$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa File: 2CB0D29E211411EE82DE6110C4F9AE02.roa (raw, json) Hash identifier: lIplJdaPasT2KYwLM0CqR2rgchRbxFw1QkPzOjcDDzQ= Subject key identifier: 8A:F0:C3:65:9B:6F:D6:A6:51:7F:D4:29:5E:85:7C:F7:F6:F7:74:42 Certificate issuer: /CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Certificate serial: 03A1 Authority key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa Signing time: Wed 11 Sep 2024 03:34:52 +0000 ROA not before: Wed 11 Sep 2024 03:34:52 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151415 IP address blocks: 103.228.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 929 (0x3a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Validity Not Before: Sep 11 03:34:52 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e10fdc-2162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b4:40:e0:c2:90:a0:3e:c2:34:31:ee:32:6d: 37:56:42:b0:87:71:9a:0c:9c:f6:6b:7e:b8:da:4c: e2:36:ca:ef:ae:19:c0:e1:7a:ef:1d:43:83:66:f7: b0:c9:62:96:1c:4a:82:e6:df:b2:d6:28:5d:a9:42: 7f:12:42:37:e2:d7:71:29:57:92:bd:49:15:07:d1: 1f:b9:85:88:e6:e9:69:ae:7d:3b:58:96:aa:b7:d2: d9:0b:3e:f0:b0:bd:6d:0e:00:a6:c4:4c:2e:25:e8: 99:69:ab:62:76:2d:a7:fb:49:e2:8b:14:fb:7f:39: 9f:24:72:87:e8:64:9d:3f:d6:6f:94:44:e5:77:a6: 67:c5:62:73:1c:b6:d1:50:9f:13:0d:6f:6a:3a:7d: 12:5a:05:bf:55:95:8f:5d:eb:d4:46:44:bd:90:c1: 40:eb:09:f6:cf:71:23:9d:0c:06:a2:92:26:9d:3d: d4:62:5d:bb:b9:25:fd:57:2d:71:5a:c8:6c:96:82: 72:8c:bc:d3:25:b1:9b:87:00:81:8d:e1:e7:70:c8: af:e1:0d:a2:4c:e3:57:df:55:b4:6e:2f:67:ed:80: ff:c0:b1:0f:2b:bc:09:8e:9a:4c:ba:80:db:58:fc: f1:1f:1a:fa:9b:2b:7f:4d:06:c5:0a:2d:0a:f9:ad: 6d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F0:C3:65:9B:6F:D6:A6:51:7F:D4:29:5E:85:7C:F7:F6:F7:74:42 X509v3 Authority Key Identifier: keyid:A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/2CB0D29E211411EE82DE6110C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.124.0/24 Signature Algorithm: sha256WithRSAEncryption 90:fd:7f:bc:93:e9:28:c2:2c:26:3d:58:d5:e9:15:d0:1b:c8: ad:6c:7e:64:32:72:ee:16:67:f4:28:9d:65:db:15:32:b4:60: 34:95:71:ad:39:7d:2a:0b:1c:d4:a4:10:ca:6f:44:d2:c9:d4: a1:50:1e:26:ad:3e:a8:69:82:87:36:ba:e8:56:79:c8:e6:f8: fa:15:a6:d3:3b:1a:3c:c4:02:e2:cb:ec:e5:fb:e3:28:23:b0: c3:29:eb:60:9a:ea:78:8a:c5:5a:70:ca:38:a7:c6:53:ca:33: f9:d2:6c:d1:17:c9:43:7a:30:e0:af:0d:65:5a:ed:bb:3c:31: 76:ce:4d:e5:73:8c:38:d8:4a:1b:a1:c9:9a:dd:ad:8f:41:3c: f6:29:ce:73:b4:60:6b:22:47:a5:c4:da:ad:1d:d8:44:25:13: f1:3f:2a:83:59:c0:a6:d3:07:46:70:47:54:21:48:be:86:36: fd:e4:70:c2:12:38:1f:f9:b6:3d:40:e2:03:87:f3:30:8c:27: bb:ff:cb:1a:30:e5:ee:09:13:f0:bd:46:03:fb:bb:d8:73:7b: 78:6e:e6:8a:5f:c3:7f:a3:1c:1b:3a:16:fa:0e:cb:85:2b:cc: 93:5c:43:9e:c2:7d:29:46:d9:b8:00:b1:9e:6b:fc:02:8c:df: 20:1b:5c:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3NUMxMTAvBgNVBAUTKEE1MzZBNTREQjQxRTQ0MURFNzRDMzNGNkY3MzZDNUFE N0E2Njg1QzYwHhcNMjQwOTExMDMzNDUyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxMGZkYy0yMTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7RA4MKQoD7CNDHuMm03VkKwh3GaDJz2a3642kziNsrvrhnA4XrvHUODZvew yWKWHEqC5t+y1ihdqUJ/EkI34tdxKVeSvUkVB9EfuYWI5ulprn07WJaqt9LZCz7w sL1tDgCmxEwuJeiZaatidi2n+0niixT7fzmfJHKH6GSdP9ZvlETld6ZnxWJzHLbR UJ8TDW9qOn0SWgW/VZWPXevURkS9kMFA6wn2z3EjnQwGopImnT3UYl27uSX9Vy1x WshsloJyjLzTJbGbhwCBjeHncMiv4Q2iTONX31W0bi9n7YD/wLEPK7wJjppMuoDb WPzxHxr6myt/TQbFCi0K+a1tMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIrww2Wb b9amUX/UKV6FfPf293RCMB8GA1UdIwQYMBaAFKU2pU20HkQd50wz9vc2xa16ZoXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzc1Qy9BQ0FDMzlCRTY4 NzExMUVDOEJEQjM0NkJDNEY5QUUwMi9wVGFsVGJRZVJCM25URFAyOXpiRnJYcG1o Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BUYWxUYlFlUkIzblREUDI5emJGclhwbWhjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM3NUMvQUNBQzM5QkU2ODcxMTFFQzhCREIzNDZCQzRGOUFFMDIvMkNCMEQyOUUy MTE0MTFFRTgyREU2MTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5HwwDQYJKoZIhvcNAQELBQADggEBAJD9f7yT6SjCLCY9 WNXpFdAbyK1sfmQycu4WZ/QonWXbFTK0YDSVca05fSoLHNSkEMpvRNLJ1KFQHiat Pqhpgoc2uuhWecjm+PoVptM7GjzEAuLL7OX74ygjsMMp62Ca6niKxVpwyjinxlPK M/nSbNEXyUN6MOCvDWVa7bs8MXbOTeVzjDjYShuhyZrdrY9BPPYpznO0YGsiR6XE 2q0d2EQlE/E/KoNZwKbTB0ZwR1QhSL6GNv3kcMISOB/5tj1A4gOH8zCMJ7v/yxow 5e4JE/C9RgP7u9hze3hu5opfw3+jHBs6FvoOy4UrzJNcQ57CfSlG2bgAsZ5r/AKM 3yAbXHM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org