$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa File: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (raw, json) Hash identifier: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI= Subject key identifier: E6:25:F8:6C:52:26:D6:86:F3:60:84:CB:34:DF:71:74:0B:30:93:83 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 093B Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa Signing time: Tue 22 Oct 2024 20:29:31 +0000 ROA not before: Tue 22 Oct 2024 20:29:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 131340 IP address blocks: 103.74.228.0/24 maxlen: 24 103.74.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Oct 22 20:29:31 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67180b2b-5508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4d:96:ba:c2:06:ba:98:2f:4a:4d:02:f2:44: d4:35:6e:a6:ef:10:6c:a3:fe:2a:a0:3b:3d:28:32: e7:98:57:42:9a:25:83:bb:2b:96:88:c3:a3:0a:79: 85:4c:a9:69:21:ca:89:29:67:98:bb:a8:bc:1b:29: 37:8c:bf:91:ef:25:86:84:eb:f1:34:33:57:b3:ab: bb:25:43:17:fa:fd:64:a2:73:e5:ff:81:e3:c3:a2: 1c:e4:d1:b9:27:fa:28:40:3d:18:ec:21:30:0e:38: fe:fd:08:09:12:61:b2:11:93:01:af:d6:83:fa:a1: 71:1c:cf:c2:13:4e:f1:e5:0b:0e:99:06:00:14:f7: a0:0f:d5:16:30:57:a8:2e:1c:eb:d2:13:a3:52:ff: 8d:d4:ef:c2:cd:e3:3d:c7:3d:5c:79:3f:b9:01:b1: d9:13:19:2d:5f:bb:69:38:cf:45:ea:7f:6e:7c:47: e3:44:2f:2d:9e:38:39:5e:2d:84:56:14:48:2f:b3: a9:88:1a:f7:63:a1:d0:b7:51:58:96:31:d9:03:dc: e4:55:99:83:b8:ec:64:39:93:e6:66:77:e2:81:c3: 1f:2f:4b:30:3b:0b:53:f1:00:07:ca:4e:dd:8e:08: 8d:8a:03:4f:69:83:2a:58:eb:19:a2:8d:5f:f8:fe: c0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:25:F8:6C:52:26:D6:86:F3:60:84:CB:34:DF:71:74:0B:30:93:83 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.228.0/24 103.74.231.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:c8:dc:95:e0:f4:67:7d:7b:db:95:ee:64:a4:25:9d:1a:d9: cb:a1:2b:5a:83:08:07:1d:2e:38:f6:fe:b7:0f:65:e6:87:a7: 23:f8:97:7e:79:40:dc:c5:14:06:82:2d:6c:cb:e2:8a:0f:cb: 7f:f8:77:32:72:90:8e:55:9d:17:f4:1a:73:56:9d:a9:05:bd: fa:87:1f:26:33:31:e4:e9:29:cd:a5:bf:15:f8:51:df:7d:fa: 48:d5:e2:2f:60:eb:da:94:ce:80:11:fd:23:74:c4:1e:18:bc: 03:66:99:c5:a0:2f:11:08:d0:8e:b0:51:dc:f4:76:50:3e:b5: 11:f8:8f:4a:dd:74:42:e1:67:57:02:dc:6a:e5:55:1d:27:04: 94:ae:e3:5b:d2:e5:ed:78:f2:8a:fd:07:e9:b9:03:3c:23:5e: e5:a1:f0:a2:13:b8:16:c5:7c:75:e0:ba:74:22:c9:5b:c8:07: b5:39:a8:9c:e1:f6:13:07:cf:19:26:f6:40:ed:93:af:3e:96: ee:d6:18:31:ba:46:4f:4e:57:19:94:57:2c:c9:19:73:c6:9b: 24:fd:06:9d:c6:18:f2:7b:2d:6d:8f:6c:90:10:00:86:77:ea: 4b:c7:71:00:07:e5:ea:5e:4f:c3:cd:f0:27:5e:43:13:3b:af: c0:21:59:a2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjQxMDIyMjAyOTMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MGIyYi01NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE2WusIGupgvSk0C8kTUNW6m7xBso/4qoDs9KDLnmFdCmiWDuyuWiMOjCnmF TKlpIcqJKWeYu6i8Gyk3jL+R7yWGhOvxNDNXs6u7JUMX+v1konPl/4Hjw6Ic5NG5 J/ooQD0Y7CEwDjj+/QgJEmGyEZMBr9aD+qFxHM/CE07x5QsOmQYAFPegD9UWMFeo Lhzr0hOjUv+N1O/CzeM9xz1ceT+5AbHZExktX7tpOM9F6n9ufEfjRC8tnjg5Xi2E VhRIL7OpiBr3Y6HQt1FYljHZA9zkVZmDuOxkOZPmZnfigcMfL0swOwtT8QAHyk7d jgiNigNPaYMqWOsZoo1f+P7AXQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOYl+GxS JtaG82CEyzTfcXQLMJODMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIzQjMvRTY0NjVBMTA4RTk4MTFFQUFCNThCRDNBQzRGOUFFMDIvMjEwOURGRjJF RkJCMTFFQzk1QTFGRDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnSuQDBABnSucwDQYJKoZIhvcNAQELBQADggEBAB3I3JXg 9Gd9e9uV7mSkJZ0a2cuhK1qDCAcdLjj2/rcPZeaHpyP4l355QNzFFAaCLWzL4ooP y3/4dzJykI5VnRf0GnNWnakFvfqHHyYzMeTpKc2lvxX4Ud99+kjV4i9g69qUzoAR /SN0xB4YvANmmcWgLxEI0I6wUdz0dlA+tRH4j0rddELhZ1cC3GrlVR0nBJSu41vS 5e148or9B+m5AzwjXuWh8KITuBbFfHXgunQiyVvIB7U5qJzh9hMHzxkm9kDtk68+ lu7WGDG6Rk9OVxmUVyzJGXPGmyT9Bp3GGPJ7LW2PbJAQAIZ36kvHcQAH5epeT8PN 8CdeQxM7r8AhWaI= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org