$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa File: 967D5ED65E0811EFBBB08B84C4F9AE02.roa (raw, json) Hash identifier: 65emtGP444b1qvMlJ/6ZeHwoiVjMLTrUl6M4vjWE+AI= Subject key identifier: 3F:B3:71:28:5B:9D:31:5E:4F:F2:20:A2:AD:2A:64:26:B2:C8:96:22 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4532 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:46 +0000 ROA not before: Thu 05 Sep 2024 03:31:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131363 IP address blocks: 103.9.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17714 (0x4532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92622-b752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:36:25:13:95:d1:89:c4:d4:19:29:db:7e:51: e3:31:d3:e0:6a:51:a1:22:00:31:f8:61:ed:24:0f: 56:bc:76:85:95:e2:4a:13:5b:0a:a1:0c:d4:ca:0d: 85:60:13:fe:81:41:ba:ff:3f:36:76:da:d7:ad:90: ff:21:8e:61:93:6e:9f:1f:28:77:30:d6:81:0f:3a: 21:fe:43:c8:da:64:3f:59:d7:21:15:51:5b:64:c8: b3:43:dc:1a:30:43:12:7e:50:d1:df:81:2d:7f:a5: 10:68:26:7b:4a:d9:7d:ac:83:50:dc:24:cc:f7:49: 88:31:78:3a:3e:92:87:dd:d5:05:14:cb:ce:fb:29: 35:c8:f4:ff:7c:da:6c:6d:54:3f:50:ad:59:af:d9: 67:26:ce:a9:85:35:c6:40:6a:b9:1b:65:92:00:48: 4e:e8:8a:95:02:e2:3c:6f:ec:18:05:ca:73:ef:05: fa:fd:a5:a5:95:b6:80:01:77:45:e5:25:6c:e4:5b: 03:85:48:de:62:b9:fd:73:aa:e7:00:b3:a0:be:6a: d2:af:33:8a:da:ca:25:03:cc:e1:15:d1:73:47:96: df:f2:1f:ad:8b:27:26:d0:6a:dc:df:6b:5d:75:69: ec:0f:a5:d2:52:78:8d:81:75:26:01:d2:dd:fa:5b: e9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:B3:71:28:5B:9D:31:5E:4F:F2:20:A2:AD:2A:64:26:B2:C8:96:22 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/967D5ED65E0811EFBBB08B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.200.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:1b:40:56:27:51:69:3a:28:f8:8b:c9:c6:bc:f8:6f:fa:73: 0c:2e:39:7e:cd:a2:76:55:cb:c8:56:c4:b2:18:10:11:8b:db: 4c:dc:dd:ea:0e:b0:24:b9:b4:66:06:ff:cd:4c:72:2e:1a:ab: 60:7b:a4:fb:54:c8:b2:97:f6:b1:4b:63:bb:4c:47:c9:a0:55: de:65:98:f0:ac:a1:09:33:00:fd:96:52:91:b0:fa:53:b1:ae: b8:03:a0:88:74:c9:d1:4a:9c:a4:1a:f7:b0:5c:fc:63:c7:dd: eb:5d:d1:03:37:3f:f9:af:68:6a:0a:3b:c9:12:25:4e:3c:f0: 09:07:74:71:d7:de:4d:02:e8:33:c6:98:10:08:9c:2d:99:9d: 2b:a3:7e:d3:7d:12:18:85:5d:75:1a:07:50:5d:67:54:e7:38: 96:2d:52:4e:76:c6:cc:5c:77:a7:d5:04:95:85:08:b1:e0:b4: 08:ca:07:fd:2f:02:0d:82:d8:ce:f0:b9:b8:76:f1:d1:87:cb: ae:fa:84:34:60:75:c0:26:5d:e5:6f:80:05:31:46:0c:85:19: 51:02:7e:79:8e:d8:bc:f8:a3:ae:63:fa:85:56:30:4f:c2:1b: 9e:3e:cc:15:c9:ed:4c:c9:1a:1a:17:c9:9f:48:13:1d:53:9c: 57:65:73:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyMi1iNzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDYlE5XRicTUGSnbflHjMdPgalGhIgAx+GHtJA9WvHaFleJKE1sKoQzUyg2F YBP+gUG6/z82dtrXrZD/IY5hk26fHyh3MNaBDzoh/kPI2mQ/WdchFVFbZMizQ9wa MEMSflDR34Etf6UQaCZ7Stl9rINQ3CTM90mIMXg6PpKH3dUFFMvO+yk1yPT/fNps bVQ/UK1Zr9lnJs6phTXGQGq5G2WSAEhO6IqVAuI8b+wYBcpz7wX6/aWllbaAAXdF 5SVs5FsDhUjeYrn9c6rnALOgvmrSrzOK2solA8zhFdFzR5bf8h+tiycm0Grc32td dWnsD6XSUniNgXUmAdLd+lvpLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+zcShb nTFeT/Igoq0qZCayyJYiMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTY3RDVFRDY1 RTA4MTFFRkJCQjA4Qjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnCcgwDQYJKoZIhvcNAQELBQADggEBAAobQFYnUWk6KPiL yca8+G/6cwwuOX7NonZVy8hWxLIYEBGL20zc3eoOsCS5tGYG/81Mci4aq2B7pPtU yLKX9rFLY7tMR8mgVd5lmPCsoQkzAP2WUpGw+lOxrrgDoIh0ydFKnKQa97Bc/GPH 3etd0QM3P/mvaGoKO8kSJU488AkHdHHX3k0C6DPGmBAInC2ZnSujftN9EhiFXXUa B1BdZ1TnOJYtUk52xsxcd6fVBJWFCLHgtAjKB/0vAg2C2M7wubh28dGHy676hDRg dcAmXeVvgAUxRgyFGVECfnmO2Lz4o65j+oVWME/CG54+zBXJ7UzJGhoXyZ9IEx1T nFdlc3E= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org