$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa File: ED49BD3C649A11ECBDAC9565C4F9AE02.roa (raw, json) Hash identifier: 5+nKIDKYjPUjJXitKA/NG2KaCsn8s1r6GRZFIHnwdms= Subject key identifier: 1B:5C:F1:4D:80:39:92:2E:5F:75:A4:CD:96:05:E5:FB:50:52:97:C5 Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 051A Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa Signing time: Tue 08 Oct 2024 23:32:45 +0000 ROA not before: Tue 08 Oct 2024 23:32:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 42960 IP address blocks: 103.39.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1306 (0x51a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 8 23:32:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705c11d-f714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c2:74:08:a5:30:3e:00:1c:68:2e:fb:a9:8a: 20:f6:c9:94:63:09:12:06:d1:fd:d3:9d:c9:1c:e7: 7d:23:c1:6d:6b:fa:a1:f9:e3:9b:7b:65:0e:f0:5a: 46:51:da:3f:f3:27:8d:d4:af:c7:f8:f2:a0:c2:a7: 3b:f0:9c:5f:9c:d0:5a:d0:3c:e1:c7:c8:11:b0:3c: e1:a8:7c:1e:bc:82:44:00:7e:51:5a:2f:15:4a:5b: 88:14:39:c4:3b:bb:61:40:42:9a:cb:2e:c4:b5:93: 62:c6:57:45:cc:67:1c:04:83:69:45:4a:a4:2b:d9: 13:6d:2d:82:ea:ef:aa:10:61:82:37:85:b4:8a:43: f5:78:9a:ee:36:a4:42:cb:5d:3b:91:88:74:8d:2b: 5c:6d:23:95:03:18:21:2f:7d:83:8e:0b:e6:54:b8: 60:45:30:4f:4b:9c:09:ab:8e:06:2e:4e:e7:fd:7a: 2c:6a:5e:42:ff:ff:71:8d:08:1a:46:b7:12:07:17: 0e:2a:fd:0f:59:1f:78:fb:62:75:c3:48:16:e1:a2: f9:11:bb:fc:f5:e5:86:ab:ba:05:fe:44:d3:c3:08: f4:f0:78:ad:6f:c6:57:27:9d:b8:ff:ea:03:f4:ff: 25:a9:23:51:75:01:ed:13:5f:bb:2f:57:fb:26:71: 3f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5C:F1:4D:80:39:92:2E:5F:75:A4:CD:96:05:E5:FB:50:52:97:C5 X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/ED49BD3C649A11ECBDAC9565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.78.0/23 Signature Algorithm: sha256WithRSAEncryption 93:97:b2:bb:40:5e:1b:96:d7:43:1f:0b:ce:0a:07:2e:71:c8: c0:af:ed:d0:a7:9b:60:85:b7:cc:f3:1b:9b:f8:f5:35:fb:f7: dc:90:9e:de:3d:6d:41:7e:ec:b6:7f:02:85:4f:6a:b4:f1:43: af:a2:f2:32:73:64:0c:0f:ee:f7:d2:4d:d2:60:98:81:53:11: f0:3d:43:5a:6b:cc:10:82:d9:0a:da:c5:6b:c7:2a:4a:6a:15: 4a:f9:2f:af:93:b0:f0:b5:21:0b:66:78:59:b5:8f:95:90:d1: 90:a3:06:42:f8:54:3f:48:8a:a7:d8:95:32:75:4c:27:0e:fd: 96:d2:04:52:54:c0:a8:41:3f:68:52:da:09:29:d5:86:e5:dc: f8:bd:5f:dc:97:2a:cf:30:46:c6:55:49:dd:c7:9e:53:a4:45: 69:1d:9e:35:7f:b2:dd:23:0a:0a:6c:5f:f5:93:ce:8f:67:fd: 35:05:6b:43:f7:d9:1c:b9:18:ca:95:0b:39:3d:50:0f:4d:58: f4:31:c3:aa:16:f4:9f:26:da:64:65:5a:9c:74:d9:ac:c8:b2: 5f:64:2f:46:ea:41:75:cc:59:e7:31:e4:ec:fc:17:82:8d:d3: 32:7a:da:35:28:74:5b:7e:c7:c1:a6:20:fc:db:d5:01:c4:da: 0b:5c:30:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjQxMDA4MjMzMjQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1YzExZC1mNzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28J0CKUwPgAcaC77qYog9smUYwkSBtH9053JHOd9I8Fta/qh+eObe2UO8FpG Udo/8yeN1K/H+PKgwqc78JxfnNBa0Dzhx8gRsDzhqHwevIJEAH5RWi8VSluIFDnE O7thQEKayy7EtZNixldFzGccBINpRUqkK9kTbS2C6u+qEGGCN4W0ikP1eJruNqRC y107kYh0jStcbSOVAxghL32DjgvmVLhgRTBPS5wJq44GLk7n/Xosal5C//9xjQga RrcSBxcOKv0PWR94+2J1w0gW4aL5Ebv89eWGq7oF/kTTwwj08Hitb8ZXJ524/+oD 9P8lqSNRdQHtE1+7L1f7JnE/zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBtc8U2A OZIuX3WkzZYF5ftQUpfFMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvRUQ0OUJEM0M2 NDlBMTFFQ0JEQUM5NTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJ04wDQYJKoZIhvcNAQELBQADggEBAJOXsrtAXhuW10Mf C84KBy5xyMCv7dCnm2CFt8zzG5v49TX799yQnt49bUF+7LZ/AoVParTxQ6+i8jJz ZAwP7vfSTdJgmIFTEfA9Q1przBCC2QraxWvHKkpqFUr5L6+TsPC1IQtmeFm1j5WQ 0ZCjBkL4VD9IiqfYlTJ1TCcO/ZbSBFJUwKhBP2hS2gkp1Ybl3Pi9X9yXKs8wRsZV Sd3HnlOkRWkdnjV/st0jCgpsX/WTzo9n/TUFa0P32Ry5GMqVCzk9UA9NWPQxw6oW 9J8m2mRlWpx02azIsl9kL0bqQXXMWecx5Oz8F4KN0zJ62jUodFt+x8GmIPzb1QHE 2gtcMM4= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:24 2024 by rpki-client on console-fra.rpki-client.org