$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa File: 452DDFB4011611EA972FFC57C4F9AE02.roa (raw, json) Hash identifier: rZ1tio+6QezB4AheRQ3p4ioAeh5nGSWbvjYyZdr2msE= Subject key identifier: 1B:3A:38:0A:37:C5:93:D8:0B:32:A8:06:7A:7B:DB:4A:6C:4A:9F:9D Certificate issuer: /CN=A91DE8C5/serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Certificate serial: 0BE9 Authority key identifier: EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa Signing time: Fri 04 Oct 2024 18:57:26 +0000 ROA not before: Fri 04 Oct 2024 18:57:26 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135562 IP address blocks: 103.123.30.0/24 maxlen: 24 103.123.31.0/24 maxlen: 24 2403:9bc0::/48 maxlen: 48 2403:9bc0:1::/48 maxlen: 48 2403:9bc0:2::/48 maxlen: 48 2403:9bc0:3::/48 maxlen: 48 2403:9bc0:4::/48 maxlen: 48 2403:9bc0:5::/48 maxlen: 48 2403:9bc0:6::/48 maxlen: 48 2403:9bc0:7::/48 maxlen: 48 2403:9bc0:8::/48 maxlen: 48 2403:9bc0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8C5/serialNumber=EF95CBD598352640D42B0AAC600041065B4DC442 Validity Not Before: Oct 4 18:57:26 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67003a96-3dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:4f:44:cf:e9:3f:9e:38:d7:97:2c:97:fe: b6:ec:66:13:91:1b:98:7d:95:0c:1c:71:4b:86:78: 44:46:b1:8e:4c:95:40:a6:89:93:25:c7:b8:cf:78: c3:a2:e1:3d:75:fa:ee:a3:df:e3:fc:45:ec:41:5a: 81:68:9f:9a:77:e9:30:fe:15:52:e3:c7:ac:61:58: 93:02:27:f4:03:02:00:e0:4a:18:5c:d9:5e:66:00: 97:2b:ef:e8:0c:04:bc:ea:80:1f:6b:b0:67:75:dc: 0c:84:df:13:84:a3:a2:64:7f:6f:54:0e:e8:14:b7: e6:5d:55:17:9b:55:01:7f:43:fc:b3:64:a1:6d:15: 2b:7e:52:17:75:ae:d1:d6:ba:07:3a:d2:ff:dc:27: 09:6f:0c:6b:bf:b9:d6:31:25:25:9c:07:53:8a:41: 4b:fd:e2:cd:56:a6:ef:87:75:04:15:cd:94:29:d8: 52:a6:a5:42:3e:be:b8:0d:be:74:56:7d:25:d5:43: a2:1d:f4:b4:1d:e3:9e:4a:bd:b7:18:6e:07:39:94: ed:bf:21:f0:c9:21:7a:91:b9:12:35:81:1f:bc:f7: 8d:6e:bc:a4:71:da:ad:79:b7:fc:a3:1b:2a:37:7b: 7d:b1:86:21:14:c2:4c:8e:51:a3:a8:a2:7e:91:94: 09:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:3A:38:0A:37:C5:93:D8:0B:32:A8:06:7A:7B:DB:4A:6C:4A:9F:9D X509v3 Authority Key Identifier: keyid:EF:95:CB:D5:98:35:26:40:D4:2B:0A:AC:60:00:41:06:5B:4D:C4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/75XL1Zg1JkDUKwqsYABBBltNxEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75XL1Zg1JkDUKwqsYABBBltNxEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8C5/052C84FC011511EAA98A6255C4F9AE02/452DDFB4011611EA972FFC57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.30.0/23 IPv6: 2403:9bc0::-2403:9bc0:9:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 94:24:6f:3a:76:3a:0b:31:84:6e:c6:e2:9f:95:59:53:a9:9a: fd:cf:f3:38:3e:a9:69:58:b2:bf:38:61:60:0d:a6:dc:b3:b0: 0b:14:c7:25:6b:16:94:d8:bc:77:90:68:02:f0:e2:0e:cb:16: ee:d9:8a:03:a4:06:e8:aa:de:43:e8:72:b2:08:24:09:df:af: ee:c3:4a:c3:d1:e5:4d:97:ac:5a:53:80:f7:f7:e6:c3:a8:72: 06:d4:ad:09:88:fe:4e:83:e7:d8:ed:8a:1d:8b:4a:32:b3:bc: ed:e6:d1:a5:54:fe:11:99:a0:60:c0:a7:86:01:0c:36:4e:45: 41:64:44:ca:40:f6:a7:16:72:35:5d:56:5f:39:79:e6:12:9e: 84:f3:eb:01:0b:eb:a4:38:38:68:0f:6c:46:f0:56:2c:a9:5c: a6:16:2e:70:14:fc:f9:71:ff:29:47:6f:70:99:6a:ab:94:08: 18:5a:2e:2e:a8:1b:2a:cd:55:b9:ab:3e:b2:55:69:9d:b0:1c: 72:45:40:e1:8b:8a:68:36:1f:81:51:30:65:ac:7b:1d:22:f0: 6f:00:8b:ac:1f:50:e4:31:59:44:07:9d:7a:19:0c:6b:80:ce: 72:b8:d0:11:3c:17:b0:05:65:c4:15:7f:56:b3:9e:56:e8:6a: 0b:4e:b6:2a -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QzUxMTAvBgNVBAUTKEVGOTVDQkQ1OTgzNTI2NDBENDJCMEFBQzYwMDA0MTA2 NUI0REM0NDIwHhcNMjQxMDA0MTg1NzI2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwM2E5Ni0zZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCxPRM/pP54415csl/627GYTkRuYfZUMHHFLhnhERrGOTJVApomTJce4z3jD ouE9dfruo9/j/EXsQVqBaJ+ad+kw/hVS48esYViTAif0AwIA4EoYXNleZgCXK+/o DAS86oAfa7BnddwMhN8ThKOiZH9vVA7oFLfmXVUXm1UBf0P8s2ShbRUrflIXda7R 1roHOtL/3CcJbwxrv7nWMSUlnAdTikFL/eLNVqbvh3UEFc2UKdhSpqVCPr64Db50 Vn0l1UOiHfS0HeOeSr23GG4HOZTtvyHwySF6kbkSNYEfvPeNbrykcdqtebf8oxsq N3t9sYYhFMJMjlGjqKJ+kZQJ0QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFBs6OAo3 xZPYCzKoBnp720psSp+dMB8GA1UdIwQYMBaAFO+Vy9WYNSZA1CsKrGAAQQZbTcRC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThDNS8wNTJDODRGQzAx MTUxMUVBQTk4QTYyNTVDNEY5QUUwMi83NVhMMVpnMUprRFVLd3FzWUFCQkJsdE54 RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc1WEwxWmcxSmtEVUt3cXNZQUJCQmx0TnhFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QzUvMDUyQzg0RkMwMTE1MTFFQUE5OEE2MjU1QzRGOUFFMDIvNDUyRERGQjQw MTE2MTFFQTk3MkZGQzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnex4wGAQCAAIwEjAQAwUGJAObwAMHASQDm8AACDANBgkq hkiG9w0BAQsFAAOCAQEAlCRvOnY6CzGEbsbin5VZU6ma/c/zOD6paViyvzhhYA2m 3LOwCxTHJWsWlNi8d5BoAvDiDssW7tmKA6QG6KreQ+hysggkCd+v7sNKw9HlTZes WlOA9/fmw6hyBtStCYj+ToPn2O2KHYtKMrO87ebRpVT+EZmgYMCnhgEMNk5FQWRE ykD2pxZyNV1WXzl55hKehPPrAQvrpDg4aA9sRvBWLKlcphYucBT8+XH/KUdvcJlq q5QIGFouLqgbKs1Vuas+slVpnbAcckVA4YuKaDYfgVEwZax7HSLwbwCLrB9Q5DFZ RAedehkMa4DOcrjQETwXsAVlxBV/VrOeVuhqC062Kg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org