$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa File: 952AA4424DAF11EC86ED5273C4F9AE02.roa (raw, json) Hash identifier: 70pXo7TPZehC7uJ0XdtVRKfDG1GkFpY/5x3mmDYZSxI= Subject key identifier: 6B:EA:45:7D:B9:2D:24:21:26:0F:A7:2C:33:24:C4:73:F3:08:54:84 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 03F7 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa Signing time: Thu 03 Oct 2024 00:34:26 +0000 ROA not before: Thu 03 Oct 2024 00:34:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 37978 IP address blocks: 103.173.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Oct 3 00:34:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fde692-e7f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:52:ed:0b:c8:07:6c:60:28:e4:c4:7e:4d: cf:5e:f6:ba:17:fb:03:91:e8:e6:1f:b2:b3:14:04: 18:ce:ba:a5:d2:39:d4:6a:43:5c:d4:79:c3:73:9b: 32:7e:c3:41:99:da:b4:55:28:b7:db:12:0d:99:20: 2b:a4:e1:19:78:72:24:b4:57:50:70:06:29:d5:53: 9e:0d:cc:87:f6:c8:87:ea:bb:7d:da:62:4b:fd:3d: c1:15:ed:c0:92:b0:2a:1d:c6:95:f4:a8:a6:bb:8d: c8:8a:1c:83:9e:bd:51:ff:8c:f1:44:32:36:de:1e: 97:37:11:2a:49:da:f8:7b:0a:c5:3b:61:0f:e3:4f: 21:45:55:69:92:a2:43:81:17:d0:40:ef:7c:52:77: c8:80:22:74:77:b0:74:75:f8:c4:19:9c:ff:af:16: 24:50:f7:2d:0b:53:1a:65:b9:47:1c:07:82:35:37: 48:5a:b9:59:19:c8:68:3d:a3:23:6d:98:83:af:3a: 51:2b:27:fd:08:3a:4c:fe:8e:95:65:a1:df:bb:3a: 00:82:d4:b2:82:05:0d:73:50:db:bf:8d:53:dc:3e: d3:40:9a:10:18:b4:b1:dd:98:fe:fc:ca:e8:e0:64: 3d:1a:b8:d8:be:1e:4f:c9:cf:f4:32:d7:b8:15:e8: 4a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:EA:45:7D:B9:2D:24:21:26:0F:A7:2C:33:24:C4:73:F3:08:54:84 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/952AA4424DAF11EC86ED5273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.176.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:97:7b:44:9d:84:b0:8c:d3:41:8b:9f:8d:2f:a4:b5:05:59: 77:70:7a:18:67:0c:28:8a:4d:a1:fe:96:87:68:3f:d1:b1:fa: cf:78:1e:2b:bb:d8:02:ac:0a:e5:b8:47:61:1f:91:1e:ef:fe: cd:9f:cf:f8:c1:e1:ce:e3:0b:3e:96:1b:11:ea:69:3e:97:03: 36:9f:ab:b6:68:d5:3c:3d:4f:4f:a6:cb:d7:a7:c9:64:2b:08: d4:56:fe:f3:d2:74:41:85:ef:1e:f6:fb:b4:52:61:2c:96:f0: a1:3f:6c:1f:66:68:90:8d:0d:7c:5f:5f:b6:6a:0f:92:3b:75: 56:07:98:15:52:0a:71:d2:20:cd:9f:83:e3:06:32:62:25:bf: 71:25:29:60:d9:3d:a2:ce:d1:43:da:ce:60:cd:d8:76:49:b8: d4:47:f4:79:0c:6a:59:f3:9d:3a:a3:f5:5b:6c:4e:7f:ec:7a: 28:f3:0d:f2:ae:47:ac:65:5d:f7:ad:27:1b:54:8c:b9:6e:b2: b4:1c:cd:66:5e:f7:6a:7f:6d:f7:4c:e8:38:a7:d5:a7:3c:34: 1e:b3:cb:f8:e4:2e:7d:c9:7e:20:c6:e3:0b:27:1d:1c:3e:72: 75:fb:a2:6a:dc:96:4c:b3:ce:2c:b0:2a:ef:00:ad:87:b8:9e: b3:c1:98:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjQxMDAzMDAzNDI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkZTY5Mi1lN2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqNS7QvIB2xgKOTEfk3PXva6F/sDkejmH7KzFAQYzrql0jnUakNc1HnDc5sy fsNBmdq0VSi32xINmSArpOEZeHIktFdQcAYp1VOeDcyH9siH6rt92mJL/T3BFe3A krAqHcaV9Kimu43IihyDnr1R/4zxRDI23h6XNxEqSdr4ewrFO2EP408hRVVpkqJD gRfQQO98UnfIgCJ0d7B0dfjEGZz/rxYkUPctC1MaZblHHAeCNTdIWrlZGchoPaMj bZiDrzpRKyf9CDpM/o6VZaHfuzoAgtSyggUNc1Dbv41T3D7TQJoQGLSx3Zj+/Mro 4GQ9GrjYvh5Pyc/0Mte4FehKzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGvqRX25 LSQhJg+nLDMkxHPzCFSEMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNGRkYvODJBRDM3N0E0REFCMTFFQzkyMTRGNTIxQzRGOUFFMDIvOTUyQUE0NDI0 REFGMTFFQzg2RUQ1MjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrbAwDQYJKoZIhvcNAQELBQADggEBAJqXe0SdhLCM00GL n40vpLUFWXdwehhnDCiKTaH+lodoP9Gx+s94Hiu72AKsCuW4R2EfkR7v/s2fz/jB 4c7jCz6WGxHqaT6XAzafq7Zo1Tw9T0+my9enyWQrCNRW/vPSdEGF7x72+7RSYSyW 8KE/bB9maJCNDXxfX7ZqD5I7dVYHmBVSCnHSIM2fg+MGMmIlv3ElKWDZPaLO0UPa zmDN2HZJuNRH9HkMalnznTqj9VtsTn/seijzDfKuR6xlXfetJxtUjLlusrQczWZe 92p/bfdM6Din1ac8NB6zy/jkLn3JfiDG4wsnHRw+cnX7omrclkyzziywKu8ArYe4 nrPBmKo= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org