$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa File: 0EF4DA3A38D011EC936A8C4FC4F9AE02.roa (raw, json) Hash identifier: oeOjTuSdHmJNxJZBHkzGR+nKwmbuVyglKsBg5lLfOOw= Subject key identifier: F6:FD:19:4D:D3:03:FF:37:27:AE:D9:C0:3B:2B:3F:C4:EA:71:B7:0D Certificate issuer: /CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Certificate serial: 04B2 Authority key identifier: BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa Signing time: Tue 13 Aug 2024 00:42:35 +0000 ROA not before: Tue 13 Aug 2024 00:42:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140499 IP address blocks: 103.169.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7C21/serialNumber=BC2DA35CB56513A94A68B591DD2C76C51D811134 Validity Not Before: Aug 13 00:42:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66baabfb-694f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b0:52:4c:58:f5:12:4d:41:07:b5:70:77:a8: e6:8c:ed:fb:38:05:86:a1:fb:f2:c8:1a:7b:3a:03: 20:56:ca:a4:df:d8:5f:f6:24:c9:ff:f9:50:5b:22: 1c:d5:c2:31:46:90:85:c5:91:e6:89:a5:27:86:a1: ce:ca:0e:67:1a:3c:55:93:0a:92:f9:d9:42:6a:db: fd:83:58:2d:40:30:81:9f:b3:75:e2:ef:28:5d:41: 6c:bb:ab:75:c2:33:4c:f0:48:1d:2c:0c:49:3b:e5: 17:3e:88:20:80:83:8b:76:bd:fa:c2:c3:f2:e6:20: 4e:d1:57:2f:3c:c9:06:c3:be:9d:df:e3:81:da:46: 28:ae:07:bd:f1:02:2a:86:5d:70:50:17:8f:0d:35: f8:d0:66:93:22:ca:15:32:09:64:c4:41:05:1b:2b: e4:7f:7a:85:0b:4b:f2:9a:ef:c8:29:70:1f:be:c8: e4:de:00:3a:6b:38:a5:f9:1e:ff:dd:eb:c6:0c:4e: d1:c8:05:96:cb:e4:0d:02:74:99:11:b4:78:34:2b: 69:a0:0e:95:c8:9c:40:66:9b:ad:40:c0:67:d6:4a: f0:eb:e5:4e:99:d6:16:11:67:17:1a:b7:9f:0c:52: e2:aa:2c:ad:e5:86:3a:29:25:b4:ca:89:17:37:c6: e7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FD:19:4D:D3:03:FF:37:27:AE:D9:C0:3B:2B:3F:C4:EA:71:B7:0D X509v3 Authority Key Identifier: keyid:BC:2D:A3:5C:B5:65:13:A9:4A:68:B5:91:DD:2C:76:C5:1D:81:11:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vC2jXLVlE6lKaLWR3Sx2xR2BETQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7C21/3BCD0074F5AE11EB8E3EFB33C4F9AE02/0EF4DA3A38D011EC936A8C4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.64.0/24 Signature Algorithm: sha256WithRSAEncryption 31:8a:de:29:ed:43:96:38:3a:5e:51:17:ed:93:b2:3a:c6:97: 28:2b:79:d4:e3:df:ff:51:74:8d:3e:42:41:c6:6a:18:c5:d2: 56:24:27:2b:a6:91:37:9b:f0:f4:d0:0c:2b:d1:85:a8:15:13: 45:0a:24:dd:22:3c:f9:82:bb:30:65:0a:05:54:6a:d5:7e:42: 55:a5:1c:b5:d9:40:f2:f9:d8:45:da:df:f2:97:ab:c6:01:f8: b8:31:3f:f9:a3:1c:f7:95:61:df:6f:5e:83:e2:52:08:6f:07: 5e:a4:68:09:0b:db:40:0f:16:fe:88:97:9f:cf:45:d8:bd:a8: 85:a1:da:2a:24:36:04:9b:6e:a7:c2:af:f8:32:e7:b8:c7:f1: 02:b1:4f:a1:6a:0d:da:53:c2:55:ca:aa:a8:d2:d0:d8:09:9b: 97:de:d8:e7:46:b7:3b:c5:7a:7e:21:1e:95:36:5c:81:78:d6: a4:cb:66:ac:25:0e:24:14:6f:d1:e0:5c:d4:0d:00:65:93:0e: 7e:91:e2:42:35:2f:0f:07:24:cc:2e:48:cf:1d:f3:94:88:36: 4e:7d:c5:2a:a6:e2:60:9d:36:67:32:cc:d5:a5:3e:a3:1f:56: f4:72:de:01:7b:b0:98:0d:ae:63:5b:da:86:04:8e:b8:ee:5d: 48:4d:a0:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdDMjExMTAvBgNVBAUTKEJDMkRBMzVDQjU2NTEzQTk0QTY4QjU5MUREMkM3NkM1 MUQ4MTExMzQwHhcNMjQwODEzMDA0MjM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhYWJmYi02OTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LBSTFj1Ek1BB7Vwd6jmjO37OAWGofvyyBp7OgMgVsqk39hf9iTJ//lQWyIc 1cIxRpCFxZHmiaUnhqHOyg5nGjxVkwqS+dlCatv9g1gtQDCBn7N14u8oXUFsu6t1 wjNM8EgdLAxJO+UXPogggIOLdr36wsPy5iBO0VcvPMkGw76d3+OB2kYorge98QIq hl1wUBePDTX40GaTIsoVMglkxEEFGyvkf3qFC0vymu/IKXAfvsjk3gA6azil+R7/ 3evGDE7RyAWWy+QNAnSZEbR4NCtpoA6VyJxAZputQMBn1krw6+VOmdYWEWcXGref DFLiqiyt5YY6KSW0yokXN8bnXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPb9GU3T A/83J67ZwDsrP8TqcbcNMB8GA1UdIwQYMBaAFLwto1y1ZROpSmi1kd0sdsUdgRE0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0MyMS8zQkNEMDA3NEY1 QUUxMUVCOEUzRUZCMzNDNEY5QUUwMi92QzJqWExWbEU2bEthTFdSM1N4MnhSMkJF VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZDMmpYTFZsRTZsS2FMV1IzU3gyeFIyQkVUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdDMjEvM0JDRDAwNzRGNUFFMTFFQjhFM0VGQjMzQzRGOUFFMDIvMEVGNERBM0Ez OEQwMTFFQzkzNkE4QzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqUAwDQYJKoZIhvcNAQELBQADggEBADGK3intQ5Y4Ol5R F+2TsjrGlygredTj3/9RdI0+QkHGahjF0lYkJyumkTeb8PTQDCvRhagVE0UKJN0i PPmCuzBlCgVUatV+QlWlHLXZQPL52EXa3/KXq8YB+LgxP/mjHPeVYd9vXoPiUghv B16kaAkL20APFv6Il5/PRdi9qIWh2iokNgSbbqfCr/gy57jH8QKxT6FqDdpTwlXK qqjS0NgJm5fe2OdGtzvFen4hHpU2XIF41qTLZqwlDiQUb9HgXNQNAGWTDn6R4kI1 Lw8HJMwuSM8d85SINk59xSqm4mCdNmcyzNWlPqMfVvRy3gF7sJgNrmNb2oYEjrju XUhNoCQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org