$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa File: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (raw, json) Hash identifier: fbYOGjHMohkB40Ip5nHSIZM+X/jub17JqWsOkKhOWSY= Subject key identifier: C3:D3:08:28:07:48:3C:EA:0B:5F:F7:0A:E9:59:84:3F:C1:EE:46:AA Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 090A Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa Signing time: Wed 28 Feb 2024 21:29:44 +0000 ROA not before: Wed 28 Feb 2024 21:29:44 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 979 IP address blocks: 103.207.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:54:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2314 (0x90a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Feb 28 21:29:44 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dfa5c8-e17f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:c5:e1:eb:9c:93:2e:b7:90:52:bc:f9:b8: af:91:ca:a0:11:e8:76:69:5d:56:6f:88:fe:f7:4e: ca:0b:24:7b:6e:d6:87:48:82:21:ff:dc:f1:53:4f: 74:1f:81:76:99:83:35:97:17:31:b6:06:ce:61:89: 40:13:61:df:88:1e:ab:8d:f0:f8:82:fd:5b:03:7a: fe:2d:d9:63:74:60:04:47:f2:3f:4d:3f:f0:58:74: cf:2d:56:29:49:7f:99:f2:d4:47:00:fe:9e:62:77: 0d:3e:7d:bc:22:f8:cf:dc:68:ec:58:e1:91:92:03: 94:2a:90:5e:b5:f6:58:37:97:81:43:b1:f8:bf:9c: 58:f3:22:ca:24:15:55:ef:4e:a8:49:6e:a7:c7:e1: 41:c3:2f:44:39:1d:4e:05:f8:cd:69:2d:c3:3d:4b: 93:e0:3a:e5:2d:df:bb:76:28:60:53:93:3b:4d:ce: 33:29:ca:c1:43:d9:d1:3e:ec:fc:d0:04:ed:91:5a: 8b:ca:36:83:fb:fd:0f:5b:50:5f:84:41:75:79:f4: 6e:29:c4:b2:d5:44:75:18:35:bb:b7:14:7e:84:cb: 81:3f:7d:de:81:d0:2d:11:42:c5:c5:49:ea:55:88: aa:a0:d7:97:06:67:03:e0:af:45:84:e5:de:33:79: 13:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D3:08:28:07:48:3C:EA:0B:5F:F7:0A:E9:59:84:3F:C1:EE:46:AA X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.68.0/23 Signature Algorithm: sha256WithRSAEncryption 21:b8:67:90:81:ae:ae:06:cf:38:b1:a8:fa:01:23:1d:83:c3: ce:6f:ee:a4:39:9f:1f:21:ed:b0:44:02:f7:2f:d9:e6:fd:85: c0:ca:f1:e3:28:40:03:06:b6:dc:8a:9e:67:b7:fd:79:0d:6b: a3:d4:91:e6:92:30:cc:e8:15:04:6a:56:a8:1b:4b:69:19:c4: 7f:77:c6:4c:ca:61:1b:55:6b:da:67:81:11:d1:72:a5:0c:64: 17:d4:66:93:89:eb:a3:ad:bd:40:07:4d:0e:6f:3a:c0:bd:a1: 1c:17:e2:3f:57:bd:22:21:15:22:e5:3d:c3:9d:65:95:6c:c0: 76:65:fe:78:36:11:f5:22:02:fa:f5:7f:9e:45:cb:68:5c:19: e5:e3:c9:c0:e9:20:ee:e2:ce:30:a1:f9:51:3f:6c:7d:00:0d: ad:ec:4b:8b:61:bd:a3:00:2e:29:e5:fd:4f:be:08:be:d4:d4: 79:0c:15:4f:ed:9f:23:14:a6:25:82:ec:4b:a4:5e:8e:25:30: bd:f9:42:f7:6e:57:a0:aa:c3:ad:de:56:46:93:c8:f8:44:57: 6e:ec:80:76:81:33:1a:b1:58:57:58:34:37:2e:9c:c1:af:23: c6:b8:71:c0:a9:5d:22:03:c6:62:6d:d4:d3:03:b0:49:61:d6: 11:21:51:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjQwMjI4MjEyOTQ0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmYTVjOC1lMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvLF4eucky63kFK8+bivkcqgEeh2aV1Wb4j+907KCyR7btaHSIIh/9zxU090 H4F2mYM1lxcxtgbOYYlAE2HfiB6rjfD4gv1bA3r+LdljdGAER/I/TT/wWHTPLVYp SX+Z8tRHAP6eYncNPn28IvjP3GjsWOGRkgOUKpBetfZYN5eBQ7H4v5xY8yLKJBVV 706oSW6nx+FBwy9EOR1OBfjNaS3DPUuT4DrlLd+7dihgU5M7Tc4zKcrBQ9nRPuz8 0ATtkVqLyjaD+/0PW1BfhEF1efRuKcSy1UR1GDW7txR+hMuBP33egdAtEULFxUnq VYiqoNeXBmcD4K9FhOXeM3kTGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMPTCCgH SDzqC1/3CulZhD/B7kaqMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFNDUvMDZDODU2M0M4M0Q5MTFFQUEzMTI0RjVDQzRGOUFFMDIvMEZENDM3Q0FD MTE4MTFFRTgzMjhFRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnz0QwDQYJKoZIhvcNAQELBQADggEBACG4Z5CBrq4Gzzix qPoBIx2Dw85v7qQ5nx8h7bBEAvcv2eb9hcDK8eMoQAMGttyKnme3/XkNa6PUkeaS MMzoFQRqVqgbS2kZxH93xkzKYRtVa9pngRHRcqUMZBfUZpOJ66OtvUAHTQ5vOsC9 oRwX4j9XvSIhFSLlPcOdZZVswHZl/ng2EfUiAvr1f55Fy2hcGeXjycDpIO7izjCh +VE/bH0ADa3sS4thvaMALinl/U++CL7U1HkMFU/tnyMUpiWC7EukXo4lML35Qvdu V6Cqw63eVkaTyPhEV27sgHaBMxqxWFdYNDcunMGvI8a4ccCpXSIDxmJt1NMDsElh 1hEhUQw= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:48 2024 by rpki-client on console-fra.rpki-client.org