$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/703918CC69EA11EE83318C50C4F9AE02.roa File: 703918CC69EA11EE83318C50C4F9AE02.roa (raw, json) Hash identifier: t0aqG9d8NreOF7Hkj2uOxQflMXILI7dvbOY4xze0Cxs= Subject key identifier: 7C:B2:FE:62:F7:8B:E2:A6:27:01:4D:AF:F4:38:E4:52:4E:1E:17:FC Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0BCD Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/703918CC69EA11EE83318C50C4F9AE02.roa Signing time: Sat 08 Jun 2024 19:34:01 +0000 ROA not before: Sat 08 Jun 2024 19:34:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138598 IP address blocks: 43.239.101.0/24 maxlen: 24 2406:f900:a::/48 maxlen: 48 2406:f900:b::/48 maxlen: 48 2406:f900:c::/48 maxlen: 48 2406:f900:d::/48 maxlen: 48 2406:f900:e::/48 maxlen: 48 2406:f900:f::/48 maxlen: 48 2406:f900:10::/48 maxlen: 48 2406:f900:11::/48 maxlen: 48 2406:f900:12::/48 maxlen: 48 2406:f900:13::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3021 (0xbcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 8 19:34:01 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6664b229-a2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:14:5f:27:77:04:bf:68:de:f1:48:cd:e7:25: 4e:3e:09:64:44:19:a6:bb:b1:a5:a9:78:ce:7f:f8: d5:62:f1:4e:33:3f:6d:73:81:fa:d1:e4:7a:1f:c3: d5:56:7b:64:96:5f:7f:c1:9d:da:7a:a6:02:53:ce: e1:5a:92:15:97:89:ea:31:0d:97:c4:6e:3a:29:61: c1:d4:87:ac:75:f0:02:6c:db:ed:73:3e:6a:8e:11: 04:d2:e1:7d:7f:39:eb:a7:00:6a:bd:69:65:a8:12: 90:e4:c6:09:e4:90:85:b1:bc:f7:3e:58:ed:aa:e6: 60:1b:41:06:17:9c:d9:43:e0:65:c8:86:29:6c:6f: 38:7e:0f:7c:9d:32:c0:b2:dd:33:3c:ce:eb:61:8d: c9:f6:dc:db:11:6d:51:c1:81:93:fa:23:55:2a:b9: 3c:cc:b3:12:22:ee:67:54:f0:45:c8:f0:89:91:93: 46:05:db:38:b6:da:71:4e:75:14:58:4a:99:fd:7a: 57:4e:cc:fc:07:50:87:9b:05:23:87:75:f4:6f:22: df:0a:7c:ff:15:db:9a:0c:eb:c8:d9:88:bc:82:c8: e3:ca:aa:59:f9:22:11:c2:ac:31:ec:3b:9b:67:8f: 96:80:88:a5:1b:48:1c:21:f5:6e:11:17:2a:bb:1b: 8a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:B2:FE:62:F7:8B:E2:A6:27:01:4D:AF:F4:38:E4:52:4E:1E:17:FC X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/703918CC69EA11EE83318C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.101.0/24 IPv6: 2406:f900:a::-2406:f900:13:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption af:1f:10:b5:88:a6:24:e2:ba:c5:b8:f2:f8:d1:d1:56:05:75: 42:57:fe:53:7b:a7:b5:3c:61:6e:9e:56:69:e7:6b:39:6e:de: 16:94:e4:a1:2f:c4:c5:af:73:cf:16:b3:43:71:f9:7f:8b:78: a2:5a:1e:f8:77:fe:72:0d:da:18:27:e6:90:53:5d:2c:a6:13: c3:f4:65:75:76:0b:4d:45:87:16:b7:a7:db:93:18:65:cc:99: 73:1e:e8:5b:09:38:58:78:9f:60:c3:fb:96:0e:f8:94:b8:ce: 64:4d:61:29:16:ef:85:da:11:96:c0:31:32:5f:3d:bf:0c:50: 38:f7:25:2a:e3:bd:38:6d:44:07:93:2a:d5:d4:ac:83:17:4f: 64:c4:91:2c:11:75:11:bb:21:b7:c7:95:ab:66:98:48:1e:09: 9c:a3:21:a1:73:d5:a9:e1:74:90:cd:82:20:46:d5:96:3e:3a: dc:10:c0:04:c7:71:1c:f2:82:35:7c:9c:f8:9d:1a:ea:59:ed: 25:bb:f6:f0:ce:46:05:68:60:27:a9:0d:c6:50:72:9c:4a:2c: 79:fd:5c:61:2a:52:48:b0:ff:5a:f3:6e:6e:97:30:d4:da:be: 6f:ff:8e:18:e7:cd:85:3c:7e:70:86:06:ca:36:63:50:21:dc: 8c:3e:96:b2 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICC80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjQwNjA4MTkzNDAxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY0YjIyOS1hMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBRfJ3cEv2je8UjN5yVOPglkRBmmu7GlqXjOf/jVYvFOMz9tc4H60eR6H8PV Vntkll9/wZ3aeqYCU87hWpIVl4nqMQ2XxG46KWHB1IesdfACbNvtcz5qjhEE0uF9 fznrpwBqvWllqBKQ5MYJ5JCFsbz3PljtquZgG0EGF5zZQ+BlyIYpbG84fg98nTLA st0zPM7rYY3J9tzbEW1RwYGT+iNVKrk8zLMSIu5nVPBFyPCJkZNGBds4ttpxTnUU WEqZ/XpXTsz8B1CHmwUjh3X0byLfCnz/FduaDOvI2Yi8gsjjyqpZ+SIRwqwx7Dub Z4+WgIilG0gcIfVuERcquxuKxQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFHyy/mL3 i+KmJwFNr/Q45FJOHhf8MB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvNzAzOTE4Q0M2 OUVBMTFFRTgzMzE4QzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAAr72UwGgQCAAIwFDASAwcBJAb5AAAKAwcCJAb5AAAQMA0G CSqGSIb3DQEBCwUAA4IBAQCvHxC1iKYk4rrFuPL40dFWBXVCV/5Te6e1PGFunlZp 52s5bt4WlOShL8TFr3PPFrNDcfl/i3iiWh74d/5yDdoYJ+aQU10sphPD9GV1dgtN RYcWt6fbkxhlzJlzHuhbCThYeJ9gw/uWDviUuM5kTWEpFu+F2hGWwDEyXz2/DFA4 9yUq4704bUQHkyrV1KyDF09kxJEsEXURuyG3x5WrZphIHgmcoyGhc9Wp4XSQzYIg RtWWPjrcEMAEx3Ec8oI1fJz4nRrqWe0lu/bwzkYFaGAnqQ3GUHKcSix5/VxhKlJI sP9a825ulzDU2r5v/44Y582FPH5whgbKNmNQIdyMPpay -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org