$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa File: 429AFADCF25E11EE9E1B8A09C4F9AE02.roa (raw, json) Hash identifier: 7FN0HyYzJH1Qv9Jl9oBRZAPnuS+2hOq+lQ7L65dqdMM= Subject key identifier: 54:BA:A0:DC:25:DF:3B:8E:22:3E:AC:B2:90:38:21:A7:7D:02:A5:58 Certificate issuer: /CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Certificate serial: 017D Authority key identifier: 82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa Signing time: Tue 05 Nov 2024 02:05:35 +0000 ROA not before: Tue 05 Nov 2024 02:05:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134562 IP address blocks: 103.31.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE9CC/serialNumber=82944E6AA571C0EB35E2791BC1596F77277A7324 Validity Not Before: Nov 5 02:05:35 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67297d6f-7e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fe:2a:61:9a:c3:a5:57:5b:d3:f2:fa:c2:87: 73:b6:ac:ff:5e:ee:71:a5:04:44:f5:ee:b0:9b:50: 3a:03:05:46:17:ef:11:c3:6c:22:50:ca:36:86:b3: e8:29:b3:3a:81:64:d1:5c:f1:19:82:b2:13:e1:2a: 8b:25:b5:ca:92:45:9e:a9:64:50:7f:41:60:8c:ae: 80:09:78:b4:78:44:e9:8b:5a:4c:53:11:77:d0:fc: a7:5a:16:d1:b3:0e:af:9e:4b:17:71:d6:e9:a8:bf: 9f:89:e5:51:fa:e2:bc:76:4d:ae:a0:05:63:74:b3: b7:78:30:e5:ff:89:70:27:91:73:41:06:8a:5e:0a: 9f:cc:36:cb:fc:43:5f:ac:03:e0:5c:db:e3:58:22: f8:81:56:4e:e1:33:4f:bd:52:cb:e6:30:8b:ca:e3: 1f:fa:93:3e:2f:d2:15:38:d8:1a:52:57:24:97:18: d6:9b:b1:e1:73:b4:93:15:31:60:12:c3:04:d5:50: 89:46:b7:c6:8e:8d:47:2a:8b:0a:ec:4f:49:05:20: b7:5f:4c:59:51:c4:8d:b3:22:9c:bc:9d:23:22:a2: 39:17:23:9a:81:6e:d4:bd:ec:b3:98:e5:be:30:42: 06:a7:f4:24:19:9e:78:6c:33:f2:9b:83:7e:3e:72: f7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BA:A0:DC:25:DF:3B:8E:22:3E:AC:B2:90:38:21:A7:7D:02:A5:58 X509v3 Authority Key Identifier: keyid:82:94:4E:6A:A5:71:C0:EB:35:E2:79:1B:C1:59:6F:77:27:7A:73:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/gpROaqVxwOs14nkbwVlvdyd6cyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gpROaqVxwOs14nkbwVlvdyd6cyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE9CC/60B447BA5F4A11EDAD68657EC4F9AE02/429AFADCF25E11EE9E1B8A09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.11.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:10:c1:e8:56:df:cb:f8:6b:52:2a:ec:33:65:7f:ff:f0:99: 37:f4:c2:4c:0a:31:27:a1:a6:44:5d:38:86:a9:8a:6f:af:e1: 8f:b9:96:b0:8e:ee:9e:c7:2a:57:1e:9b:73:14:f1:56:a2:c6: a3:d1:a0:d8:08:3e:cc:00:e1:fc:53:17:84:01:4e:4a:c6:e4: ae:bf:f5:fd:48:df:e6:a6:02:54:02:5f:d5:aa:a6:ee:e8:3f: 95:86:ae:77:88:68:79:cd:3f:56:25:62:db:2a:55:d9:82:ae: 12:e7:74:4b:a1:ab:7f:97:6b:19:d5:e5:3a:93:50:fd:7f:72: dd:36:ae:92:82:6d:7c:fa:ab:75:1e:75:dc:fc:2c:9f:de:c5: 7a:f2:ca:f5:86:ec:55:6a:37:b1:41:6f:70:91:ef:55:71:44: 91:85:9b:62:b7:04:6c:a8:5b:1e:8d:a1:4b:57:61:0c:0c:aa: bf:87:ac:2a:72:c3:44:88:42:d7:c8:0e:ec:42:64:31:f6:9d: 49:b1:46:bf:e8:d1:b8:8b:b5:a5:e8:4c:18:f6:90:31:d4:4a: e8:1d:35:72:39:99:03:a3:34:b3:b9:cc:96:95:b9:82:dd:6d: 39:73:df:27:f0:15:60:a9:55:f6:c8:e9:15:82:a6:f5:e9:53: cd:59:3e:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU5Q0MxMTAvBgNVBAUTKDgyOTQ0RTZBQTU3MUMwRUIzNUUyNzkxQkMxNTk2Rjc3 Mjc3QTczMjQwHhcNMjQxMTA1MDIwNTM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5N2Q2Zi03ZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/4qYZrDpVdb0/L6wodztqz/Xu5xpQRE9e6wm1A6AwVGF+8Rw2wiUMo2hrPo KbM6gWTRXPEZgrIT4SqLJbXKkkWeqWRQf0FgjK6ACXi0eETpi1pMUxF30PynWhbR sw6vnksXcdbpqL+fieVR+uK8dk2uoAVjdLO3eDDl/4lwJ5FzQQaKXgqfzDbL/ENf rAPgXNvjWCL4gVZO4TNPvVLL5jCLyuMf+pM+L9IVONgaUlcklxjWm7Hhc7STFTFg EsME1VCJRrfGjo1HKosK7E9JBSC3X0xZUcSNsyKcvJ0jIqI5FyOagW7UveyzmOW+ MEIGp/QkGZ54bDPym4N+PnL3bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFS6oNwl 3zuOIj6sspA4Iad9AqVYMB8GA1UdIwQYMBaAFIKUTmqlccDrNeJ5G8FZb3cnenMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTlDQy82MEI0NDdCQTVG NEExMUVEQUQ2ODY1N0VDNEY5QUUwMi9ncFJPYXFWeHdPczE0bmtid1ZsdmR5ZDZj eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dwUk9hcVZ4d09zMTRua2J3Vmx2ZHlkNmN5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU5Q0MvNjBCNDQ3QkE1RjRBMTFFREFENjg2NTdFQzRGOUFFMDIvNDI5QUZBRENG MjVFMTFFRTlFMUI4QTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHwswDQYJKoZIhvcNAQELBQADggEBAEwQwehW38v4a1Iq 7DNlf//wmTf0wkwKMSehpkRdOIapim+v4Y+5lrCO7p7HKlcem3MU8VaixqPRoNgI PswA4fxTF4QBTkrG5K6/9f1I3+amAlQCX9Wqpu7oP5WGrneIaHnNP1YlYtsqVdmC rhLndEuhq3+XaxnV5TqTUP1/ct02rpKCbXz6q3Ueddz8LJ/exXryyvWG7FVqN7FB b3CR71VxRJGFm2K3BGyoWx6NoUtXYQwMqr+HrCpyw0SIQtfIDuxCZDH2nUmxRr/o 0biLtaXoTBj2kDHUSugdNXI5mQOjNLO5zJaVuYLdbTlz3yfwFWCpVfbI6RWCpvXp U81ZPko= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org