$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa File: 04B0D250076211EFB14D3B12C4F9AE02.roa (raw, json) Hash identifier: qJIeqrgvCSqMs8+P3KeM1F5hY5WT3B+IFIjWWFc0WLk= Subject key identifier: 60:75:6C:03:2D:4D:C7:A4:77:B4:87:B7:A7:BD:57:42:BB:69:39:15 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 0A Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa Signing time: Wed 01 May 2024 02:25:04 +0000 ROA not before: Wed 01 May 2024 02:25:04 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 917 IP address blocks: 103.23.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: May 1 02:25:04 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6631a800-1f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c4:a3:b8:c2:76:f0:bc:2c:0f:cb:cf:19:d4: 8d:12:b7:a5:73:bc:55:57:cf:5c:5b:7b:c1:95:d3: 87:55:4f:01:a6:d0:85:08:63:dd:18:2e:87:33:09: 2e:bd:7e:60:09:a8:ea:7a:17:f1:d7:9a:b7:50:14: ea:0d:cd:6d:46:95:a3:95:f9:ee:bc:75:e5:31:4d: 5d:c1:6f:12:5d:5f:91:b8:f7:cf:c7:c5:49:1c:90: 00:4e:73:2f:51:8f:0b:d5:39:ea:ca:28:99:ae:cf: 36:9d:1e:52:4b:29:ad:5e:7e:cb:7d:2c:57:ce:dd: b2:5d:ed:46:ef:3e:a4:6e:c9:a8:e8:25:45:65:fd: b6:76:b2:41:05:05:db:0e:f1:67:cc:c7:68:15:92: 66:c8:e8:d7:32:67:31:8d:21:02:99:c8:ed:1a:3d: f1:f9:29:76:54:5e:eb:7e:9e:c5:5b:e2:1a:c3:06: 99:0d:59:55:b2:61:56:2f:d3:db:02:56:83:39:af: 36:58:aa:16:c3:9e:e8:fa:ea:41:34:c2:51:47:4c: d3:4e:66:86:8f:7c:3b:68:ba:ec:46:18:5b:f9:5a: 71:67:41:6b:24:c2:bd:e7:ad:c0:2d:62:69:e5:c4: 96:ee:75:9d:b8:11:7e:a4:d8:ad:c7:4a:b0:13:dd: bd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:75:6C:03:2D:4D:C7:A4:77:B4:87:B7:A7:BD:57:42:BB:69:39:15 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/04B0D250076211EFB14D3B12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.172.0/23 Signature Algorithm: sha256WithRSAEncryption 67:c4:33:24:7b:e0:27:1b:fb:ac:0b:71:80:17:a6:db:45:da: 2f:1b:d8:d8:e4:d6:e8:54:aa:07:a8:9f:49:db:9a:74:f5:09: b3:96:47:d3:7b:f8:35:d0:81:50:59:dd:9f:20:84:1a:d6:75: ea:ef:b6:92:e2:69:77:4c:20:9f:53:8c:a9:0b:2f:29:57:9d: 6f:86:9d:a0:5a:66:a8:eb:4e:b4:18:cb:22:81:64:f1:54:75: 34:72:44:a9:76:87:54:4e:ff:a3:3d:45:73:80:4d:7c:6c:aa: de:a8:86:f2:e1:be:02:d6:5c:7f:94:51:de:fa:7a:18:a4:dc: ab:9c:dd:9f:80:af:e8:d5:5d:66:79:0b:3b:9c:bb:e8:c6:62: d3:22:f1:6d:ba:30:68:57:48:64:58:b9:9f:d5:7b:3c:ba:a6: f3:4d:b9:1b:9b:6c:fc:bd:09:a6:a7:2a:4e:e5:bd:a2:91:57: 72:45:90:76:a4:f2:28:a3:3b:83:e2:09:99:a8:f6:88:59:15: 5e:36:f8:f6:01:f9:41:bd:7d:d3:eb:6c:fe:cb:20:35:36:2f: ee:b9:1f:5d:5d:6a:36:92:a9:76:60:32:c0:6b:ac:d0:d0:9a: bb:0f:c1:c8:f4:66:1c:a7:ad:96:90:e1:9b:bd:03:42:6c:60: 75:b9:be:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0Y1RDExMC8GA1UEBRMoQjQwODE4MTVDNkJBRUQ5OEExQ0M5NTBBQzZGQTEwQkM2 MDA1ODkwMjAeFw0yNDA1MDEwMjI1MDRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzFhODAwLTFmM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAxKO4wnbwvCwPy88Z1I0St6VzvFVXz1xbe8GV04dVTwGm0IUIY90YLoczCS69 fmAJqOp6F/HXmrdQFOoNzW1GlaOV+e68deUxTV3BbxJdX5G498/HxUkckABOcy9R jwvVOerKKJmuzzadHlJLKa1efst9LFfO3bJd7UbvPqRuyajoJUVl/bZ2skEFBdsO 8WfMx2gVkmbI6NcyZzGNIQKZyO0aPfH5KXZUXut+nsVb4hrDBpkNWVWyYVYv09sC VoM5rzZYqhbDnuj66kE0wlFHTNNOZoaPfDtouuxGGFv5WnFnQWskwr3nrcAtYmnl xJbudZ24EX6k2K3HSrAT3b0zAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYHVsAy1N x6R3tIe3p71XQrtpORUwHwYDVR0jBBgwFoAUtAgYFca67ZihzJUKxvoQvGAFiQIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzRjVELzEwRjk0RUYwMDZB QjExRUY4N0JGQTcyNUM0RjlBRTAyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlR SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEFnWUZjYTY3WmloekpVS3h2b1F2R0FGaVFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi8wNEIwRDI1MDA3 NjIxMUVGQjE0RDNCMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcXrDANBgkqhkiG9w0BAQsFAAOCAQEAZ8QzJHvgJxv7rAtx gBem20XaLxvY2OTW6FSqB6ifSduadPUJs5ZH03v4NdCBUFndnyCEGtZ16u+2kuJp d0wgn1OMqQsvKVedb4adoFpmqOtOtBjLIoFk8VR1NHJEqXaHVE7/oz1Fc4BNfGyq 3qiG8uG+AtZcf5RR3vp6GKTcq5zdn4Cv6NVdZnkLO5y76MZi0yLxbbowaFdIZFi5 n9V7PLqm8025G5ts/L0JpqcqTuW9opFXckWQdqTyKKM7g+IJmaj2iFkVXjb49gH5 Qb190+ts/ssgNTYv7rkfXV1qNpKpdmAywGus0NCauw/ByPRmHKetlpDhm70DQmxg dbm+Aw== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org