$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/D30098F6413111ECB71E086AC4F9AE02.roa File: D30098F6413111ECB71E086AC4F9AE02.roa (raw, json) Hash identifier: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w= Subject key identifier: 0D:F1:C6:24:6D:E9:EC:62:F6:4A:AF:89:6D:25:4F:CF:AC:A8:66:24 Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 0422 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/D30098F6413111ECB71E086AC4F9AE02.roa Signing time: Thu 21 Nov 2024 00:03:27 +0000 ROA not before: Thu 21 Nov 2024 00:03:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 23747 IP address blocks: 103.143.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1058 (0x422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Nov 21 00:03:27 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673e78ce-1ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e9:ff:ce:4e:12:87:f4:70:75:3e:63:d8:80: 74:4b:b8:c0:6c:7d:bc:b6:2f:f4:24:c9:3f:02:83: 61:57:a0:69:73:34:22:4a:13:96:d6:7d:c3:f6:bc: fc:1e:89:b8:1b:03:c1:50:76:39:8f:ba:07:6a:66: 68:da:ac:fc:3d:18:1e:19:b1:93:13:72:a4:26:bd: 33:36:d8:b6:f3:e4:1a:e4:3e:b4:bd:6e:f9:35:40: 0d:aa:dd:f8:b9:9c:f3:fd:cb:d6:6f:2c:66:9c:22: c5:96:29:83:76:e8:bb:66:54:e1:fb:d1:10:62:49: 54:7f:ac:52:5e:48:d9:c2:ce:8c:83:6a:c3:3a:10: 5c:a5:8c:c3:86:31:39:79:8c:fa:11:f0:07:f6:d2: 24:e6:2e:e7:ac:23:08:8c:81:4c:53:a0:fc:dc:a5: 2d:b9:85:9e:95:f4:5c:7c:9c:22:b2:da:00:0d:e0: 2e:66:f0:ea:78:81:09:3e:6a:e7:f0:78:cb:35:4c: d0:23:6f:64:4b:b5:01:2b:6a:10:13:ad:18:6f:4d: a7:1d:0b:c0:54:f1:3d:3c:bd:6e:e2:d6:16:df:7c: 50:3f:32:fe:c0:9f:7a:d1:87:16:c4:55:0b:eb:5c: a9:1d:2d:47:05:f2:46:84:a0:24:6b:63:79:d8:2b: 40:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F1:C6:24:6D:E9:EC:62:F6:4A:AF:89:6D:25:4F:CF:AC:A8:66:24 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/D30098F6413111ECB71E086AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.216.0/23 Signature Algorithm: sha256WithRSAEncryption 04:87:19:fd:fe:26:ea:93:ee:ef:5f:d3:8b:96:bb:c6:64:6f: a3:2a:39:5d:ab:72:b3:a5:ec:f1:28:65:be:db:c8:8b:7e:a3: 6b:d4:4d:e0:0a:6d:fc:45:be:d7:a7:91:2d:57:1d:00:ce:0a: 7b:84:2e:b8:9e:87:a3:b2:bc:a6:6f:27:f9:e0:fc:42:88:b0: 21:73:80:36:3d:e4:66:4c:4f:7d:c3:51:0c:58:9b:d5:9c:68: 21:9f:f2:00:7a:09:5c:10:63:11:33:f6:97:a1:0c:1c:93:76: 1e:ad:33:f1:af:bc:44:dc:a5:cb:1c:83:61:4e:f5:bd:c8:34: e2:05:c3:13:3a:5a:1e:85:a9:ed:bf:85:a6:9e:d2:c3:64:1d: 90:4e:24:e0:af:1e:bb:8b:51:0e:61:92:b6:a6:0e:93:75:e3: 52:5a:74:e8:1e:74:49:8f:27:f9:56:b6:d5:38:35:ea:d8:d2: 4c:b9:ab:ac:9e:0c:91:14:ba:df:47:46:fb:e8:fc:8d:cf:cb: 7e:70:e3:2d:67:df:cc:4d:08:6e:4b:3d:a7:b3:e0:de:6d:1b: 5e:f5:b0:59:65:54:62:09:6b:1a:5c:8a:67:22:cf:62:02:67: 78:02:15:75:33:c1:b0:ab:fe:61:9f:0f:75:69:e1:4c:1d:92: 48:8d:a6:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjQxMTIxMDAwMzI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlNzhjZS0xZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2On/zk4Sh/RwdT5j2IB0S7jAbH28ti/0JMk/AoNhV6BpczQiShOW1n3D9rz8 Hom4GwPBUHY5j7oHamZo2qz8PRgeGbGTE3KkJr0zNti28+Qa5D60vW75NUANqt34 uZzz/cvWbyxmnCLFlimDdui7ZlTh+9EQYklUf6xSXkjZws6Mg2rDOhBcpYzDhjE5 eYz6EfAH9tIk5i7nrCMIjIFMU6D83KUtuYWelfRcfJwistoADeAuZvDqeIEJPmrn 8HjLNUzQI29kS7UBK2oQE60Yb02nHQvAVPE9PL1u4tYW33xQPzL+wJ960YcWxFUL 61ypHS1HBfJGhKAka2N52CtAhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA3xxiRt 6exi9kqviW0lT8+sqGYkMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlDQUUvRkVENUEyQTg0MTJFMTFFQ0FCRjdGNTY2QzRGOUFFMDIvRDMwMDk4RjY0 MTMxMTFFQ0I3MUUwODZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj9gwDQYJKoZIhvcNAQELBQADggEBAASHGf3+JuqT7u9f 04uWu8Zkb6MqOV2rcrOl7PEoZb7byIt+o2vUTeAKbfxFvtenkS1XHQDOCnuELrie h6OyvKZvJ/ng/EKIsCFzgDY95GZMT33DUQxYm9WcaCGf8gB6CVwQYxEz9pehDByT dh6tM/GvvETcpcscg2FO9b3INOIFwxM6Wh6Fqe2/haae0sNkHZBOJOCvHruLUQ5h kramDpN141JadOgedEmPJ/lWttU4NerY0ky5q6yeDJEUut9HRvvo/I3Py35w4y1n 38xNCG5LPaez4N5tG171sFllVGIJaxpcimciz2ICZ3gCFXUzwbCr/mGfD3Vp4Uwd kkiNpgk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org