nov 2024 02:26:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.234.44.0/24 maxlen: 24 103.234.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.crl rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91933FE/serialNumber=B551A160D3BEDCA562E9DDFDE40933724B69B900 Validity Not Before: Nov 25 02:26:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6743e046-0b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c7:22:0b:8b:45:dc:2d:33:a4:8b:98:fd:f6: 07:a1:9b:87:4a:30:7c:f6:b6:e5:9a:e4:0e:cd:7d: 47:35:0a:0b:ac:f0:2d:65:eb:f5:92:35:38:3b:55: 54:c4:ec:12:20:c1:06:50:e3:4b:05:8a:f6:87:8b: fa:21:8f:2d:48:7f:40:8e:8e:2b:8b:58:ba:6a:a2: de:3d:39:a4:68:ee:a4:4a:85:14:54:7b:e2:25:68: 4e:d2:e4:da:96:bc:9b:c4:14:d1:13:c8:94:32:9a: 33:da:59:4f:54:ec:9e:73:eb:b8:e3:be:ff:26:a6: 69:b5:74:70:4b:a2:30:21:06:7e:2a:49:da:2e:80: 8c:07:a4:1e:c7:df:5f:e1:7f:0f:0c:bb:cc:9c:ae: 0b:13:61:3a:26:1d:0f:71:1e:e9:ae:96:d0:f4:7a: 3a:25:c5:c2:89:35:17:bf:39:6e:8a:1d:66:2b:55: ae:25:5d:80:00:6c:55:89:29:ac:9f:14:0f:71:7f: e1:0e:90:8f:df:ee:57:1a:43:a6:dc:4d:bd:66:49: a3:6c:b7:33:27:94:e4:20:9c:96:b2:88:9c:2b:ad: 97:af:a9:4c:ab:f9:60:44:a0:c2:af:1f:bc:96:58: d2:94:ae:aa:84:e3:46:47:3f:75:0f:20:6f:d7:4d: f2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:25:A5:69:39:66:FD:1A:04:6D:B9:C1:0D:D7:AA:C4:4F:7B:59:20 X509v3 Authority Key Identifier: keyid:B5:51:A1:60:D3:BE:DC:A5:62:E9:DD:FD:E4:09:33:72:4B:69:B9:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/tVGhYNO-3KVi6d395AkzcktpuQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tVGhYNO-3KVi6d395AkzcktpuQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91933FE/D31A677AAB6811EDA5CA5B09C4F9AE02/A63F9024AB6B11EDA5C53A0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.44.0/23 Signature Algorithm: sha256WithRSAEncryption a2:e4:1e:55:d8:b9:b8:31:0a:fd:a5:39:7f:dc:2a:11:39:b2: 98:1d:94:36:66:6d:93:ed:c5:a3:62:d6:50:47:4a:60:52:3f: 10:a7:86:9c:a4:65:12:91:4c:6c:10:ad:80:93:bb:c2:53:9d: 60:5d:00:96:91:e4:9b:0c:5d:f5:09:30:21:2f:3e:0d:2d:8c: 5f:9f:95:9e:6b:2b:c2:da:75:3a:ac:9f:70:60:ab:c8:92:23: f1:80:a1:ec:64:90:93:98:a0:8f:d2:89:6d:67:82:8a:e6:c6: e7:f9:1e:72:52:55:b7:ee:03:34:a4:54:ef:6b:ce:a4:05:f2: b8:d4:c2:31:ef:02:1d:18:93:e0:e3:49:c4:ec:e0:49:49:86: 81:01:c6:28:02:ef:ed:fb:64:87:dd:c0:75:77:4f:5d:5d:a9: f5:64:a0:ce:3d:93:37:ea:93:25:e4:97:4f:5c:56:ab:0d:24: e7:a2:d2:3a:ea:99:f7:2e:f2:e3:9d:c3:dd:69:29:8e:b8:c6: 1b:0a:a4:b1:17:f6:77:17:1d:e7:ae:d7:5c:b9:ca:f6:f1:bd: 07:79:d4:44:b6:7f:c0:37:f6:34:74:a8:9d:8f:94:75:0a:81: 2c:f5:a8:15:c9:f2:2a:9a:58:14:6d:66:02:58:c5:b6:e9:e0: 1f:d3:8b:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzRkUxMTAvBgNVBAUTKEI1NTFBMTYwRDNCRURDQTU2MkU5RERGREU0MDkzMzcy NEI2OUI5MDAwHhcNMjQxMTI1MDIyNjE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQzZTA0Ni0wYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cciC4tF3C0zpIuY/fYHoZuHSjB89rblmuQOzX1HNQoLrPAtZev1kjU4O1VU xOwSIMEGUONLBYr2h4v6IY8tSH9Ajo4ri1i6aqLePTmkaO6kSoUUVHviJWhO0uTa lrybxBTRE8iUMpoz2llPVOyec+u4477/JqZptXRwS6IwIQZ+KknaLoCMB6Qex99f 4X8PDLvMnK4LE2E6Jh0PcR7prpbQ9Ho6JcXCiTUXvzluih1mK1WuJV2AAGxViSms nxQPcX/hDpCP3+5XGkOm3E29ZkmjbLczJ5TkIJyWsoicK62Xr6lMq/lgRKDCrx+8 lljSlK6qhONGRz91DyBv103yDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH0lpWk5 Zv0aBG25wQ3XqsRPe1kgMB8GA1UdIwQYMBaAFLVRoWDTvtylYund/eQJM3JLabkA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzNGRS9EMzFBNjc3QUFC NjgxMUVEQTVDQTVCMDlDNEY5QUUwMi90VkdoWU5PLTNLVmk2ZDM5NUFremNrdHB1 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RWR2hZTk8tM0tWaTZkMzk1QWt6Y2t0cHVRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzRkUvRDMxQTY3N0FBQjY4MTFFREE1Q0E1QjA5QzRGOUFFMDIvQTYzRjkwMjRB QjZCMTFFREE1QzUzQTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6iwwDQYJKoZIhvcNAQELBQADggEBAKLkHlXYubgxCv2l OX/cKhE5spgdlDZmbZPtxaNi1lBHSmBSPxCnhpykZRKRTGwQrYCTu8JTnWBdAJaR 5JsMXfUJMCEvPg0tjF+flZ5rK8LadTqsn3Bgq8iSI/GAoexkkJOYoI/SiW1ngorm xuf5HnJSVbfuAzSkVO9rzqQF8rjUwjHvAh0Yk+DjScTs4ElJhoEBxigC7+37ZIfd wHV3T11dqfVkoM49kzfqkyXkl09cVqsNJOei0jrqmfcu8uOdw91pKY64xhsKpLEX 9ncXHeeu11y5yvbxvQd51ES2f8A39jR0qJ2PlHUKgSz1qBXJ8iqaWBRtZgJYxbbp 4B/Ti8A= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:34 2024 by rpki-client on console-fra.rpki-client.org