$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa File: 14820EDE248611EEB600357DC4F9AE02.roa (raw, json) Hash identifier: pfSrv7ABwA9/SpzKbTS+fYCpaS8uDOGjDIZI4jVwlaM= Subject key identifier: 3A:8D:D7:62:C9:47:30:29:B4:A5:12:9C:02:1A:4A:8D:B8:98:7A:FA Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2C48 Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa Signing time: Sun 22 Sep 2024 09:04:55 +0000 ROA not before: Sun 22 Sep 2024 09:04:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136759 IP address blocks: 103.102.42.0/24 maxlen: 24 103.108.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11336 (0x2c48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Sep 22 09:04:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66efddb7-f798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1d:a9:6c:3a:13:8c:27:e7:3e:f5:e1:8c:52: ec:26:b0:e7:27:7f:07:2d:b4:2d:31:37:bd:3b:ee: 23:54:7e:4a:60:36:55:f4:ba:b7:0a:b4:8f:90:b0: 18:c4:13:67:75:38:c5:03:21:44:66:cf:d7:4d:77: fb:40:a8:4c:ff:de:0a:dc:9b:34:47:f2:18:52:23: 87:15:e8:a3:c4:ff:f5:5f:b8:b3:46:24:14:c9:ab: cc:12:1d:6a:9c:40:a0:ff:cd:c8:6b:96:e5:da:91: 18:3f:91:fa:d1:eb:8b:53:b3:91:ed:8d:ba:e3:9c: a2:c9:05:01:2c:99:c2:0a:36:2e:5a:af:fc:34:b8: 10:3d:43:2f:fc:b3:29:27:a6:bb:87:d1:b3:e6:e0: b4:02:03:8a:72:35:b3:74:a5:7c:22:77:a8:3c:05: e7:18:92:aa:c0:29:3c:e7:8b:d8:3a:8c:43:5a:7b: fa:74:48:bf:b2:90:09:69:c1:2f:96:ba:b3:b2:86: 81:1c:d3:a0:ac:eb:e7:f5:5e:1b:e4:17:5f:12:8b: 2a:3f:f1:07:36:b4:c6:3a:68:44:0d:36:e3:ef:9a: 9e:8f:9c:fb:3d:3e:05:a5:c8:18:7a:c6:82:62:55: d4:5b:ef:70:54:b5:9b:06:e1:79:75:ff:35:80:5f: 77:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8D:D7:62:C9:47:30:29:B4:A5:12:9C:02:1A:4A:8D:B8:98:7A:FA X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/14820EDE248611EEB600357DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.42.0/24 103.108.147.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:9d:69:25:3f:29:ae:17:44:ce:fb:4e:cc:72:34:89:ee:1c: 9d:0f:60:a8:7f:df:e0:7a:80:fd:4b:35:43:d2:56:ef:e5:4d: af:01:10:2b:09:db:c4:c6:d4:55:30:51:72:9f:5b:ff:51:46: d7:b2:5c:4c:0e:08:0f:f3:d0:ab:b2:8e:f4:35:4c:fd:e0:29: 4f:4f:f5:20:b0:65:8c:36:6f:56:b2:f9:72:ff:c5:96:12:56: 7d:11:e2:c3:26:ce:09:75:d5:8a:a9:66:5a:60:85:0d:f6:e1: ce:d5:6a:b8:ca:bc:43:ca:d9:b3:6c:41:95:f6:88:6a:80:2f: d6:cc:9e:b7:1b:92:c7:8a:8d:05:a3:12:a5:b3:00:13:a9:b9: ee:b0:21:fb:b8:12:78:72:4d:13:6d:b6:fb:58:e7:2e:62:bc: e8:93:65:3f:aa:d1:10:b2:bb:1a:aa:88:6f:91:4e:4b:33:f9: 49:22:e2:5e:73:3d:32:f1:70:7c:2c:e9:19:00:34:e2:06:23: 61:4c:8d:0b:0f:67:cc:31:c7:97:99:82:3b:4d:20:5a:95:9a: d0:87:cc:a5:74:e2:02:41:2d:eb:1b:32:41:62:a2:66:c2:27: d5:6b:b6:19:f1:3f:8a:38:4c:d4:1f:9d:1d:44:53:3e:44:a2: 6c:cb:89:c6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICLEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjQwOTIyMDkwNDU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVmZGRiNy1mNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsx2pbDoTjCfnPvXhjFLsJrDnJ38HLbQtMTe9O+4jVH5KYDZV9Lq3CrSPkLAY xBNndTjFAyFEZs/XTXf7QKhM/94K3Js0R/IYUiOHFeijxP/1X7izRiQUyavMEh1q nECg/83Ia5bl2pEYP5H60euLU7OR7Y2645yiyQUBLJnCCjYuWq/8NLgQPUMv/LMp J6a7h9Gz5uC0AgOKcjWzdKV8IneoPAXnGJKqwCk854vYOoxDWnv6dEi/spAJacEv lrqzsoaBHNOgrOvn9V4b5BdfEosqP/EHNrTGOmhEDTbj75qej5z7PT4FpcgYesaC YlXUW+9wVLWbBuF5df81gF93OQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDqN12LJ RzAptKUSnAIaSo24mHr6MB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEyRDUvNUY4NjFFRTZCODlBMTFFM0I0QUM3RTc4NTkxMUVBMzIvMTQ4MjBFREUy NDg2MTFFRUI2MDAzNTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZioDBABnbJMwDQYJKoZIhvcNAQELBQADggEBAAydaSU/ Ka4XRM77TsxyNInuHJ0PYKh/3+B6gP1LNUPSVu/lTa8BECsJ28TG1FUwUXKfW/9R RteyXEwOCA/z0KuyjvQ1TP3gKU9P9SCwZYw2b1ay+XL/xZYSVn0R4sMmzgl11Yqp ZlpghQ324c7VarjKvEPK2bNsQZX2iGqAL9bMnrcbkseKjQWjEqWzABOpue6wIfu4 EnhyTRNttvtY5y5ivOiTZT+q0RCyuxqqiG+RTksz+Uki4l5zPTLxcHws6RkANOIG I2FMjQsPZ8wxx5eZgjtNIFqVmtCHzKV04gJBLesbMkFiombCJ9VrthnxP4o4TNQf nR1EUz5EomzLicY= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:21 2024 by rpki-client on console-fra.rpki-client.org