$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa File: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (raw, json) Hash identifier: AqGZytLz79ZmCSne/bhw4dD+/PQ46qKOd6q10ehPEX0= Subject key identifier: 4D:B4:98:14:B4:BD:35:2C:33:63:44:93:0A:8E:11:A2:4D:F1:C0:D4 Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: 42 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa Signing time: Thu 17 Oct 2024 06:10:40 +0000 ROA not before: Thu 17 Oct 2024 06:10:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136980 IP address blocks: 103.101.42.0/24 maxlen: 24 2001:df2:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Oct 17 06:10:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6710aa5f-2dd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8a:3f:2d:22:ff:46:81:04:cb:b3:d5:1b:32: a4:5f:d1:db:fc:2a:e5:0e:c5:b6:ed:40:25:cb:c6: 99:e3:7c:58:cc:a0:be:cb:47:dc:ec:71:ec:9e:69: 86:85:01:2a:54:bd:d5:72:09:b8:f0:6f:ad:d5:63: a0:7a:86:0e:55:0c:6e:fe:ff:5a:e2:9d:82:37:9c: ae:ad:fb:05:6f:be:18:55:68:a3:fe:e6:dd:1a:8b: 6b:bd:d5:3e:aa:4e:38:45:c6:41:00:f4:d7:ff:13: 47:b3:00:82:2a:73:aa:16:90:a3:13:74:b4:c7:60: f1:47:09:9f:d2:20:b0:0c:70:de:80:c2:84:f7:7d: bc:0f:0e:86:53:20:a0:ae:76:1b:7d:8e:f8:3f:c0: ff:96:57:2a:79:6f:dd:be:0d:0e:11:7f:96:a6:0c: 3f:e2:74:78:02:a0:7b:c8:8d:b4:79:c7:2f:43:62: 03:e4:bd:47:17:5e:bb:67:17:bd:e4:8d:bf:0e:4d: 11:54:ea:00:65:f0:36:42:b7:d2:6d:5a:a1:e4:2a: 86:b3:38:06:0d:b0:6d:d9:51:02:54:44:32:63:c6: 5c:f5:43:85:a1:ff:5d:99:54:f1:f0:1f:a3:3e:a3: 51:59:c9:d8:3f:8b:a4:72:da:d4:5b:88:54:bc:25: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B4:98:14:B4:BD:35:2C:33:63:44:93:0A:8E:11:A2:4D:F1:C0:D4 X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.42.0/24 IPv6: 2001:df2:8f00::/48 Signature Algorithm: sha256WithRSAEncryption b0:85:7f:20:6b:7c:5c:cf:b5:b1:8d:36:58:ca:23:19:f7:c4: b0:91:76:ae:ca:9c:0f:74:ee:a5:ff:44:5f:11:a8:84:32:5e: 7b:8a:28:37:0d:95:38:89:17:cf:94:19:7e:b8:3b:21:48:f6: 5a:40:e3:80:d5:b7:ac:66:44:66:bd:58:77:da:8c:1b:9e:e5: 72:54:5e:04:9b:79:b9:f7:e0:e9:2b:c2:05:49:df:5f:b4:3b: 3f:3e:97:35:1c:85:e7:5f:0e:ba:8d:4b:d9:ef:11:1d:b5:e0: a6:df:a9:d2:c4:02:ce:fa:3b:85:22:25:ba:80:7c:69:21:55: 50:0f:66:cd:a5:79:e9:14:9e:78:ec:c6:12:f7:01:2f:25:f8: be:ad:3f:33:70:a8:de:2c:ba:46:c5:dd:37:14:95:14:65:2e: 37:e0:5a:96:27:bb:05:fa:7a:9d:b2:d9:23:63:59:30:e0:9f: c7:c1:4c:ca:96:e9:83:f5:69:2e:29:9b:8f:98:53:e8:6b:23: da:11:6d:71:fb:a5:6e:2d:eb:8a:40:ca:bc:99:4e:9e:89:af: f7:8c:1c:1f:af:6d:03:8c:fe:b0:26:c6:e5:8c:51:61:ee:b0: c5:07:b5:52:57:b9:1f:9c:cc:44:58:d9:d4:0f:47:83:6d:14: ce:d4:bb:91 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVCQTExMC8GA1UEBRMoMTU2RDRBOUM2RjE1RUIyQjRCM0YzNjdENjlGQUEyNTEw MTI4MDc4ODAeFw0yNDEwMTcwNjEwNDBaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTBhYTVmLTJkZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+ij8tIv9GgQTLs9UbMqRf0dv8KuUOxbbtQCXLxpnjfFjMoL7LR9zsceyeaYaF ASpUvdVyCbjwb63VY6B6hg5VDG7+/1rinYI3nK6t+wVvvhhVaKP+5t0ai2u91T6q TjhFxkEA9Nf/E0ezAIIqc6oWkKMTdLTHYPFHCZ/SILAMcN6AwoT3fbwPDoZTIKCu dht9jvg/wP+WVyp5b92+DQ4Rf5amDD/idHgCoHvIjbR5xy9DYgPkvUcXXrtnF73k jb8OTRFU6gBl8DZCt9JtWqHkKoazOAYNsG3ZUQJURDJjxlz1Q4Wh/12ZVPHwH6M+ o1FZydg/i6Ry2tRbiFS8JcWlAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUTbSYFLS9 NSwzY0STCo4Rok3xwNQwHwYDVR0jBBgwFoAUFW1KnG8V6ytLPzZ9afqiUQEoB4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUJBLzcyRTU0Q0ZFMkM1 MzExRUY5MUJGN0MzMEM0RjlBRTAyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlcxS25HOFY2eXRMUHpaOWFmcWlVUUVvQjRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi84MEYzMkU3QzJD NTUxMUVGODNFQ0M1MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGdlKjAPBAIAAjAJAwcAIAEN8o8AMA0GCSqGSIb3DQEBCwUA A4IBAQCwhX8ga3xcz7WxjTZYyiMZ98SwkXauypwPdO6l/0RfEaiEMl57iig3DZU4 iRfPlBl+uDshSPZaQOOA1besZkRmvVh32owbnuVyVF4Em3m59+DpK8IFSd9ftDs/ Ppc1HIXnXw66jUvZ7xEdteCm36nSxALO+juFIiW6gHxpIVVQD2bNpXnpFJ547MYS 9wEvJfi+rT8zcKjeLLpGxd03FJUUZS434FqWJ7sF+nqdstkjY1kw4J/HwUzKlumD 9WkuKZuPmFPoayPaEW1x+6VuLeuKQMq8mU6eia/3jBwfr20DjP6wJsbljFFh7rDF B7VSV7kfnMxEWNnUD0eDbRTO1LuR -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org