$ rpki-client -vvf rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa File: 98B4FB32DB9011E996483B2BC4F9AE02.roa (raw, json) Hash identifier: XXgLxgibvmpDaf+Wjs0zicx0P8XILsfLy/xTdFUHtdc= Subject key identifier: 20:5C:08:F6:B9:E3:41:43:B0:6E:8F:14:52:6E:38:DF:F8:C7:46:78 Certificate issuer: /CN=A91D322A/serialNumber=B0AE861C1EBE8BAD6E656D401F7F7506094074A0 Certificate serial: 0CA6 Authority key identifier: B0:AE:86:1C:1E:BE:8B:AD:6E:65:6D:40:1F:7F:75:06:09:40:74:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa Signing time: Thu 10 Oct 2024 18:26:45 +0000 ROA not before: Thu 10 Oct 2024 18:26:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139579 IP address blocks: 103.141.250.0/23 maxlen: 24 2001:df1:1e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.crl rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:04:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3238 (0xca6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D322A/serialNumber=B0AE861C1EBE8BAD6E656D401F7F7506094074A0 Validity Not Before: Oct 10 18:26:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67081c65-86f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c9:28:96:a3:2c:ba:6c:4e:9d:39:8b:0b:31: 40:cb:87:23:9f:c8:d5:25:ae:09:78:3c:67:32:a0: 43:64:1e:22:10:7e:a8:d7:0d:b6:fd:f5:3c:b3:ff: 4f:03:2e:86:aa:d0:ce:e0:a4:bb:32:6c:b1:19:f0: f2:31:5c:88:94:27:95:b1:38:63:ca:90:09:9f:73: 9a:f8:c6:ab:47:ef:5f:36:a1:eb:b0:93:58:d3:a2: 3f:37:b0:77:a2:58:2e:a7:50:4f:9f:1a:4b:13:e2: 92:a1:5a:45:b9:47:9b:9e:b2:bd:f1:5c:3e:e8:10: 24:bc:56:27:13:80:67:22:b2:24:9c:fb:58:75:20: 15:82:48:3b:21:1c:86:26:26:89:75:43:f4:63:b7: cd:82:7a:63:07:3c:8d:87:db:00:3d:83:4f:39:90: c2:fb:ed:b0:b2:0f:ab:90:ed:a7:d2:d9:52:f0:6a: ab:25:f9:58:67:34:94:10:b3:eb:b3:46:da:5d:23: f2:07:b1:f6:79:11:e9:39:fe:0d:fe:9a:ec:bc:35: 21:cd:59:c5:b8:cb:5f:e8:19:be:d0:9c:0f:b5:c8: ce:93:d2:e5:91:b2:d4:3b:29:7e:35:89:ca:5b:8c: 3e:e9:ac:22:39:b8:da:45:9a:1e:a6:39:c4:1a:30: 86:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5C:08:F6:B9:E3:41:43:B0:6E:8F:14:52:6E:38:DF:F8:C7:46:78 X509v3 Authority Key Identifier: keyid:B0:AE:86:1C:1E:BE:8B:AD:6E:65:6D:40:1F:7F:75:06:09:40:74:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/sK6GHB6-i61uZW1AH391BglAdKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sK6GHB6-i61uZW1AH391BglAdKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D322A/0DC1DF7CDB9011E99C25C52AC4F9AE02/98B4FB32DB9011E996483B2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.250.0/23 IPv6: 2001:df1:1e80::/48 Signature Algorithm: sha256WithRSAEncryption 9c:86:51:64:d4:cc:32:dd:e1:0f:7e:40:82:d6:47:44:90:cd: 06:8d:42:3e:11:53:87:08:71:a1:8d:c7:2b:f8:c5:79:ee:1d: 2e:fa:87:97:83:25:1f:f2:db:22:24:34:f5:3d:22:0a:75:f1: 6f:27:60:34:eb:d8:18:f9:7b:3d:34:72:1e:1c:f2:82:99:45: 91:c9:6b:3c:52:30:2a:9c:5f:d9:6e:41:a6:22:dc:ad:7a:ba: db:58:90:75:39:e9:3f:ab:b7:96:0c:d0:c3:4e:56:a4:b7:40: 24:86:b0:89:d8:9a:d3:99:d0:15:8f:9d:66:1f:1e:2c:43:c4: b7:1c:43:97:c7:44:50:48:4e:82:66:90:5f:10:71:cf:99:1b: 40:b7:68:cf:f3:6e:02:9e:a9:94:c7:04:88:5f:7f:e7:09:3a: 3d:2e:80:c2:1e:e9:1a:c0:ba:2c:1a:a8:71:24:0e:ec:41:4b: 7e:cf:b4:49:e4:0a:29:6f:0d:0b:97:0f:f0:5a:8c:64:d5:25: 2a:d4:ad:93:37:0b:f3:1d:16:39:d5:46:e5:32:17:6c:cd:5d: f6:c8:18:b9:b0:51:73:e1:e0:c8:7a:98:4b:ac:b7:ab:a9:49: f6:18:ea:23:8f:08:95:06:fa:ee:a4:9a:de:ea:f8:de:90:58: 8f:13:e6:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMyMkExMTAvBgNVBAUTKEIwQUU4NjFDMUVCRThCQUQ2RTY1NkQ0MDFGN0Y3NTA2 MDk0MDc0QTAwHhcNMjQxMDEwMTgyNjQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4MWM2NS04NmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1skolqMsumxOnTmLCzFAy4cjn8jVJa4JeDxnMqBDZB4iEH6o1w22/fU8s/9P Ay6GqtDO4KS7MmyxGfDyMVyIlCeVsThjypAJn3Oa+MarR+9fNqHrsJNY06I/N7B3 olgup1BPnxpLE+KSoVpFuUebnrK98Vw+6BAkvFYnE4BnIrIknPtYdSAVgkg7IRyG JiaJdUP0Y7fNgnpjBzyNh9sAPYNPOZDC++2wsg+rkO2n0tlS8GqrJflYZzSUELPr s0baXSPyB7H2eRHpOf4N/prsvDUhzVnFuMtf6Bm+0JwPtcjOk9LlkbLUOyl+NYnK W4w+6awiObjaRZoepjnEGjCGkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCBcCPa5 40FDsG6PFFJuON/4x0Z4MB8GA1UdIwQYMBaAFLCuhhwevoutbmVtQB9/dQYJQHSg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzIyQS8wREMxREY3Q0RC OTAxMUU5OUMyNUM1MkFDNEY5QUUwMi9zSzZHSEI2LWk2MXVaVzFBSDM5MUJnbEFk S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NLNkdIQjYtaTYxdVpXMUFIMzkxQmdsQWRLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMyMkEvMERDMURGN0NEQjkwMTFFOTlDMjVDNTJBQzRGOUFFMDIvOThCNEZCMzJE QjkwMTFFOTk2NDgzQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjfowDwQCAAIwCQMHACABDfEegDANBgkqhkiG9w0BAQsF AAOCAQEAnIZRZNTMMt3hD35AgtZHRJDNBo1CPhFThwhxoY3HK/jFee4dLvqHl4Ml H/LbIiQ09T0iCnXxbydgNOvYGPl7PTRyHhzygplFkclrPFIwKpxf2W5BpiLcrXq6 21iQdTnpP6u3lgzQw05WpLdAJIawidia05nQFY+dZh8eLEPEtxxDl8dEUEhOgmaQ XxBxz5kbQLdoz/NuAp6plMcEiF9/5wk6PS6Awh7pGsC6LBqocSQO7EFLfs+0SeQK KW8NC5cP8FqMZNUlKtStkzcL8x0WOdVG5TIXbM1d9sgYubBRc+HgyHqYS6y3q6lJ 9hjqI48IlQb67qSa3ur43pBYjxPmWA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org