$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa File: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (raw, json) Hash identifier: R10zRvOpCOn3DC2tMPa1Rak+VNLq06OAGr7UweeKXtE= Subject key identifier: 2D:20:17:B7:02:AB:3C:7B:AD:75:15:4D:B4:45:BB:47:DA:F0:61:D3 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: 02 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa Signing time: Mon 08 Jul 2024 07:26:25 +0000 ROA not before: Mon 08 Jul 2024 07:26:25 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 136557 IP address blocks: 103.26.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Jul 8 07:26:25 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=668b94a1-804e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f4:27:37:a1:f5:39:4e:79:91:30:a0:ee:bf: 7b:df:61:3d:00:56:3c:90:eb:fc:35:2a:b4:ac:1b: bd:8b:e2:04:14:dd:87:da:b9:b5:f8:ae:5e:4d:ce: 46:98:b0:1d:94:e0:1c:4d:64:94:1b:e5:54:54:bb: 37:5d:c4:11:d9:07:8e:6e:48:45:e1:f8:5a:1f:d9: 67:e4:86:8b:4b:7f:8d:9b:08:5d:00:00:b9:b3:b2: 1c:8b:e0:9d:42:db:5f:e2:11:0e:85:18:f4:fd:39: 6d:d6:a4:79:43:af:2c:f8:da:8f:00:9a:0e:17:80: 69:d8:41:cd:de:f8:8f:36:05:cf:5f:2c:b8:14:96: 06:50:e3:df:ea:ae:99:12:52:97:b4:89:e1:d9:8a: 02:12:e6:ae:a1:44:40:93:11:04:87:6e:66:ca:92: 27:f6:48:c9:6a:d7:95:cf:46:ff:59:fc:96:f5:b0: e0:28:47:02:42:44:64:ac:eb:c2:fc:a9:4e:53:8c: 81:00:ac:55:b4:34:45:ca:0b:6a:fa:b3:ac:00:39: 97:46:bd:33:93:90:8c:95:1a:a2:3f:06:6d:a3:c5: 5c:11:29:d6:3d:35:df:47:d9:54:70:11:34:39:f1: b1:df:62:ef:bd:63:c7:10:44:16:2f:95:6c:c4:53: a5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:20:17:B7:02:AB:3C:7B:AD:75:15:4D:B4:45:BB:47:DA:F0:61:D3 X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.237.0/24 Signature Algorithm: sha256WithRSAEncryption 49:eb:fd:f7:91:b9:ea:15:c7:d6:74:37:68:bb:2c:d6:cd:4c: e9:04:ae:b0:bb:95:51:0e:ab:a5:a5:9c:b4:e4:74:dc:b6:9a: 21:ed:fb:a0:85:a3:11:de:0f:ff:d3:45:e2:e9:c9:18:eb:9c: 11:fa:e0:7f:15:a3:76:4b:e0:a6:e0:77:4f:bb:59:ee:fd:8b: 0d:7f:a6:b0:92:d9:d8:81:b8:79:1a:a0:ed:cc:51:0f:7f:ff: 0d:c7:c8:74:1f:31:78:e3:21:67:0e:fa:6c:01:fd:50:c2:14: 87:f5:6a:af:89:3e:1d:8a:1a:b7:25:47:fe:25:20:00:63:64: 74:e9:72:dc:ac:18:64:5e:f0:4d:80:30:6c:58:ee:1d:ac:68: 7e:7d:7e:e6:39:2b:0f:c2:99:50:cf:02:44:68:49:80:ca:4c: 74:7c:16:8a:c9:46:a1:ba:32:1f:df:44:13:d5:a7:29:2f:f5: 9b:0e:51:89:6b:00:5e:c6:7f:ee:1a:cc:81:95:42:ec:e6:b5: 87:8e:f1:1c:14:f0:86:c3:e1:6f:d0:81:27:32:d4:73:28:e7: 30:7f:8a:c6:c4:4a:1c:9a:36:59:d6:55:9b:a5:50:00:6a:64: 86:82:ec:90:da:ea:9b:56:ce:e7:d4:4b:91:53:07:46:67:c4: 6f:ea:b4:e3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Mzc5RjExMC8GA1UEBRMoODJCNEQyNzFERTIxMkUwNjMzNUMwQjQ1RTY2NTE3QjUw OEI4MzUxNjAeFw0yNDA3MDgwNzI2MjVaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2OGI5NGExLTgwNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV9Cc3ofU5TnmRMKDuv3vfYT0AVjyQ6/w1KrSsG72L4gQU3YfaubX4rl5NzkaY sB2U4BxNZJQb5VRUuzddxBHZB45uSEXh+Fof2WfkhotLf42bCF0AALmzshyL4J1C 21/iEQ6FGPT9OW3WpHlDryz42o8Amg4XgGnYQc3e+I82Bc9fLLgUlgZQ49/qrpkS Upe0ieHZigIS5q6hRECTEQSHbmbKkif2SMlq15XPRv9Z/Jb1sOAoRwJCRGSs68L8 qU5TjIEArFW0NEXKC2r6s6wAOZdGvTOTkIyVGqI/Bm2jxVwRKdY9Nd9H2VRwETQ5 8bHfYu+9Y8cQRBYvlWzEU6VlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULSAXtwKr PHutdRVNtEW7R9rwYdMwHwYDVR0jBBgwFoAUgrTScd4hLgYzXAtF5mUXtQi4NRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNzlGLzZGOTlENEYwM0NG OTExRUZBMEEwNkY4NkM0RjlBRTAyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5S WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3JUU2NkNGhMZ1l6WEF0RjVtVVh0UWk0TlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi82MjE0MjhDRTND RkIxMUVGQjBCRjA0MEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGca7TANBgkqhkiG9w0BAQsFAAOCAQEASev995G56hXH1nQ3 aLss1s1M6QSusLuVUQ6rpaWctOR03LaaIe37oIWjEd4P/9NF4unJGOucEfrgfxWj dkvgpuB3T7tZ7v2LDX+msJLZ2IG4eRqg7cxRD3//DcfIdB8xeOMhZw76bAH9UMIU h/Vqr4k+HYoatyVH/iUgAGNkdOly3KwYZF7wTYAwbFjuHaxofn1+5jkrD8KZUM8C RGhJgMpMdHwWislGoboyH99EE9WnKS/1mw5RiWsAXsZ/7hrMgZVC7Oa1h47xHBTw hsPhb9CBJzLUcyjnMH+KxsRKHJo2WdZVm6VQAGpkhoLskNrqm1bO59RLkVMHRmfE b+q04w== -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:40 2024 by rpki-client on console-fra.rpki-client.org