$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa File: A1C2C79680FE11E985D53F55C4F9AE02.roa (raw, json) Hash identifier: Cbhj9KrYPhruE2DO+tG+S1gBEmTKHE45Wb/ySBI1jmo= Subject key identifier: 3F:72:2C:C3:FD:54:00:87:65:56:DD:29:53:B6:88:71:38:8E:C0:86 Certificate issuer: /CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Certificate serial: 32BA Authority key identifier: D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa Signing time: Wed 20 Dec 2023 15:41:04 +0000 ROA not before: Wed 20 Dec 2023 15:41:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132494 IP address blocks: 103.31.34.0/23 maxlen: 24 2001:df0:427::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12986 (0x32ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Validity Not Before: Dec 20 15:41:04 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65830b0f-14de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:30:da:d6:83:3f:73:5f:1c:99:5b:30:9e:9b: 63:d8:55:26:d1:77:3f:d9:ce:f9:12:4b:d8:50:94: 47:17:a3:4b:68:57:64:99:da:48:80:5a:ac:0d:90: ab:89:3f:84:ac:1f:ca:88:05:ce:3c:91:49:04:b7: e6:34:12:39:00:1e:c9:e9:01:70:77:b1:70:97:0e: b0:b8:d4:8b:b4:69:e1:e5:9d:ea:b2:a3:c2:9e:a7: 98:e3:fa:8e:96:c3:f4:01:33:3d:0a:51:6e:8d:79: 57:2a:45:57:22:01:5d:81:c7:34:be:5f:2d:d5:2b: 92:2b:bc:0c:e9:b2:df:b5:94:4b:35:83:92:5c:b1: f7:3f:dd:5e:4c:ff:db:82:2a:cc:36:8a:ba:94:71: fa:6b:f5:bf:9d:01:7d:a1:dd:4b:c4:12:64:89:8c: c6:1b:03:d4:1f:04:8b:d8:e4:19:9b:18:73:ad:c2: 38:fb:50:cf:f6:2f:ce:3b:45:e4:70:ce:b6:f5:29: 70:2f:de:85:5f:f0:a2:45:da:9d:c4:4c:14:85:35: 98:d2:04:14:c7:d3:aa:db:a5:87:5f:34:7d:ed:c4: 49:a7:95:07:0d:65:80:12:eb:28:b5:a5:ee:b9:ed: 4a:a7:0f:79:56:6c:c3:33:cf:a1:f6:5b:19:ae:0b: 41:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:72:2C:C3:FD:54:00:87:65:56:DD:29:53:B6:88:71:38:8E:C0:86 X509v3 Authority Key Identifier: keyid:D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.34.0/23 IPv6: 2001:df0:427::/48 Signature Algorithm: sha256WithRSAEncryption 89:75:4b:06:d2:33:25:3b:a3:bf:ca:40:a5:5d:84:31:1d:d1: 2c:1d:25:b0:50:b4:65:91:66:f3:6a:0d:c0:8f:80:03:64:76: 06:f6:21:86:ee:bb:f8:46:ce:4b:ef:11:3e:9d:3a:10:e5:5d: 19:52:9f:53:0c:d1:98:90:f8:2f:93:c4:ae:b1:b7:3c:13:e3: 74:3a:a9:82:67:b5:25:7c:e5:85:b0:b8:c6:1f:d8:3b:a5:53: 42:72:eb:67:85:a6:29:25:35:f2:3f:0d:af:20:fb:08:10:99: db:38:32:21:3d:f5:be:96:2b:35:71:85:22:22:9d:ad:20:00: ef:19:2a:f8:d4:0b:a5:09:47:ae:68:aa:b8:1f:f8:8d:15:df: d2:b6:1d:e4:a2:a9:33:01:e9:52:c3:26:45:90:c0:3f:92:ba: 53:e0:2f:2b:9e:4d:91:91:ff:06:3e:c6:46:a6:f5:42:d2:21: 35:ac:42:15:10:54:d4:96:fb:a7:8b:81:68:15:0a:13:af:02: 49:77:70:cd:e1:56:e5:6d:5b:b7:51:f1:c0:e2:b4:b7:91:0f: e8:11:f9:b5:de:82:b8:51:fd:cd:0c:0c:ed:39:50:93:d3:f8: 45:a4:94:99:e7:12:22:b7:31:e6:19:1f:bb:f9:13:c8:f8:be: 4a:59:96:ef -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICMrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFRjkxMTAvBgNVBAUTKEQzMkRBMzZFODgyMTgyMkU2QkQzQzgyQ0ZGQTk4NEU3 QTkwOUMzRjYwHhcNMjMxMjIwMTU0MTA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzMGIwZi0xNGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDDa1oM/c18cmVswnptj2FUm0Xc/2c75EkvYUJRHF6NLaFdkmdpIgFqsDZCr iT+ErB/KiAXOPJFJBLfmNBI5AB7J6QFwd7Fwlw6wuNSLtGnh5Z3qsqPCnqeY4/qO lsP0ATM9ClFujXlXKkVXIgFdgcc0vl8t1SuSK7wM6bLftZRLNYOSXLH3P91eTP/b girMNoq6lHH6a/W/nQF9od1LxBJkiYzGGwPUHwSL2OQZmxhzrcI4+1DP9i/OO0Xk cM629SlwL96FX/CiRdqdxEwUhTWY0gQUx9Oq26WHXzR97cRJp5UHDWWAEusotaXu ue1Kpw95VmzDM8+h9lsZrgtBPQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD9yLMP9 VACHZVbdKVO2iHE4jsCGMB8GA1UdIwQYMBaAFNMto26IIYIua9PILP+phOepCcP2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEVGOS80NEE4MDVFRTQ0 QzkxMUUyQjM1QUM0ODQyOTc5QkIyMC8weTJqYm9naGdpNXIwOGdzXzZtRTU2a0p3 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5Mmpib2doZ2k1cjA4Z3NfNm1FNTZrSndfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhFRjkvNDRBODA1RUU0NEM5MTFFMkIzNUFDNDg0Mjk3OUJCMjAvQTFDMkM3OTY4 MEZFMTFFOTg1RDUzRjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHyIwDwQCAAIwCQMHACABDfAEJzANBgkqhkiG9w0BAQsF AAOCAQEAiXVLBtIzJTujv8pApV2EMR3RLB0lsFC0ZZFm82oNwI+AA2R2BvYhhu67 +EbOS+8RPp06EOVdGVKfUwzRmJD4L5PErrG3PBPjdDqpgme1JXzlhbC4xh/YO6VT QnLrZ4WmKSU18j8NryD7CBCZ2zgyIT31vpYrNXGFIiKdrSAA7xkq+NQLpQlHrmiq uB/4jRXf0rYd5KKpMwHpUsMmRZDAP5K6U+AvK55NkZH/Bj7GRqb1QtIhNaxCFRBU 1Jb7p4uBaBUKE68CSXdwzeFW5W1bt1HxwOK0t5EP6BH5td6CuFH9zQwM7TlQk9P4 RaSUmecSIrcx5hkfu/kTyPi+SlmW7w== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org