$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa File: A4E0754863B411EEAADB3A7CC4F9AE02.roa (raw, json) Hash identifier: TbBCV9YqWUCY2Wq1gBoigXibaMg8V4tyOlNdcsB7waU= Subject key identifier: CD:AC:8F:20:ED:F6:A4:B9:D9:FE:5F:4D:1B:C5:4F:BA:C3:04:67:6F Certificate issuer: /CN=A91E2042/serialNumber=87CF1D01604551E86C24409E481DAF9C66594BF4 Certificate serial: BE Authority key identifier: 87:CF:1D:01:60:45:51:E8:6C:24:40:9E:48:1D:AF:9C:66:59:4B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa Signing time: Mon 07 Oct 2024 04:18:54 +0000 ROA not before: Mon 07 Oct 2024 04:18:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151820 IP address blocks: 103.204.42.0/23 maxlen: 23 103.204.42.0/24 maxlen: 24 103.204.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.crl rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2042/serialNumber=87CF1D01604551E86C24409E481DAF9C66594BF4 Validity Not Before: Oct 7 04:18:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6703612e-2b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a5:85:68:1c:e3:30:d1:ff:b9:10:15:9d:00: 3b:48:4d:19:5a:76:40:6c:58:92:9e:d2:dc:09:1d: 12:21:90:ca:ce:63:a5:f0:1e:84:1a:a2:f0:54:05: 28:4c:4b:3f:8f:34:9a:35:4e:da:a3:3e:bb:b5:66: 9f:dd:2c:13:46:a9:2a:81:28:39:03:74:ec:b8:8a: 2f:b7:b0:fd:68:72:26:2b:99:3a:42:70:99:9e:96: 4a:70:68:53:70:f6:02:03:1e:7b:f3:e1:f5:6a:89: f7:b2:74:ae:e7:59:4f:d2:02:ad:58:e0:11:b0:a0: cf:57:d7:d1:89:e8:fa:4c:c5:5c:8d:2a:74:42:eb: 01:b5:ac:e1:6c:77:ae:6b:86:8d:05:78:3b:b7:bc: d6:b0:16:d7:46:23:a0:04:7d:07:b3:71:17:d0:68: 4c:83:3c:7c:57:2f:d9:81:f3:40:c1:fa:f5:2b:f9: 25:52:40:ad:59:b0:d6:3d:73:87:2a:c7:98:47:c4: 95:40:ce:26:48:53:0c:ac:91:e1:29:39:b5:69:e5: 99:fd:7d:a1:24:0d:e1:bb:3a:01:44:65:a5:54:d5: 6f:f1:41:81:05:99:7d:f7:b0:b2:f4:dd:e0:60:a2: 17:59:fa:bd:c1:36:65:fc:92:bc:b6:b8:92:40:a0: df:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AC:8F:20:ED:F6:A4:B9:D9:FE:5F:4D:1B:C5:4F:BA:C3:04:67:6F X509v3 Authority Key Identifier: keyid:87:CF:1D:01:60:45:51:E8:6C:24:40:9E:48:1D:AF:9C:66:59:4B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/h88dAWBFUehsJECeSB2vnGZZS_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h88dAWBFUehsJECeSB2vnGZZS_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2042/0AEC1D0C63B411EEB65D2B7BC4F9AE02/A4E0754863B411EEAADB3A7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.42.0/23 Signature Algorithm: sha256WithRSAEncryption 51:74:7e:6e:04:50:31:5e:24:83:f0:a4:27:91:a8:60:42:ae: 06:5d:ad:ca:58:95:b6:56:95:48:c0:75:5d:37:84:9d:ae:5a: cf:c5:29:b8:ba:24:9c:e4:61:35:7f:f9:fe:68:31:57:c8:ae: dc:ea:f5:55:3a:3c:39:ca:c1:1c:23:ec:56:2b:b0:05:68:33: 2e:43:d0:8f:ca:52:71:cb:dd:03:df:a3:d6:39:9a:14:ee:87: 47:9a:e8:f2:02:41:a4:f4:2b:00:a4:06:9b:7b:e8:0a:9c:90: 52:34:7c:6d:f2:ae:6b:93:40:d8:f0:ad:5e:af:0b:bb:a8:6d: e4:f6:dd:e8:7d:ca:ef:79:c2:c9:ad:e1:f9:10:25:61:60:79: 91:25:39:5e:1c:a5:9e:6f:ff:01:ec:ec:44:2b:0e:63:aa:bd: 0e:3d:e2:71:c2:7d:45:cb:9d:97:33:64:b5:7d:6a:3e:bc:5a: 34:bd:7b:29:e7:f1:98:5c:e3:79:91:23:f4:56:2e:2c:39:2d: 3c:ea:c0:d3:cb:52:76:83:30:f9:5c:06:5e:95:2e:9c:bd:1b: f7:19:63:7e:63:81:b9:bf:3a:c7:b0:58:f3:2a:66:ce:0d:52: 7d:c1:40:16:52:de:c5:92:72:0c:7a:67:60:a9:d2:e0:27:f6: 95:92:41:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIwNDIxMTAvBgNVBAUTKDg3Q0YxRDAxNjA0NTUxRTg2QzI0NDA5RTQ4MURBRjlD NjY1OTRCRjQwHhcNMjQxMDA3MDQxODU0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzNjEyZS0yYjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaWFaBzjMNH/uRAVnQA7SE0ZWnZAbFiSntLcCR0SIZDKzmOl8B6EGqLwVAUo TEs/jzSaNU7aoz67tWaf3SwTRqkqgSg5A3TsuIovt7D9aHImK5k6QnCZnpZKcGhT cPYCAx578+H1aon3snSu51lP0gKtWOARsKDPV9fRiej6TMVcjSp0QusBtazhbHeu a4aNBXg7t7zWsBbXRiOgBH0Hs3EX0GhMgzx8Vy/ZgfNAwfr1K/klUkCtWbDWPXOH KseYR8SVQM4mSFMMrJHhKTm1aeWZ/X2hJA3huzoBRGWlVNVv8UGBBZl997Cy9N3g YKIXWfq9wTZl/JK8triSQKDf1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFM2sjyDt 9qS52f5fTRvFT7rDBGdvMB8GA1UdIwQYMBaAFIfPHQFgRVHobCRAnkgdr5xmWUv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjA0Mi8wQUVDMUQwQzYz QjQxMUVFQjY1RDJCN0JDNEY5QUUwMi9oODhkQVdCRlVlaHNKRUNlU0Iydm5HWlpT X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4OGRBV0JGVWVoc0pFQ2VTQjJ2bkdaWlNfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIwNDIvMEFFQzFEMEM2M0I0MTFFRUI2NUQyQjdCQzRGOUFFMDIvQTRFMDc1NDg2 M0I0MTFFRUFBREIzQTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnzCowDQYJKoZIhvcNAQELBQADggEBAFF0fm4EUDFeJIPw pCeRqGBCrgZdrcpYlbZWlUjAdV03hJ2uWs/FKbi6JJzkYTV/+f5oMVfIrtzq9VU6 PDnKwRwj7FYrsAVoMy5D0I/KUnHL3QPfo9Y5mhTuh0ea6PICQaT0KwCkBpt76Aqc kFI0fG3yrmuTQNjwrV6vC7uobeT23eh9yu95wsmt4fkQJWFgeZElOV4cpZ5v/wHs 7EQrDmOqvQ494nHCfUXLnZczZLV9aj68WjS9eynn8Zhc43mRI/RWLiw5LTzqwNPL UnaDMPlcBl6VLpy9G/cZY35jgbm/OsewWPMqZs4NUn3BQBZS3sWScgx6Z2Cp0uAn 9pWSQTs= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org