$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa File: 10A8D0E263F611ECB344F979C4F9AE02.roa (raw, json) Hash identifier: 0C7V986gHLfF3RPO5trmAPFLdLtlvzlCJ3+47YeVJHU= Subject key identifier: A0:36:93:EF:69:A5:23:85:DF:76:48:71:37:E0:06:88:3D:90:31:35 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 0408 Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa Signing time: Thu 07 Nov 2024 00:03:40 +0000 ROA not before: Thu 07 Nov 2024 00:03:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132420 IP address blocks: 103.173.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1032 (0x408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Nov 7 00:03:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c03dc-ea66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:06:88:25:4f:e9:32:1e:e9:cf:82:50:f1:1c: 60:92:95:97:b5:ea:94:c9:39:08:7e:33:90:1a:59: 68:0b:72:56:14:0b:d1:c7:71:b7:41:45:ea:78:07: b4:9a:b5:cc:ae:62:6f:35:d0:7f:9c:d3:1d:1f:6c: 6f:c9:2c:e7:11:1e:e5:f2:fa:dc:8a:d5:11:38:3e: 48:fc:df:ce:3f:c1:1b:3d:57:39:cb:3e:c6:cf:0f: ab:1d:6a:93:70:c0:95:1a:93:5d:db:2a:ca:53:3a: e2:02:0c:c9:77:2e:b3:ee:dd:7e:56:28:e1:65:24: 44:84:1e:fb:9f:23:b8:6c:c9:02:69:ba:f9:b9:02: b1:f3:4a:02:08:24:4d:e7:a9:bb:0c:b4:b5:8d:49: cb:d2:31:1f:60:fd:1e:d8:d7:3e:d8:1c:df:c7:f8: c4:99:75:a5:60:91:c7:d7:3e:28:d1:f7:e8:3b:41: 0f:c4:71:46:aa:ef:83:ae:20:33:f5:70:f9:53:42: 51:6f:1e:a5:37:7c:28:70:ae:d1:26:93:01:26:b3: ba:b3:6b:6c:79:0e:64:1a:a1:86:37:f0:b2:38:05: 67:e4:f8:41:de:ba:86:ac:bb:90:df:a0:b5:cf:2d: 10:ed:3f:a5:c5:cc:2a:85:c5:70:99:e7:77:ca:b6: 96:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:36:93:EF:69:A5:23:85:DF:76:48:71:37:E0:06:88:3D:90:31:35 X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/10A8D0E263F611ECB344F979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.112.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:57:a0:26:83:cf:4c:8d:d4:3a:e8:a9:4f:17:f7:40:47:16: 26:45:42:89:ab:4f:c2:7c:ae:6a:f3:7f:30:d7:dc:0d:55:68: 06:ce:0f:99:2a:cd:37:86:0a:c2:48:da:82:f7:9a:93:a3:3e: 55:d1:b9:89:c0:44:b7:f5:f2:00:0d:f1:e5:21:85:eb:9c:fa: 68:1d:1c:d1:23:99:08:2d:92:c8:d1:93:c5:b5:e1:00:69:f3: 0a:3c:94:8b:3a:97:89:50:f3:ab:8d:dd:9a:21:b6:e5:9f:b6: 77:31:6f:29:ab:f7:13:aa:a3:b2:46:4a:32:d6:a3:62:a8:21: a6:6e:34:ef:37:0d:13:88:41:2f:1f:58:ee:cf:fc:5e:77:f0: ef:35:d1:70:f0:e0:0a:c8:8b:03:72:b1:0b:19:cd:07:08:0b: c8:e0:e4:29:2f:45:4c:76:2a:00:9b:bc:5b:7c:a5:39:8e:7b: 7b:61:e9:27:39:de:fd:b6:06:aa:af:88:7f:b4:ce:28:5c:66: 8e:44:0d:7d:09:76:b2:2a:c9:a9:22:3b:fa:9c:01:6c:f9:cf: 60:5e:b3:8c:83:5a:a0:87:e8:49:4d:4e:e8:16:3a:2f:de:9c: 3b:f7:67:ec:75:12:0b:28:20:11:30:eb:7d:5d:68:bf:b5:d4: 2c:1a:88:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjQxMTA3MDAwMzQwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMDNkYy1lYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0waIJU/pMh7pz4JQ8RxgkpWXteqUyTkIfjOQGlloC3JWFAvRx3G3QUXqeAe0 mrXMrmJvNdB/nNMdH2xvySznER7l8vrcitUROD5I/N/OP8EbPVc5yz7Gzw+rHWqT cMCVGpNd2yrKUzriAgzJdy6z7t1+VijhZSREhB77nyO4bMkCabr5uQKx80oCCCRN 56m7DLS1jUnL0jEfYP0e2Nc+2Bzfx/jEmXWlYJHH1z4o0ffoO0EPxHFGqu+DriAz 9XD5U0JRbx6lN3wocK7RJpMBJrO6s2tseQ5kGqGGN/CyOAVn5PhB3rqGrLuQ36C1 zy0Q7T+lxcwqhcVwmed3yraWLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKA2k+9p pSOF33ZIcTfgBog9kDE1MB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzQTgvMjFGQTAyNzI0QzZDMTFFQ0JCQ0ZBRDI2QzRGOUFFMDIvMTBBOEQwRTI2 M0Y2MTFFQ0IzNDRGOTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrXAwDQYJKoZIhvcNAQELBQADggEBACpXoCaDz0yN1Dro qU8X90BHFiZFQomrT8J8rmrzfzDX3A1VaAbOD5kqzTeGCsJI2oL3mpOjPlXRuYnA RLf18gAN8eUhheuc+mgdHNEjmQgtksjRk8W14QBp8wo8lIs6l4lQ86uN3ZohtuWf tncxbymr9xOqo7JGSjLWo2KoIaZuNO83DROIQS8fWO7P/F538O810XDw4ArIiwNy sQsZzQcIC8jg5CkvRUx2KgCbvFt8pTmOe3th6Sc53v22BqqviH+0zihcZo5EDX0J drIqyakiO/qcAWz5z2Bes4yDWqCH6ElNTugWOi/enDv3Z+x1EgsoIBEw631daL+1 1CwaiFE= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:33 2024 by rpki-client on console-fra.rpki-client.org