$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa File: AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa (raw, json) Hash identifier: sVe/dlsdpYGwjAAFXOmmuTaA1ya2H4hHFG6dxtS3qXc= Subject key identifier: 34:A4:17:1A:8C:04:67:ED:3E:D4:D8:64:74:3D:83:B2:CC:C6:07:AC Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: BE Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa Signing time: Wed 03 Jul 2024 06:07:33 +0000 ROA not before: Wed 03 Jul 2024 06:07:33 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.112.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Jul 3 06:07:33 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684eaa5-c90f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f2:f2:8b:43:f5:71:40:c7:eb:ee:c4:b3:2d: 10:e6:89:d7:3b:c0:b5:2b:13:53:db:ca:d1:d5:20: 6c:44:b8:34:62:ee:c2:82:37:fe:8c:17:ea:8a:75: fb:f6:bb:da:33:a6:25:47:b8:2b:6e:e6:7f:2d:61: 85:2f:bd:47:3f:0a:cd:2b:0f:5b:4c:49:16:1d:38: e4:b9:69:56:18:76:90:e1:72:27:e0:3d:ff:d2:31: 45:cb:3a:70:65:2f:66:8a:3b:48:a7:33:c4:18:ae: 22:59:45:86:95:30:8c:a0:b2:13:e9:15:a3:24:29: c3:29:59:ae:14:ed:33:d9:cc:c2:da:b1:c6:54:e3: b4:d0:62:cf:e0:85:3b:93:a1:45:69:7d:cb:c4:9f: 2b:43:66:22:4f:59:f6:ee:a4:18:67:65:0a:11:0d: 5d:2d:d6:c5:14:6d:27:a1:70:93:f5:34:68:d4:d3: b2:36:93:53:b6:d9:5d:28:65:a2:c4:0b:43:9f:68: d5:ff:bf:8c:35:cb:ad:23:13:c2:83:fe:5f:7c:ac: ab:e4:31:4e:e7:14:ad:e6:00:b5:4b:cb:2f:9e:bb: 11:5e:bd:6f:6d:d2:22:9a:12:05:f4:a3:bd:6b:1a: 8f:fc:cb:eb:7d:93:14:10:9d:42:34:39:2b:9e:4d: 85:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A4:17:1A:8C:04:67:ED:3E:D4:D8:64:74:3D:83:B2:CC:C6:07:AC X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/AFDF1A1AEC6E11EEB7FC060BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.96.0/22 Signature Algorithm: sha256WithRSAEncryption b1:15:67:24:2d:5e:bb:94:b2:8b:d7:b1:93:54:4b:80:0b:56: f3:a6:15:03:41:2f:28:21:b9:cd:41:50:9d:fb:97:a6:77:f3: 78:49:ac:06:9c:8f:83:26:6c:67:ba:7a:c1:81:53:65:01:7d: aa:9e:a5:a9:9b:f7:17:90:e9:2a:66:51:17:41:99:0c:d3:0f: 36:8b:fb:c3:44:3f:f9:92:6d:7e:0f:b5:39:44:70:ac:b4:73: 36:0e:88:25:5c:82:03:a6:c1:72:e2:d5:b5:aa:19:c0:4b:30: 03:4e:6d:ed:b5:9b:00:db:1c:35:50:9f:8a:a9:68:ba:0d:c8: 19:e4:c1:e5:df:d3:60:be:4a:17:3a:e9:cd:ec:ac:ce:e3:e5: 37:71:c7:15:6f:86:16:c0:da:13:c3:59:e2:e4:72:76:cc:59: 5a:89:bf:01:9c:b4:3b:ec:f8:2f:0e:1d:00:ac:b5:d4:e4:c7: 81:2a:07:8a:58:b2:75:de:cf:96:92:85:c1:91:d1:29:fd:f2: 7a:d4:36:03:52:d5:f9:f5:48:95:b1:a5:bb:28:0c:f7:28:35: d1:7b:a9:03:4c:d8:b7:d9:d5:23:89:93:9a:0f:d7:68:6e:79: 4d:62:ae:6f:35:01:59:b1:2f:c3:6c:12:63:30:95:73:f6:ab: 59:f9:35:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjQwNzAzMDYwNzMzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0ZWFhNS1jOTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvLyi0P1cUDH6+7Esy0Q5onXO8C1KxNT28rR1SBsRLg0Yu7Cgjf+jBfqinX7 9rvaM6YlR7grbuZ/LWGFL71HPwrNKw9bTEkWHTjkuWlWGHaQ4XIn4D3/0jFFyzpw ZS9mijtIpzPEGK4iWUWGlTCMoLIT6RWjJCnDKVmuFO0z2czC2rHGVOO00GLP4IU7 k6FFaX3LxJ8rQ2YiT1n27qQYZ2UKEQ1dLdbFFG0noXCT9TRo1NOyNpNTttldKGWi xAtDn2jV/7+MNcutIxPCg/5ffKyr5DFO5xSt5gC1S8svnrsRXr1vbdIimhIF9KO9 axqP/MvrfZMUEJ1CNDkrnk2FnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDSkFxqM BGftPtTYZHQ9g7LMxgesMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdCOTQvQ0M3NDFCQjYzNzcwMTFFRThEQzhCQjM0QzRGOUFFMDIvQUZERjFBMUFF QzZFMTFFRUI3RkMwNjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncGAwDQYJKoZIhvcNAQELBQADggEBALEVZyQtXruUsovX sZNUS4ALVvOmFQNBLyghuc1BUJ37l6Z383hJrAacj4MmbGe6esGBU2UBfaqepamb 9xeQ6SpmURdBmQzTDzaL+8NEP/mSbX4PtTlEcKy0czYOiCVcggOmwXLi1bWqGcBL MANObe21mwDbHDVQn4qpaLoNyBnkweXf02C+Shc66c3srM7j5TdxxxVvhhbA2hPD WeLkcnbMWVqJvwGctDvs+C8OHQCstdTkx4EqB4pYsnXez5aShcGR0Sn98nrUNgNS 1fn1SJWxpbsoDPcoNdF7qQNM2LfZ1SOJk5oP12hueU1irm81AVmxL8NsEmMwlXP2 q1n5NUM= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:36 2024 by rpki-client on console-fra.rpki-client.org