$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/2BC67A2A346711EF9EEB0F52C4F9AE02.roa File: 2BC67A2A346711EF9EEB0F52C4F9AE02.roa (raw, json) Hash identifier: JEn605s5uj7twYN8vhMjV/lhtaUfRkimlGOAUbH9hfo= Subject key identifier: A4:4A:FC:78:BA:CA:9B:DC:E8:50:9C:D2:B4:6C:DD:D9:66:B7:37:DF Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 0610 Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/2BC67A2A346711EF9EEB0F52C4F9AE02.roa Signing time: Wed 02 Oct 2024 23:01:56 +0000 ROA not before: Wed 02 Oct 2024 23:01:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138995 IP address blocks: 103.101.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Oct 2 23:01:56 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fdd0e4-1eeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dd:91:d3:95:84:49:eb:82:66:24:ca:a8:d8: 0a:87:67:6d:a0:37:03:6b:a9:16:56:47:c4:a9:f4: a1:c2:79:f1:e6:56:80:9d:dc:80:0f:7c:d8:32:62: fa:56:75:69:3c:15:72:cd:98:9b:20:d1:2c:15:3e: 87:4f:50:d2:54:67:1d:ef:fb:70:7a:49:f3:20:03: 5a:bb:f8:a0:e4:7c:40:31:4a:cb:63:11:e5:7a:35: a0:6e:2d:b0:f6:64:61:4b:07:e0:a4:44:46:8f:5e: 68:95:73:81:ad:c0:a9:2f:0c:4b:7b:76:fb:f1:d4: 10:1d:2b:0c:9d:3d:b9:e7:8e:75:6a:41:91:18:6e: 9f:5c:3f:d8:c1:f3:fa:00:66:af:df:f5:95:d2:88: f6:dd:09:74:b3:ee:ac:21:08:d4:61:5f:c6:4b:90: 4b:16:e4:c4:7c:ee:0b:14:4c:8e:68:39:fc:e8:70: 13:fc:8c:00:9b:9e:74:4c:89:d8:32:20:d4:03:7d: e6:9d:27:8d:85:af:f1:64:f4:6d:ca:95:66:e6:1a: 7c:dd:f9:c5:c8:0c:e8:fb:87:bc:66:88:d4:cd:d7: 24:4d:b7:69:7e:fa:24:26:27:c5:d0:81:d0:e7:37: 71:c6:d3:11:a6:cd:ac:d2:5e:6f:ab:9b:f8:3d:2b: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:4A:FC:78:BA:CA:9B:DC:E8:50:9C:D2:B4:6C:DD:D9:66:B7:37:DF X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/2BC67A2A346711EF9EEB0F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.191.0/24 Signature Algorithm: sha256WithRSAEncryption 74:c6:b9:8d:13:85:a9:ab:fa:87:d1:f8:36:cf:bc:a5:e1:1e: 55:b5:f2:10:db:fa:15:b0:82:8e:b4:19:11:6b:5f:e9:8f:61: 03:6e:cb:d8:73:1c:63:62:fd:5d:5a:0c:68:8a:72:4f:2d:ad: 74:8d:c2:11:a6:e6:bd:50:17:6d:02:17:16:d5:82:72:61:a4: 5a:56:6f:40:f5:6b:2e:61:a5:b2:d4:54:17:8b:86:b7:f1:ff: c6:37:29:d7:16:af:cc:71:cb:34:c3:f0:dd:b4:c1:c1:dc:f8: 52:3d:9b:04:e9:c3:e4:7f:ba:5f:ee:18:23:a8:83:2a:ff:01: c5:65:3b:9a:92:ee:34:4a:31:41:a3:f5:4a:27:74:7e:3b:b3: 6e:55:66:f9:74:a2:57:ed:4d:5b:47:71:d7:33:eb:0a:9a:73: 0c:fa:1a:05:f7:2e:bb:cc:49:49:09:dc:b7:1e:be:c1:7c:bc: 48:97:ee:ca:4f:7a:db:eb:8e:b0:21:36:04:21:e0:3f:31:5b: 4f:29:94:fa:ef:80:68:0a:eb:fe:28:fb:17:8a:3c:14:ae:85: 7c:ce:45:fa:b2:dd:76:9a:33:f9:43:c0:a8:02:21:54:cc:b5: ba:bf:f9:20:ef:44:bf:9a:b4:02:7e:12:83:09:18:09:52:ce: f5:30:4e:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjQxMDAyMjMwMTU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkZDBlNC0xZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t2R05WESeuCZiTKqNgKh2dtoDcDa6kWVkfEqfShwnnx5laAndyAD3zYMmL6 VnVpPBVyzZibINEsFT6HT1DSVGcd7/tweknzIANau/ig5HxAMUrLYxHlejWgbi2w 9mRhSwfgpERGj15olXOBrcCpLwxLe3b78dQQHSsMnT255451akGRGG6fXD/YwfP6 AGav3/WV0oj23Ql0s+6sIQjUYV/GS5BLFuTEfO4LFEyOaDn86HAT/IwAm550TInY MiDUA33mnSeNha/xZPRtypVm5hp83fnFyAzo+4e8ZojUzdckTbdpfvokJifF0IHQ 5zdxxtMRps2s0l5vq5v4PSuS8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRK/Hi6 ypvc6FCc0rRs3dlmtzffMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1RTYvODdEMUVEMDY3QTg3MTFFQjkwOEVCRDYzQzRGOUFFMDIvMkJDNjdBMkEz NDY3MTFFRjlFRUIwRjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZb8wDQYJKoZIhvcNAQELBQADggEBAHTGuY0Thamr+ofR +DbPvKXhHlW18hDb+hWwgo60GRFrX+mPYQNuy9hzHGNi/V1aDGiKck8trXSNwhGm 5r1QF20CFxbVgnJhpFpWb0D1ay5hpbLUVBeLhrfx/8Y3KdcWr8xxyzTD8N20wcHc +FI9mwTpw+R/ul/uGCOogyr/AcVlO5qS7jRKMUGj9UondH47s25VZvl0olftTVtH cdcz6wqacwz6GgX3LrvMSUkJ3LcevsF8vEiX7spPetvrjrAhNgQh4D8xW08plPrv gGgK6/4o+xeKPBSuhXzORfqy3XaaM/lDwKgCIVTMtbq/+SDvRL+atAJ+EoMJGAlS zvUwTsI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org