$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/865F2F80EE8911EBB390AC76C4F9AE02.roa File: 865F2F80EE8911EBB390AC76C4F9AE02.roa (raw, json) Hash identifier: 0ULrTT5sEmnlV5jXg9GCbo9G2IRIBRTqvgY01zsRTW8= Subject key identifier: 05:0A:90:BF:DE:18:59:19:52:51:53:35:85:E6:AD:46:92:10:1A:87 Certificate issuer: /CN=A91AD643/serialNumber=39D7468CF80C5055E9D04C9B4FAD31175C14D65F Certificate serial: 064A Authority key identifier: 39:D7:46:8C:F8:0C:50:55:E9:D0:4C:9B:4F:AD:31:17:5C:14:D6:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OddGjPgMUFXp0EybT60xF1wU1l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/865F2F80EE8911EBB390AC76C4F9AE02.roa Signing time: Sat 31 Aug 2024 00:01:48 +0000 ROA not before: Sat 31 Aug 2024 00:01:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45620 IP address blocks: 103.226.64.0/22 maxlen: 24 202.52.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/OddGjPgMUFXp0EybT60xF1wU1l8.crl rsync://rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/OddGjPgMUFXp0EybT60xF1wU1l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OddGjPgMUFXp0EybT60xF1wU1l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD643/serialNumber=39D7468CF80C5055E9D04C9B4FAD31175C14D65F Validity Not Before: Aug 31 00:01:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d25d6c-f86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9b:d3:d3:b0:ab:00:99:66:7f:dd:13:4a:4e: a5:b6:e5:01:5c:98:49:e3:bb:e3:20:14:c8:23:a9: 0e:c8:c2:1a:b9:6f:3f:fb:05:d3:36:29:86:8c:d5: 59:50:16:2e:8f:f5:5c:50:34:90:42:b3:9d:a6:97: 3d:9d:51:2f:ff:38:8a:13:fa:d6:96:f6:9f:01:93: 44:4d:f3:2c:88:59:ac:f5:af:9d:4a:b2:c6:ae:d5: eb:5d:93:47:8d:fe:e3:e7:e3:24:b2:ee:67:26:5d: f1:06:3b:49:a4:cd:a0:f8:7f:59:99:1b:7f:6d:fa: ac:c3:59:9f:1b:ef:0a:b8:fa:01:b2:02:c9:e4:0d: 81:b2:5c:7b:c3:b9:bb:55:c3:70:21:a1:d3:39:09: dd:a8:0e:9d:04:37:24:40:7d:fc:e7:fd:37:95:64: 2d:94:53:f6:8f:3c:2d:d4:f6:17:81:5c:21:57:9e: a3:fc:92:3c:48:a5:8d:08:48:0f:70:e8:4c:83:c4: 70:c1:35:23:81:07:2f:5a:20:7d:eb:dd:b9:63:61: 91:65:7c:15:65:3c:d9:d7:75:09:1b:f6:e5:2c:fc: b3:dc:6b:65:38:f4:8b:12:c4:5b:67:c0:32:a4:1e: 0a:5c:1d:2b:6a:10:03:bf:a8:8f:8e:8a:05:21:2b: 9c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0A:90:BF:DE:18:59:19:52:51:53:35:85:E6:AD:46:92:10:1A:87 X509v3 Authority Key Identifier: keyid:39:D7:46:8C:F8:0C:50:55:E9:D0:4C:9B:4F:AD:31:17:5C:14:D6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/OddGjPgMUFXp0EybT60xF1wU1l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OddGjPgMUFXp0EybT60xF1wU1l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD643/EFBE6EB25B8811EBBD5F3076C4F9AE02/865F2F80EE8911EBB390AC76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.64.0/22 202.52.155.0/24 Signature Algorithm: sha256WithRSAEncryption 35:64:32:37:8c:5b:d4:6d:3c:d5:76:db:fd:c4:b8:48:99:a3: cc:8b:a1:06:5e:ed:64:f6:87:c5:34:ef:23:b8:ae:2b:e4:17: 6d:b1:9c:41:7e:50:97:b9:c9:6b:85:48:02:87:fa:bb:bb:ce: ba:dc:7a:63:20:8c:0e:2c:51:83:67:0b:e1:37:48:02:90:ce: 78:e1:8d:8c:e8:05:71:4f:c3:99:3c:40:3d:18:e8:44:2e:27: 93:76:b5:13:ac:ce:df:dd:62:e5:56:5e:7c:08:74:a0:16:d0: cd:2d:62:dc:2f:ba:5b:46:c0:b2:95:d8:e9:88:3e:5e:70:9d: 21:f4:80:99:51:06:fd:0a:44:3e:bc:75:26:10:ba:20:ba:17: a3:d6:21:03:a7:31:fe:a0:7d:b6:ea:17:c7:ad:f6:bf:cf:ed: ad:cb:8b:ba:57:21:3e:2e:20:b6:cd:cb:40:a5:87:27:11:61: 4b:c8:35:d1:ca:ab:fb:06:b6:65:bf:4d:d4:74:71:c7:19:df: c7:47:24:c1:38:68:5c:6f:9a:58:2b:4b:25:95:83:04:b7:c3: 6c:85:58:5d:ed:41:b8:4c:26:7b:0d:70:06:39:7f:08:b5:9c: 69:17:c3:c0:f1:27:b3:2e:bc:c9:9a:57:a4:5f:be:0a:19:88: 3a:0a:8b:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQ2NDMxMTAvBgNVBAUTKDM5RDc0NjhDRjgwQzUwNTVFOUQwNEM5QjRGQUQzMTE3 NUMxNEQ2NUYwHhcNMjQwODMxMDAwMTQ4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNWQ2Yy1mODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJvT07CrAJlmf90TSk6ltuUBXJhJ47vjIBTII6kOyMIauW8/+wXTNimGjNVZ UBYuj/VcUDSQQrOdppc9nVEv/ziKE/rWlvafAZNETfMsiFms9a+dSrLGrtXrXZNH jf7j5+Mksu5nJl3xBjtJpM2g+H9ZmRt/bfqsw1mfG+8KuPoBsgLJ5A2Bslx7w7m7 VcNwIaHTOQndqA6dBDckQH385/03lWQtlFP2jzwt1PYXgVwhV56j/JI8SKWNCEgP cOhMg8RwwTUjgQcvWiB96925Y2GRZXwVZTzZ13UJG/blLPyz3GtlOPSLEsRbZ8Ay pB4KXB0rahADv6iPjooFISucZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAUKkL/e GFkZUlFTNYXmrUaSEBqHMB8GA1UdIwQYMBaAFDnXRoz4DFBV6dBMm0+tMRdcFNZf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDY0My9FRkJFNkVCMjVC ODgxMUVCQkQ1RjMwNzZDNEY5QUUwMi9PZGRHalBnTVVGWHAwRXliVDYweEYxd1Ux bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kZEdqUGdNVUZYcDBFeWJUNjB4RjF3VTFsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUQ2NDMvRUZCRTZFQjI1Qjg4MTFFQkJENUYzMDc2QzRGOUFFMDIvODY1RjJGODBF RTg5MTFFQkIzOTBBQzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn4kADBADKNJswDQYJKoZIhvcNAQELBQADggEBADVkMjeM W9RtPNV22/3EuEiZo8yLoQZe7WT2h8U07yO4rivkF22xnEF+UJe5yWuFSAKH+ru7 zrrcemMgjA4sUYNnC+E3SAKQznjhjYzoBXFPw5k8QD0Y6EQuJ5N2tROszt/dYuVW XnwIdKAW0M0tYtwvultGwLKV2OmIPl5wnSH0gJlRBv0KRD68dSYQuiC6F6PWIQOn Mf6gfbbqF8et9r/P7a3Li7pXIT4uILbNy0ClhycRYUvINdHKq/sGtmW/TdR0cccZ 38dHJME4aFxvmlgrSyWVgwS3w2yFWF3tQbhMJnsNcAY5fwi1nGkXw8DxJ7MuvMma V6RfvgoZiDoKiwY= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:32 2024 by rpki-client on console-fra.rpki-client.org