$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/D3258BFA7AE711EFB4F5E235C4F9AE02.roa File: D3258BFA7AE711EFB4F5E235C4F9AE02.roa (raw, json) Hash identifier: F66KRO3HX23B69pDBEZYwL6mvXNw35L3tQ34WyClcoc= Subject key identifier: A6:8C:03:48:C6:AA:FB:7A:23:14:1B:43:58:37:CD:D8:0E:12:E6:A2 Certificate issuer: /CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Certificate serial: 10F2 Authority key identifier: CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/D3258BFA7AE711EFB4F5E235C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:42:37 +0000 ROA not before: Wed 25 Sep 2024 02:42:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 13444 IP address blocks: 103.127.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Validity Not Before: Sep 25 02:42:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66f3789d-6ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:37:53:07:76:aa:3e:68:ef:72:33:dc:ad:96: 1f:90:81:f6:26:af:47:60:22:97:f6:a8:fc:8d:a7: 59:78:47:b3:8f:29:e8:85:ad:33:76:d1:54:9d:83: cc:84:eb:4d:d0:ae:f8:9e:1a:ba:25:38:27:50:06: a8:74:a9:11:91:d6:76:59:c6:5d:e8:c1:51:63:6a: 09:6c:76:c6:88:ee:1a:5f:9d:aa:9b:43:80:7b:17: 84:d1:af:1e:3e:a3:1f:7d:06:3a:68:70:63:3e:50: 43:48:5f:76:ac:69:59:44:d9:b1:10:69:dd:0b:db: 2d:82:cf:50:c7:21:bb:46:d4:2a:9d:3b:f4:1e:28: d4:30:65:85:ac:0c:88:73:12:8f:d2:9f:55:f4:09: c9:dc:f3:ec:2c:52:39:2e:01:e7:8c:b8:65:da:5b: 3a:78:7c:b6:90:13:40:2b:60:57:3e:46:1e:59:66: f1:d4:63:c7:df:00:8d:78:31:41:98:87:8e:f5:31: 8a:18:6b:59:c8:2b:c2:69:4c:a3:11:3f:b3:8a:8b: 96:72:c3:1c:36:19:8d:ec:f7:7d:40:0f:34:be:16: e5:ed:dd:24:af:df:07:72:ce:69:5f:e4:7d:29:3c: a2:5e:e0:ad:53:5c:40:91:ac:01:e1:ad:73:56:23: ab:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8C:03:48:C6:AA:FB:7A:23:14:1B:43:58:37:CD:D8:0E:12:E6:A2 X509v3 Authority Key Identifier: keyid:CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/D3258BFA7AE711EFB4F5E235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.248.0/22 Signature Algorithm: sha256WithRSAEncryption 78:f5:e3:9b:a0:73:a7:c1:3d:29:c9:28:45:2b:52:a4:67:cb: 6f:a5:eb:e4:f9:c9:4b:e5:55:c7:86:38:bf:82:87:4b:35:56: 34:03:11:e4:e0:f6:7a:9d:e5:ac:86:20:4c:b3:80:24:b9:d6: de:79:0d:98:6f:73:06:15:5e:28:98:19:37:63:91:df:b0:6b: a6:02:45:0d:f5:e5:97:64:11:aa:0d:d7:07:f5:3c:1a:cf:95: 36:94:64:48:38:eb:6a:e6:e5:aa:1d:38:94:6d:e8:67:ad:39: 46:0e:76:1a:aa:70:b8:20:1f:4b:93:3e:d2:0a:d2:a5:5c:c2: 8f:78:16:6f:7f:72:7e:67:0f:58:79:d6:e3:f3:1e:25:84:52: 1f:4c:5c:05:83:ce:94:bd:cb:fb:d7:3e:42:82:58:48:36:51: 67:91:f4:b9:cc:c2:d0:5b:c1:92:cf:d4:1b:8d:de:79:f5:b6: e8:3b:68:df:5f:d2:0e:ce:e6:2a:33:5e:f3:7d:46:80:d4:22: a1:08:03:57:32:fe:02:88:9c:62:11:fd:66:97:51:78:8f:24: 62:b7:23:76:86:88:04:ba:a1:c5:0d:ff:bb:72:59:d1:f5:4b: 72:a5:24:5d:37:8c:22:3f:84:d6:57:3d:0f:16:71:0a:c6:b9: f5:75:71:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGQjUxMTAvBgNVBAUTKENBRkEyMEE5MDE4MDk1RDIyOUYwQUM0MzkyMERDRDQz QTY2QkVCNTIwHhcNMjQwOTI1MDI0MjM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNzg5ZC02YWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+DdTB3aqPmjvcjPcrZYfkIH2Jq9HYCKX9qj8jadZeEezjynoha0zdtFUnYPM hOtN0K74nhq6JTgnUAaodKkRkdZ2WcZd6MFRY2oJbHbGiO4aX52qm0OAexeE0a8e PqMffQY6aHBjPlBDSF92rGlZRNmxEGndC9stgs9QxyG7RtQqnTv0HijUMGWFrAyI cxKP0p9V9AnJ3PPsLFI5LgHnjLhl2ls6eHy2kBNAK2BXPkYeWWbx1GPH3wCNeDFB mIeO9TGKGGtZyCvCaUyjET+ziouWcsMcNhmN7Pd9QA80vhbl7d0kr98Hcs5pX+R9 KTyiXuCtU1xAkawB4a1zViOraQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKaMA0jG qvt6IxQbQ1g3zdgOEuaiMB8GA1UdIwQYMBaAFMr6IKkBgJXSKfCsQ5INzUOma+tS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEZCNS9FRjk4N0VFMjA5 RDExMUU5OTU2MDdCNTJDNEY5QUUwMi95dm9ncVFHQWxkSXA4S3hEa2czTlE2WnI2 MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l2b2dxUUdBbGRJcDhLeERrZzNOUTZacjYxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGQjUvRUY5ODdFRTIwOUQxMTFFOTk1NjA3QjUyQzRGOUFFMDIvRDMyNThCRkE3 QUU3MTFFRkI0RjVFMjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnf/gwDQYJKoZIhvcNAQELBQADggEBAHj145ugc6fBPSnJ KEUrUqRny2+l6+T5yUvlVceGOL+Ch0s1VjQDEeTg9nqd5ayGIEyzgCS51t55DZhv cwYVXiiYGTdjkd+wa6YCRQ315ZdkEaoN1wf1PBrPlTaUZEg462rm5aodOJRt6Get OUYOdhqqcLggH0uTPtIK0qVcwo94Fm9/cn5nD1h51uPzHiWEUh9MXAWDzpS9y/vX PkKCWEg2UWeR9LnMwtBbwZLP1BuN3nn1tug7aN9f0g7O5iozXvN9RoDUIqEIA1cy /gKInGIR/WaXUXiPJGK3I3aGiAS6ocUN/7tyWdH1S3KlJF03jCI/hNZXPQ8WcQrG ufV1cVA= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org