$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa File: D968823E3DA111EA9A3FD550C4F9AE02.roa (raw, json) Hash identifier: LHN9DyWzlGRcwkpXqFqZ90XaKLujDGwCFAysXhBXguc= Subject key identifier: EF:4F:C6:18:D4:1C:6E:AC:8F:3F:C8:15:98:C9:AD:9A:F0:DB:04:31 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0AD5 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa Signing time: Sat 02 Nov 2024 19:28:14 +0000 ROA not before: Sat 02 Nov 2024 19:28:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 38320 IP address blocks: 103.122.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2773 (0xad5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Nov 2 19:28:14 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67267d4e-b07c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:56:4d:a5:b9:8b:2f:b2:eb:14:c5:59:09:f5: 42:69:c7:d7:9c:e0:ce:78:c1:b6:c3:d9:76:26:82: 81:ca:04:f2:64:54:f1:87:b6:dc:64:37:57:08:d6: dd:76:97:7c:82:03:44:88:3e:af:d3:a6:29:26:2f: bb:2c:0c:fb:f8:29:d0:13:0b:19:8f:cb:b0:dc:b2: d1:70:c8:fc:00:40:b6:f7:83:59:35:6b:4b:6b:6b: eb:8c:7c:6d:7b:d8:03:6e:b7:0a:58:80:9c:32:b9: 63:d1:15:37:84:b3:85:11:da:42:3a:71:e2:f4:4e: 38:37:86:3f:ce:e5:b8:78:70:60:41:4f:0f:dc:51: df:e6:c4:31:e8:7f:61:7c:41:cf:39:72:95:b4:cb: e2:26:77:8a:91:c5:cf:38:a6:8b:e6:24:8f:3d:de: 3d:ff:c6:cc:da:d0:cf:65:6a:06:53:c2:dd:98:09: 05:7f:6d:35:6f:97:7e:dc:66:70:3d:d7:3a:d7:ab: 41:e5:1b:16:a7:30:1e:6c:ab:62:5d:db:bf:9b:ca: ad:bc:ee:4a:8a:d3:74:b3:6a:17:1e:3c:90:1f:fa: c2:84:b4:df:c3:53:b2:8a:cd:b7:1b:35:91:85:90: 98:6c:2b:ed:d2:28:4f:f2:11:d3:58:18:f5:c3:2a: f2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:4F:C6:18:D4:1C:6E:AC:8F:3F:C8:15:98:C9:AD:9A:F0:DB:04:31 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.252.0/22 Signature Algorithm: sha256WithRSAEncryption ab:43:37:09:d5:cc:d4:4b:ab:02:0e:30:1c:f9:31:48:24:34: 2b:81:a8:bb:06:8a:7f:68:69:b4:7c:3f:91:d4:1c:dc:d9:d5: c2:93:ee:87:f4:9b:ed:33:f1:f7:09:7f:c4:47:9a:10:bc:65: cf:73:1e:ef:00:15:94:4b:3b:8b:0c:4e:8f:49:4a:ec:74:6d: c5:34:2c:7f:f3:ca:a7:ec:a2:1b:1e:65:dc:6f:74:15:01:62: a7:d7:53:db:00:e0:81:12:3a:fa:7e:39:f5:6e:95:a3:6c:bf: 9d:70:9d:0e:4c:77:bf:99:83:04:98:16:a3:ec:b1:72:f3:52: 91:92:15:99:2c:45:f7:4d:0d:cb:18:e2:f5:fe:c4:ec:c4:d2: cc:3a:59:68:c4:48:ae:7e:f2:ea:6d:e6:61:05:d1:51:7b:23: cd:69:4d:22:fc:2d:cc:51:0b:03:53:e6:6a:b4:6f:f4:1c:ed: 33:bf:fa:78:81:05:f1:81:9d:c1:48:b2:90:3b:f8:3e:92:e7: cf:11:d2:88:90:56:e3:df:a3:fc:eb:1a:f5:66:42:bf:68:09: bf:5e:a0:23:75:e5:87:aa:12:f0:41:63:0f:d0:57:81:30:f3: 3d:ba:80:30:af:28:a0:32:54:aa:8c:e1:11:e9:8f:19:14:3e: dc:06:7d:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjQxMTAyMTkyODE0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2N2Q0ZS1iMDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlZNpbmLL7LrFMVZCfVCacfXnODOeMG2w9l2JoKBygTyZFTxh7bcZDdXCNbd dpd8ggNEiD6v06YpJi+7LAz7+CnQEwsZj8uw3LLRcMj8AEC294NZNWtLa2vrjHxt e9gDbrcKWICcMrlj0RU3hLOFEdpCOnHi9E44N4Y/zuW4eHBgQU8P3FHf5sQx6H9h fEHPOXKVtMviJneKkcXPOKaL5iSPPd49/8bM2tDPZWoGU8LdmAkFf201b5d+3GZw Pdc616tB5RsWpzAebKtiXdu/m8qtvO5KitN0s2oXHjyQH/rChLTfw1Oyis23GzWR hZCYbCvt0ihP8hHTWBj1wyry6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9PxhjU HG6sjz/IFZjJrZrw2wQxMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM5QjQvMUVFMTgyOUUzREExMTFFQThCNjdFOTRGQzRGOUFFMDIvRDk2ODgyM0Uz REExMTFFQTlBM0ZENTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnevwwDQYJKoZIhvcNAQELBQADggEBAKtDNwnVzNRLqwIO MBz5MUgkNCuBqLsGin9oabR8P5HUHNzZ1cKT7of0m+0z8fcJf8RHmhC8Zc9zHu8A FZRLO4sMTo9JSux0bcU0LH/zyqfsohseZdxvdBUBYqfXU9sA4IESOvp+OfVulaNs v51wnQ5Md7+ZgwSYFqPssXLzUpGSFZksRfdNDcsY4vX+xOzE0sw6WWjESK5+8upt 5mEF0VF7I81pTSL8LcxRCwNT5mq0b/Qc7TO/+niBBfGBncFIspA7+D6S588R0oiQ VuPfo/zrGvVmQr9oCb9eoCN15YeqEvBBYw/QV4Ew8z26gDCvKKAyVKqM4RHpjxkU PtwGfYI= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org