$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa File: D2312B583F0511ECA6E6BB80C4F9AE02.roa (raw, json) Hash identifier: zdwLUFrK62NtcQ/mdbUvAzqM7ityQdkX7IQIHBe+tG4= Subject key identifier: D7:93:85:C8:E1:F0:05:2B:E4:C0:C2:6B:4F:B9:22:60:0C:11:10:59 Certificate issuer: /CN=A91BB508/serialNumber=FFC284AC1B1A5F0843EB575B8B05DE224FFAE1FA Certificate serial: 042A Authority key identifier: FF:C2:84:AC:1B:1A:5F:08:43:EB:57:5B:8B:05:DE:22:4F:FA:E1:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa Signing time: Fri 25 Oct 2024 00:43:46 +0000 ROA not before: Fri 25 Oct 2024 00:43:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147063 IP address blocks: 103.174.0.0/23 maxlen: 23 103.174.0.0/24 maxlen: 24 103.174.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.crl rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1066 (0x42a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB508/serialNumber=FFC284AC1B1A5F0843EB575B8B05DE224FFAE1FA Validity Not Before: Oct 25 00:43:46 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ae9c2-901f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:36:53:c1:f7:74:9e:08:13:72:78:e6:ab:ca: 59:6e:e5:55:ad:f7:b0:69:07:08:9e:56:e4:f6:e2: a2:c6:9c:3b:0f:c9:13:ae:0f:0a:2a:6e:0d:4e:ca: f1:f6:28:e6:82:d2:b1:bb:f4:75:21:a0:04:f0:45: d5:4f:c1:75:10:d0:59:1b:7d:cb:34:a5:36:1e:79: de:eb:78:31:39:b3:a1:d7:c2:e6:50:c8:82:e4:65: f9:9b:00:93:df:24:1b:50:1c:38:21:07:3b:cf:2e: cf:bc:96:55:8b:dd:10:de:57:1d:b9:94:a5:4e:22: a2:f8:8b:83:3d:ee:4a:30:9d:fa:78:b2:a3:8d:86: a3:3c:91:10:99:d7:1f:31:ea:54:24:e5:a7:6c:9b: 7f:3a:74:62:53:89:c1:b5:f6:70:7c:95:03:85:3b: de:54:3d:7b:1a:a2:83:03:cc:46:a8:f5:b2:20:4f: 23:93:98:57:ee:9f:48:c9:9c:f5:44:6c:20:5b:f0: ba:b3:9f:88:c6:cc:43:a6:60:20:a0:1a:ea:f4:5e: ed:b8:6d:07:94:83:31:a7:a0:34:f4:52:c5:00:3f: d4:dc:af:bb:30:59:2a:0d:6d:94:aa:d6:22:d1:61: 6c:57:28:0d:d7:bd:81:a7:2b:7c:a2:74:11:df:6b: 47:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:93:85:C8:E1:F0:05:2B:E4:C0:C2:6B:4F:B9:22:60:0C:11:10:59 X509v3 Authority Key Identifier: keyid:FF:C2:84:AC:1B:1A:5F:08:43:EB:57:5B:8B:05:DE:22:4F:FA:E1:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/_8KErBsaXwhD61dbiwXeIk_64fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_8KErBsaXwhD61dbiwXeIk_64fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB508/7A33791E395711ECABD4376EC4F9AE02/D2312B583F0511ECA6E6BB80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.0.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:98:0f:69:8d:92:64:9e:67:3a:03:e9:b3:98:a2:c1:a7:54: 92:27:dc:b6:d1:d2:93:19:2a:21:23:4c:c8:13:70:58:c0:ca: f2:ed:78:bf:b5:fa:01:fe:91:75:08:1d:20:bb:35:b5:56:3f: 7f:6d:c7:11:51:3c:a3:10:e9:10:a0:8c:c7:73:37:6a:4a:08: 59:a9:bf:f1:a6:7e:7e:3b:90:87:40:8f:5d:70:35:81:5c:a5: de:ab:b4:7f:35:b6:6a:23:94:cb:80:a4:67:9c:1c:7e:91:3d: 0c:72:5f:e3:c1:db:55:7d:ac:57:37:f1:5a:6d:33:ab:2e:04: e2:ad:95:d5:31:df:f7:aa:d6:ff:db:3c:ee:cf:39:7f:5f:4c: 14:9d:f3:36:9a:48:0c:8a:d8:47:2e:0b:3c:a4:73:38:2d:04: 1f:08:75:d4:3b:97:3d:8f:90:90:52:5c:38:56:54:e1:3e:74: 06:a5:40:2d:21:48:6c:2f:7e:72:16:6a:75:b1:d9:f4:a1:8f: 52:d2:c6:47:ff:4e:01:d4:57:8f:53:8d:1d:c3:1e:e1:66:79: 58:71:d9:b2:86:bd:94:99:78:6f:11:c2:ab:8c:64:99:1d:bf: 43:00:fa:0e:b7:5c:a5:3e:d8:7e:9a:8b:df:31:21:38:8b:47: 38:49:56:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1MDgxMTAvBgNVBAUTKEZGQzI4NEFDMUIxQTVGMDg0M0VCNTc1QjhCMDVERTIy NEZGQUUxRkEwHhcNMjQxMDI1MDA0MzQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZTljMi05MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDZTwfd0nggTcnjmq8pZbuVVrfewaQcInlbk9uKixpw7D8kTrg8KKm4NTsrx 9ijmgtKxu/R1IaAE8EXVT8F1ENBZG33LNKU2Hnne63gxObOh18LmUMiC5GX5mwCT 3yQbUBw4IQc7zy7PvJZVi90Q3lcduZSlTiKi+IuDPe5KMJ36eLKjjYajPJEQmdcf MepUJOWnbJt/OnRiU4nBtfZwfJUDhTveVD17GqKDA8xGqPWyIE8jk5hX7p9IyZz1 RGwgW/C6s5+IxsxDpmAgoBrq9F7tuG0HlIMxp6A09FLFAD/U3K+7MFkqDW2UqtYi 0WFsVygN172Bpyt8onQR32tHfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNeThcjh 8AUr5MDCa0+5ImAMERBZMB8GA1UdIwQYMBaAFP/ChKwbGl8IQ+tXW4sF3iJP+uH6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjUwOC83QTMzNzkxRTM5 NTcxMUVDQUJENDM3NkVDNEY5QUUwMi9fOEtFckJzYVh3aEQ2MWRiaXdYZUlrXzY0 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184S0VyQnNhWHdoRDYxZGJpd1hlSWtfNjRmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1MDgvN0EzMzc5MUUzOTU3MTFFQ0FCRDQzNzZFQzRGOUFFMDIvRDIzMTJCNTgz RjA1MTFFQ0E2RTZCQjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrgAwDQYJKoZIhvcNAQELBQADggEBAFqYD2mNkmSeZzoD 6bOYosGnVJIn3LbR0pMZKiEjTMgTcFjAyvLteL+1+gH+kXUIHSC7NbVWP39txxFR PKMQ6RCgjMdzN2pKCFmpv/Gmfn47kIdAj11wNYFcpd6rtH81tmojlMuApGecHH6R PQxyX+PB21V9rFc38VptM6suBOKtldUx3/eq1v/bPO7POX9fTBSd8zaaSAyK2Ecu CzykczgtBB8IddQ7lz2PkJBSXDhWVOE+dAalQC0hSGwvfnIWanWx2fShj1LSxkf/ TgHUV49TjR3DHuFmeVhx2bKGvZSZeG8RwquMZJkdv0MA+g63XKU+2H6ai98xITiL RzhJVuU= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org