$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa File: 80F32E7C2C5511EF83ECC535C4F9AE02.roa (raw, json) Hash identifier: RR1qcCzhqZZueAB6z0MEcO43o3VFIzEo4W3o/o/hAbQ= Subject key identifier: EE:24:53:03:E4:7A:A1:85:A2:24:37:1A:EA:CA:24:DA:7F:EE:3C:1E Certificate issuer: /CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Certificate serial: 02 Authority key identifier: 15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa Signing time: Mon 17 Jun 2024 02:58:42 +0000 ROA not before: Mon 17 Jun 2024 02:58:42 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136980 IP address blocks: 103.101.42.0/24 maxlen: 24 2001:df2:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EBA/serialNumber=156D4A9C6F15EB2B4B3F367D69FAA25101280788 Validity Not Before: Jun 17 02:58:42 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=666fa662-1cee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:43:fb:e9:70:f0:36:6f:2c:5e:d2:5b:56:bc: 87:07:15:53:7f:5d:82:55:8d:f0:86:6f:0b:83:9a: 28:b8:62:f4:0d:b7:51:b8:04:4e:eb:e4:3f:3b:38: b2:38:27:f1:34:d9:31:cb:c6:a4:56:a4:ec:c7:e2: 77:b0:47:dd:b5:81:e6:23:f3:2f:ab:63:48:3a:d0: 25:ee:5d:e5:58:0d:05:72:4e:cd:b5:cf:ae:e2:10: b3:49:3f:fc:f5:f5:aa:93:63:34:c7:a9:97:c6:f5: 91:85:8b:e7:a0:29:e9:d2:5a:3d:e8:38:18:51:43: aa:d5:ce:7e:74:d4:ed:0f:f4:93:13:27:b1:87:60: 74:02:b0:b2:b7:24:27:0f:25:d5:3c:bd:c9:f6:b8: 67:c8:c8:ec:01:93:77:6a:75:6d:e1:01:61:7b:2a: cd:c9:7e:54:95:f3:b3:e1:19:73:b2:ca:f4:22:16: b5:5d:70:1e:8d:d5:c4:b0:4d:d8:12:e7:ca:1e:02: 5e:ce:94:4e:4b:37:27:68:19:08:f7:e5:14:cb:71: ff:42:72:7f:66:43:c5:42:a9:f7:a2:6b:14:4c:e4: dd:92:fc:cf:cd:1f:67:7e:3e:67:c7:bb:7e:bf:a4: 36:e9:b9:4e:66:26:3c:7e:4f:2d:13:63:3d:8c:67: 19:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:24:53:03:E4:7A:A1:85:A2:24:37:1A:EA:CA:24:DA:7F:EE:3C:1E X509v3 Authority Key Identifier: keyid:15:6D:4A:9C:6F:15:EB:2B:4B:3F:36:7D:69:FA:A2:51:01:28:07:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/FW1KnG8V6ytLPzZ9afqiUQEoB4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FW1KnG8V6ytLPzZ9afqiUQEoB4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EBA/72E54CFE2C5311EF91BF7C30C4F9AE02/80F32E7C2C5511EF83ECC535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.42.0/24 IPv6: 2001:df2:8f00::/48 Signature Algorithm: sha256WithRSAEncryption b2:8d:03:39:f1:7d:21:57:e7:96:9d:ec:04:b5:a9:c7:cc:bb: d4:a4:e2:5f:30:7c:3e:8e:29:94:22:0b:f2:c6:dc:97:77:b6: ec:5a:2a:85:1a:15:ec:37:7e:fb:59:3e:8b:42:5f:9f:b1:bc: 6e:6b:3e:0e:5b:92:5e:ce:03:37:f8:a8:35:ee:19:14:64:61: 16:de:e4:76:d5:6d:c3:d1:f9:e9:c9:2e:a8:00:04:5a:c8:78: 97:7f:0f:62:9c:ef:ef:af:3f:7b:cd:f6:77:0d:7a:7e:95:2d: bc:90:a1:59:02:09:79:05:da:c6:68:fa:20:b3:e7:c4:5b:ea: 75:b5:a5:48:a9:b3:48:2f:17:77:5b:60:dd:b3:2e:66:35:73: 1f:a9:ee:ad:b7:72:4c:ea:b6:fa:c2:1c:3c:1f:1e:3a:3e:29: 01:e7:30:cc:bd:9e:af:6c:5a:c2:9d:01:65:e8:b7:04:95:26: 1b:c9:3a:4a:2c:d9:24:d6:14:2b:b8:21:c6:7e:68:c6:fb:f5: 23:d8:7c:17:56:e8:36:b7:3c:fd:eb:7a:76:bd:ed:87:39:a5: 05:77:de:f8:19:4b:fe:03:80:98:ea:0d:16:5d:d9:e8:b6:3f: 61:bc:27:64:bc:63:aa:47:0d:b4:c9:e1:f6:f1:81:5e:6a:0c: f6:e9:3b:3d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVCQTExMC8GA1UEBRMoMTU2RDRBOUM2RjE1RUIyQjRCM0YzNjdENjlGQUEyNTEw MTI4MDc4ODAeFw0yNDA2MTcwMjU4NDJaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmZhNjYyLTFjZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrQ/vpcPA2byxe0ltWvIcHFVN/XYJVjfCGbwuDmii4YvQNt1G4BE7r5D87OLI4 J/E02THLxqRWpOzH4newR921geYj8y+rY0g60CXuXeVYDQVyTs21z67iELNJP/z1 9aqTYzTHqZfG9ZGFi+egKenSWj3oOBhRQ6rVzn501O0P9JMTJ7GHYHQCsLK3JCcP JdU8vcn2uGfIyOwBk3dqdW3hAWF7Ks3JflSV87PhGXOyyvQiFrVdcB6N1cSwTdgS 58oeAl7OlE5LNydoGQj35RTLcf9Ccn9mQ8VCqfeiaxRM5N2S/M/NH2d+PmfHu36/ pDbpuU5mJjx+Ty0TYz2MZxmRAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU7iRTA+R6 oYWiJDca6sok2n/uPB4wHwYDVR0jBBgwFoAUFW1KnG8V6ytLPzZ9afqiUQEoB4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUJBLzcyRTU0Q0ZFMkM1 MzExRUY5MUJGN0MzMEM0RjlBRTAyL0ZXMUtuRzhWNnl0TFB6WjlhZnFpVVFFb0I0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlcxS25HOFY2eXRMUHpaOWFmcWlVUUVvQjRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVCQS83MkU1NENGRTJDNTMxMUVGOTFCRjdDMzBDNEY5QUUwMi84MEYzMkU3QzJD NTUxMUVGODNFQ0M1MzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGdlKjAPBAIAAjAJAwcAIAEN8o8AMA0GCSqGSIb3DQEBCwUA A4IBAQCyjQM58X0hV+eWnewEtanHzLvUpOJfMHw+jimUIgvyxtyXd7bsWiqFGhXs N377WT6LQl+fsbxuaz4OW5JezgM3+Kg17hkUZGEW3uR21W3D0fnpyS6oAARayHiX fw9inO/vrz97zfZ3DXp+lS28kKFZAgl5BdrGaPogs+fEW+p1taVIqbNILxd3W2Dd sy5mNXMfqe6tt3JM6rb6whw8Hx46PikB5zDMvZ6vbFrCnQFl6LcElSYbyTpKLNkk 1hQruCHGfmjG+/Uj2HwXVug2tzz963p2ve2HOaUFd974GUv+A4CY6g0WXdnotj9h vCdkvGOqRw20yeH28YFeagz26Ts9 -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:31 2024 by rpki-client on console-fra.rpki-client.org