$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/D4E4D8FCA7C311EFB1AAAD55C4F9AE02.roa File: D4E4D8FCA7C311EFB1AAAD55C4F9AE02.roa (raw, json) Hash identifier: Xf5Ju4zh/ec55xkKs2QH4FHNMxaxZH8+1mgQURFonS4= Subject key identifier: E6:31:80:8D:0D:78:24:43:D1:79:6A:46:E2:65:CF:E0:93:B8:2E:61 Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 029B Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/D4E4D8FCA7C311EFB1AAAD55C4F9AE02.roa Signing time: Thu 21 Nov 2024 04:48:20 +0000 ROA not before: Thu 21 Nov 2024 04:48:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 20473 IP address blocks: 103.26.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Nov 21 04:48:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673ebb94-e407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:6b:25:6f:49:e2:21:a0:91:5f:19:0b:21:40: 26:89:ff:6f:59:07:41:17:87:82:d9:c3:d8:b2:de: b5:12:02:3e:f2:dc:08:3c:2e:6b:71:cb:13:6d:64: 02:1b:9b:bc:00:e1:b0:28:d1:68:fe:63:0e:a1:83: 35:ec:ad:bb:05:3d:c5:4d:df:c6:ad:a3:15:39:e4: ea:80:19:9f:90:d9:b5:1f:ef:7f:73:b4:a2:c8:c9: 80:b7:46:af:5e:08:3a:be:20:1f:56:6d:50:cc:4c: 70:fc:df:69:f9:db:9b:7d:a6:4a:41:0d:61:24:17: e2:34:83:ad:1d:e5:a7:2c:85:37:f6:3b:c1:64:39: 52:3a:46:29:79:be:0d:ff:2d:23:7c:14:51:de:69: f4:1f:47:dd:88:f8:23:cf:97:f2:c8:8b:b8:3e:77: 95:8c:e1:02:d6:3a:fa:b4:9f:3e:84:11:4e:53:1d: 76:1c:11:d0:66:26:88:8f:a3:92:b7:db:40:9a:13: b8:a7:ab:13:e7:72:5e:8b:fe:0d:94:bf:1b:aa:63: 53:14:5f:f6:09:91:d7:79:a1:09:c8:05:39:63:0a: f3:34:c9:9d:69:d2:ca:dd:d1:ef:b8:49:45:4f:66: 8e:da:88:1d:e6:2d:1b:5b:ee:de:bf:5e:bf:32:97: 9c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:31:80:8D:0D:78:24:43:D1:79:6A:46:E2:65:CF:E0:93:B8:2E:61 X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/D4E4D8FCA7C311EFB1AAAD55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.11.0/24 Signature Algorithm: sha256WithRSAEncryption ba:93:2f:ff:e9:55:bc:78:b0:eb:57:c8:7d:3c:a8:93:bb:fa: b7:03:62:8e:21:f9:5f:b9:31:76:c5:c7:a5:46:f2:c3:23:77: 81:e3:e1:d1:b1:8e:00:78:35:f4:27:9f:d9:28:d8:7b:19:3f: 66:a8:6f:10:6a:36:63:9e:6d:de:89:2d:2e:53:4d:5b:3a:90: 08:8b:8f:ff:c8:11:a3:7a:e1:17:29:01:c7:78:f0:e9:1d:23: 6f:b0:4c:08:61:81:c4:85:68:69:27:c1:de:77:57:13:70:a5: 5f:70:42:72:c3:a4:81:d0:e8:8f:78:b2:f1:d9:03:23:2e:81: 2a:2b:54:ad:69:37:fb:1a:2d:bb:63:81:6d:eb:d2:12:6d:01: e6:cf:33:31:0d:ef:ca:4b:c8:fe:fb:77:1d:28:7f:cc:d3:f0: 5b:d3:a8:3d:70:9e:67:64:d3:69:5d:1f:88:b7:9c:a0:a4:be: ae:cd:32:d5:3a:fe:b9:0c:a3:d7:02:08:9e:60:c2:93:8d:28: 11:94:a1:5f:15:d8:cb:1a:2e:27:ca:cf:90:f5:0e:4e:7d:7c: ee:c4:54:a0:25:36:56:01:45:70:44:b0:79:63:11:ec:ea:a2: f2:29:fc:48:3b:8d:6a:f9:32:e7:52:f5:3c:91:8c:f6:28:2d: 7d:92:28:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjQxMTIxMDQ0ODIwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlYmI5NC1lNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA92slb0niIaCRXxkLIUAmif9vWQdBF4eC2cPYst61EgI+8twIPC5rccsTbWQC G5u8AOGwKNFo/mMOoYM17K27BT3FTd/GraMVOeTqgBmfkNm1H+9/c7SiyMmAt0av Xgg6viAfVm1QzExw/N9p+dubfaZKQQ1hJBfiNIOtHeWnLIU39jvBZDlSOkYpeb4N /y0jfBRR3mn0H0fdiPgjz5fyyIu4PneVjOEC1jr6tJ8+hBFOUx12HBHQZiaIj6OS t9tAmhO4p6sT53Jei/4NlL8bqmNTFF/2CZHXeaEJyAU5YwrzNMmdadLK3dHvuElF T2aO2ogd5i0bW+7ev16/MpecIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOYxgI0N eCRD0XlqRuJlz+CTuC5hMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvRDRFNEQ4RkNB N0MzMTFFRkIxQUFBRDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGgswDQYJKoZIhvcNAQELBQADggEBALqTL//pVbx4sOtX yH08qJO7+rcDYo4h+V+5MXbFx6VG8sMjd4Hj4dGxjgB4NfQnn9ko2HsZP2aobxBq NmOebd6JLS5TTVs6kAiLj//IEaN64RcpAcd48OkdI2+wTAhhgcSFaGknwd53VxNw pV9wQnLDpIHQ6I94svHZAyMugSorVK1pN/saLbtjgW3r0hJtAebPMzEN78pLyP77 dx0of8zT8FvTqD1wnmdk02ldH4i3nKCkvq7NMtU6/rkMo9cCCJ5gwpONKBGUoV8V 2MsaLifKz5D1Dk59fO7EVKAlNlYBRXBEsHljEezqovIp/Eg7jWr5MudS9TyRjPYo LX2SKEw= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:52 2024 by rpki-client on console-fra.rpki-client.org