$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa File: A074721624CA11EF93486579C4F9AE02.roa (raw, json) Hash identifier: EAuwmClXGMo+6npZ19N/RRkMj4x/6MUGDRCOhMDeS9A= Subject key identifier: E8:13:26:75:DC:BE:3A:85:92:EE:2B:73:9C:0F:05:BA:FA:31:6D:B1 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 4F Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa Signing time: Wed 09 Oct 2024 06:20:21 +0000 ROA not before: Wed 09 Oct 2024 06:20:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134165 IP address blocks: 103.37.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Oct 9 06:20:21 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670620a5-449f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4b:4a:42:d4:c9:9f:b5:0b:12:90:98:e3:1e: e9:ae:a4:26:b4:ce:04:81:7c:4f:7d:b2:3f:90:b3: 29:4d:b3:57:d6:e4:e9:e0:e6:8c:ab:0a:07:8c:ca: 63:be:70:07:65:53:e1:2f:e7:cc:f8:a4:42:e6:91: ce:31:3c:d8:da:7a:6a:1c:67:0d:1c:8a:68:e2:31: d0:16:be:8b:e8:76:7b:1b:07:27:6b:7b:98:96:30: b6:22:bb:ef:26:25:b1:ed:fb:14:e2:f8:f1:1a:4e: 73:9f:81:70:88:84:bd:3b:96:b3:19:03:a1:d3:1a: 29:32:a9:c2:53:fb:95:85:c4:93:a7:45:ba:62:2e: 67:a5:47:b8:ee:68:ed:47:dc:71:8a:37:33:fe:83: 4b:77:6f:24:af:76:a1:25:64:14:a8:6a:6b:cd:dc: ce:f5:a3:9c:4e:65:61:a6:64:3f:1a:4a:cc:c6:07: 17:67:22:5a:95:be:df:e1:6e:a3:c6:e5:89:a6:ad: 4d:fd:a7:8f:95:41:4c:be:2c:91:e0:9c:c1:39:e9: 71:0b:e4:ef:eb:59:da:dc:41:29:58:0d:3b:ca:aa: fb:20:68:ed:72:3c:39:c5:bc:78:09:53:4d:4b:42: 50:23:20:e2:3f:32:03:19:62:0c:e8:34:0e:30:69: 13:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:13:26:75:DC:BE:3A:85:92:EE:2B:73:9C:0F:05:BA:FA:31:6D:B1 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c9:60:d2:61:28:2f:77:19:53:fd:f4:db:4a:ec:1d:f5:d4: ee:08:a4:5a:57:d2:63:03:43:bf:21:b4:0f:96:42:ed:15:f9: 80:66:58:63:fc:28:34:82:8b:42:99:99:03:c4:9d:55:33:53: 95:ec:c6:d1:a9:c4:a5:e0:a2:0c:8d:96:0c:c6:89:5f:e6:4a: 70:7d:34:9d:6d:dc:95:86:c2:d7:44:4b:09:01:55:ee:37:18: df:cb:2e:4f:56:22:94:e9:34:36:47:ea:30:f7:fe:44:9b:f2: 12:65:fe:0f:c8:33:20:af:80:64:ab:15:fe:51:92:cb:3a:81: e9:7e:f7:dd:10:81:98:b7:d7:44:d7:4b:a5:cc:72:de:3e:13: 83:11:58:f7:39:2e:a8:cc:50:9c:b5:0f:ad:aa:6a:ba:43:9b: 46:03:e5:8b:c7:14:1e:91:13:0f:df:14:95:39:e8:5b:30:4d: 0a:e2:75:8c:79:01:a9:80:37:e6:5b:39:41:a7:2e:f3:76:88: 9e:7e:34:d3:e1:82:5a:a9:5b:a2:31:6a:b6:cb:d0:fd:63:d5: cd:b8:4a:95:0d:af:88:d3:cc:66:52:e5:36:d5:75:95:cf:91: 21:7b:a2:3e:fb:87:4a:f4:75:e7:ee:ef:60:10:85:de:83:b3: 33:30:33:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDEwMDkwNjIwMjFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyMGE1LTQ0OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtS0pC1MmftQsSkJjjHumupCa0zgSBfE99sj+QsylNs1fW5Ong5oyrCgeMymO+ cAdlU+Ev58z4pELmkc4xPNjaemocZw0cimjiMdAWvovodnsbBydre5iWMLYiu+8m JbHt+xTi+PEaTnOfgXCIhL07lrMZA6HTGikyqcJT+5WFxJOnRbpiLmelR7juaO1H 3HGKNzP+g0t3bySvdqElZBSoamvN3M71o5xOZWGmZD8aSszGBxdnIlqVvt/hbqPG 5YmmrU39p4+VQUy+LJHgnME56XEL5O/rWdrcQSlYDTvKqvsgaO1yPDnFvHgJU01L QlAjIOI/MgMZYgzoNA4waROfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6BMmddy+ OoWS7itznA8FuvoxbbEwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9BMDc0NzIxNjI0 Q0ExMUVGOTM0ODY1NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcl5DANBgkqhkiG9w0BAQsFAAOCAQEAuMlg0mEoL3cZU/30 20rsHfXU7gikWlfSYwNDvyG0D5ZC7RX5gGZYY/woNIKLQpmZA8SdVTNTlezG0anE peCiDI2WDMaJX+ZKcH00nW3clYbC10RLCQFV7jcY38suT1YilOk0NkfqMPf+RJvy EmX+D8gzIK+AZKsV/lGSyzqB6X733RCBmLfXRNdLpcxy3j4TgxFY9zkuqMxQnLUP rapqukObRgPli8cUHpETD98UlTnoWzBNCuJ1jHkBqYA35ls5Qacu83aInn400+GC WqlbojFqtsvQ/WPVzbhKlQ2viNPMZlLlNtV1lc+RIXuiPvuHSvR15+7vYBCF3oOz MzAzvA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org