$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D5BE6FF6D09611ECAE4FA90AC4F9AE02.roa File: D5BE6FF6D09611ECAE4FA90AC4F9AE02.roa (raw, json) Hash identifier: QtJIcs1O/DIjF/Awmfs8kNbcOWbla/g4nCBWN3yn5TE= Subject key identifier: 2B:F3:70:84:70:19:F3:39:22:83:32:F2:28:D5:0D:B7:95:E0:9E:0C Certificate issuer: /CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Certificate serial: 1258 Authority key identifier: 12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D5BE6FF6D09611ECAE4FA90AC4F9AE02.roa Signing time: Tue 24 Sep 2024 17:25:28 +0000 ROA not before: Tue 24 Sep 2024 17:25:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.35.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4696 (0x1258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Validity Not Before: Sep 24 17:25:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f2f607-0b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9d:60:72:fe:5d:35:99:ba:03:b2:bc:1f:32: 1e:9c:53:4c:5b:c6:3e:2a:33:fc:b5:37:59:01:17: ce:9c:d4:b3:1c:ef:50:22:63:50:02:04:57:61:7b: 18:92:1e:2a:25:6a:4f:3c:5a:7b:15:db:b5:b3:f2: 18:d5:1a:00:4d:e8:7f:f0:8c:b4:a0:21:a2:40:4d: 1f:57:6a:43:cc:7b:67:20:94:c6:c6:01:9f:b3:39: 26:cc:f0:eb:49:59:8f:54:f2:16:85:85:7f:bc:de: d4:70:ee:7e:9c:b0:a9:96:6f:04:aa:9c:01:be:c7: dc:04:33:7f:25:6f:25:37:2a:27:8e:da:c1:1b:70: 12:35:71:c3:34:0d:6c:43:a0:ac:59:1d:a9:28:9a: fc:dc:26:d8:b1:ee:af:bf:a8:4a:d7:90:12:24:be: d5:82:80:a4:68:bd:d5:50:cd:45:1b:87:8b:95:ae: 35:97:de:2f:86:c3:10:d6:e7:54:06:06:f2:4b:0a: 84:2f:f6:b1:d8:8c:e5:e4:1c:2d:c9:e7:69:3c:4c: ad:b6:e4:f5:d9:ae:5a:02:18:b5:7d:dd:d3:7c:17: 2c:c6:ea:a3:fe:41:58:21:d5:1b:87:65:ec:e6:e2: b6:7b:ad:85:85:2b:cd:c7:ec:9d:9d:89:77:97:ef: 2c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F3:70:84:70:19:F3:39:22:83:32:F2:28:D5:0D:B7:95:E0:9E:0C X509v3 Authority Key Identifier: keyid:12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D5BE6FF6D09611ECAE4FA90AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.251.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:b1:c5:c4:85:ab:74:29:18:36:b0:99:ad:a1:52:b2:3c:02: 4d:a1:67:2f:78:9b:1d:ae:17:0e:f5:71:b1:d3:22:6d:48:95: 05:f9:e7:8e:d8:a5:60:14:9d:2e:32:52:f2:c7:d0:e8:51:25: 98:33:dc:ad:d2:28:a1:1c:d6:2c:1d:39:87:b9:6d:7f:bc:8b: c8:c4:ad:f7:3e:58:74:8f:b2:d3:8b:d1:45:be:81:ce:c3:2d: 38:3d:5f:4d:d9:4f:4d:a4:8a:86:1d:97:22:d1:85:94:4e:93: 41:2b:ac:aa:1d:05:9b:51:27:cf:cd:a0:85:66:69:eb:53:2c: 99:f9:b3:72:89:d0:06:da:70:8d:c7:24:07:5f:34:48:5a:7a: 16:70:2e:d0:ad:9b:83:db:71:96:b0:67:37:97:55:1e:6c:1e: 12:26:ff:b5:e1:ff:58:90:9c:88:54:41:8e:1a:9a:f5:d6:ea: db:99:dd:db:fc:4a:b8:54:9e:35:0e:84:e4:0f:7a:7e:b3:23: 4f:de:e3:ed:64:9f:27:bd:30:73:5a:8f:38:2f:0a:c7:72:11: 4d:1e:5d:dc:fd:ac:b4:49:c2:24:73:2b:98:7b:da:f4:d2:aa: 05:7e:a9:4c:8e:ea:e4:55:6e:c8:d2:5b:9a:b5:97:85:55:c2: de:e2:37:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICElgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwMDYxMTAvBgNVBAUTKDEyRjkyRTZDNzJFNkNBMjVDMDc1MDU1QjQ4RkUzN0I2 NUFCNkUwNTIwHhcNMjQwOTI0MTcyNTI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZjYwNy0wYjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA051gcv5dNZm6A7K8HzIenFNMW8Y+KjP8tTdZARfOnNSzHO9QImNQAgRXYXsY kh4qJWpPPFp7Fdu1s/IY1RoATeh/8Iy0oCGiQE0fV2pDzHtnIJTGxgGfszkmzPDr SVmPVPIWhYV/vN7UcO5+nLCplm8EqpwBvsfcBDN/JW8lNyonjtrBG3ASNXHDNA1s Q6CsWR2pKJr83CbYse6vv6hK15ASJL7VgoCkaL3VUM1FG4eLla41l94vhsMQ1udU BgbySwqEL/ax2Izl5BwtyedpPEyttuT12a5aAhi1fd3TfBcsxuqj/kFYIdUbh2Xs 5uK2e62FhSvNx+ydnYl3l+8s1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCvzcIRw GfM5IoMy8ijVDbeV4J4MMB8GA1UdIwQYMBaAFBL5Lmxy5solwHUFW0j+N7ZatuBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjAwNi9FNEZERTQ2QUMz RTgxMUU4QUM3NkVCMTZDNEY5QUUwMi9Fdmt1YkhMbXlpWEFkUVZiU1A0M3RscTI0 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V2a3ViSExteWlYQWRRVmJTUDQzdGxxMjRGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwMDYvRTRGREU0NkFDM0U4MTFFOEFDNzZFQjE2QzRGOUFFMDIvRDVCRTZGRjZE MDk2MTFFQ0FFNEZBOTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnI/swDQYJKoZIhvcNAQELBQADggEBAB6xxcSFq3QpGDaw ma2hUrI8Ak2hZy94mx2uFw71cbHTIm1IlQX5547YpWAUnS4yUvLH0OhRJZgz3K3S KKEc1iwdOYe5bX+8i8jErfc+WHSPstOL0UW+gc7DLTg9X03ZT02kioYdlyLRhZRO k0ErrKodBZtRJ8/NoIVmaetTLJn5s3KJ0AbacI3HJAdfNEhaehZwLtCtm4PbcZaw ZzeXVR5sHhIm/7Xh/1iQnIhUQY4amvXW6tuZ3dv8SrhUnjUOhOQPen6zI0/e4+1k nye9MHNajzgvCsdyEU0eXdz9rLRJwiRzK5h72vTSqgV+qUyO6uRVbsjSW5q1l4VV wt7iNyU= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:04 2024 by rpki-client on console-fra.rpki-client.org