$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/A8F7B7208F7011EFA8519D15C4F9AE02.roa File: A8F7B7208F7011EFA8519D15C4F9AE02.roa (raw, json) Hash identifier: DvbTeWu/6jb5qDgVAqzShqt5LvRri3sEhAu3q9rbF2Y= Subject key identifier: 63:29:15:38:E5:7D:6E:8C:A7:E4:12:A1:CF:93:D3:41:01:18:5A:E3 Certificate issuer: /CN=A91C4E62/serialNumber=6580910B55FAE5FF60F71EB2070470A1262E343B Certificate serial: 86 Authority key identifier: 65:80:91:0B:55:FA:E5:FF:60:F7:1E:B2:07:04:70:A1:26:2E:34:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYCRC1X65f9g9x6yBwRwoSYuNDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/A8F7B7208F7011EFA8519D15C4F9AE02.roa Signing time: Mon 21 Oct 2024 05:52:31 +0000 ROA not before: Mon 21 Oct 2024 05:52:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 49915 IP address blocks: 103.42.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/ZYCRC1X65f9g9x6yBwRwoSYuNDs.crl rsync://rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/ZYCRC1X65f9g9x6yBwRwoSYuNDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYCRC1X65f9g9x6yBwRwoSYuNDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:35:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4E62/serialNumber=6580910B55FAE5FF60F71EB2070470A1262E343B Validity Not Before: Oct 21 05:52:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6715ec1e-e2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:bd:37:d9:10:20:ac:80:a4:51:68:e4:5a: d8:92:3e:b5:6c:7d:f4:1e:f9:6f:8b:e7:8d:4c:2e: fd:d2:4b:87:31:98:29:87:76:23:40:29:1c:4e:ab: b6:62:4c:84:bd:38:05:86:a6:a8:f5:d4:74:0a:92: 12:14:c5:a3:dc:92:9f:ca:3c:d4:69:b1:36:f5:12: 61:82:47:67:56:67:1f:55:05:c7:d0:77:77:ed:af: cc:1d:8e:79:cc:b1:43:9b:2b:12:68:5d:0d:02:b3: a5:d5:86:60:26:24:15:86:ab:24:18:e3:e8:b6:9c: e3:c8:6e:67:e2:8f:36:c3:28:e6:39:af:e5:81:62: d8:98:00:76:d4:3e:54:cf:28:ac:01:a1:b0:7f:3f: 29:25:23:b3:82:05:87:96:86:ea:5d:88:f2:06:06: a2:ec:6b:a3:2f:8b:fa:62:bb:39:aa:f3:56:f8:09: 17:7c:83:e1:d4:d3:5f:0c:85:88:34:b6:03:1c:a2: 47:df:87:42:c6:58:d1:d0:6c:1c:e2:0e:2b:59:2d: 18:ea:91:23:70:0a:81:a1:9d:94:84:f8:04:49:bb: d7:66:00:d1:9f:76:ab:d5:3e:84:82:81:48:fa:57: 13:7f:ea:c2:fb:69:94:2b:5d:31:85:15:52:7f:c0: 57:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:29:15:38:E5:7D:6E:8C:A7:E4:12:A1:CF:93:D3:41:01:18:5A:E3 X509v3 Authority Key Identifier: keyid:65:80:91:0B:55:FA:E5:FF:60:F7:1E:B2:07:04:70:A1:26:2E:34:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/ZYCRC1X65f9g9x6yBwRwoSYuNDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZYCRC1X65f9g9x6yBwRwoSYuNDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4E62/702A028CC99F11EEA8158E79C4F9AE02/A8F7B7208F7011EFA8519D15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.63.0/24 Signature Algorithm: sha256WithRSAEncryption 03:2b:1b:fc:64:63:7f:55:e4:d9:3e:42:99:42:ee:cd:8f:6a: 8c:82:b9:9a:09:f9:f3:1a:9c:f1:a3:a4:e3:6f:06:76:34:2f: 5c:06:27:cc:de:41:00:08:bf:7e:26:cf:a3:b7:ff:53:37:60: ab:5b:e9:84:23:2a:8a:2d:cb:76:05:47:49:b6:1f:bd:8c:6f: f0:0b:61:f1:b5:38:5b:56:0f:4a:bd:5b:4d:6d:fa:dd:35:ac: 73:fd:82:06:54:a1:7b:41:26:3d:61:fe:e4:f1:1b:15:6a:30: aa:f5:82:49:fb:bc:25:84:ee:4d:ab:0a:cc:d3:84:27:12:e8: 35:45:0f:ff:1e:cc:2b:aa:68:8a:7b:f8:f8:09:9a:90:5b:eb: c1:de:67:04:a6:6d:54:41:81:97:dd:df:82:aa:2d:ed:7b:58: 41:98:d0:6a:d6:0f:f2:4f:68:c0:46:e8:0b:c4:d0:bd:2f:cd: ed:8c:60:84:de:9e:67:c1:a6:96:13:53:f7:80:20:23:eb:b7: e0:d0:e0:71:d9:0a:38:1a:4b:2a:22:08:c3:d7:8d:b7:7b:cb: 4d:1f:eb:1e:ff:34:bf:fb:94:9e:a8:25:7b:2d:e2:46:62:f5: 15:1b:47:d1:f9:5f:d4:cf:76:fd:3f:63:64:64:13:70:71:04: 0a:ed:b6:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRFNjIxMTAvBgNVBAUTKDY1ODA5MTBCNTVGQUU1RkY2MEY3MUVCMjA3MDQ3MEEx MjYyRTM0M0IwHhcNMjQxMDIxMDU1MjMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE1ZWMxZS1lMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0O9N9kQIKyApFFo5FrYkj61bH30Hvlvi+eNTC790kuHMZgph3YjQCkcTqu2 YkyEvTgFhqao9dR0CpISFMWj3JKfyjzUabE29RJhgkdnVmcfVQXH0Hd37a/MHY55 zLFDmysSaF0NArOl1YZgJiQVhqskGOPotpzjyG5n4o82wyjmOa/lgWLYmAB21D5U zyisAaGwfz8pJSOzggWHlobqXYjyBgai7GujL4v6Yrs5qvNW+AkXfIPh1NNfDIWI NLYDHKJH34dCxljR0Gwc4g4rWS0Y6pEjcAqBoZ2UhPgESbvXZgDRn3ar1T6EgoFI +lcTf+rC+2mUK10xhRVSf8BXvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGMpFTjl fW6Mp+QSoc+T00EBGFrjMB8GA1UdIwQYMBaAFGWAkQtV+uX/YPcesgcEcKEmLjQ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEU2Mi83MDJBMDI4Q0M5 OUYxMUVFQTgxNThFNzlDNEY5QUUwMi9aWUNSQzFYNjVmOWc5eDZ5QndSd29TWXVO RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pZQ1JDMVg2NWY5Zzl4NnlCd1J3b1NZdU5Ecy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRFNjIvNzAyQTAyOENDOTlGMTFFRUE4MTU4RTc5QzRGOUFFMDIvQThGN0I3MjA4 RjcwMTFFRkE4NTE5RDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKj8wDQYJKoZIhvcNAQELBQADggEBAAMrG/xkY39V5Nk+ QplC7s2PaoyCuZoJ+fManPGjpONvBnY0L1wGJ8zeQQAIv34mz6O3/1M3YKtb6YQj Kooty3YFR0m2H72Mb/ALYfG1OFtWD0q9W01t+t01rHP9ggZUoXtBJj1h/uTxGxVq MKr1gkn7vCWE7k2rCszThCcS6DVFD/8ezCuqaIp7+PgJmpBb68HeZwSmbVRBgZfd 34KqLe17WEGY0GrWD/JPaMBG6AvE0L0vze2MYITenmfBppYTU/eAICPrt+DQ4HHZ CjgaSyoiCMPXjbd7y00f6x7/NL/7lJ6oJXst4kZi9RUbR9H5X9TPdv0/Y2RkE3Bx BArttnA= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org