$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa File: 9412C93EDC6F11EABFEF2548C4F9AE02.roa (raw, json) Hash identifier: RLwYPMhMe9BwDK8rCAnXVnWtpCBgPhejDp6NcWERB7s= Subject key identifier: 8A:69:1C:11:6D:13:E1:46:F4:D8:71:51:F2:57:8E:FE:57:0B:B2:9E Certificate issuer: /CN=A91F0CF4/serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Certificate serial: 0767 Authority key identifier: FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa Signing time: Thu 20 Jun 2024 20:11:46 +0000 ROA not before: Thu 20 Jun 2024 20:11:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135356 IP address blocks: 103.215.2.0/24 maxlen: 24 2404:ce80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1895 (0x767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0CF4/serialNumber=FD25BA961101B5CE6014993CE7488FDB6F08A423 Validity Not Before: Jun 20 20:11:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66748d02-a2ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:fd:56:1f:d1:05:50:d0:66:3e:e6:04:83: ba:17:d5:d1:72:c1:44:c4:3c:9d:75:2f:f6:2d:91: 04:5d:a2:bb:47:26:24:ee:a8:c8:59:88:cd:d3:5a: e3:8f:0f:ea:0b:5c:87:61:96:64:42:17:6e:3a:ff: a5:50:8d:32:69:a9:2d:90:5f:63:a1:ce:20:10:d5: a7:df:76:9d:39:69:2c:07:ee:59:f5:73:ba:ff:83: a4:5a:b3:1b:26:94:15:ed:7b:a5:9f:90:03:27:47: 10:10:5c:b9:b1:a9:3e:14:44:1f:11:e6:fc:dc:aa: da:fb:54:86:8e:3e:19:aa:7e:2a:a0:1e:12:81:d1: aa:ec:cf:b0:46:85:cc:65:fb:31:12:ef:f1:2a:6e: 58:1e:62:f0:10:db:4c:da:a5:c3:ef:ea:ea:76:5a: 8a:11:34:6b:72:44:c4:03:44:ab:1a:8f:d9:83:8b: a4:4a:d5:60:68:d9:f3:2c:bb:ee:d9:b9:1a:0c:2b: 45:19:13:ff:42:48:21:30:1a:59:5f:07:11:e2:9f: 56:c6:b1:92:c5:bb:9d:31:71:c7:0b:4c:8c:21:be: 49:71:53:ce:00:e6:3b:3d:aa:e2:9b:78:c8:36:f1: 66:48:a6:57:af:93:10:9d:8c:21:a3:0c:1d:99:e4: 7b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:69:1C:11:6D:13:E1:46:F4:D8:71:51:F2:57:8E:FE:57:0B:B2:9E X509v3 Authority Key Identifier: keyid:FD:25:BA:96:11:01:B5:CE:60:14:99:3C:E7:48:8F:DB:6F:08:A4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/_SW6lhEBtc5gFJk850iP228IpCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_SW6lhEBtc5gFJk850iP228IpCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0CF4/9AE9A9121FA511EABE9D1575C4F9AE02/9412C93EDC6F11EABFEF2548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.2.0/24 IPv6: 2404:ce80::/32 Signature Algorithm: sha256WithRSAEncryption 0f:11:9f:99:02:33:e4:48:00:e0:85:62:be:cb:1a:c7:1b:cc: 0e:5e:d1:eb:c7:f8:33:bf:dd:87:4a:0d:5d:98:43:a0:25:70: a8:84:c5:7e:dd:a5:62:41:20:26:38:c8:93:0e:b0:b5:59:d2: 0f:72:fa:5c:59:fb:eb:14:c8:6c:54:56:89:a5:2d:3c:a8:47: 63:9e:65:8c:98:13:7c:65:cc:09:81:5f:a2:27:95:5f:21:8f: 34:a3:2e:1a:6a:11:de:63:4a:11:22:66:48:9a:80:0f:b2:9c: 98:97:fd:6d:e0:cb:36:5d:c5:dc:64:a6:eb:d1:ae:f0:e8:79: ef:37:2b:f4:11:65:19:9d:dc:2a:80:c6:dd:5e:3a:ed:9f:cc: d3:49:53:f2:47:26:6d:80:b1:ad:fc:e6:1c:a4:30:40:17:3b: fc:d9:17:65:27:bf:5a:d7:86:73:9f:b6:ec:23:1d:3c:73:39: 16:1f:b3:b7:a7:8a:6e:ee:7f:cb:ff:15:e6:36:d6:aa:63:fb: 34:b6:9c:e3:12:4d:9a:8c:2f:df:36:ef:0c:20:84:d8:5d:91: d8:4a:c2:10:a7:68:44:ff:e4:04:a0:95:03:de:cc:d4:92:fc: 88:14:5b:5a:2c:23:4e:ab:31:82:b3:b0:14:46:bd:cc:f2:c9: 23:0a:d8:b8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDRjQxMTAvBgNVBAUTKEZEMjVCQTk2MTEwMUI1Q0U2MDE0OTkzQ0U3NDg4RkRC NkYwOEE0MjMwHhcNMjQwNjIwMjAxMTQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0OGQwMi1hMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZD9Vh/RBVDQZj7mBIO6F9XRcsFExDyddS/2LZEEXaK7RyYk7qjIWYjN01rj jw/qC1yHYZZkQhduOv+lUI0yaaktkF9joc4gENWn33adOWksB+5Z9XO6/4OkWrMb JpQV7Xuln5ADJ0cQEFy5sak+FEQfEeb83Kra+1SGjj4Zqn4qoB4SgdGq7M+wRoXM ZfsxEu/xKm5YHmLwENtM2qXD7+rqdlqKETRrckTEA0SrGo/Zg4ukStVgaNnzLLvu 2bkaDCtFGRP/QkghMBpZXwcR4p9WxrGSxbudMXHHC0yMIb5JcVPOAOY7Parim3jI NvFmSKZXr5MQnYwhowwdmeR7yQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIppHBFt E+FG9NhxUfJXjv5XC7KeMB8GA1UdIwQYMBaAFP0lupYRAbXOYBSZPOdIj9tvCKQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMENGNC85QUU5QTkxMjFG QTUxMUVBQkU5RDE1NzVDNEY5QUUwMi9fU1c2bGhFQnRjNWdGSms4NTBpUDIyOElw Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19TVzZsaEVCdGM1Z0ZKazg1MGlQMjI4SXBDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBDRjQvOUFFOUE5MTIxRkE1MTFFQUJFOUQxNTc1QzRGOUFFMDIvOTQxMkM5M0VE QzZGMTFFQUJGRUYyNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABn1wIwDQQCAAIwBwMFACQEzoAwDQYJKoZIhvcNAQELBQAD ggEBAA8Rn5kCM+RIAOCFYr7LGscbzA5e0evH+DO/3YdKDV2YQ6AlcKiExX7dpWJB ICY4yJMOsLVZ0g9y+lxZ++sUyGxUVomlLTyoR2OeZYyYE3xlzAmBX6InlV8hjzSj LhpqEd5jShEiZkiagA+ynJiX/W3gyzZdxdxkpuvRrvDoee83K/QRZRmd3CqAxt1e Ou2fzNNJU/JHJm2Asa385hykMEAXO/zZF2Unv1rXhnOftuwjHTxzORYfs7enim7u f8v/FeY21qpj+zS2nOMSTZqML9827wwghNhdkdhKwhCnaET/5ASglQPezNSS/IgU W1osI06rMYKzsBRGvczyySMK2Lg= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:29 2024 by rpki-client on console-fra.rpki-client.org