$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/371059F4B8A311EEBDA30041C4F9AE02.roa File: 371059F4B8A311EEBDA30041C4F9AE02.roa (raw, json) Hash identifier: S3mbIiQ1nO0L4Bz9sTuCjtwzB96XobjR5ufSof/xnsw= Subject key identifier: 72:AE:BD:41:84:B4:A1:5C:DE:13:7B:26:3B:FF:F7:02:1E:3F:C4:F7 Certificate issuer: /CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9 Certificate serial: B4 Authority key identifier: 70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/371059F4B8A311EEBDA30041C4F9AE02.roa Signing time: Sat 09 Nov 2024 04:37:36 +0000 ROA not before: Sat 09 Nov 2024 04:37:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 148973 IP address blocks: 103.175.26.0/23 maxlen: 23 103.175.26.0/24 maxlen: 24 103.175.27.0/24 maxlen: 24 2001:df0:5a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.crl rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE6D7/serialNumber=70CD02B6642479A874462715706E6AA9A89DA2C9 Validity Not Before: Nov 9 04:37:35 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672ee70f-d737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8a:1b:42:d3:03:ab:82:62:f5:84:38:56:87: d0:ad:e3:0d:59:a9:f4:6c:14:49:6c:bf:20:70:10: 26:f1:bf:3a:5b:65:bf:89:0b:de:e8:bf:5c:66:0e: e0:4c:22:aa:cb:9a:6b:e0:ed:0b:cc:bc:09:9f:4d: 80:26:b4:23:23:cd:91:14:d6:24:62:7b:28:69:fd: 08:f9:8e:b9:79:5f:94:e8:d3:34:09:bf:40:92:63: db:52:12:b9:65:7c:81:7a:1a:1e:bd:f6:c1:cc:2c: 25:8c:df:04:44:08:60:03:69:75:bf:df:1d:a4:18: 56:ab:1a:5f:32:db:ef:6e:fa:0e:86:ca:fd:22:3a: 34:8d:b4:a3:30:27:ef:2a:77:a5:33:be:f2:8a:d4: ef:c7:0c:49:3e:32:b1:1b:17:07:fb:fd:8e:8a:bf: b5:88:9e:26:99:81:df:13:12:de:80:66:b2:59:da: 3d:49:b4:cf:a8:5a:80:b9:d1:ee:c4:14:0a:29:98: 43:2e:da:28:3d:43:ee:b7:ca:d3:2c:7a:38:b1:4d: 44:8f:ae:0e:d9:e8:a4:8c:8d:87:5f:cf:1f:6b:b4: 64:6c:4e:e8:b6:0d:ea:9b:e8:1a:72:6c:08:33:b2: f8:6e:b1:4b:5e:43:cd:e1:74:53:e0:38:b4:fe:ff: db:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AE:BD:41:84:B4:A1:5C:DE:13:7B:26:3B:FF:F7:02:1E:3F:C4:F7 X509v3 Authority Key Identifier: keyid:70:CD:02:B6:64:24:79:A8:74:46:27:15:70:6E:6A:A9:A8:9D:A2:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/cM0CtmQkeah0RicVcG5qqaidosk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM0CtmQkeah0RicVcG5qqaidosk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE6D7/71A51574AEF211EEB293B480C4F9AE02/371059F4B8A311EEBDA30041C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.26.0/23 IPv6: 2001:df0:5a40::/48 Signature Algorithm: sha256WithRSAEncryption 17:ae:76:13:ce:59:cf:ce:01:e1:cb:47:ce:17:0f:13:eb:3b: b9:d0:e4:43:ca:6b:7a:cb:7c:61:fa:76:c1:98:15:33:f8:a3: f3:39:e4:0d:d8:d5:18:eb:25:f6:64:c0:9d:26:11:79:23:d8: a5:61:15:76:87:18:8a:ab:d1:03:6c:02:b9:99:6c:58:63:49: 49:ce:6c:21:bc:fa:2d:dd:cf:a8:b6:45:2d:d4:83:e5:d7:b9: 59:82:d0:cd:0e:49:16:98:a0:16:b1:1c:de:d3:c2:de:70:15: a7:e4:fa:15:31:71:3e:75:4d:8f:a6:36:d4:1d:b9:22:12:cd: 02:b7:4a:79:fb:02:d7:07:33:12:e4:1e:1d:9f:f5:ff:02:55: ab:81:0d:b4:44:3c:45:39:de:02:70:dd:06:80:07:e9:da:49: 51:a6:76:10:ea:86:8b:fe:58:2e:49:15:a1:1a:00:ff:46:4c: a6:dc:0a:11:eb:c5:54:89:fe:71:95:a9:81:16:a2:45:62:ff: c3:c3:e9:6a:ed:bb:ff:02:ec:92:b7:36:e0:34:43:12:ef:aa: b0:6f:e9:b4:75:01:0f:ca:88:8a:48:5f:1f:b5:2f:fa:26:a4: ff:bc:5a:18:95:0f:2f:22:a3:ae:65:30:78:9d:0b:a1:1c:f0: 93:8f:ab:42 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU2RDcxMTAvBgNVBAUTKDcwQ0QwMkI2NjQyNDc5QTg3NDQ2MjcxNTcwNkU2QUE5 QTg5REEyQzkwHhcNMjQxMTA5MDQzNzM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlZTcwZi1kNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArIobQtMDq4Ji9YQ4VofQreMNWan0bBRJbL8gcBAm8b86W2W/iQve6L9cZg7g TCKqy5pr4O0LzLwJn02AJrQjI82RFNYkYnsoaf0I+Y65eV+U6NM0Cb9AkmPbUhK5 ZXyBehoevfbBzCwljN8ERAhgA2l1v98dpBhWqxpfMtvvbvoOhsr9Ijo0jbSjMCfv KnelM77yitTvxwxJPjKxGxcH+/2Oir+1iJ4mmYHfExLegGayWdo9SbTPqFqAudHu xBQKKZhDLtooPUPut8rTLHo4sU1Ej64O2eikjI2HX88fa7RkbE7otg3qm+gacmwI M7L4brFLXkPN4XRT4Di0/v/bjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHKuvUGE tKFc3hN7Jjv/9wIeP8T3MB8GA1UdIwQYMBaAFHDNArZkJHmodEYnFXBuaqmonaLJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTZENy83MUE1MTU3NEFF RjIxMUVFQjI5M0I0ODBDNEY5QUUwMi9jTTBDdG1Ra2VhaDBSaWNWY0c1cXFhaWRv c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNMEN0bVFrZWFoMFJpY1ZjRzVxcWFpZG9zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkU2RDcvNzFBNTE1NzRBRUYyMTFFRUIyOTNCNDgwQzRGOUFFMDIvMzcxMDU5RjRC OEEzMTFFRUJEQTMwMDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrxowDwQCAAIwCQMHACABDfBaQDANBgkqhkiG9w0BAQsF AAOCAQEAF652E85Zz84B4ctHzhcPE+s7udDkQ8prest8Yfp2wZgVM/ij8znkDdjV GOsl9mTAnSYReSPYpWEVdocYiqvRA2wCuZlsWGNJSc5sIbz6Ld3PqLZFLdSD5de5 WYLQzQ5JFpigFrEc3tPC3nAVp+T6FTFxPnVNj6Y21B25IhLNArdKefsC1wczEuQe HZ/1/wJVq4ENtEQ8RTneAnDdBoAH6dpJUaZ2EOqGi/5YLkkVoRoA/0ZMptwKEevF VIn+cZWpgRaiRWL/w8Ppau27/wLskrc24DRDEu+qsG/ptHUBD8qIikhfH7Uv+iak /7xaGJUPLyKjrmUweJ0LoRzwk4+rQg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org