$ rpki-client -vvf rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/43EEDCEE3B0311EFA72E7B80C4F9AE02.roa File: 43EEDCEE3B0311EFA72E7B80C4F9AE02.roa (raw, json) Hash identifier: clObT30ZZ4OZz90N/JcQoOLGlm8muOGA7OZEgrvkPvg= Subject key identifier: 34:74:87:38:96:AD:7A:97:D9:26:BF:4B:B2:BC:E4:8E:B5:24:38:68 Certificate issuer: /CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Certificate serial: 9D Authority key identifier: 66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/43EEDCEE3B0311EFA72E7B80C4F9AE02.roa Signing time: Fri 05 Jul 2024 19:17:49 +0000 ROA not before: Fri 05 Jul 2024 19:17:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 64072 IP address blocks: 103.139.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Validity Not Before: Jul 5 19:17:49 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668846dc-43b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:ac:ec:36:c6:52:06:d0:6e:ad:20:41:6b:2e: 26:a4:6c:c8:5a:25:3d:a1:a1:29:92:6a:ad:58:db: 6a:83:aa:cf:2a:e1:30:af:4c:34:16:27:5e:32:95: 14:e1:9b:8f:8b:e3:32:93:1b:04:87:01:48:4a:bd: 46:67:12:ac:35:24:5e:72:da:5b:74:b7:be:19:2c: 72:55:e6:ee:34:d1:ec:1f:0c:d1:7a:38:a1:a0:87: fc:3b:ad:d8:19:68:48:13:99:f3:14:3e:f7:38:ef: eb:0b:f1:6f:42:24:dd:52:bc:5c:d5:dc:1c:db:23: 94:6e:57:8d:9d:60:23:8d:d7:8b:aa:64:98:44:9f: 0b:d8:5d:7d:6a:7e:fd:89:38:72:a1:25:27:ec:97: c8:3d:72:84:c1:6f:92:07:13:e8:8f:d0:7d:90:dd: ef:23:bf:42:d1:78:10:7e:cc:7f:2d:da:78:31:21: fe:cb:c3:6d:c0:d2:7d:6b:a8:f3:ed:7d:d4:ee:6e: 0b:c6:5c:a9:80:ff:2e:59:58:4f:b6:97:94:47:a8: a0:ba:99:ad:0d:86:6c:5a:12:72:15:31:a7:f3:9b: 94:c2:1c:d6:7b:59:a0:65:4d:58:ae:bd:93:96:63: 01:c5:92:62:81:63:4d:50:7d:54:5b:8e:a9:fe:a9: 49:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:74:87:38:96:AD:7A:97:D9:26:BF:4B:B2:BC:E4:8E:B5:24:38:68 X509v3 Authority Key Identifier: keyid:66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/43EEDCEE3B0311EFA72E7B80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.178.0/24 Signature Algorithm: sha256WithRSAEncryption 35:38:9e:7c:a1:7a:aa:b1:0f:40:4a:3e:4a:10:90:a9:3e:62: 30:39:c1:b7:bd:c5:e8:60:e0:a1:6b:c5:09:93:07:88:75:e8: fd:14:93:3e:f1:25:3d:95:73:12:49:57:5e:da:b4:f8:4a:a5: f3:83:97:d8:dd:49:76:f2:d1:70:fc:4f:a3:af:92:82:b7:f3: 71:d1:e5:4f:2d:34:2f:63:32:20:a7:95:eb:86:7c:53:16:81: c1:5c:52:09:e6:6f:23:78:aa:73:7d:7b:c7:63:d7:11:8c:6a: 42:52:11:a4:99:e3:75:43:14:0e:44:64:7d:37:a6:3a:68:06: 0c:18:c3:32:1d:e5:4d:ce:86:ed:c2:91:c1:14:2a:51:88:31: 04:91:69:69:e9:0a:dd:08:8d:d6:49:12:2b:19:29:da:ef:b2: 52:ae:27:ae:c3:ea:bc:88:ca:b0:34:cd:2a:5e:38:92:2b:82: e0:b2:f8:43:f1:c1:a0:ec:70:70:4a:ba:10:19:32:03:ac:87: ce:60:cf:e0:39:82:2f:4f:de:d8:a7:0f:88:8d:2c:48:18:45: 1f:f8:70:ed:4e:0e:cf:91:97:a5:c6:97:cb:50:70:d9:67:6b: 0e:ff:33:7d:5d:fb:09:46:77:7c:a5:5b:4e:eb:5f:0b:bd:e3: 74:71:5f:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkyM0ExMTAvBgNVBAUTKDY2MzhBNjA0MjYwRkNDRjJFOUQ4QjIwQzE3OTJFQ0Ex NURDNzZENUMwHhcNMjQwNzA1MTkxNzQ5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg4NDZkYy00M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+azsNsZSBtBurSBBay4mpGzIWiU9oaEpkmqtWNtqg6rPKuEwr0w0FideMpUU 4ZuPi+MykxsEhwFISr1GZxKsNSRectpbdLe+GSxyVebuNNHsHwzRejihoIf8O63Y GWhIE5nzFD73OO/rC/FvQiTdUrxc1dwc2yOUbleNnWAjjdeLqmSYRJ8L2F19an79 iThyoSUn7JfIPXKEwW+SBxPoj9B9kN3vI79C0XgQfsx/Ldp4MSH+y8NtwNJ9a6jz 7X3U7m4LxlypgP8uWVhPtpeUR6igupmtDYZsWhJyFTGn85uUwhzWe1mgZU1Yrr2T lmMBxZJigWNNUH1UW46p/qlJAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDR0hziW rXqX2Sa/S7K85I61JDhoMB8GA1UdIwQYMBaAFGY4pgQmD8zy6diyDBeS7KFdx21c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTIzQS9DOUIzQ0M1NEVD MTExMUU5OEUwRjg2NDdDNEY5QUUwMi9aamltQkNZUHpQTHAyTElNRjVMc29WM0hi VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pqaW1CQ1lQelBMcDJMSU1GNUxzb1YzSGJWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkyM0EvQzlCM0NDNTRFQzExMTFFOThFMEY4NjQ3QzRGOUFFMDIvNDNFRURDRUUz QjAzMTFFRkE3MkU3QjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni7IwDQYJKoZIhvcNAQELBQADggEBADU4nnyheqqxD0BK PkoQkKk+YjA5wbe9xehg4KFrxQmTB4h16P0Ukz7xJT2VcxJJV17atPhKpfODl9jd SXby0XD8T6OvkoK383HR5U8tNC9jMiCnleuGfFMWgcFcUgnmbyN4qnN9e8dj1xGM akJSEaSZ43VDFA5EZH03pjpoBgwYwzId5U3Ohu3CkcEUKlGIMQSRaWnpCt0IjdZJ EisZKdrvslKuJ67D6ryIyrA0zSpeOJIrguCy+EPxwaDscHBKuhAZMgOsh85gz+A5 gi9P3tinD4iNLEgYRR/4cO1ODs+Rl6XGl8tQcNlnaw7/M31d+wlGd3ylW07rXwu9 43RxX/Q= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org