$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa File: DBED3B7C011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: dOK6fD6p3SaYunOllZqT7Ibue650eZ6DRi8CGiJCo+c= Subject key identifier: 0C:42:19:66:03:36:1D:75:D8:08:4C:FB:29:80:41:BC:48:BB:69:90 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0BCE Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa Signing time: Sat 08 Jun 2024 19:34:03 +0000 ROA not before: Sat 08 Jun 2024 19:34:03 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 24028 IP address blocks: 43.239.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 8 19:34:03 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6664b22b-70a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:08:f4:12:75:21:7c:d5:fc:25:3e:03:b3:6c: 74:a6:43:58:8c:8a:60:7e:b6:ed:ca:2e:c7:f2:5a: 0a:d9:aa:13:a3:24:76:fc:17:75:92:ae:cf:ef:b3: c9:cd:91:46:1d:0e:64:67:20:ac:c1:4f:99:06:d1: 42:9a:61:e4:88:28:35:3a:62:99:da:14:57:3b:c9: fb:81:d8:c6:b3:c4:fe:82:21:e3:21:c0:7e:2a:6e: 57:46:6d:8e:23:65:ce:dc:5d:69:37:50:46:4c:49: b5:5d:11:f5:4b:63:d7:83:07:14:af:8c:53:21:39: 4d:6e:a1:8a:e8:88:ed:16:11:f0:54:08:20:44:6f: 1b:2f:d4:ab:22:37:d6:d2:c3:c0:3a:fa:10:4f:29: 9c:08:a6:9a:de:37:50:c5:26:40:dd:e1:9b:6f:93: a5:ea:6b:5e:03:65:35:ce:2e:c5:f0:b6:d7:aa:bb: 4e:8d:cc:6f:ed:c8:37:6a:4d:c5:10:47:65:b8:5a: 73:92:95:e7:db:b9:d2:63:ee:26:29:be:d2:f9:e0: 3e:5a:1a:42:d1:1e:21:96:6c:e9:6b:2b:e4:88:a2: d5:d9:20:31:aa:f4:2d:68:20:1e:05:0c:f6:c3:91: f1:ba:56:68:e1:73:53:33:dd:04:06:4b:67:67:a1: fd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:42:19:66:03:36:1D:75:D8:08:4C:FB:29:80:41:BC:48:BB:69:90 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.103.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:c2:b8:2f:fe:36:fe:38:9c:29:0b:9e:ef:bb:55:03:af:9e: 7b:22:90:2c:b3:44:4a:89:db:2d:6f:ff:86:2e:72:94:44:2d: 90:d0:07:8c:6a:a2:6f:95:95:23:26:26:40:f8:4e:cb:9f:c8: da:1b:2f:3a:d7:91:5b:74:8b:f6:93:2a:6c:27:ea:ec:00:75: c6:ab:1e:6a:59:c5:be:2e:11:56:d1:2c:7f:67:e7:b3:f5:5e: 28:bf:93:75:75:e9:f3:57:c1:19:43:ee:8d:2e:7b:56:14:9c: c6:61:8a:12:de:10:47:b0:33:57:2b:e9:13:49:c5:bc:e8:57: 39:1b:7c:60:68:43:64:8e:37:8e:61:1d:ef:8a:b8:03:51:5c: f0:09:e1:85:ff:d8:a7:8f:b7:5d:36:d7:4a:3d:ce:8a:81:cd: a2:ad:8c:fb:42:b6:1b:e9:fa:89:f9:84:e6:b0:db:2b:a1:36: 5d:0b:da:aa:b2:d0:9d:94:8b:df:8c:fc:fa:96:87:b8:10:c1: 82:94:e3:43:fe:61:0f:31:67:86:0a:0d:5a:b2:c2:01:1b:89: 2b:c0:fa:99:f9:97:c1:5b:47:e2:0d:34:b5:73:c3:c3:25:06: 59:7b:ba:ea:6e:04:cc:a3:ab:cb:bc:d2:a0:ce:cc:6d:9b:92: 07:a4:e0:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjQwNjA4MTkzNDAzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY0YjIyYi03MGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswj0EnUhfNX8JT4Ds2x0pkNYjIpgfrbtyi7H8loK2aoToyR2/Bd1kq7P77PJ zZFGHQ5kZyCswU+ZBtFCmmHkiCg1OmKZ2hRXO8n7gdjGs8T+giHjIcB+Km5XRm2O I2XO3F1pN1BGTEm1XRH1S2PXgwcUr4xTITlNbqGK6IjtFhHwVAggRG8bL9SrIjfW 0sPAOvoQTymcCKaa3jdQxSZA3eGbb5Ol6mteA2U1zi7F8LbXqrtOjcxv7cg3ak3F EEdluFpzkpXn27nSY+4mKb7S+eA+WhpC0R4hlmzpayvkiKLV2SAxqvQtaCAeBQz2 w5HxulZo4XNTM90EBktnZ6H9JQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAxCGWYD Nh112AhM+ymAQbxIu2mQMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREJFRDNCN0Mw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72cwDQYJKoZIhvcNAQELBQADggEBABvCuC/+Nv44nCkL nu+7VQOvnnsikCyzREqJ2y1v/4YucpRELZDQB4xqom+VlSMmJkD4TsufyNobLzrX kVt0i/aTKmwn6uwAdcarHmpZxb4uEVbRLH9n57P1Xii/k3V16fNXwRlD7o0ue1YU nMZhihLeEEewM1cr6RNJxbzoVzkbfGBoQ2SON45hHe+KuANRXPAJ4YX/2KePt102 10o9zoqBzaKtjPtCthvp+on5hOaw2yuhNl0L2qqy0J2Ui9+M/PqWh7gQwYKU40P+ YQ8xZ4YKDVqywgEbiSvA+pn5l8FbR+INNLVzw8MlBll7uupuBMyjq8u80qDOzG2b kgek4EY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org