$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa File: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (raw, json) Hash identifier: YSc5boVMKwRMhn/M8zXGpxfF3jaAcCONXN+5+B53UcY= Subject key identifier: C4:F8:E3:08:9D:99:04:C6:80:E0:29:F0:49:EF:ED:8B:70:74:86:DE Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 0434 Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa Signing time: Thu 01 Feb 2024 01:33:46 +0000 ROA not before: Thu 01 Feb 2024 01:33:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.161.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Validity Not Before: Feb 1 01:33:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65baf4fa-540f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:d4:78:cf:ed:52:97:64:09:48:d3:06:d6: 2b:2f:d7:05:6b:48:a0:43:ec:fc:a6:d5:44:2f:7e: 64:ad:b0:68:32:ee:8d:5c:38:20:98:3a:4a:0d:d1: 00:36:bd:b7:66:c1:9b:2c:06:58:58:ef:31:1c:3a: 19:f4:77:7a:45:82:ae:2f:b2:f4:cd:aa:06:be:ac: 4b:0c:f8:64:b2:40:63:fe:d9:9f:49:b4:c7:d1:a5: 4d:71:ed:4f:d1:ad:a6:63:8f:60:ef:f5:aa:72:f4: 50:83:0c:5d:34:87:fb:b2:65:f6:fd:de:68:70:60: 56:0b:ad:45:9d:04:df:1b:ed:9c:8c:9f:59:4c:bf: 40:d8:60:47:63:c6:72:c1:68:c0:96:42:a7:4d:72: 62:64:d4:0e:f2:c5:c2:b7:0e:34:96:a8:15:9f:00: 74:4d:61:a5:94:3c:91:69:cc:dd:58:69:3a:a4:60: 77:0b:99:45:f1:ad:18:12:40:e2:88:ae:67:61:18: b8:36:c3:4b:66:28:7a:97:2c:2b:86:43:f6:12:64: 07:7d:48:3f:6c:3a:47:d0:61:9a:b6:6d:82:d0:b0: a1:7f:ca:56:ab:44:05:86:78:4b:ea:db:14:f5:59: 69:bd:5c:88:ad:52:27:71:90:a1:df:3c:36:8c:59: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F8:E3:08:9D:99:04:C6:80:E0:29:F0:49:EF:ED:8B:70:74:86:DE X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.138.0/23 Signature Algorithm: sha256WithRSAEncryption 54:ad:83:85:74:ac:2a:42:44:6a:6f:d2:49:2f:85:89:d5:fe: 2d:a3:01:02:3b:58:33:6e:a6:8e:d1:ac:39:46:88:83:ce:66: 75:0b:31:e0:57:d5:57:4e:91:f2:22:ba:95:7a:98:a0:03:d2: ca:9c:d9:48:0c:2d:da:c0:3a:df:4a:10:9c:c9:cd:c9:60:0a: e7:f2:1c:67:77:eb:3a:0b:86:4b:4e:5d:31:89:35:42:c6:05: 20:54:66:16:2f:ed:c2:56:8e:f3:be:d4:39:6e:42:d2:6b:66: ca:34:26:ea:23:83:e9:3b:72:39:47:b1:4d:55:45:bb:fb:18: 24:40:de:58:76:82:55:70:6a:c0:0e:66:48:52:c9:64:18:05: 63:ce:31:d2:43:2e:ac:87:92:7a:ac:d7:32:6a:12:c8:ef:22: 9c:45:37:b8:1f:92:a3:d7:c4:76:0c:99:51:91:0d:21:08:bc: 95:d5:42:c2:b8:6e:28:f5:62:80:c1:8a:b3:b4:27:3c:2d:6f: f6:f8:65:21:93:89:29:c2:b8:fa:1c:eb:c9:46:25:a5:d8:50: 90:13:93:91:1f:85:bd:46:58:a2:4b:20:dd:06:be:dd:ca:1e: ad:b2:a7:77:18:f4:c4:6f:17:ec:39:d6:7b:ac:80:fa:94:37: 62:a8:c5:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjQwMjAxMDEzMzQ2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhZjRmYS01NDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHXUeM/tUpdkCUjTBtYrL9cFa0igQ+z8ptVEL35krbBoMu6NXDggmDpKDdEA Nr23ZsGbLAZYWO8xHDoZ9Hd6RYKuL7L0zaoGvqxLDPhkskBj/tmfSbTH0aVNce1P 0a2mY49g7/WqcvRQgwxdNIf7smX2/d5ocGBWC61FnQTfG+2cjJ9ZTL9A2GBHY8Zy wWjAlkKnTXJiZNQO8sXCtw40lqgVnwB0TWGllDyRaczdWGk6pGB3C5lF8a0YEkDi iK5nYRi4NsNLZih6lywrhkP2EmQHfUg/bDpH0GGatm2C0LChf8pWq0QFhnhL6tsU 9VlpvVyIrVIncZCh3zw2jFl9WwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMT44wid mQTGgOAp8Env7YtwdIbeMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM4RjkvREM2QjM2MTRGRTZEMTFFQkI4M0YyQjIyQzRGOUFFMDIvMkQ3QkQ0RUEw M0REMTFFQ0E0NDg0MDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoYowDQYJKoZIhvcNAQELBQADggEBAFStg4V0rCpCRGpv 0kkvhYnV/i2jAQI7WDNupo7RrDlGiIPOZnULMeBX1VdOkfIiupV6mKAD0sqc2UgM LdrAOt9KEJzJzclgCufyHGd36zoLhktOXTGJNULGBSBUZhYv7cJWjvO+1DluQtJr Zso0Juojg+k7cjlHsU1VRbv7GCRA3lh2glVwasAOZkhSyWQYBWPOMdJDLqyHknqs 1zJqEsjvIpxFN7gfkqPXxHYMmVGRDSEIvJXVQsK4bij1YoDBirO0Jzwtb/b4ZSGT iSnCuPoc68lGJaXYUJATk5Efhb1GWKJLIN0Gvt3KHq2yp3cY9MRvF+w51nusgPqU N2KoxSI= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org