$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa File: 85D25098E00111E596BC7D1BC4F9AE02.roa (raw, json) Hash identifier: yPmzp7svc596dZgkn+L/aOnXkjFlSGZqF6O1C/6dQm0= Subject key identifier: A2:F6:3E:D3:2C:0E:2A:F3:A9:32:42:30:81:C9:4C:D7:8C:64:17:51 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 20CB Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa Signing time: Fri 12 Jul 2024 15:51:59 +0000 ROA not before: Fri 12 Jul 2024 15:51:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7718 IP address blocks: 103.12.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8395 (0x20cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Jul 12 15:51:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691511e-5379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:96:d4:9e:4b:f0:f6:3a:f6:ec:e5:24:c5:de: fe:ed:f6:be:e9:be:cb:25:97:aa:b9:23:6a:ae:cb: c1:ef:55:a0:41:60:26:59:28:91:02:35:dd:58:63: 1a:5e:2c:f9:0f:6a:16:8b:63:26:75:21:e7:d1:c7: ba:7d:8d:ad:be:0a:e4:1e:b0:79:ba:f7:c7:72:f5: 42:c2:52:20:b3:1d:81:6a:da:84:6c:4b:77:59:15: 14:6a:ee:0a:30:38:cc:09:7d:33:0d:bb:ce:c9:79: 00:17:61:07:87:60:d3:5f:c2:d8:84:7e:01:0e:bc: dd:d7:85:23:bf:ea:10:8c:92:89:65:dd:95:a3:df: 6d:10:0c:e5:de:6c:73:0a:e2:0b:19:21:0f:b7:01: 5e:7d:a0:a1:e2:27:5c:7a:13:ac:6f:73:73:19:24: ff:c8:62:bf:5d:b0:8d:85:d6:3f:e3:ec:e8:07:75: 30:db:70:a9:6d:2f:c1:85:ae:7e:ce:98:10:50:06: ba:4f:9a:47:ef:63:11:0b:25:79:17:24:ed:d7:04: 13:75:c1:7d:3e:9d:9c:16:5c:59:c1:4f:2b:a3:2c: 3b:46:75:26:4f:56:0f:11:6c:c1:51:97:ce:7a:73: 07:00:fa:5b:6f:c0:e4:06:49:7c:34:b0:48:c3:f5: a1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F6:3E:D3:2C:0E:2A:F3:A9:32:42:30:81:C9:4C:D7:8C:64:17:51 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.241.0/24 Signature Algorithm: sha256WithRSAEncryption 09:de:55:d7:c5:dd:24:75:b7:3c:41:80:4c:f5:9f:35:af:a1: 7f:5d:ac:f3:0a:1e:7e:3e:c5:91:e7:f7:4d:cb:3b:38:f2:c7: ef:b9:7a:7c:a1:16:5c:62:b0:69:ce:7f:aa:ac:71:c3:ae:c6: 48:26:11:34:09:46:2c:c8:09:85:d4:1b:aa:6d:01:84:46:3e: 7e:80:cf:31:9e:c1:b2:78:2b:de:b1:3b:c4:ec:22:66:9b:80: 6d:43:f6:5f:cf:73:9c:b8:52:2c:98:26:65:82:d4:ef:dc:eb: 67:bd:68:05:36:ad:31:1a:c4:f6:54:ca:8c:59:e3:0e:f2:39: cc:d3:a1:2a:f5:09:79:5d:67:34:08:1e:97:cf:8e:95:7b:65: dc:16:a6:a1:42:3c:23:ac:2c:a5:ec:e0:9d:13:8a:29:c1:42: f2:ae:93:19:c4:a6:08:55:5d:35:b0:b5:fe:b5:5d:fb:3d:d6: 3f:29:67:dd:6f:7e:4f:9e:fc:c5:69:7a:82:ff:30:42:38:e6: 50:63:82:ba:ae:dc:6d:50:09:44:37:13:0f:5a:16:25:7a:3b: 0a:16:af:73:5d:87:f3:b1:55:62:20:64:b7:4f:03:9e:4f:75: c5:25:36:73:5c:63:d0:83:8c:86:18:43:ee:a8:27:38:3e:ed: 49:05:6c:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjQwNzEyMTU1MTU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxNTExZS01Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpbUnkvw9jr27OUkxd7+7fa+6b7LJZequSNqrsvB71WgQWAmWSiRAjXdWGMa Xiz5D2oWi2MmdSHn0ce6fY2tvgrkHrB5uvfHcvVCwlIgsx2BatqEbEt3WRUUau4K MDjMCX0zDbvOyXkAF2EHh2DTX8LYhH4BDrzd14Ujv+oQjJKJZd2Vo99tEAzl3mxz CuILGSEPtwFefaCh4idcehOsb3NzGST/yGK/XbCNhdY/4+zoB3Uw23CpbS/Bha5+ zpgQUAa6T5pH72MRCyV5FyTt1wQTdcF9Pp2cFlxZwU8royw7RnUmT1YPEWzBUZfO enMHAPpbb8DkBkl8NLBIw/WhkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKL2PtMs DirzqTJCMIHJTNeMZBdRMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFMjUvRjQzNDQxMTY4QTJFMTFFM0I1QjZFOTVFNTkxMUVBMzIvODVEMjUwOThF MDAxMTFFNTk2QkM3RDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDPEwDQYJKoZIhvcNAQELBQADggEBAAneVdfF3SR1tzxB gEz1nzWvoX9drPMKHn4+xZHn903LOzjyx++5enyhFlxisGnOf6qsccOuxkgmETQJ RizICYXUG6ptAYRGPn6AzzGewbJ4K96xO8TsImabgG1D9l/Pc5y4UiyYJmWC1O/c 62e9aAU2rTEaxPZUyoxZ4w7yOczToSr1CXldZzQIHpfPjpV7ZdwWpqFCPCOsLKXs 4J0TiinBQvKukxnEpghVXTWwtf61Xfs91j8pZ91vfk+e/MVpeoL/MEI45lBjgrqu 3G1QCUQ3Ew9aFiV6OwoWr3Ndh/OxVWIgZLdPA55PdcUlNnNcY9CDjIYYQ+6oJzg+ 7UkFbFQ= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org