$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/183E52D8224711EB9EC51D58C4F9AE02.roa File: 183E52D8224711EB9EC51D58C4F9AE02.roa (raw, json) Hash identifier: qgDfVvJM4t2nmo/ZdmRVYasGnroWUOtYNFtKUMd8mAw= Subject key identifier: CD:1B:92:0B:3D:DB:44:CE:C3:6F:EE:03:BD:B6:90:32:90:D1:63:59 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3526 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/183E52D8224711EB9EC51D58C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:04 +0000 ROA not before: Mon 16 Sep 2024 14:51:04 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 209181 IP address blocks: 103.230.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13606 (0x3526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:04 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845d8-d337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:73:43:24:e0:43:8e:ae:3e:db:1d:a1:14:bf: ba:7c:34:1e:31:8f:51:e4:01:cb:1f:a7:ff:5e:8b: 86:a5:32:ed:98:92:44:94:fb:a2:d1:30:5c:8f:da: 42:3e:e8:3c:4f:83:6e:05:6b:37:ff:1a:1c:8c:0a: db:40:66:5c:b8:79:2e:45:67:63:66:9b:a1:1d:53: 7e:93:dd:ba:38:2d:a4:15:5a:4c:25:fc:e7:b1:49: b7:b4:47:25:1c:73:c1:7e:ac:a3:64:ec:db:58:20: e4:b7:0f:a5:c6:f9:97:c5:83:da:9a:7a:cd:69:dd: 7e:de:35:1b:0b:bb:2c:cb:9c:84:87:a6:95:e7:00: 00:0c:7a:57:1e:b5:02:a6:65:0a:c3:15:27:f0:64: 5d:36:76:75:f6:45:2d:8f:4a:cf:56:fe:6d:7f:d9: 3a:16:3e:d7:9f:5b:90:c5:f6:98:94:68:56:2f:da: 5b:66:16:ad:72:28:77:62:17:2a:98:5e:44:5a:e6: d6:bd:4b:22:bc:1a:3b:4f:22:b8:46:a1:4f:01:d9: a1:45:c1:aa:65:75:5a:ae:a9:cd:0d:db:64:b6:11: 3f:50:9f:7c:d1:40:bb:5e:f7:82:f0:34:22:59:ce: 17:c4:83:2c:18:44:9a:29:79:d1:d5:6e:24:40:77: 02:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:1B:92:0B:3D:DB:44:CE:C3:6F:EE:03:BD:B6:90:32:90:D1:63:59 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/183E52D8224711EB9EC51D58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.70.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:b4:68:fd:5f:1c:f5:70:cb:c3:bd:91:86:5e:c0:76:4a:6a: e2:24:48:dc:8c:bc:b7:84:3d:cc:3a:cb:b0:ec:91:be:f4:73: 85:93:0e:a6:f8:11:d3:e8:3c:dc:5d:de:0f:39:0f:2f:00:b0: 19:6b:31:10:85:a5:4f:a8:de:d2:13:2b:8f:1f:7e:c6:da:75: 88:b7:76:72:a6:d5:7f:fe:70:20:31:d8:41:62:c9:0d:b4:d7: 9e:d9:9c:70:ea:d1:96:4c:b6:0e:50:f4:75:c0:bf:68:74:ee: 25:51:95:31:6d:f3:c2:d3:2b:40:69:ef:fe:b3:44:00:85:7d: 10:46:e5:6a:de:7b:b0:92:56:d6:ae:4b:de:0c:ac:4a:bb:63: 32:d8:e3:c9:2e:23:c6:81:c3:f6:1e:8e:6d:fd:d6:8b:48:ce: 4d:7a:3a:83:b9:7b:78:61:5a:2e:d3:79:ac:75:bf:da:8b:c4: e6:4b:86:ca:42:cb:58:c1:ca:a1:7f:5a:54:6b:f7:8e:2b:8b: f5:79:4f:81:24:48:13:07:fc:e9:f3:c7:68:d9:c3:0d:63:a0: c6:61:3d:ce:61:15:5d:e3:fc:7a:bd:d5:15:03:79:e3:7d:67: af:a2:0c:a6:bf:7f:39:b9:7c:e0:c6:a0:c4:42:e7:03:ea:54: a3:83:6e:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTA0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkOC1kMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHNDJOBDjq4+2x2hFL+6fDQeMY9R5AHLH6f/XouGpTLtmJJElPui0TBcj9pC Pug8T4NuBWs3/xocjArbQGZcuHkuRWdjZpuhHVN+k926OC2kFVpMJfznsUm3tEcl HHPBfqyjZOzbWCDktw+lxvmXxYPamnrNad1+3jUbC7ssy5yEh6aV5wAADHpXHrUC pmUKwxUn8GRdNnZ19kUtj0rPVv5tf9k6Fj7Xn1uQxfaYlGhWL9pbZhatcih3Yhcq mF5EWubWvUsivBo7TyK4RqFPAdmhRcGqZXVarqnNDdtkthE/UJ980UC7XveC8DQi Wc4XxIMsGESaKXnR1W4kQHcCywIDAQABo4IClTCCApEwHQYDVR0OBBYEFM0bkgs9 20TOw2/uA722kDKQ0WNZMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMTgzRTUyRDgy MjQ3MTFFQjlFQzUxRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5kYwDQYJKoZIhvcNAQELBQADggEBAFu0aP1fHPVwy8O9 kYZewHZKauIkSNyMvLeEPcw6y7Dskb70c4WTDqb4EdPoPNxd3g85Dy8AsBlrMRCF pU+o3tITK48ffsbadYi3dnKm1X/+cCAx2EFiyQ20157ZnHDq0ZZMtg5Q9HXAv2h0 7iVRlTFt88LTK0Bp7/6zRACFfRBG5Wree7CSVtauS94MrEq7YzLY48kuI8aBw/Ye jm391otIzk16OoO5e3hhWi7Teax1v9qLxOZLhspCy1jByqF/WlRr944ri/V5T4Ek SBMH/Onzx2jZww1joMZhPc5hFV3j/Hq91RUDeeN9Z6+iDKa/fzm5fODGoMRC5wPq VKODbgg= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org