$ rpki-client -vvf rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa File: 8D3BB78A3AEA11EC84E6634EC4F9AE02.roa (raw, json) Hash identifier: xe8tXj4235DpBxvk3dCbLG/ZYpgkbMB7h4fUqe0TWDY= Subject key identifier: EA:2D:94:DB:05:DF:9D:C2:A9:FC:92:96:5D:A1:68:8C:63:B5:87:C8 Certificate issuer: /CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Certificate serial: 0CC5 Authority key identifier: 53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa Signing time: Thu 31 Oct 2024 18:36:43 +0000 ROA not before: Thu 31 Oct 2024 18:36:43 +0000 ROA not after: Sat 01 Mar 2025 00:00:00 +0000 asID: 45785 IP address blocks: 103.10.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:10:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3269 (0xcc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Validity Not Before: Oct 31 18:36:43 2024 GMT Not After : Mar 1 00:00:00 2025 GMT Subject: CN=6723ce3b-92cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6a:0b:2b:1b:50:78:8f:ba:f0:1a:d2:77:38: 81:d6:82:e9:47:e4:5e:d7:0e:bd:9d:60:21:a8:d5: d4:9b:07:ae:1a:9d:54:70:78:eb:86:33:86:74:07: 05:fe:aa:39:a6:24:7a:da:74:dd:70:9c:b4:7a:4e: 62:1a:23:ad:bb:c7:3f:f3:32:32:09:a2:bb:bb:b3: 83:82:65:8f:12:e1:9a:ed:30:14:f4:70:03:df:39: 51:d1:ac:69:e8:f6:47:74:eb:ec:49:54:34:59:44: 5e:f0:f2:1a:97:33:94:be:10:07:2c:3f:31:3e:51: 36:57:af:f0:4a:db:2e:6c:56:10:66:d5:71:38:58: 9d:65:27:fb:da:96:df:60:e9:7d:1e:a4:04:6f:af: d5:5c:f3:ad:34:27:9f:48:f3:14:c5:f1:33:e9:a4: 7d:e4:21:a0:f4:58:a6:ed:c6:c3:46:1f:1a:be:88: 42:dc:ac:ff:d4:db:f3:fa:ef:f4:4d:10:dc:70:83: 7a:e7:61:56:a2:6c:cc:78:c9:c4:92:b3:94:74:76: 4a:7f:10:ad:1f:a2:e7:80:16:96:57:62:e5:1b:8b: 65:91:9a:e9:e6:7f:cf:23:5a:d0:ba:dd:72:f0:ab: 79:06:5c:59:bc:c6:ca:39:91:99:91:32:33:7c:f3: b5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:2D:94:DB:05:DF:9D:C2:A9:FC:92:96:5D:A1:68:8C:63:B5:87:C8 X509v3 Authority Key Identifier: keyid:53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.196.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:f1:1e:3c:53:2d:37:e0:00:1d:e8:46:c9:d6:ce:64:94:32: e1:15:52:6c:33:60:05:cf:f9:ee:04:ed:e0:32:a8:2a:4b:33: 0a:b1:05:26:f7:e8:e0:c2:ec:93:95:bd:95:70:fe:67:53:61: b1:73:d0:e8:1c:8e:70:1c:0b:b2:02:d2:1f:92:ad:61:72:0e: 70:6b:8d:c5:ea:c2:43:4d:ca:7e:bd:59:a2:69:ed:73:0b:ff: fe:97:23:87:8d:b8:76:9e:30:b8:67:4d:24:12:fa:2c:7a:93: c5:82:de:c6:dc:df:fb:51:53:ea:2d:1c:37:c9:dc:a1:ca:3c: 04:de:64:c3:e7:61:e2:c8:66:e8:3b:fe:5e:6a:e2:94:67:5e: e9:21:6b:94:6a:31:21:2d:84:7e:35:5b:9a:ea:f1:1e:57:1d: 22:1a:88:b2:77:2b:26:45:7f:9c:a4:d6:f1:b4:a3:fc:bd:1c: ad:b2:fb:ee:9c:92:91:76:ec:a7:b5:90:1c:78:de:ee:0b:0d: 41:cf:1f:5e:71:b5:85:20:02:f3:d0:53:07:e9:b1:87:54:2d: a5:5e:ff:63:88:ad:fd:fc:91:4d:a4:df:69:31:f8:c2:58:75: f6:05:e8:42:f6:61:dc:17:24:0e:c1:4a:03:f7:2e:36:a7:b8: 0d:03:33:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg4NUMxMTAvBgNVBAUTKDUzNzRDNkU3NUYxODYwNTI0NTVBMkQ4REE1MjkyRkVG MDA5Q0M5QUYwHhcNMjQxMDMxMTgzNjQzWhcNMjUwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzY2UzYi05MmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2oLKxtQeI+68BrSdziB1oLpR+Re1w69nWAhqNXUmweuGp1UcHjrhjOGdAcF /qo5piR62nTdcJy0ek5iGiOtu8c/8zIyCaK7u7ODgmWPEuGa7TAU9HAD3zlR0axp 6PZHdOvsSVQ0WURe8PIalzOUvhAHLD8xPlE2V6/wStsubFYQZtVxOFidZSf72pbf YOl9HqQEb6/VXPOtNCefSPMUxfEz6aR95CGg9Fim7cbDRh8avohC3Kz/1Nvz+u/0 TRDccIN652FWomzMeMnEkrOUdHZKfxCtH6LngBaWV2LlG4tlkZrp5n/PI1rQut1y 8Kt5BlxZvMbKOZGZkTIzfPO13wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOotlNsF 353CqfySll2haIxjtYfIMB8GA1UdIwQYMBaAFFN0xudfGGBSRVotjaUpL+8AnMmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODg1Qy81QzE5Rjg0MkYy NjcxMUU5ODdDNzEzMUZDNEY5QUUwMi9VM1RHNTE4WVlGSkZXaTJOcFNrdjd3Q2N5 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzVEc1MThZWUZKRldpMk5wU2t2N3dDY3lhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg4NUMvNUMxOUY4NDJGMjY3MTFFOTg3QzcxMzFGQzRGOUFFMDIvOEQzQkI3OEEz QUVBMTFFQzg0RTY2MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCsQwDQYJKoZIhvcNAQELBQADggEBAD3xHjxTLTfgAB3o RsnWzmSUMuEVUmwzYAXP+e4E7eAyqCpLMwqxBSb36ODC7JOVvZVw/mdTYbFz0Ogc jnAcC7IC0h+SrWFyDnBrjcXqwkNNyn69WaJp7XML//6XI4eNuHaeMLhnTSQS+ix6 k8WC3sbc3/tRU+otHDfJ3KHKPATeZMPnYeLIZug7/l5q4pRnXukha5RqMSEthH41 W5rq8R5XHSIaiLJ3KyZFf5yk1vG0o/y9HK2y++6ckpF27Ke1kBx43u4LDUHPH15x tYUgAvPQUwfpsYdULaVe/2OIrf38kU2k32kx+MJYdfYF6EL2YdwXJA7BSgP3Ljan uA0DM6k= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org