$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa File: 97B81DD6BF9F11ECAB5B1239C4F9AE02.roa (raw, json) Hash identifier: WBPEzwrRJmEQao59jsv0p03EV57EGiVD2LS1uQaSE9s= Subject key identifier: D8:94:D8:75:C9:39:E4:51:DC:46:D4:71:8B:7A:62:2B:BE:E3:B4:18 Certificate issuer: /CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Certificate serial: 02BA Authority key identifier: 35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa Signing time: Mon 09 Sep 2024 04:05:24 +0000 ROA not before: Mon 09 Sep 2024 04:05:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.154.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9749/serialNumber=35E6C87F6BA1B6513A1270F6DC136DDB71136457 Validity Not Before: Sep 9 04:05:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66de7404-f31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:72:5e:cd:8c:ab:b6:cc:88:a0:80:a0:43:26: bc:a9:aa:06:fb:2d:c6:40:3e:1c:77:91:4d:31:70: 06:c3:2b:7e:b8:b2:72:a8:f5:bb:fd:30:65:b0:4a: 12:f5:fe:d3:03:bf:e6:60:26:84:d0:50:44:7a:13: 4d:bf:e1:15:d6:35:5e:f3:7f:56:4d:18:c1:16:50: 2e:52:a6:19:18:b3:f8:df:bf:5d:00:25:d1:2e:a6: 76:19:2a:be:07:dc:ea:04:ba:0a:f0:9b:a7:68:2a: b0:9b:1c:bf:18:7e:28:b9:3f:a7:f1:13:6c:36:03: 0a:17:94:fc:5c:16:c6:26:7e:75:23:a6:96:48:e6: b7:ca:ca:3a:1c:d5:8b:42:6d:e5:53:2f:26:12:1e: 0e:1e:b7:47:c1:18:4c:04:64:85:4c:a1:c6:6a:d7: 68:f0:3e:4d:cd:52:54:83:ad:27:ef:68:4e:6d:07: 44:07:6e:31:a4:dc:48:51:b6:bd:b0:24:66:0b:a2: 38:9b:bf:de:79:cf:09:51:80:ec:82:9f:13:a9:60: df:26:f3:33:d5:39:9c:54:a1:ed:3e:32:57:27:3b: 64:03:c6:7d:61:27:20:92:86:bb:ac:2f:11:df:a6: 15:9c:8f:31:af:b7:b8:a4:4b:dd:ff:46:63:a1:83: e7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:94:D8:75:C9:39:E4:51:DC:46:D4:71:8B:7A:62:2B:BE:E3:B4:18 X509v3 Authority Key Identifier: keyid:35:E6:C8:7F:6B:A1:B6:51:3A:12:70:F6:DC:13:6D:DB:71:13:64:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/NebIf2uhtlE6EnD23BNt23ETZFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NebIf2uhtlE6EnD23BNt23ETZFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9749/99D17D96BF9B11ECAD3C0A30C4F9AE02/97B81DD6BF9F11ECAB5B1239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.232.0/24 Signature Algorithm: sha256WithRSAEncryption 38:53:68:9e:ea:69:b7:c3:dc:cb:29:a5:03:8d:e5:f5:72:6a: 80:c9:a2:4d:5f:4c:17:3a:1e:c2:d9:24:8e:7d:de:5e:57:b2: 18:4f:52:05:4b:56:a2:a2:27:7d:ab:58:85:48:39:09:8f:52: eb:4c:b6:ab:50:f7:a4:7d:09:bf:ae:0d:d3:5a:53:5c:ac:2f: 2a:12:44:42:f7:c3:6b:90:7f:f9:ec:48:02:3e:fe:2b:85:b0: cb:95:9e:6f:02:40:07:ea:07:66:c7:d3:a6:0e:33:52:0d:0b: d2:a1:80:e0:a0:24:da:ab:ab:b9:2a:36:81:ba:b9:ee:be:d6: ec:2b:96:fa:37:9c:92:35:04:bf:fc:e2:59:3a:eb:7a:2c:94: 5c:60:d4:5e:da:b7:08:e0:f8:4b:d9:f6:cd:8f:42:01:dc:f1: 4b:d7:a4:4e:e2:20:2d:3e:d2:64:7d:b9:71:99:6d:ba:f2:26: ae:ce:66:76:3a:30:4a:f5:8d:ae:91:d7:e7:f6:42:d9:f8:57: 6c:d0:0f:23:4b:93:5a:d7:09:14:ca:00:21:b4:5f:97:9c:69: 5e:30:62:1b:13:f4:94:1d:c8:c6:6b:a5:c7:5d:76:d0:89:0d: 3b:c4:af:37:17:ed:ba:a3:c1:59:3f:85:42:b3:cd:cd:6d:50: 61:f6:4c:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk3NDkxMTAvBgNVBAUTKDM1RTZDODdGNkJBMUI2NTEzQTEyNzBGNkRDMTM2RERC NzExMzY0NTcwHhcNMjQwOTA5MDQwNTI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlNzQwNC1mMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHJezYyrtsyIoICgQya8qaoG+y3GQD4cd5FNMXAGwyt+uLJyqPW7/TBlsEoS 9f7TA7/mYCaE0FBEehNNv+EV1jVe839WTRjBFlAuUqYZGLP4379dACXRLqZ2GSq+ B9zqBLoK8JunaCqwmxy/GH4ouT+n8RNsNgMKF5T8XBbGJn51I6aWSOa3yso6HNWL Qm3lUy8mEh4OHrdHwRhMBGSFTKHGatdo8D5NzVJUg60n72hObQdEB24xpNxIUba9 sCRmC6I4m7/eec8JUYDsgp8TqWDfJvMz1TmcVKHtPjJXJztkA8Z9YScgkoa7rC8R 36YVnI8xr7e4pEvd/0ZjoYPnzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNiU2HXJ OeRR3EbUcYt6Yiu+47QYMB8GA1UdIwQYMBaAFDXmyH9robZROhJw9twTbdtxE2RX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTc0OS85OUQxN0Q5NkJG OUIxMUVDQUQzQzBBMzBDNEY5QUUwMi9OZWJJZjJ1aHRsRTZFbkQyM0JOdDIzRVRa RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05lYklmMnVodGxFNkVuRDIzQk50MjNFVFpGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk3NDkvOTlEMTdEOTZCRjlCMTFFQ0FEM0MwQTMwQzRGOUFFMDIvOTdCODFERDZC RjlGMTFFQ0FCNUIxMjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmugwDQYJKoZIhvcNAQELBQADggEBADhTaJ7qabfD3Msp pQON5fVyaoDJok1fTBc6HsLZJI593l5XshhPUgVLVqKiJ32rWIVIOQmPUutMtqtQ 96R9Cb+uDdNaU1ysLyoSREL3w2uQf/nsSAI+/iuFsMuVnm8CQAfqB2bH06YOM1IN C9KhgOCgJNqrq7kqNoG6ue6+1uwrlvo3nJI1BL/84lk663oslFxg1F7atwjg+EvZ 9s2PQgHc8UvXpE7iIC0+0mR9uXGZbbryJq7OZnY6MEr1ja6R1+f2Qtn4V2zQDyNL k1rXCRTKACG0X5ecaV4wYhsT9JQdyMZrpcdddtCJDTvErzcX7bqjwVk/hUKzzc1t UGH2TOs= -----END CERTIFICATE-----Generated at Thu Nov 21 01:32:00 2024 by rpki-client on console-fra.rpki-client.org