$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/8E8A375A1FA211EC8159E249C4F9AE02.roa File: 8E8A375A1FA211EC8159E249C4F9AE02.roa (raw, json) Hash identifier: UmJY1BD67VDnKp5rZ226vLsxoH0ZrDVh7W0eseZRq3E= Subject key identifier: CA:B0:30:08:D3:C0:5D:BF:34:FF:DD:8F:21:7F:3D:E9:D8:FD:11:36 Certificate issuer: /CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Certificate serial: 0442 Authority key identifier: 50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/8E8A375A1FA211EC8159E249C4F9AE02.roa Signing time: Sat 03 Aug 2024 01:44:14 +0000 ROA not before: Sat 03 Aug 2024 01:44:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134434 IP address blocks: 103.193.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1090 (0x442) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Validity Not Before: Aug 3 01:44:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad8b6e-8b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:73:0c:91:19:35:a6:ac:da:8b:26:ea:ed: a2:dd:0b:cd:a5:91:f3:f9:57:83:f1:1b:8c:07:43: 25:cf:71:aa:bc:a9:ec:40:e1:b7:ca:33:c6:ff:ae: 20:43:35:18:e3:cb:82:84:54:15:16:f0:e7:7c:ab: eb:9c:2f:b7:bb:a6:17:af:51:01:53:d0:a1:a5:26: fa:1c:a1:84:00:ae:33:8e:25:74:3e:f6:aa:38:f8: 37:1e:23:c3:3d:d5:a7:60:07:57:0b:e1:ea:85:78: 70:1c:d4:07:af:f1:b1:36:97:1d:4a:c3:88:f9:3e: 2c:70:f8:db:a8:d8:30:3f:17:01:8a:28:d8:14:54: 51:64:e8:56:f2:c9:b4:13:de:0c:c9:59:4f:09:04: e5:dd:62:70:f8:16:96:83:f7:bf:bb:9f:6c:8c:3d: 21:60:96:41:46:c2:5b:cb:fe:f3:9b:e2:fa:4a:d9: 18:30:9f:a8:21:39:93:6e:18:7a:85:c6:51:c5:c3: d6:2f:89:76:3d:76:fe:82:e7:8a:fc:56:10:38:d8: 86:ca:01:41:45:a4:6b:fd:be:a5:f1:9c:5f:86:06: 12:1b:71:79:78:c4:38:6d:92:68:9c:8d:0a:41:7b: b5:ad:fc:d5:36:58:99:ea:36:65:6f:8a:23:36:af: 74:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B0:30:08:D3:C0:5D:BF:34:FF:DD:8F:21:7F:3D:E9:D8:FD:11:36 X509v3 Authority Key Identifier: keyid:50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/8E8A375A1FA211EC8159E249C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.165.0/24 Signature Algorithm: sha256WithRSAEncryption c6:47:0e:5f:f1:c7:a8:e5:fb:f6:0d:71:da:32:75:e4:d4:59: c1:82:9e:7b:b9:40:05:b9:62:64:ef:2f:8b:19:d6:a9:f7:e1: 69:26:db:87:b9:c5:52:22:f5:58:22:9b:5a:7d:d4:d6:97:78: 40:f8:70:ae:0d:1a:8c:be:43:b9:0f:b7:a7:8c:28:41:0f:91: 3a:25:16:b6:1b:21:ff:cb:c1:90:2c:de:5d:fe:2f:4b:83:f6: 67:47:2e:6f:af:18:28:1e:da:c3:6e:94:40:c1:69:c7:ca:88: 8b:a3:45:ea:b2:10:e0:6e:84:68:7c:f2:af:08:0f:ab:c0:8b: f9:52:7d:18:c5:3b:c9:7e:61:c7:f7:db:28:e7:07:83:f2:f4: 4c:72:e6:7c:e3:7b:63:5d:69:48:f9:b8:ed:26:61:07:af:8f: e7:fb:5c:79:d7:95:89:1d:a0:a7:ab:29:16:ea:06:53:62:3e: 31:9a:b9:27:69:80:32:3e:05:18:44:d3:70:7b:1b:6b:6d:2f: f7:3d:9a:67:49:0b:5f:e4:52:80:1f:63:de:b4:b1:51:44:a7: 8a:c6:9d:c9:8c:ca:fb:0a:16:57:83:f7:fd:8d:ee:2b:19:3a: 1e:a5:85:82:45:3b:8f:b2:91:48:13:38:bd:90:d7:a8:f9:3e: c7:80:52:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCQzQxMTAvBgNVBAUTKDUwREFBM0EyNzE1QkVEQ0ZFNzE0RTU2RDg1NDFGN0Yz NTg2RTZFRjcwHhcNMjQwODAzMDE0NDE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkOGI2ZS04YjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBdzDJEZNaas2osm6u2i3QvNpZHz+VeD8RuMB0Mlz3GqvKnsQOG3yjPG/64g QzUY48uChFQVFvDnfKvrnC+3u6YXr1EBU9ChpSb6HKGEAK4zjiV0PvaqOPg3HiPD PdWnYAdXC+HqhXhwHNQHr/GxNpcdSsOI+T4scPjbqNgwPxcBiijYFFRRZOhW8sm0 E94MyVlPCQTl3WJw+BaWg/e/u59sjD0hYJZBRsJby/7zm+L6StkYMJ+oITmTbhh6 hcZRxcPWL4l2PXb+gueK/FYQONiGygFBRaRr/b6l8ZxfhgYSG3F5eMQ4bZJonI0K QXu1rfzVNliZ6jZlb4ojNq90VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMqwMAjT wF2/NP/djyF/PenY/RE2MB8GA1UdIwQYMBaAFFDao6JxW+3P5xTlbYVB9/NYbm73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkJDNC8zQzRCMDEzMjFG OUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdjX25GT1Z0aFVIMzgxaHVi dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOcWpvbkZiN2NfbkZPVnRoVUgzODFodWJ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JCQzQvM0M0QjAxMzIxRjlDMTFFQzkwOTRGMDVEQzRGOUFFMDIvOEU4QTM3NUEx RkEyMTFFQzgxNTlFMjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnwaUwDQYJKoZIhvcNAQELBQADggEBAMZHDl/xx6jl+/YN cdoydeTUWcGCnnu5QAW5YmTvL4sZ1qn34Wkm24e5xVIi9Vgim1p91NaXeED4cK4N Goy+Q7kPt6eMKEEPkTolFrYbIf/LwZAs3l3+L0uD9mdHLm+vGCge2sNulEDBacfK iIujReqyEOBuhGh88q8ID6vAi/lSfRjFO8l+Ycf32yjnB4Py9Exy5nzje2NdaUj5 uO0mYQevj+f7XHnXlYkdoKerKRbqBlNiPjGauSdpgDI+BRhE03B7G2ttL/c9mmdJ C1/kUoAfY960sVFEp4rGncmMyvsKFleD9/2N7isZOh6lhYJFO4+ykUgTOL2Q16j5 PseAUlE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org