$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa File: 9D85178EE2AF11E9919C1D4EC4F9AE02.roa (raw, json) Hash identifier: tvGwHBxAQqNeN4uZum6IC7hhXyOo5oDfO91MYyuJgHY= Subject key identifier: A1:A2:3F:29:49:E2:4A:4C:3B:F6:65:D6:CC:04:17:20:FE:8E:31:20 Certificate issuer: /CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Certificate serial: 0C6D Authority key identifier: 72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa Signing time: Thu 08 Aug 2024 18:46:29 +0000 ROA not before: Thu 08 Aug 2024 18:46:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137967 IP address blocks: 103.14.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3181 (0xc6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B61/serialNumber=728A824092E5741254BB92D597723361A04BF292 Validity Not Before: Aug 8 18:46:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b51285-a690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:cb:72:85:7c:84:69:93:77:96:71:61:b3: 61:f5:db:5c:c6:9e:2f:89:a5:27:cc:d0:57:20:38: 29:35:f6:9a:95:a2:fd:d2:d0:a3:5b:07:cd:04:36: c5:58:0e:c8:76:67:0e:23:a9:84:50:bc:06:f5:7f: 23:dc:2e:14:18:42:5b:a0:7d:2e:4d:27:8f:32:3c: 5f:49:bb:a4:0a:30:18:69:a6:43:2d:8e:26:03:45: ab:43:8a:23:63:ec:9e:e0:fc:57:d6:0e:00:77:47: fb:0b:ed:75:fb:5f:62:2b:0a:f6:c1:62:8b:21:36: d7:55:e4:1a:b3:6b:8f:fe:9f:6e:72:a2:5a:8f:fe: 13:eb:94:06:18:0c:41:ad:54:8b:47:0e:62:09:eb: 6d:f3:2a:1a:ef:f7:28:5a:f4:ba:0e:90:3e:b0:10: 16:67:b3:3a:3b:03:2a:11:57:3f:a7:dd:3b:36:9d: 8e:12:dc:11:c0:1e:df:53:fb:8d:b7:d4:45:af:9e: 27:7f:9c:de:a8:7c:c8:bf:f6:48:83:e5:24:6c:d1: 5a:6b:6d:c7:e5:26:97:87:2c:d2:37:cb:12:d8:86: 8f:ce:e3:a5:a3:8a:6d:3f:e2:d7:33:11:e1:cf:d4: f5:8b:fc:6c:5c:e1:d6:90:d3:30:d8:7b:40:e7:1d: 41:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A2:3F:29:49:E2:4A:4C:3B:F6:65:D6:CC:04:17:20:FE:8E:31:20 X509v3 Authority Key Identifier: keyid:72:8A:82:40:92:E5:74:12:54:BB:92:D5:97:72:33:61:A0:4B:F2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/coqCQJLldBJUu5LVl3IzYaBL8pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/coqCQJLldBJUu5LVl3IzYaBL8pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B61/3F00D75CE2AF11E9BB01FC4DC4F9AE02/9D85178EE2AF11E9919C1D4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.72.0/24 Signature Algorithm: sha256WithRSAEncryption 08:dc:82:61:35:83:60:00:60:1e:00:81:fc:c7:e4:22:09:2f: 83:d6:b0:82:98:b6:a1:c4:e0:7d:b1:ed:6c:98:0b:45:64:94: d6:11:ab:7f:2b:2b:50:62:5a:b8:f8:32:c9:ac:c0:5d:d7:be: 1e:23:9f:f2:7f:fa:3e:2b:53:f6:5f:a7:ed:16:73:7d:ab:27: b2:91:13:3a:5e:67:97:db:53:89:33:d3:2b:04:f5:90:62:12: 36:33:0b:27:4a:96:bb:e8:6a:17:5e:b6:81:0f:40:a5:3b:f7: c2:ba:9c:0b:c6:7f:5b:d4:81:2f:52:6d:84:a8:ae:d5:90:12: 3c:1e:94:08:51:1a:6b:ee:89:f3:96:5d:da:34:af:b2:be:3f: 5b:44:e5:6e:8c:9a:ba:1b:de:49:d7:81:f3:40:8e:2e:63:bc: 8e:9c:7b:91:78:e1:c2:ab:bf:39:ea:53:e4:f9:70:0c:82:e3: 67:13:01:29:d7:19:a3:a7:f9:29:78:79:4d:17:43:50:c5:02: 67:0e:d6:7f:ac:35:01:87:90:74:fc:09:20:6a:c3:10:4f:46: cc:44:29:8a:05:14:b9:71:e8:4f:ef:cc:4a:4b:3c:22:86:0a: e1:23:37:a0:34:d1:c5:e3:99:d3:bc:f8:6c:74:ae:1b:d4:b8: 4a:05:24:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDG0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCNjExMTAvBgNVBAUTKDcyOEE4MjQwOTJFNTc0MTI1NEJCOTJENTk3NzIzMzYx QTA0QkYyOTIwHhcNMjQwODA4MTg0NjI5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1MTI4NS1hNjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dzLcoV8hGmTd5ZxYbNh9dtcxp4viaUnzNBXIDgpNfaalaL90tCjWwfNBDbF WA7IdmcOI6mEULwG9X8j3C4UGEJboH0uTSePMjxfSbukCjAYaaZDLY4mA0WrQ4oj Y+ye4PxX1g4Ad0f7C+11+19iKwr2wWKLITbXVeQas2uP/p9ucqJaj/4T65QGGAxB rVSLRw5iCett8yoa7/coWvS6DpA+sBAWZ7M6OwMqEVc/p907Np2OEtwRwB7fU/uN t9RFr54nf5zeqHzIv/ZIg+UkbNFaa23H5SaXhyzSN8sS2IaPzuOlo4ptP+LXMxHh z9T1i/xsXOHWkNMw2HtA5x1BZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGiPylJ 4kpMO/Zl1swEFyD+jjEgMB8GA1UdIwQYMBaAFHKKgkCS5XQSVLuS1ZdyM2GgS/KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUI2MS8zRjAwRDc1Q0Uy QUYxMUU5QkIwMUZDNERDNEY5QUUwMi9jb3FDUUpMbGRCSlV1NUxWbDNJellhQkw4 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NvcUNRSkxsZEJKVXU1TFZsM0l6WWFCTDhwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFCNjEvM0YwMEQ3NUNFMkFGMTFFOUJCMDFGQzREQzRGOUFFMDIvOUQ4NTE3OEVF MkFGMTFFOTkxOUMxRDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDkgwDQYJKoZIhvcNAQELBQADggEBAAjcgmE1g2AAYB4A gfzH5CIJL4PWsIKYtqHE4H2x7WyYC0VklNYRq38rK1BiWrj4MsmswF3Xvh4jn/J/ +j4rU/Zfp+0Wc32rJ7KREzpeZ5fbU4kz0ysE9ZBiEjYzCydKlrvoahdetoEPQKU7 98K6nAvGf1vUgS9SbYSortWQEjwelAhRGmvuifOWXdo0r7K+P1tE5W6Mmrob3knX gfNAji5jvI6ce5F44cKrvznqU+T5cAyC42cTASnXGaOn+Sl4eU0XQ1DFAmcO1n+s NQGHkHT8CSBqwxBPRsxEKYoFFLlx6E/vzEpLPCKGCuEjN6A00cXjmdO8+Gx0rhvU uEoFJNA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org