$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa File: FD987A54CC8511EC8D238672C4F9AE02.roa (raw, json) Hash identifier: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI= Subject key identifier: 18:E1:DE:4B:C2:1B:41:74:CB:E4:A6:7E:49:60:88:03:60:3B:7D:94 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 05D7 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa Signing time: Fri 08 Nov 2024 22:41:46 +0000 ROA not before: Fri 08 Nov 2024 22:41:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136933 IP address blocks: 103.144.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Nov 8 22:41:46 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672e93aa-8d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8f:6c:fc:8c:5f:8c:28:1e:15:8a:bb:8e:21: 67:b6:e6:5e:1f:5c:f4:4f:dc:97:ad:0a:5a:1a:77: 5e:84:a2:bb:cf:21:a6:1a:4e:7b:0e:ca:42:fb:67: 6c:df:c4:16:7a:7c:04:42:5c:c0:ec:6a:c6:aa:26: e0:80:31:13:a5:1b:d3:3b:47:f8:10:23:0b:70:55: 15:16:ca:1a:53:d1:20:90:da:1c:c2:2d:97:09:b4: 55:cd:ae:47:56:47:9e:17:80:08:11:d3:c0:7d:43: dc:ea:9f:50:c5:5e:83:6d:ce:29:41:c8:c7:12:64: ec:d2:4e:d8:d4:2c:83:e9:b9:98:79:84:9b:97:bb: 4b:36:98:2d:08:f8:2e:45:4a:f7:d1:aa:f4:a9:4f: 6c:c8:ef:83:86:25:6a:ff:bc:d0:cc:c7:d0:40:74: e7:53:c9:3f:08:ce:a1:8b:1c:65:62:07:20:11:9f: 24:65:1f:42:2a:8f:10:c4:06:01:df:09:15:be:47: c1:e1:e4:ad:77:40:c0:df:17:fd:b5:cf:52:3a:9e: c4:c4:a5:f1:54:50:7c:c9:d1:ee:cc:81:ff:71:75: 5a:0f:38:a9:15:eb:30:8b:a5:68:44:17:ce:07:a0: 89:8c:71:64:53:ee:f3:d9:51:cc:ea:5e:b7:3b:df: eb:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E1:DE:4B:C2:1B:41:74:CB:E4:A6:7E:49:60:88:03:60:3B:7D:94 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/FD987A54CC8511EC8D238672C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.197.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:64:e7:75:70:c1:ec:5d:37:1a:47:be:78:8f:94:34:67:05: f0:5c:5a:76:17:78:79:b2:41:56:1d:5d:cb:83:bc:c1:73:3d: 45:11:98:33:62:4e:23:9c:c1:ba:96:5b:9b:67:b6:96:ad:42: 97:d3:93:82:aa:5c:51:66:af:cf:42:17:dd:5b:cd:5b:f2:9e: 7a:05:cf:ba:d1:25:9c:16:57:49:48:81:89:5b:b8:81:72:83: e5:ac:ee:49:1f:ef:1f:a6:6d:4a:8b:3e:74:30:42:1f:56:99: fc:eb:a6:90:75:62:93:7b:81:0b:62:1f:3f:ad:d6:71:c2:0f: 70:4f:07:58:76:9a:56:23:2a:05:e5:d5:a7:18:5b:d3:34:3f: d1:31:0e:9d:fb:32:75:0e:62:0c:1a:fb:dc:c1:cd:90:7c:0a: f4:d0:5d:51:cc:fe:d5:2f:3f:7b:65:6c:13:1f:42:2f:24:92: b1:9f:3e:2e:6a:4e:47:80:45:42:98:d9:0d:12:36:3e:1b:14: c9:b9:52:ab:8f:df:cb:a4:92:ad:c8:1a:cd:bc:f7:6c:b7:1c: 56:f9:c9:55:d1:ef:f6:6a:27:7d:f7:17:a6:f8:7c:40:c4:8b: 94:16:c3:c0:16:19:42:44:31:66:b9:89:d6:41:4d:74:2a:45: 9e:a0:ea:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjQxMTA4MjI0MTQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlOTNhYS04ZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I9s/IxfjCgeFYq7jiFntuZeH1z0T9yXrQpaGndehKK7zyGmGk57DspC+2ds 38QWenwEQlzA7GrGqibggDETpRvTO0f4ECMLcFUVFsoaU9EgkNocwi2XCbRVza5H VkeeF4AIEdPAfUPc6p9QxV6Dbc4pQcjHEmTs0k7Y1CyD6bmYeYSbl7tLNpgtCPgu RUr30ar0qU9syO+DhiVq/7zQzMfQQHTnU8k/CM6hixxlYgcgEZ8kZR9CKo8QxAYB 3wkVvkfB4eStd0DA3xf9tc9SOp7ExKXxVFB8ydHuzIH/cXVaDzipFeswi6VoRBfO B6CJjHFkU+7z2VHM6l63O9/ruQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjh3kvC G0F0y+SmfklgiANgO32UMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2NEQvQjJFRjNFMzQ5NUQ2MTFFQjk4MjE1QzE4QzRGOUFFMDIvRkQ5ODdBNTRD Qzg1MTFFQzhEMjM4NjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkMUwDQYJKoZIhvcNAQELBQADggEBADtk53VwwexdNxpH vniPlDRnBfBcWnYXeHmyQVYdXcuDvMFzPUURmDNiTiOcwbqWW5tntpatQpfTk4Kq XFFmr89CF91bzVvynnoFz7rRJZwWV0lIgYlbuIFyg+Ws7kkf7x+mbUqLPnQwQh9W mfzrppB1YpN7gQtiHz+t1nHCD3BPB1h2mlYjKgXl1acYW9M0P9ExDp37MnUOYgwa +9zBzZB8CvTQXVHM/tUvP3tlbBMfQi8kkrGfPi5qTkeARUKY2Q0SNj4bFMm5UquP 38ukkq3IGs2892y3HFb5yVXR7/ZqJ333F6b4fEDEi5QWw8AWGUJEMWa5idZBTXQq RZ6g6pk= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org