$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa File: 346A2B4045AE11ECB857890EC4F9AE02.roa (raw, json) Hash identifier: y6Yo94bVO58GlNbuqBWAfuC5sCH6iiyxweKo6sloNrk= Subject key identifier: 2E:7C:49:99:A1:65:77:38:3A:0B:59:D8:39:BC:47:DA:4B:68:74:F0 Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 041D Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa Signing time: Fri 25 Oct 2024 00:43:55 +0000 ROA not before: Fri 25 Oct 2024 00:43:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132491 IP address blocks: 103.73.84.0/23 maxlen: 24 103.73.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Oct 25 00:43:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671ae9cb-4053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:d2:4a:bc:0e:60:30:d8:c2:47:cd:41:4e:42: 49:73:8f:44:8d:f1:39:38:f1:77:4c:85:71:e8:1c: b5:bc:e1:ce:fd:bb:ac:94:58:6c:a0:d6:93:1e:6b: 97:36:bd:0e:05:61:4a:32:79:87:3d:ba:dd:07:c7: f7:2c:77:64:2e:e1:cf:71:b2:c6:55:4c:13:86:7a: 66:cc:6f:07:44:96:3d:44:a2:fc:ee:98:e0:b9:63: 53:de:c4:83:6f:61:c3:3d:ab:b0:1d:13:99:85:bf: 43:e4:58:79:24:13:29:2a:d7:42:d1:7c:78:e3:56: d9:cf:53:6c:58:9a:2e:83:80:5b:54:30:57:eb:ab: 6f:ae:d8:64:c0:15:4b:95:e6:a5:78:8c:16:cb:2a: 09:e8:f5:9d:48:62:31:82:3a:6d:e5:31:59:a9:e2: 5f:62:cf:04:6f:9d:5b:0a:98:dc:3c:ce:e1:ef:25: fa:8a:36:36:09:fb:2d:9f:af:3b:3f:05:5c:81:a1: d1:fa:a1:40:7d:e1:2b:ca:8b:bf:51:f9:8a:bb:3c: 22:31:43:a6:fc:aa:dd:75:7d:7e:ed:b2:92:c0:e5: 64:0f:b3:35:cd:67:b4:b5:33:98:f8:b5:a0:91:8a: 08:3b:7b:d8:92:5a:46:ec:2e:2b:5b:e8:57:c8:c7: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:7C:49:99:A1:65:77:38:3A:0B:59:D8:39:BC:47:DA:4B:68:74:F0 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/346A2B4045AE11ECB857890EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.84.0/23 Signature Algorithm: sha256WithRSAEncryption 68:6e:5a:99:d5:35:88:fe:d9:1e:45:9b:c1:06:a4:94:c9:8b: 92:31:29:69:1d:78:89:f1:9f:29:b2:66:b1:1f:19:94:db:0b: 21:cb:80:c6:47:88:93:07:42:79:36:c5:a4:e0:bf:a8:f9:88: 32:b7:f6:cd:d5:29:b8:80:c2:4c:e9:f8:9d:c6:ce:3a:73:f4: 94:ae:3e:ae:f7:87:42:20:26:2d:83:97:ea:57:b2:23:77:6e: a0:e7:91:46:d7:33:65:b9:48:6b:8f:a4:64:a5:77:c9:57:66: 9d:9f:1c:9b:2d:87:dc:9f:ab:56:a2:80:5b:f8:10:da:75:b1: 27:2e:d1:96:0b:66:86:48:b5:54:5a:2a:26:ab:a0:1c:dd:28: c0:cb:fa:d4:00:f0:b8:d5:d4:cd:87:e8:a4:fa:73:e9:cc:0f: aa:7f:e1:86:a1:96:16:ae:d8:3f:24:06:c3:fb:fc:b2:d5:1e: bc:af:dc:ba:2f:ea:f5:c2:cd:04:d9:99:c3:31:eb:6d:f3:1a: 7a:c4:7e:88:e2:61:ca:e7:14:51:49:46:06:fd:a8:fa:46:bb: 37:d2:88:f2:3b:b3:4b:04:ef:9c:21:3c:04:87:21:eb:2f:ac: 8d:0c:19:fa:f1:b0:60:48:2e:1c:91:18:af:f5:ca:d6:7d:ad: 34:a0:03:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjQxMDI1MDA0MzU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZTljYi00MDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8tJKvA5gMNjCR81BTkJJc49EjfE5OPF3TIVx6By1vOHO/buslFhsoNaTHmuX Nr0OBWFKMnmHPbrdB8f3LHdkLuHPcbLGVUwThnpmzG8HRJY9RKL87pjguWNT3sSD b2HDPauwHROZhb9D5Fh5JBMpKtdC0Xx441bZz1NsWJoug4BbVDBX66tvrthkwBVL lealeIwWyyoJ6PWdSGIxgjpt5TFZqeJfYs8Eb51bCpjcPM7h7yX6ijY2Cfstn687 PwVcgaHR+qFAfeEryou/UfmKuzwiMUOm/KrddX1+7bKSwOVkD7M1zWe0tTOY+LWg kYoIO3vYklpG7C4rW+hXyMdhAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC58SZmh ZXc4OgtZ2Dm8R9pLaHTwMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzNTcvQjg0QjEwRUM0NUE4MTFFQzhCMTQwNTU4QzRGOUFFMDIvMzQ2QTJCNDA0 NUFFMTFFQ0I4NTc4OTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSVQwDQYJKoZIhvcNAQELBQADggEBAGhuWpnVNYj+2R5F m8EGpJTJi5IxKWkdeInxnymyZrEfGZTbCyHLgMZHiJMHQnk2xaTgv6j5iDK39s3V KbiAwkzp+J3Gzjpz9JSuPq73h0IgJi2Dl+pXsiN3bqDnkUbXM2W5SGuPpGSld8lX Zp2fHJsth9yfq1aigFv4ENp1sScu0ZYLZoZItVRaKiaroBzdKMDL+tQA8LjV1M2H 6KT6c+nMD6p/4Yahlhau2D8kBsP7/LLVHryv3Lov6vXCzQTZmcMx623zGnrEfoji YcrnFFFJRgb9qPpGuzfSiPI7s0sE75whPASHIesvrI0MGfrxsGBILhyRGK/1ytZ9 rTSgA+k= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:57 2024 by rpki-client on console-fra.rpki-client.org