$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa File: 09F041C675FB11EAB470A130C4F9AE02.roa (raw, json) Hash identifier: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag= Subject key identifier: 1C:FC:0F:63:92:F9:6E:B8:B4:5F:B1:FF:30:33:8E:C2:5D:EE:3B:EF Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1167 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa Signing time: Sat 02 Nov 2024 17:26:09 +0000 ROA not before: Sat 02 Nov 2024 17:26:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.21.244.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4455 (0x1167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Nov 2 17:26:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672660b1-c931 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:d3:c2:5b:e6:c0:61:7e:52:1c:73:de:d9: 95:0c:d1:e3:a5:84:a4:b0:4e:e2:c3:10:0a:6a:87: 65:38:35:41:c2:2b:90:4b:87:4b:ac:8c:73:16:7f: 66:f4:15:9e:2a:af:90:80:71:66:9e:9a:b8:f2:e5: ba:e2:3c:bc:93:94:51:45:bd:cc:ab:65:da:f1:de: a7:a8:35:e3:48:41:ba:23:4d:2f:3d:e4:d5:88:cc: 5c:1b:87:dd:57:3e:33:4e:9d:ec:fe:1e:65:e5:ce: de:2f:f8:de:94:c7:07:2a:c7:19:23:4e:e5:78:17: e8:9d:e8:79:05:05:4f:68:ae:31:62:76:b7:c9:56: c4:e2:07:4b:c7:16:48:e1:e0:d1:8c:15:bd:5e:fd: 44:f4:79:27:d9:cc:07:39:8a:05:7d:ee:02:8f:f8: 7a:83:52:ac:65:6c:a3:55:93:70:55:54:5d:32:49: 3f:06:a8:99:04:ad:14:60:7a:68:42:a3:c7:71:5e: 5f:fd:73:a1:14:8e:da:0c:0f:07:f6:59:24:d8:54: 21:e2:98:ed:e7:2c:a2:31:92:d1:58:47:fa:b0:d2: fc:91:da:19:33:8d:aa:1f:de:7d:64:ac:e3:3a:d5: a1:3a:20:fe:e1:aa:0c:ef:6f:49:5e:d0:b2:ac:3a: f3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FC:0F:63:92:F9:6E:B8:B4:5F:B1:FF:30:33:8E:C2:5D:EE:3B:EF X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/09F041C675FB11EAB470A130C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.244.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:40:b9:de:9b:63:04:83:5b:d1:93:0f:12:c2:a5:71:94:13: e1:55:9d:41:98:67:ac:af:40:bb:77:c6:ea:39:f9:2a:d5:80: 9c:71:51:37:7a:e4:97:e0:83:d9:68:9a:a5:83:0b:33:5d:a1: 80:bd:aa:12:f0:7c:24:49:42:f4:38:42:f9:06:38:f0:22:70: 58:3d:2a:a1:85:ca:99:88:9d:4d:68:1b:54:6e:ae:cf:a9:1b: 12:80:52:95:d2:d5:2d:11:a6:8a:76:50:8f:2e:e3:42:f9:66: 2b:dc:d3:b6:67:05:a4:bf:87:00:86:a4:41:b6:b7:e1:3f:89: 51:ad:38:6e:1b:5d:55:b8:3b:d8:5e:29:05:b8:64:93:57:45: ae:66:5d:f6:89:e0:18:8c:ce:71:ba:ae:cc:5c:8a:d2:42:fe: 6a:f5:63:2f:4e:63:35:34:6d:9a:d6:6c:9c:34:1a:35:73:6e: db:53:8a:31:d1:41:81:0f:6b:00:f6:b3:03:25:6c:46:55:60: 52:c5:2e:15:87:20:19:15:ea:17:f3:08:17:03:53:49:da:5c: 6f:cf:e5:49:1a:05:75:38:6f:c8:7c:a0:e8:13:6b:d2:a2:03: 09:26:41:da:e0:22:fa:2b:11:cb:25:b8:c4:4f:4c:bd:88:6a: 97:94:55:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjQxMTAyMTcyNjA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjBiMS1jOTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzr/TwlvmwGF+Uhxz3tmVDNHjpYSksE7iwxAKaodlODVBwiuQS4dLrIxzFn9m 9BWeKq+QgHFmnpq48uW64jy8k5RRRb3Mq2Xa8d6nqDXjSEG6I00vPeTViMxcG4fd Vz4zTp3s/h5l5c7eL/jelMcHKscZI07leBfoneh5BQVPaK4xYna3yVbE4gdLxxZI 4eDRjBW9Xv1E9Hkn2cwHOYoFfe4Cj/h6g1KsZWyjVZNwVVRdMkk/BqiZBK0UYHpo QqPHcV5f/XOhFI7aDA8H9lkk2FQh4pjt5yyiMZLRWEf6sNL8kdoZM42qH959ZKzj OtWhOiD+4aoM729JXtCyrDrzdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBz8D2OS +W64tF+x/zAzjsJd7jvvMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvMDlGMDQxQzY3 NUZCMTFFQUI0NzBBMTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFfQwDQYJKoZIhvcNAQELBQADggEBABtAud6bYwSDW9GT DxLCpXGUE+FVnUGYZ6yvQLt3xuo5+SrVgJxxUTd65Jfgg9lomqWDCzNdoYC9qhLw fCRJQvQ4QvkGOPAicFg9KqGFypmInU1oG1Rurs+pGxKAUpXS1S0Rpop2UI8u40L5 Zivc07ZnBaS/hwCGpEG2t+E/iVGtOG4bXVW4O9heKQW4ZJNXRa5mXfaJ4BiMznG6 rsxcitJC/mr1Yy9OYzU0bZrWbJw0GjVzbttTijHRQYEPawD2swMlbEZVYFLFLhWH IBkV6hfzCBcDU0naXG/P5UkaBXU4b8h8oOgTa9KiAwkmQdrgIvorEcsluMRPTL2I apeUVX4= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org