$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa File: C965E8C4679911EEB466ED36C4F9AE02.roa (raw, json) Hash identifier: 4shhW+hfwKEr12lvGKCQFs6BqumTNDAweN+QTLEQJao= Subject key identifier: 6A:C4:5E:D8:4F:93:00:81:27:51:C2:C9:CC:22:52:D4:F9:66:40:45 Certificate issuer: /CN=A91D1F95/serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Certificate serial: 01FB Authority key identifier: D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa Signing time: Sun 03 Nov 2024 01:54:36 +0000 ROA not before: Sun 03 Nov 2024 01:54:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55501 IP address blocks: 103.174.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1F95/serialNumber=D6F06724D0968707ED1DFAFDBB225802B3DAA194 Validity Not Before: Nov 3 01:54:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726d7dc-b86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:26:27:4f:c2:a3:af:c4:cc:c5:cb:bd:32: 0b:6f:34:6a:af:77:80:ed:2a:11:71:c2:58:59:ec: 5d:69:b3:49:41:06:e3:92:f7:3e:94:b0:73:14:c2: 8b:33:ba:98:b1:3b:4a:d9:21:5b:e8:81:37:53:a3: e2:f6:56:37:3a:dd:1d:b9:98:80:c2:6a:3d:50:a9: ab:e7:01:24:fa:84:03:24:4c:4d:ad:fe:f9:65:24: ee:f6:f4:61:85:88:19:3b:12:64:00:2c:67:4a:73: cb:fd:3a:7a:e6:2f:0f:22:cb:3b:4a:e5:d5:0f:65: 67:72:38:54:fc:20:2e:15:0f:a4:cc:8e:2c:bb:66: 83:5d:39:48:0d:5c:80:bf:cd:58:ed:a2:e6:3b:0a: dd:dd:b6:de:51:5c:7b:a9:ad:d1:a9:a2:dd:e7:f3: a1:10:c0:f7:c3:e6:87:49:db:67:d9:dd:74:13:05: c1:92:b1:8a:4b:a2:c7:cb:6d:16:9d:08:9d:72:b7: 49:39:d3:a5:f5:a8:43:58:cf:0b:db:c3:a1:2a:07: bf:48:46:b6:a6:f7:d3:28:29:78:5d:f0:08:95:e6: eb:d1:61:ce:af:81:1c:53:06:db:a8:76:b4:8c:f5: 96:f3:ba:ac:7c:72:06:e9:92:5e:99:fd:cd:33:c7: 03:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C4:5E:D8:4F:93:00:81:27:51:C2:C9:CC:22:52:D4:F9:66:40:45 X509v3 Authority Key Identifier: keyid:D6:F0:67:24:D0:96:87:07:ED:1D:FA:FD:BB:22:58:02:B3:DA:A1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/1vBnJNCWhwftHfr9uyJYArPaoZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vBnJNCWhwftHfr9uyJYArPaoZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1F95/FF93EC72195F11EDB2BDF95EC4F9AE02/C965E8C4679911EEB466ED36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.99.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:97:1f:f3:a7:e0:78:a4:67:2c:07:1c:e4:4a:67:f8:03:15: c4:63:b6:ef:f8:e4:20:50:fb:fa:a5:eb:70:77:90:1e:77:aa: 67:e8:26:dd:54:db:7a:b2:95:c9:32:00:bd:16:16:ad:6a:55: 6b:8d:e8:54:c5:b0:44:a5:93:69:94:6e:e8:c2:04:7d:7e:f5: d5:02:6c:d3:a6:21:c2:a3:af:01:bb:83:15:d1:3d:d2:13:45: a7:ea:f7:a3:40:29:cd:2f:7b:24:60:20:92:6e:65:1b:81:cb: ea:97:4f:f8:51:9e:b3:b6:6e:b4:c9:fb:13:3b:e3:38:54:f7: c8:b5:51:93:27:82:a9:f3:94:9b:50:31:ce:31:d4:56:fe:0e: 75:28:bc:33:dc:31:db:a8:77:e6:e5:8d:a8:74:9a:84:20:9b: 85:c1:2a:6a:36:54:81:43:c4:61:cd:1c:30:36:8a:2d:9a:c2: 2a:d1:69:54:6f:14:48:cb:55:82:7f:6c:61:a8:14:08:34:f5: 60:53:e0:09:0c:9a:b0:e7:80:3e:4e:9a:e5:0d:b2:c0:a5:d7: 50:7c:11:ae:1b:c7:d2:3f:e7:63:3a:ec:5a:b9:6c:57:0e:0b: 82:e3:38:c3:48:6d:46:96:d6:e7:a9:be:66:eb:82:2c:ba:3d: 23:2a:8e:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFGOTUxMTAvBgNVBAUTKEQ2RjA2NzI0RDA5Njg3MDdFRDFERkFGREJCMjI1ODAy QjNEQUExOTQwHhcNMjQxMTAzMDE1NDM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZDdkYy1iODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCUmJ0/Co6/EzMXLvTILbzRqr3eA7SoRccJYWexdabNJQQbjkvc+lLBzFMKL M7qYsTtK2SFb6IE3U6Pi9lY3Ot0duZiAwmo9UKmr5wEk+oQDJExNrf75ZSTu9vRh hYgZOxJkACxnSnPL/Tp65i8PIss7SuXVD2VncjhU/CAuFQ+kzI4su2aDXTlIDVyA v81Y7aLmOwrd3bbeUVx7qa3RqaLd5/OhEMD3w+aHSdtn2d10EwXBkrGKS6LHy20W nQidcrdJOdOl9ahDWM8L28OhKge/SEa2pvfTKCl4XfAIlebr0WHOr4EcUwbbqHa0 jPWW87qsfHIG6ZJemf3NM8cDEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGrEXthP kwCBJ1HCycwiUtT5ZkBFMB8GA1UdIwQYMBaAFNbwZyTQlocH7R36/bsiWAKz2qGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUY5NS9GRjkzRUM3MjE5 NUYxMUVEQjJCREY5NUVDNEY5QUUwMi8xdkJuSk5DV2h3ZnRIZnI5dXlKWUFyUGFv WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF2Qm5KTkNXaHdmdEhmcjl1eUpZQXJQYW9aUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFGOTUvRkY5M0VDNzIxOTVGMTFFREIyQkRGOTVFQzRGOUFFMDIvQzk2NUU4QzQ2 Nzk5MTFFRUI0NjZFRDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrmMwDQYJKoZIhvcNAQELBQADggEBAE+XH/On4HikZywH HORKZ/gDFcRjtu/45CBQ+/ql63B3kB53qmfoJt1U23qylckyAL0WFq1qVWuN6FTF sESlk2mUbujCBH1+9dUCbNOmIcKjrwG7gxXRPdITRafq96NAKc0veyRgIJJuZRuB y+qXT/hRnrO2brTJ+xM74zhU98i1UZMngqnzlJtQMc4x1Fb+DnUovDPcMduod+bl jah0moQgm4XBKmo2VIFDxGHNHDA2ii2awirRaVRvFEjLVYJ/bGGoFAg09WBT4AkM mrDngD5OmuUNssCl11B8Ea4bx9I/52M67Fq5bFcOC4LjOMNIbUaW1uepvmbrgiy6 PSMqjiM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org