$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/70CD850071DE11EFA543C55CC4F9AE02.roa File: 70CD850071DE11EFA543C55CC4F9AE02.roa (raw, json) Hash identifier: H2kbfW8ViEu7HiB2uwdls68qrq1PhaBKXikgZCkfIhU= Subject key identifier: B1:37:47:37:5E:19:74:6E:37:BC:DD:87:8D:D5:2A:4B:BD:FE:7D:A6 Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: F1 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/70CD850071DE11EFA543C55CC4F9AE02.roa Signing time: Fri 13 Sep 2024 14:42:46 +0000 ROA not before: Fri 13 Sep 2024 14:42:46 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 13383 IP address blocks: 103.218.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Sep 13 14:42:46 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66e44f66-0086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:94:61:c8:3d:a1:d2:26:0f:7b:62:c8:15: 7b:d0:82:41:6f:35:ef:db:73:f3:97:13:a1:0e:4c: 3d:92:8b:b8:b9:61:e9:3e:c3:86:7e:02:58:42:80: f1:f9:95:08:b9:dc:bd:77:2e:d3:34:a4:96:c9:7d: ef:fa:94:a0:3b:b6:9a:33:3d:d6:43:7f:10:02:fa: b8:05:c3:d0:7f:38:da:ca:42:ad:d9:d8:31:36:32: 86:32:be:8a:05:73:f0:96:74:9c:cc:98:6b:f5:d2: e9:de:96:e6:02:ca:74:53:27:6a:d8:36:a2:97:9d: 14:e3:00:89:65:e5:97:62:95:0b:d4:8c:84:c2:80: 76:6d:f0:8f:4c:c7:d3:c0:cd:3c:6a:f8:ef:c9:39: 09:41:3a:ba:7e:80:49:8a:7e:33:9d:03:69:a4:a2: 30:b4:55:dc:91:a4:13:78:12:9c:d4:ce:b2:55:f0: 8b:93:99:eb:f2:7f:13:38:66:52:1b:71:c7:0e:8e: 9a:e9:f7:e5:b6:e6:46:d9:4d:4b:bb:fb:a6:a5:ff: 0c:23:fb:39:8e:d9:c9:9a:43:38:4c:2a:a9:44:02: 87:5f:ef:16:cb:db:97:c1:77:5e:de:3b:03:11:40: 65:4e:1e:bb:3a:d6:55:1c:e0:ba:9a:de:43:7e:cc: 1a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:37:47:37:5E:19:74:6E:37:BC:DD:87:8D:D5:2A:4B:BD:FE:7D:A6 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/70CD850071DE11EFA543C55CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.218.172.0/24 Signature Algorithm: sha256WithRSAEncryption 95:8b:a5:31:c3:e1:92:ff:64:e8:6a:48:9a:d0:0f:3b:94:73: 24:3a:ca:b5:3c:66:56:79:ad:3f:59:8f:32:d2:cc:e3:40:dc: fa:eb:79:ca:42:20:08:bc:c8:48:fe:4f:8c:df:e2:5e:65:81: e7:0c:60:23:c1:3c:a5:09:39:bc:96:05:17:da:5e:d0:83:dd: f9:a2:68:87:84:2f:c0:80:86:79:80:4e:8c:47:9a:b2:79:82: 23:e2:b5:85:8b:d1:5a:c3:ae:31:43:aa:b7:9f:66:db:c4:7a: b8:87:f8:1b:4d:31:b0:ef:0e:61:54:17:d1:7d:b2:19:42:7e: 60:2b:a8:34:2f:67:84:ef:98:8d:e2:d6:55:d0:28:40:b5:6f: a6:7b:ae:f3:e0:bf:d2:8f:0c:c8:9d:51:ca:11:58:2b:a0:25: 79:95:82:3c:57:2f:d9:71:ee:8b:c2:0a:fd:46:b7:fd:1a:d0: 6b:89:db:ee:3a:34:5c:7c:3d:1c:d7:a0:2f:02:a4:89:97:24: 76:61:f8:ec:d3:0d:7d:c4:6f:03:97:eb:c0:ff:ba:9f:4f:8b: 85:6a:cf:d9:11:d5:f0:17:9b:57:3b:f0:7b:3d:5d:36:da:77: 65:1b:2a:db:dd:2e:04:93:f5:c6:50:25:03:1d:a5:c6:58:74: 95:a2:b6:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjQwOTEzMTQ0MjQ2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0NGY2Ni0wMDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZWUYcg9odImD3tiyBV70IJBbzXv23PzlxOhDkw9kou4uWHpPsOGfgJYQoDx +ZUIudy9dy7TNKSWyX3v+pSgO7aaMz3WQ38QAvq4BcPQfzjaykKt2dgxNjKGMr6K BXPwlnSczJhr9dLp3pbmAsp0Uydq2Dail50U4wCJZeWXYpUL1IyEwoB2bfCPTMfT wM08avjvyTkJQTq6foBJin4znQNppKIwtFXckaQTeBKc1M6yVfCLk5nr8n8TOGZS G3HHDo6a6ffltuZG2U1Lu/umpf8MI/s5jtnJmkM4TCqpRAKHX+8Wy9uXwXde3jsD EUBlTh67OtZVHOC6mt5Dfswa8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLE3Rzde GXRuN7zdh43VKku9/n2mMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvNzBDRDg1MDA3 MURFMTFFRkE1NDNDNTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn2qwwDQYJKoZIhvcNAQELBQADggEBAJWLpTHD4ZL/ZOhq SJrQDzuUcyQ6yrU8ZlZ5rT9ZjzLSzONA3PrrecpCIAi8yEj+T4zf4l5lgecMYCPB PKUJObyWBRfaXtCD3fmiaIeEL8CAhnmAToxHmrJ5giPitYWL0VrDrjFDqrefZtvE eriH+BtNMbDvDmFUF9F9shlCfmArqDQvZ4TvmI3i1lXQKEC1b6Z7rvPgv9KPDMid UcoRWCugJXmVgjxXL9lx7ovCCv1Gt/0a0GuJ2+46NFx8PRzXoC8CpImXJHZh+OzT DX3EbwOX68D/up9Pi4Vqz9kR1fAXm1c78Hs9XTbad2UbKtvdLgST9cZQJQMdpcZY dJWitqU= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org