$ rpki-client -vvf rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa File: 2C74B00CF70011EA8EFF4C67C4F9AE02.roa (raw, json) Hash identifier: tCsERzsAtsk+5phQVU01aXCd1wv6EXGawIRg0i0oP6k= Subject key identifier: 4C:29:E9:3A:7A:AC:94:B1:84:C3:48:6E:0D:8D:C3:B3:47:D2:E0:FB Certificate issuer: /CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Certificate serial: 07FB Authority key identifier: 94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa Signing time: Mon 02 Sep 2024 21:59:27 +0000 ROA not before: Mon 02 Sep 2024 21:59:27 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140896 IP address blocks: 103.153.30.0/24 maxlen: 24 2001:df4:2c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:33:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2043 (0x7fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E41C9/serialNumber=9470E76108063E4F7C64AD43D076BC11AE1FDB5D Validity Not Before: Sep 2 21:59:27 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6353f-f547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:60:4c:cf:b6:d7:84:6d:6e:b9:64:66:e3:b9: 84:8b:5b:99:d9:93:ac:3b:31:b3:c0:b1:3e:0b:e2: 15:2e:dc:55:b2:0d:87:83:5b:91:8c:d1:bd:2d:65: f9:63:47:79:bc:8a:8e:c2:ae:07:5d:2a:cf:ed:05: da:ea:4b:4d:30:01:a3:45:ff:e7:95:a8:ac:31:ff: d8:de:36:1f:20:7d:bf:f5:b3:66:89:38:27:8b:c3: b3:62:40:20:96:aa:d2:85:00:e9:d8:1c:bd:a6:ba: 04:69:78:e8:f3:eb:6a:35:c7:bb:f9:f9:57:7f:cf: 2d:56:25:da:c1:f0:0a:c5:df:7d:0e:86:85:89:d5: e4:21:88:c0:ed:45:42:52:8c:ef:d0:d8:ef:91:5b: 70:81:dc:78:c5:b2:32:1e:24:2a:14:5c:cb:a6:a1: 33:4f:f5:9e:e4:23:48:c8:a9:6d:ff:c3:95:9d:0f: da:73:05:0a:2e:c2:bc:60:99:e0:50:80:99:f7:43: 41:22:23:6c:fa:c7:26:8d:6c:f1:25:66:04:e7:d5: 14:56:16:d1:f8:09:99:2b:e6:11:fe:fd:8a:97:b8: 96:2e:c2:76:06:c2:a1:12:78:45:d2:78:21:fb:a5: a3:34:94:74:9e:59:07:17:0e:c4:44:f7:30:fe:62: 6c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:29:E9:3A:7A:AC:94:B1:84:C3:48:6E:0D:8D:C3:B3:47:D2:E0:FB X509v3 Authority Key Identifier: keyid:94:70:E7:61:08:06:3E:4F:7C:64:AD:43:D0:76:BC:11:AE:1F:DB:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/lHDnYQgGPk98ZK1D0Ha8Ea4f210.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lHDnYQgGPk98ZK1D0Ha8Ea4f210.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E41C9/49BD9DA6C0F811EA8AC6C46CC4F9AE02/2C74B00CF70011EA8EFF4C67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.30.0/24 IPv6: 2001:df4:2c80::/48 Signature Algorithm: sha256WithRSAEncryption 7d:b8:bf:9e:be:90:e3:45:1f:7d:cd:cb:4e:e8:ed:30:5f:e1: 69:5f:47:13:41:dd:c9:03:0b:b4:71:60:65:e2:30:c4:f2:8d: 24:6b:57:7e:3a:71:09:c6:2e:5c:06:e0:34:c6:5a:9b:ae:88: ff:de:48:15:18:a9:59:39:a2:4b:9b:f3:c7:15:53:3a:d3:f2: c2:3b:a7:18:c8:35:12:05:1b:d2:d6:24:6e:23:ee:5e:ce:a9: 89:6d:08:b4:a9:8b:8c:1d:2f:cd:55:8b:bf:fa:09:d0:53:2d: 4f:81:a3:1c:5c:97:71:5b:5b:95:cd:d6:d3:5f:7d:1a:1b:62: fd:74:22:20:1d:61:cc:0c:7d:84:fa:28:19:b6:c0:51:d1:08: 76:ae:50:3b:e2:c0:c5:28:87:87:ca:f7:3d:1b:b9:81:cf:0f: ec:53:b8:19:d0:13:e9:64:e4:f4:3c:83:24:f9:e0:52:d9:c8: d7:82:18:f3:ff:ef:1e:50:b0:84:cf:5a:82:d8:fb:16:c5:17: bd:10:74:f3:73:75:c3:93:3e:fb:4b:0a:51:bd:44:00:2f:5b: 3d:98:d9:cb:7d:eb:26:89:8e:17:43:e6:88:4e:95:4e:07:8d: 9d:cb:36:0e:ba:51:a9:e3:05:b2:7d:85:1a:47:84:8b:35:e9: 4a:2c:84:cd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQxQzkxMTAvBgNVBAUTKDk0NzBFNzYxMDgwNjNFNEY3QzY0QUQ0M0QwNzZCQzEx QUUxRkRCNUQwHhcNMjQwOTAyMjE1OTI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MzUzZi1mNTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymBMz7bXhG1uuWRm47mEi1uZ2ZOsOzGzwLE+C+IVLtxVsg2Hg1uRjNG9LWX5 Y0d5vIqOwq4HXSrP7QXa6ktNMAGjRf/nlaisMf/Y3jYfIH2/9bNmiTgni8OzYkAg lqrShQDp2By9proEaXjo8+tqNce7+flXf88tViXawfAKxd99DoaFidXkIYjA7UVC Uozv0NjvkVtwgdx4xbIyHiQqFFzLpqEzT/We5CNIyKlt/8OVnQ/acwUKLsK8YJng UICZ90NBIiNs+scmjWzxJWYE59UUVhbR+AmZK+YR/v2Kl7iWLsJ2BsKhEnhF0ngh +6WjNJR0nlkHFw7ERPcw/mJsLQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEwp6Tp6 rJSxhMNIbg2Nw7NH0uD7MB8GA1UdIwQYMBaAFJRw52EIBj5PfGStQ9B2vBGuH9td MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDFDOS80OUJEOURBNkMw RjgxMUVBOEFDNkM0NkNDNEY5QUUwMi9sSERuWVFnR1BrOThaSzFEMEhhOEVhNGYy MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xIRG5ZUWdHUGs5OFpLMUQwSGE4RWE0ZjIxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQxQzkvNDlCRDlEQTZDMEY4MTFFQThBQzZDNDZDQzRGOUFFMDIvMkM3NEIwMENG NzAwMTFFQThFRkY0QzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmR4wDwQCAAIwCQMHACABDfQsgDANBgkqhkiG9w0BAQsF AAOCAQEAfbi/nr6Q40Uffc3LTujtMF/haV9HE0HdyQMLtHFgZeIwxPKNJGtXfjpx CcYuXAbgNMZam66I/95IFRipWTmiS5vzxxVTOtPywjunGMg1EgUb0tYkbiPuXs6p iW0ItKmLjB0vzVWLv/oJ0FMtT4GjHFyXcVtblc3W0199Ghti/XQiIB1hzAx9hPoo GbbAUdEIdq5QO+LAxSiHh8r3PRu5gc8P7FO4GdAT6WTk9DyDJPngUtnI14IY8//v HlCwhM9agtj7FsUXvRB083N1w5M++0sKUb1EAC9bPZjZy33rJomOF0PmiE6VTgeN ncs2DrpRqeMFsn2FGkeEizXpSiyEzQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org