$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa File: 073BC4F4ED3B11EDB5A01A46C4F9AE02.roa (raw, json) Hash identifier: pBAdtg5q7fupj3C2NkgZi3lj80AO2X+XBbLJrZHCCV0= Subject key identifier: 99:96:8F:1D:6E:02:18:E1:1D:8F:60:CC:2E:CA:83:8F:63:E3:27:67 Certificate issuer: /CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Certificate serial: 0FB3 Authority key identifier: 3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa Signing time: Sat 04 May 2024 18:26:30 +0000 ROA not before: Sat 04 May 2024 18:26:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38220 IP address blocks: 103.24.132.0/23 maxlen: 23 2406:bf00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4019 (0xfb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Validity Not Before: May 4 18:26:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66367dd6-f4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:02:cb:8c:82:a9:6e:91:a7:86:ad:06:f6:ba: 13:82:c2:64:ba:b6:62:dc:59:4d:1e:74:a9:17:be: 22:e9:85:06:71:d9:79:5f:a6:a9:1f:7f:aa:4d:ac: d0:79:c9:05:84:c9:32:dc:63:56:fc:10:d3:fc:88: 6a:80:be:39:d6:32:43:18:61:c3:e4:8e:9a:6b:21: 1e:93:07:8a:06:1e:79:25:3e:fd:96:59:e6:cb:62: da:4c:3b:9e:75:6e:1b:59:f4:08:84:62:62:63:1e: 42:b0:ed:2f:60:c6:6f:e3:99:90:23:c8:d0:1f:73: 9c:24:07:5e:ff:ff:ce:7a:c0:9c:b2:97:be:f8:e0: cb:58:a4:6d:0e:e5:bc:7d:7c:f0:07:46:ec:00:0d: a7:03:66:06:d3:7c:f9:4c:e5:11:54:c4:cf:bc:cd: 98:59:a1:19:cb:38:af:ab:2d:a7:01:9b:42:42:b7: 95:0b:1f:71:27:43:66:4b:0a:70:7f:e3:13:f2:af: 3f:41:b7:df:33:d1:36:0b:ac:52:d9:b5:ba:28:60: 9c:45:f5:61:f7:6f:65:01:3e:3a:f4:76:3e:38:15: 5a:93:1e:81:be:42:58:3e:ec:b5:3c:25:66:41:cf: 71:4d:52:b4:d1:aa:a1:33:0d:04:b9:35:0a:af:8a: 08:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:96:8F:1D:6E:02:18:E1:1D:8F:60:CC:2E:CA:83:8F:63:E3:27:67 X509v3 Authority Key Identifier: keyid:3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/073BC4F4ED3B11EDB5A01A46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.132.0/23 IPv6: 2406:bf00::/48 Signature Algorithm: sha256WithRSAEncryption d2:20:c2:01:9a:d2:0b:c4:13:0e:2b:f7:68:66:f9:4c:0d:93: 21:92:9a:0e:6c:98:ad:e9:cf:08:5b:ba:4f:a5:83:5a:51:67: 94:a0:75:1e:40:cf:ff:80:f5:55:d8:6b:7c:a4:ee:cb:ba:a3: 53:2d:8f:a9:3b:39:98:de:6e:e1:c9:5a:ef:1f:21:09:aa:8c: 7c:77:4c:d6:a3:ed:3d:eb:65:b7:7e:5d:b3:c7:c4:0a:70:77: 43:e1:de:0b:28:5c:7d:d9:a4:26:30:dd:72:1e:8e:ed:31:a6: 76:69:8a:f4:8e:d2:29:cb:41:7b:d4:42:d0:ec:07:b6:69:b8: 6c:0b:b6:86:2d:c0:bc:a7:15:28:ef:c4:65:47:e2:81:8e:d4: d6:19:51:d9:c6:3c:4e:1b:47:28:10:d6:fe:5f:1a:44:09:2f: 65:0b:ac:92:e7:9e:8c:67:65:e8:a2:5f:a3:a6:0c:19:5c:d7: a2:87:b3:86:f6:11:9b:13:e4:9b:15:d7:bb:8d:ab:3f:5b:34: e2:66:66:03:8e:22:f9:f0:f0:67:ca:78:bd:54:8d:dc:5f:3f: 5a:5c:15:ee:d6:db:9a:fd:bd:d4:ab:9f:80:29:5d:dd:4b:cc: 11:48:95:8e:c2:f5:5b:a0:c8:2d:8b:86:1c:da:60:b0:d4:c9: 83:0e:ec:c1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICD7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyODUxMTAvBgNVBAUTKDNFMjlDRTZGNkE3REI5NEI2RDA5MTMzQjczRkVENTJE REVFMTJEQUIwHhcNMjQwNTA0MTgyNjMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2N2RkNi1mNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gLLjIKpbpGnhq0G9roTgsJkurZi3FlNHnSpF74i6YUGcdl5X6apH3+qTazQ eckFhMky3GNW/BDT/IhqgL451jJDGGHD5I6aayEekweKBh55JT79llnmy2LaTDue dW4bWfQIhGJiYx5CsO0vYMZv45mQI8jQH3OcJAde///OesCcspe++ODLWKRtDuW8 fXzwB0bsAA2nA2YG03z5TOURVMTPvM2YWaEZyzivqy2nAZtCQreVCx9xJ0NmSwpw f+MT8q8/QbffM9E2C6xS2bW6KGCcRfVh929lAT469HY+OBVakx6BvkJYPuy1PCVm Qc9xTVK00aqhMw0EuTUKr4oIOwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJmWjx1u AhjhHY9gzC7Kg49j4ydnMB8GA1UdIwQYMBaAFD4pzm9qfblLbQkTO3P+1S3e4S2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI4NS9GRDY0RjBCODM0 MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVVdHRDUk03Y183VkxkN2hM YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bpbk9iMnA5dVV0dENSTTdjXzdWTGQ3aExhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyODUvRkQ2NEYwQjgzNDBDMTFFOTk2NkM1QTc2QzRGOUFFMDIvMDczQkM0RjRF RDNCMTFFREI1QTAxQTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGIQwDwQCAAIwCQMHACQGvwAAADANBgkqhkiG9w0BAQsF AAOCAQEA0iDCAZrSC8QTDiv3aGb5TA2TIZKaDmyYrenPCFu6T6WDWlFnlKB1HkDP /4D1VdhrfKTuy7qjUy2PqTs5mN5u4cla7x8hCaqMfHdM1qPtPetlt35ds8fECnB3 Q+HeCyhcfdmkJjDdch6O7TGmdmmK9I7SKctBe9RC0OwHtmm4bAu2hi3AvKcVKO/E ZUfigY7U1hlR2cY8ThtHKBDW/l8aRAkvZQuskueejGdl6KJfo6YMGVzXooezhvYR mxPkmxXXu42rP1s04mZmA44i+fDwZ8p4vVSN3F8/WlwV7tbbmv291KufgCld3UvM EUiVjsL1W6DILYuGHNpgsNTJgw7swQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org