$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa File: E0342C7AACF811EDA84F9711C4F9AE02.roa (raw, json) Hash identifier: AA2EGEjDGl9i4FsYA91Ikir5YCSOz7E8lHeITUN7tLY= Subject key identifier: A8:68:24:BF:17:A0:52:B9:2C:CF:D9:3B:11:3E:B7:C5:31:EF:1F:AA Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3523 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:01 +0000 ROA not before: Mon 16 Sep 2024 14:51:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 149485 IP address blocks: 103.230.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13603 (0x3523) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:51:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845d4-a943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:21:58:93:c6:78:67:da:b4:9c:ab:d5:58: ec:a8:72:58:ed:38:42:6f:f0:64:a5:ed:75:44:4e: e1:26:ff:dc:99:a6:1f:cb:a4:2a:54:83:76:7e:3e: c1:38:fc:ac:d9:d4:f7:56:69:49:1e:c6:8a:8e:86: 21:cb:7d:d2:42:39:9d:f9:8e:40:bb:66:6f:0e:a5: e0:2d:35:3f:4d:f5:6c:48:fb:07:ce:db:42:47:fe: 9d:81:ab:32:a1:d3:db:be:f4:d3:86:6b:b6:59:ab: b9:24:a3:a6:c4:9c:65:d2:f0:bf:06:e3:4d:d3:a6: 7a:e2:74:1f:92:74:f1:bb:9b:0b:d0:f3:36:81:71: 08:57:56:a2:5e:3b:26:f7:d4:76:5f:82:c5:3f:27: 11:1e:26:81:2e:23:22:29:fe:23:9b:86:1d:2c:da: 5c:d4:67:f9:5b:6e:46:7a:2b:bf:ee:8d:dd:06:42: 49:47:9e:5a:03:ae:65:64:2e:f8:47:0c:65:c9:10: 1f:bb:6f:60:cd:a7:9d:37:79:fc:9e:f5:85:bf:96: ad:db:55:30:1b:30:87:a0:f2:ec:01:38:15:7c:33: 09:f5:fe:f2:a2:a4:5a:ea:58:91:a1:f6:d5:8d:3f: 16:de:2f:fa:35:ce:f4:c9:8f:89:75:86:21:d9:ac: 54:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:68:24:BF:17:A0:52:B9:2C:CF:D9:3B:11:3E:B7:C5:31:EF:1F:AA X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/E0342C7AACF811EDA84F9711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0/24 Signature Algorithm: sha256WithRSAEncryption 28:55:a1:9e:1c:aa:9a:07:01:76:7d:4d:44:36:a1:28:7d:2d: a1:94:93:dd:9d:9a:30:55:8b:50:44:de:82:1e:cf:c2:cd:00: 8b:50:80:b5:f3:21:1f:95:0e:ef:92:65:b6:9d:3c:6f:1e:eb: 7c:ff:91:17:54:89:70:2d:1e:3f:fe:e4:3f:1c:3e:bc:0f:20: 76:20:fb:21:02:7f:3d:f9:c1:c2:f6:45:69:db:f7:93:75:10: 74:8a:88:d5:bd:8a:14:82:de:43:6b:cb:56:35:1e:78:35:18: 37:ac:a6:6a:38:54:46:1d:8d:c9:1b:01:6e:f0:90:0a:74:63: 71:9a:6c:3d:73:44:2d:28:3b:b4:64:e4:1e:17:bc:9d:5b:01: 88:8c:73:60:bb:57:06:41:f1:4f:f9:cf:14:dc:65:a7:7a:d2: 5d:c7:49:4b:44:0e:4d:d6:2c:48:f7:68:ce:a6:1e:c5:fb:a5: ad:d6:e3:8b:08:60:5d:05:fb:57:f8:b7:8a:e5:9d:26:b3:b6: a2:69:4e:cf:a4:bc:f7:92:7a:66:a7:71:3e:36:0a:18:4f:98: b3:20:31:46:d4:78:db:4e:43:0f:a9:a4:5c:da:ba:c3:61:fa: d6:ba:4f:c0:92:fd:a6:bd:9a:45:5a:a5:c5:52:85:3e:7a:72: ed:a7:81:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkNC1hOTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LshWJPGeGfatJyr1VjsqHJY7ThCb/Bkpe11RE7hJv/cmaYfy6QqVIN2fj7B OPys2dT3VmlJHsaKjoYhy33SQjmd+Y5Au2ZvDqXgLTU/TfVsSPsHzttCR/6dgasy odPbvvTThmu2Wau5JKOmxJxl0vC/BuNN06Z64nQfknTxu5sL0PM2gXEIV1aiXjsm 99R2X4LFPycRHiaBLiMiKf4jm4YdLNpc1Gf5W25Geiu/7o3dBkJJR55aA65lZC74 RwxlyRAfu29gzaedN3n8nvWFv5at21UwGzCHoPLsATgVfDMJ9f7yoqRa6liRofbV jT8W3i/6Nc70yY+JdYYh2axUnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKhoJL8X oFK5LM/ZOxE+t8Ux7x+qMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRTAzNDJDN0FB Q0Y4MTFFREE4NEY5NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5kQwDQYJKoZIhvcNAQELBQADggEBAChVoZ4cqpoHAXZ9 TUQ2oSh9LaGUk92dmjBVi1BE3oIez8LNAItQgLXzIR+VDu+SZbadPG8e63z/kRdU iXAtHj/+5D8cPrwPIHYg+yECfz35wcL2RWnb95N1EHSKiNW9ihSC3kNry1Y1Hng1 GDespmo4VEYdjckbAW7wkAp0Y3GabD1zRC0oO7Rk5B4XvJ1bAYiMc2C7VwZB8U/5 zxTcZad60l3HSUtEDk3WLEj3aM6mHsX7pa3W44sIYF0F+1f4t4rlnSaztqJpTs+k vPeSemancT42ChhPmLMgMUbUeNtOQw+ppFzausNh+ta6T8CS/aa9mkVapcVShT56 cu2ngVg= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org