$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa File: AA97516E24CA11EFB59A9379C4F9AE02.roa (raw, json) Hash identifier: vY7AsZ08Pw1TlHVY7hGbU3NQuV3eecatAeSNrTUiOFk= Subject key identifier: 46:FD:91:FD:CE:CA:FD:0C:DA:50:43:E0:FC:3D:3D:20:73:53:33:00 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 50 Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa Signing time: Wed 09 Oct 2024 06:20:22 +0000 ROA not before: Wed 09 Oct 2024 06:20:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134167 IP address blocks: 103.37.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Oct 9 06:20:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670620a6-9fc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e8:47:e8:4e:70:41:2a:05:1f:1e:c2:cb:38: 3d:ad:f5:42:22:05:f6:5c:23:91:ab:bd:ba:8a:23: 3c:8a:0d:05:e7:e8:99:dc:d3:08:2d:34:4a:c9:9d: 56:f8:c0:84:cf:18:9f:e2:d2:d0:55:eb:a2:6d:ae: d7:16:4c:6a:65:cc:4d:b5:7b:b8:e8:39:10:c1:5f: 61:e3:dd:cf:c3:d3:fa:26:ef:ed:60:60:a5:7e:1d: 60:06:b6:fd:58:66:20:28:5c:b3:36:48:ca:b1:17: a4:72:51:98:a6:3a:2b:67:f1:46:90:8d:a4:8c:34: c2:84:0e:56:a2:41:d1:d9:4f:4f:bf:11:3a:01:5e: 5e:29:1b:2d:61:6f:42:cd:e2:6d:11:74:b9:bc:27: a5:4e:09:94:f9:47:53:7d:3f:14:09:90:36:68:e4: 95:df:21:b6:e6:07:78:85:b5:10:c0:6a:c1:bf:dc: 09:a2:dd:10:26:e2:90:92:07:a5:86:29:bd:6e:c6: b5:a4:61:12:08:34:35:06:f7:38:03:39:6b:a4:4e: 05:f8:82:03:62:da:b3:e7:4f:40:e6:8a:ac:5d:aa: 1c:9b:d4:3a:c6:ed:aa:52:fc:34:f3:45:5a:63:af: 1c:e7:e9:73:24:29:94:eb:82:8c:f9:dc:8c:c9:57: 0d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:FD:91:FD:CE:CA:FD:0C:DA:50:43:E0:FC:3D:3D:20:73:53:33:00 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/AA97516E24CA11EFB59A9379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 Signature Algorithm: sha256WithRSAEncryption 24:aa:92:10:0c:6d:05:1e:8e:fc:ed:9b:8d:27:f3:56:f3:ef: 62:5e:43:89:e8:9c:69:d1:8b:cf:32:af:7a:e8:26:ad:fc:c9: 25:80:e3:8e:74:82:20:00:16:8f:30:7e:b2:1b:a7:25:bc:f2: 81:0c:ab:dd:45:11:29:a9:38:ac:c7:25:30:e7:02:97:34:83: f8:c4:a9:64:76:a4:17:f0:96:9b:0c:9d:e6:84:cc:36:8e:13: e5:27:cc:94:70:f1:f0:8e:f6:5a:74:00:e3:32:da:ef:73:b7: 9c:4f:92:b9:c9:6f:32:73:63:df:3c:42:b5:3e:24:49:1f:d5: c3:b0:42:58:41:5e:bb:01:37:f5:53:b3:6b:77:a2:52:ab:14: de:bb:b5:68:d6:c5:98:78:80:b5:eb:25:c6:88:dc:5f:a8:32: 43:16:9d:21:c6:77:91:46:ef:f4:aa:ba:35:cd:bc:99:7b:e2: 47:7d:8b:3f:59:2a:bc:a4:e6:58:71:24:a9:9e:bd:11:c3:a1: 2f:de:33:a0:26:1b:43:2e:75:9c:c5:22:35:14:b9:f1:04:ff: d2:60:5e:52:d7:c2:c6:09:d0:52:5d:da:7f:f7:fa:c7:ae:ca: d7:b7:c4:e6:90:da:8c:aa:ce:ec:71:3a:53:01:0d:97:14:15: 81:61:cf:f2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDEwMDkwNjIwMjJaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyMGE2LTlmYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCo6EfoTnBBKgUfHsLLOD2t9UIiBfZcI5GrvbqKIzyKDQXn6Jnc0wgtNErJnVb4 wITPGJ/i0tBV66JtrtcWTGplzE21e7joORDBX2Hj3c/D0/om7+1gYKV+HWAGtv1Y ZiAoXLM2SMqxF6RyUZimOitn8UaQjaSMNMKEDlaiQdHZT0+/EToBXl4pGy1hb0LN 4m0RdLm8J6VOCZT5R1N9PxQJkDZo5JXfIbbmB3iFtRDAasG/3Ami3RAm4pCSB6WG Kb1uxrWkYRIINDUG9zgDOWukTgX4ggNi2rPnT0Dmiqxdqhyb1DrG7apS/DTzRVpj rxzn6XMkKZTrgoz53IzJVw05AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURv2R/c7K /QzaUEPg/D09IHNTMwAwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9BQTk3NTE2RTI0 Q0ExMUVGQjU5QTkzNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcl5DANBgkqhkiG9w0BAQsFAAOCAQEAJKqSEAxtBR6O/O2b jSfzVvPvYl5DieicadGLzzKveugmrfzJJYDjjnSCIAAWjzB+shunJbzygQyr3UUR Kak4rMclMOcClzSD+MSpZHakF/CWmwyd5oTMNo4T5SfMlHDx8I72WnQA4zLa73O3 nE+SuclvMnNj3zxCtT4kSR/Vw7BCWEFeuwE39VOza3eiUqsU3ru1aNbFmHiAtesl xojcX6gyQxadIcZ3kUbv9Kq6Nc28mXviR32LP1kqvKTmWHEkqZ69EcOhL94zoCYb Qy51nMUiNRS58QT/0mBeUtfCxgnQUl3af/f6x67K17fE5pDajKrO7HE6UwENlxQV gWHP8g== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org