$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa File: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (raw, json) Hash identifier: TPYRpzvRiXNOyoidE5VgxmpZ6c8W65redo9B+5PkoyA= Subject key identifier: 47:8E:69:47:26:7F:17:E4:25:DC:57:32:6B:90:0C:45:55:D8:EC:AC Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 04A1 Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa Signing time: Tue 07 Nov 2023 01:13:11 +0000 ROA not before: Tue 07 Nov 2023 01:13:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 0 IP address blocks: 103.41.12.0/22 maxlen: 22 2001:ded::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 01:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Nov 7 01:13:11 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65498f26-b150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8d:06:8b:76:0d:25:24:d5:ac:8a:83:cc:40: 91:bc:14:cb:f5:24:4b:85:77:f2:a6:31:a2:ff:af: bf:ec:69:c0:ea:ff:33:3b:0f:2f:15:44:4c:17:32: bf:8d:00:15:5d:e0:d5:26:8c:4d:7b:93:cd:3e:90: 64:e7:d3:d0:35:2c:16:88:d4:f9:60:6e:e6:bf:93: 45:29:39:89:4c:ad:59:9a:a6:fd:73:47:12:7e:08: d3:49:3d:37:68:2e:73:4d:6e:da:af:d0:0e:d7:36: 63:f0:4c:bd:92:80:0c:23:e2:df:4c:41:40:a0:a8: 9c:44:53:ef:d2:3e:a3:57:d6:af:77:27:91:63:10: 55:57:1f:26:d3:ee:70:ad:eb:74:ec:37:eb:2c:dd: 4e:40:75:ea:7f:eb:f3:f1:e0:5d:ab:92:19:2c:69: 57:21:12:3b:88:85:b8:f5:42:2c:f5:b3:5e:b5:cc: c3:70:a6:f7:ce:97:a4:df:6d:78:8b:46:59:d2:b4: 2f:66:85:dd:c7:8e:e5:14:25:41:e5:e5:ac:1b:3d: 3d:06:a3:17:da:5a:63:85:df:e6:4e:a6:29:c8:43: 3e:22:65:2e:42:af:a3:88:68:7d:34:2b:2d:ee:96: df:c3:ce:4f:27:8a:00:82:53:d8:df:63:12:cd:81: 21:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:8E:69:47:26:7F:17:E4:25:DC:57:32:6B:90:0C:45:55:D8:EC:AC X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/432BBA90C1F611EBAD8D7477C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.12.0/22 IPv6: 2001:ded::/64 Signature Algorithm: sha256WithRSAEncryption 81:ff:6b:f3:07:35:95:ff:86:46:29:25:90:95:ed:39:0f:9d: 47:c4:27:9a:ff:a3:d3:36:c8:12:1f:92:45:8b:2e:6c:68:a5: 0b:19:60:28:61:f2:0d:4b:3d:4a:17:7e:13:40:62:12:ca:fc: a8:e5:48:e3:d0:76:8e:5d:6d:3c:bd:a5:13:88:a9:bc:94:d0: 97:74:a3:fe:8e:9b:89:a7:35:60:9b:23:ac:bb:26:40:04:71: 5a:b1:49:a5:ab:c0:c8:6a:be:c6:b6:f5:0f:6b:6e:0f:9e:60: a5:72:74:66:ec:0d:f9:d0:6b:b7:d0:6b:1c:a0:49:ac:12:b8: 1b:47:2c:95:2f:10:6d:cd:c0:c0:8b:2b:19:44:f2:ab:1b:a0: 1f:b2:38:15:68:94:77:99:3b:d9:bb:0a:68:01:d0:eb:a9:09: b4:fe:ea:23:bb:02:aa:98:2b:52:50:66:9f:60:54:76:d2:55: 6c:30:ed:f1:c6:c3:b8:9f:00:c4:fd:34:8f:6f:ea:98:03:f3: 6c:b6:11:52:82:e2:0f:42:fe:02:a7:ee:1e:9e:9f:48:86:bd: 2f:c5:38:b8:63:c7:e5:7b:26:b6:fc:41:60:2b:b8:f0:1a:4b: ad:51:c1:08:9c:84:cb:45:8a:50:64:e3:bd:f2:08:53:31:c4: fd:bb:d2:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjMxMTA3MDExMzExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5OGYyNi1iMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo0Gi3YNJSTVrIqDzECRvBTL9SRLhXfypjGi/6+/7GnA6v8zOw8vFURMFzK/ jQAVXeDVJoxNe5PNPpBk59PQNSwWiNT5YG7mv5NFKTmJTK1Zmqb9c0cSfgjTST03 aC5zTW7ar9AO1zZj8Ey9koAMI+LfTEFAoKicRFPv0j6jV9avdyeRYxBVVx8m0+5w ret07DfrLN1OQHXqf+vz8eBdq5IZLGlXIRI7iIW49UIs9bNetczDcKb3zpek3214 i0ZZ0rQvZoXdx47lFCVB5eWsGz09BqMX2lpjhd/mTqYpyEM+ImUuQq+jiGh9NCst 7pbfw85PJ4oAglPY32MSzYEhVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeOaUcm fxfkJdxXMmuQDEVV2OysMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBM0MvRDgzNjQ2RkVDMUYyMTFFQjk4NTY0MTc0QzRGOUFFMDIvNDMyQkJBOTBD MUY2MTFFQkFEOEQ3NDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBAJnKQwwEQQCAAIwCwMJACABDe0AAAAAMA0GCSqGSIb3DQEB CwUAA4IBAQCB/2vzBzWV/4ZGKSWQle05D51HxCea/6PTNsgSH5JFiy5saKULGWAo YfINSz1KF34TQGISyvyo5Ujj0HaOXW08vaUTiKm8lNCXdKP+jpuJpzVgmyOsuyZA BHFasUmlq8DIar7GtvUPa24PnmClcnRm7A350Gu30GscoEmsErgbRyyVLxBtzcDA iysZRPKrG6AfsjgVaJR3mTvZuwpoAdDrqQm0/uojuwKqmCtSUGafYFR20lVsMO3x xsO4nwDE/TSPb+qYA/NsthFSguIPQv4Cp+4enp9Ihr0vxTi4Y8fleya2/EFgK7jw GkutUcEInITLRYpQZOO98ghTMcT9u9JV -----END CERTIFICATE-----Generated at Tue Apr 23 18:33:29 2024 by rpki-client on console-fra.rpki-client.org