$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/EF57F4D0646611EFA25D167EC4F9AE02.roa File: EF57F4D0646611EFA25D167EC4F9AE02.roa (raw, json) Hash identifier: gGUuQZoCHoMxpbX892LJTwciHDZLV1IrcZ8alBZ8Tvk= Subject key identifier: 7E:0C:65:9E:C9:AA:C5:79:3D:67:F5:A6:CD:E4:A4:2E:5C:19:E3:A8 Certificate issuer: /CN=A91D0C18/serialNumber=7A2816E9697975CAD9349B26B20F14C81A914C98 Certificate serial: 02 Authority key identifier: 7A:28:16:E9:69:79:75:CA:D9:34:9B:26:B2:0F:14:C8:1A:91:4C:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eigW6Wl5dcrZNJsmsg8UyBqRTJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/EF57F4D0646611EFA25D167EC4F9AE02.roa Signing time: Tue 27 Aug 2024 11:24:34 +0000 ROA not before: Tue 27 Aug 2024 11:24:34 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142159 IP address blocks: 103.167.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/eigW6Wl5dcrZNJsmsg8UyBqRTJg.crl rsync://rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/eigW6Wl5dcrZNJsmsg8UyBqRTJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eigW6Wl5dcrZNJsmsg8UyBqRTJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18/serialNumber=7A2816E9697975CAD9349B26B20F14C81A914C98 Validity Not Before: Aug 27 11:24:34 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66cdb771-c665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:06:24:c6:58:40:bf:a5:b4:fe:21:87:a2: 0f:6f:b3:06:8b:82:20:3c:a3:7f:cd:44:e0:19:f0: 5e:b0:8f:dc:3b:98:37:1a:0e:b3:3c:ce:95:9d:8b: 69:64:45:1d:60:60:0e:50:bc:2d:24:03:46:41:a2: d5:88:c8:62:7b:ac:92:7b:2d:53:3d:2f:31:c1:e6: 37:c1:f5:70:bf:26:97:f3:f7:42:88:6f:ed:6a:10: 49:de:73:0c:53:ac:6c:a9:5a:a2:9b:4d:9c:4c:c0: e2:17:da:e0:80:ad:f4:b4:92:26:a5:41:c0:90:de: 52:01:7e:39:d7:67:ce:d7:a7:fe:c3:f9:4a:ef:64: 77:ad:1c:43:1d:69:73:45:74:d5:fd:83:5b:d0:43: 6e:1c:db:3e:7e:2a:70:74:3b:9d:68:8a:82:5e:70: 0d:0c:ae:ac:e0:ae:00:36:95:f4:ea:ad:fe:38:d4: d8:c4:59:2c:13:9f:52:10:d7:58:9d:df:46:5d:9c: e6:ca:ca:b0:ad:af:c4:74:83:bc:18:cc:cf:b5:8e: 7d:19:fb:ea:02:32:8f:e8:3e:f7:35:92:0f:d9:a4: 34:12:d9:82:1a:b8:b9:ac:30:fb:6b:f5:cf:16:de: 10:30:e5:f9:01:4a:79:7b:7a:86:30:d3:62:37:1b: 33:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:0C:65:9E:C9:AA:C5:79:3D:67:F5:A6:CD:E4:A4:2E:5C:19:E3:A8 X509v3 Authority Key Identifier: keyid:7A:28:16:E9:69:79:75:CA:D9:34:9B:26:B2:0F:14:C8:1A:91:4C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/eigW6Wl5dcrZNJsmsg8UyBqRTJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eigW6Wl5dcrZNJsmsg8UyBqRTJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/712CF0D8646611EF8E18F87AC4F9AE02/EF57F4D0646611EFA25D167EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.21.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:f9:86:97:22:45:2e:4f:61:d2:1c:ec:b7:87:8c:92:61:75: ef:d2:10:fe:5f:a7:48:ef:70:a7:ee:c5:b1:c1:d5:c5:95:f6: e7:90:6d:0c:dd:87:78:4b:70:db:21:2c:d8:54:18:dd:65:c3: 33:d9:ff:35:b7:90:65:5b:60:b4:66:ac:a6:14:26:5a:1c:5d: 03:d3:ce:65:6f:54:70:bd:e5:e8:89:38:51:5a:8c:80:32:71: fd:72:5e:88:66:65:f8:5d:0d:8a:3a:6a:fd:97:fb:1f:9d:d5: d9:b6:fe:84:00:c2:d0:fd:2d:d7:8e:6f:f7:00:d7:61:a5:cb: e0:34:a8:fb:b3:f4:4c:a0:7b:7d:5b:13:06:c8:99:d0:32:a6: d1:7f:20:29:f2:81:bb:5b:75:f8:eb:7b:9f:76:16:b9:25:68: 6d:16:90:1a:d8:10:70:fa:eb:30:fb:3e:24:17:ed:53:3c:ea: 76:cd:8d:e3:e3:2e:6b:59:28:3a:c5:e5:19:1d:04:ff:f8:0d: 57:25:82:70:cb:77:4c:f4:63:86:5b:ca:a1:19:2f:28:27:4e: 43:ac:0c:a4:c5:a2:3e:6e:ee:b7:c6:5c:52:8a:b0:4c:11:5b: ce:d1:8f:4d:4c:95:4b:3e:70:f0:3a:5d:b4:1d:6a:44:51:40: cd:7b:b4:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEMxODExMC8GA1UEBRMoN0EyODE2RTk2OTc5NzVDQUQ5MzQ5QjI2QjIwRjE0Qzgx QTkxNEM5ODAeFw0yNDA4MjcxMTI0MzRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2RiNzcxLWM2NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQColgYkxlhAv6W0/iGHog9vswaLgiA8o3/NROAZ8F6wj9w7mDcaDrM8zpWdi2lk RR1gYA5QvC0kA0ZBotWIyGJ7rJJ7LVM9LzHB5jfB9XC/Jpfz90KIb+1qEEnecwxT rGypWqKbTZxMwOIX2uCArfS0kialQcCQ3lIBfjnXZ87Xp/7D+UrvZHetHEMdaXNF dNX9g1vQQ24c2z5+KnB0O51oioJecA0MrqzgrgA2lfTqrf441NjEWSwTn1IQ11id 30ZdnObKyrCtr8R0g7wYzM+1jn0Z++oCMo/oPvc1kg/ZpDQS2YIauLmsMPtr9c8W 3hAw5fkBSnl7eoYw02I3GzMtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfgxlnsmq xXk9Z/WmzeSkLlwZ46gwHwYDVR0jBBgwFoAUeigW6Wl5dcrZNJsmsg8UyBqRTJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQzE4LzcxMkNGMEQ4NjQ2 NjExRUY4RTE4Rjg3QUM0RjlBRTAyL2VpZ1c2V2w1ZGNyWk5Kc21zZzhVeUJxUlRK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZWlnVzZXbDVkY3JaTkpzbXNnOFV5QnFSVEpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC83MTJDRjBEODY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9FRjU3RjREMDY0 NjYxMUVGQTI1RDE2N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGenFTANBgkqhkiG9w0BAQsFAAOCAQEACvmGlyJFLk9h0hzs t4eMkmF179IQ/l+nSO9wp+7FscHVxZX255BtDN2HeEtw2yEs2FQY3WXDM9n/NbeQ ZVtgtGasphQmWhxdA9POZW9UcL3l6Ik4UVqMgDJx/XJeiGZl+F0Nijpq/Zf7H53V 2bb+hADC0P0t145v9wDXYaXL4DSo+7P0TKB7fVsTBsiZ0DKm0X8gKfKBu1t1+Ot7 n3YWuSVobRaQGtgQcPrrMPs+JBftUzzqds2N4+Mua1koOsXlGR0E//gNVyWCcMt3 TPRjhlvKoRkvKCdOQ6wMpMWiPm7ut8ZcUoqwTBFbztGPTUyVSz5w8DpdtB1qRFFA zXu0SA== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:25 2024 by rpki-client on console-fra.rpki-client.org