$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/17780EF09B3C11E8A13BA63AC4F9AE02.roa File: 17780EF09B3C11E8A13BA63AC4F9AE02.roa (raw, json) Hash identifier: bwsT9LHkujI+JrOu04/8rGiF6KuhSDYaJy2PKrf04nk= Subject key identifier: 31:C5:43:A9:DD:EE:33:DA:F1:5C:D5:9A:40:97:45:1B:04:83:92:06 Certificate issuer: /CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Certificate serial: 1360 Authority key identifier: 79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/17780EF09B3C11E8A13BA63AC4F9AE02.roa Signing time: Tue 10 Sep 2024 17:55:02 +0000 ROA not before: Tue 10 Sep 2024 17:55:02 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 23876 IP address blocks: 103.110.212.0/23 maxlen: 24 123.49.43.0/24 maxlen: 24 218.100.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC847/serialNumber=79D66C64A6165A2E4CB37D49700E6C761841C39A Validity Not Before: Sep 10 17:55:02 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e087f6-c4eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:19:c9:33:3c:55:d2:e4:15:ce:a9:20:fb:af: 20:3a:89:a7:2b:93:24:b0:26:d9:d4:47:d9:a3:96: e2:0d:7f:06:62:c1:fd:3f:3a:05:c0:63:5d:70:ad: fc:5f:8c:ec:b2:8d:67:30:6b:40:2d:e4:03:24:66: c9:6c:54:9a:15:0b:3a:f0:19:c7:f9:e3:2d:ac:11: 71:b2:fa:97:57:f1:a2:91:65:04:7e:5a:ed:23:f8: be:85:ac:da:b8:12:04:b9:b4:ff:83:4e:00:77:62: 1f:e3:cd:6e:b6:bd:10:75:1e:90:e7:68:22:49:69: 9a:cf:f9:f5:f7:f9:83:8f:48:16:6e:fd:e3:bf:3b: 68:c5:5b:43:da:d0:29:35:f9:94:18:c4:62:d7:0c: 6f:cd:73:a7:f3:2c:70:ad:86:72:72:c2:38:a7:76: 9d:52:29:1f:96:ec:4c:32:d8:99:3c:a4:04:01:4c: 2f:70:c2:9e:d9:62:01:e7:23:85:8d:c5:a8:23:d8: 61:fa:ec:46:d2:c7:9f:a3:21:55:41:45:c4:17:c7: 5c:60:f2:5f:6d:7d:39:eb:ed:de:d2:45:5e:7f:38: f6:31:22:18:d4:f9:97:ec:83:64:34:11:ac:ea:6d: 2c:c6:46:f5:63:80:1c:5c:75:f0:f6:5f:e0:f1:bc: f9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C5:43:A9:DD:EE:33:DA:F1:5C:D5:9A:40:97:45:1B:04:83:92:06 X509v3 Authority Key Identifier: keyid:79:D6:6C:64:A6:16:5A:2E:4C:B3:7D:49:70:0E:6C:76:18:41:C3:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/edZsZKYWWi5Ms31JcA5sdhhBw5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/edZsZKYWWi5Ms31JcA5sdhhBw5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC847/ACF943529AF311E8AAB4D55DC4F9AE02/17780EF09B3C11E8A13BA63AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.212.0/23 123.49.43.0/24 218.100.37.0/24 Signature Algorithm: sha256WithRSAEncryption 12:0f:20:29:48:85:2a:f5:ff:9d:84:24:8e:d4:9d:cf:4c:da: ef:2d:7d:e0:23:f3:08:6a:2a:63:16:07:36:7d:df:01:24:e8: 77:06:9b:93:73:0f:ef:0d:05:e3:d6:9b:43:49:57:b3:f7:c1: 00:5f:7a:a9:05:09:a6:96:1d:32:ef:9f:0a:ed:f3:47:37:0d: c1:6d:c4:ce:67:23:e5:58:87:6c:08:f6:d7:3f:26:f9:88:15: 3d:f5:f2:16:e2:76:09:97:35:d4:49:20:9d:5a:a8:be:a9:26: b3:d9:2d:3f:86:01:0e:e9:ee:5f:42:48:0e:8c:96:51:7f:0a: 03:da:3d:04:01:8e:2b:df:eb:d4:c7:2e:0e:f8:67:35:59:98: ed:f3:91:57:c6:1f:ee:3f:9f:48:e4:ba:21:92:c3:50:83:66: f5:08:27:5f:bb:6c:8f:94:7e:4d:5b:c8:6e:ab:18:07:80:44: f9:ec:86:8b:6b:ec:aa:11:d9:97:2c:f7:d9:8e:1f:da:c2:cb: 71:03:60:64:d7:bb:0b:fe:4b:c3:9e:1b:16:13:7c:e8:e7:5a: c4:ce:bb:71:6c:18:b6:40:79:c3:bd:18:be:c2:2b:91:27:cc: 72:30:d9:34:40:ec:21:17:1e:7c:1b:80:e0:83:b0:0b:dc:c7: cf:fd:d9:6c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM4NDcxMTAvBgNVBAUTKDc5RDY2QzY0QTYxNjVBMkU0Q0IzN0Q0OTcwMEU2Qzc2 MTg0MUMzOUEwHhcNMjQwOTEwMTc1NTAyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwODdmNi1jNGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhnJMzxV0uQVzqkg+68gOomnK5MksCbZ1EfZo5biDX8GYsH9PzoFwGNdcK38 X4zsso1nMGtALeQDJGbJbFSaFQs68BnH+eMtrBFxsvqXV/GikWUEflrtI/i+haza uBIEubT/g04Ad2If481utr0QdR6Q52giSWmaz/n19/mDj0gWbv3jvztoxVtD2tAp NfmUGMRi1wxvzXOn8yxwrYZycsI4p3adUikfluxMMtiZPKQEAUwvcMKe2WIB5yOF jcWoI9hh+uxG0sefoyFVQUXEF8dcYPJfbX056+3e0kVefzj2MSIY1PmX7INkNBGs 6m0sxkb1Y4AcXHXw9l/g8bz5wQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDHFQ6nd 7jPa8VzVmkCXRRsEg5IGMB8GA1UdIwQYMBaAFHnWbGSmFlouTLN9SXAObHYYQcOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzg0Ny9BQ0Y5NDM1MjlB RjMxMUU4QUFCNEQ1NURDNEY5QUUwMi9lZFpzWktZV1dpNU1zMzFKY0E1c2RoaEJ3 NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VkWnNaS1lXV2k1TXMzMUpjQTVzZGhoQnc1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM4NDcvQUNGOTQzNTI5QUYzMTFFOEFBQjRENTVEQzRGOUFFMDIvMTc3ODBFRjA5 QjNDMTFFOEExM0JBNjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnbtQDBAB7MSsDBADaZCUwDQYJKoZIhvcNAQELBQADggEB ABIPIClIhSr1/52EJI7Unc9M2u8tfeAj8whqKmMWBzZ93wEk6HcGm5NzD+8NBePW m0NJV7P3wQBfeqkFCaaWHTLvnwrt80c3DcFtxM5nI+VYh2wI9tc/JvmIFT318hbi dgmXNdRJIJ1aqL6pJrPZLT+GAQ7p7l9CSA6MllF/CgPaPQQBjivf69THLg74ZzVZ mO3zkVfGH+4/n0jkuiGSw1CDZvUIJ1+7bI+Ufk1byG6rGAeARPnshotr7KoR2Zcs 99mOH9rCy3EDYGTXuwv+S8OeGxYTfOjnWsTOu3FsGLZAecO9GL7CK5EnzHIw2TRA 7CEXHnwbgOCDsAvcx8/92Ww= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org