$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa File: CF0AE2F0159411EDB66C5D82C4F9AE02.roa (raw, json) Hash identifier: TNVkH9/ls+ojKNeHZ8/09LeCiwH6MIuGmSqRPJyhPfY= Subject key identifier: 08:FE:D7:95:13:B7:CB:77:4E:7D:74:18:48:B6:41:B7:4C:64:7D:FA Certificate issuer: /CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Certificate serial: 01FD Authority key identifier: 8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:05:48 +0000 ROA not before: Wed 25 Sep 2024 02:05:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139043 IP address blocks: 103.154.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 509 (0x1fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA8E8/serialNumber=8DA19FCE0EFAE022BBA8F8E0C1237BEDBEBE3EF3 Validity Not Before: Sep 25 02:05:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f36ffb-f81b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8d:88:d6:65:6b:10:f8:f2:75:9b:d4:fc:b4: 5e:24:16:26:99:62:65:2a:f2:71:c8:e9:1d:03:60: 8b:61:88:a6:54:be:19:b3:0e:92:22:9a:c7:08:61: cf:61:66:ae:e9:4b:b0:59:e3:78:8f:48:fd:7a:c1: 89:47:e1:a1:85:fb:de:b6:94:96:2e:69:ac:3b:8a: d7:06:0d:db:d8:e8:35:71:3c:7d:fd:a3:ae:69:d4: ce:25:70:4c:87:3e:08:94:11:62:01:e7:70:6c:e4: e9:41:39:18:a5:42:47:68:bf:b3:53:ce:2a:94:24: dd:79:dd:54:e5:21:96:f3:a5:40:12:0a:95:fb:c3: b7:5f:c1:07:09:c7:bb:4e:1d:67:2e:9f:4c:60:2c: 54:a7:25:d5:ba:68:27:aa:89:e0:b3:0c:df:5f:ad: fa:f3:31:23:11:25:fb:44:88:5f:7d:08:32:7a:db: 7c:cd:3f:aa:2f:e7:c9:5f:d2:32:a6:bd:56:4e:d8: 2a:cf:a2:a3:02:66:51:d8:0b:79:40:0b:9f:6e:75: 37:0b:e6:bc:a5:9a:84:3f:a8:1a:71:bf:50:ca:dd: ac:bf:79:92:96:d7:9b:8c:b7:8f:17:8b:b8:47:af: a8:ed:8d:83:e1:64:a5:58:f3:0e:3f:e3:42:0e:54: 14:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:FE:D7:95:13:B7:CB:77:4E:7D:74:18:48:B6:41:B7:4C:64:7D:FA X509v3 Authority Key Identifier: keyid:8D:A1:9F:CE:0E:FA:E0:22:BB:A8:F8:E0:C1:23:7B:ED:BE:BE:3E:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/jaGfzg764CK7qPjgwSN77b6-PvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jaGfzg764CK7qPjgwSN77b6-PvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA8E8/9039783010D911ED80B80D29C4F9AE02/CF0AE2F0159411EDB66C5D82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.65.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:33:14:47:85:1b:d1:85:67:bb:e7:d0:4d:fb:94:47:9d:10: 9c:71:96:e1:26:5b:e2:97:09:64:d1:2c:9c:e2:40:20:08:f2: f2:d5:9c:18:36:4d:97:46:ec:2c:c6:ab:59:bd:07:40:0f:f2: 19:f6:18:4e:a3:70:6f:06:46:ee:21:15:b8:ff:34:1c:43:10: 6c:47:90:fe:93:9d:13:c1:c6:6d:74:4e:7c:73:31:9b:5f:ea: 53:d2:bc:da:1c:06:cf:1b:6f:e9:c6:b9:23:fa:10:c8:95:4a: 3b:2f:6f:a6:0c:7c:de:ff:54:d0:54:f3:79:80:2b:d1:14:ee: 04:21:11:de:b1:23:c3:ec:d8:ea:11:b3:8e:2a:50:15:ff:d6: 93:3e:b0:64:27:f7:7f:1b:ca:4c:5b:97:90:14:7b:79:5e:29: 78:de:04:6f:12:7a:ab:7c:04:db:73:05:0e:e3:f8:eb:96:7d: 3d:a6:e1:0b:1d:bc:88:5b:1b:2f:32:08:48:15:b3:2f:2e:ff: 42:ca:5c:f4:3a:03:af:a0:fd:2d:5e:c0:75:e0:43:59:7e:91: cf:24:9b:3e:82:8f:99:68:a3:3d:b0:f8:e1:b8:ee:ec:eb:dc: 59:52:71:26:07:2f:50:0b:8e:0f:f2:da:1c:0f:77:0d:4c:f6: 5a:5b:0d:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4RTgxMTAvBgNVBAUTKDhEQTE5RkNFMEVGQUUwMjJCQkE4RjhFMEMxMjM3QkVE QkVCRTNFRjMwHhcNMjQwOTI1MDIwNTQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNmZmYi1mODFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1o2I1mVrEPjydZvU/LReJBYmmWJlKvJxyOkdA2CLYYimVL4Zsw6SIprHCGHP YWau6UuwWeN4j0j9esGJR+GhhfvetpSWLmmsO4rXBg3b2Og1cTx9/aOuadTOJXBM hz4IlBFiAedwbOTpQTkYpUJHaL+zU84qlCTded1U5SGW86VAEgqV+8O3X8EHCce7 Th1nLp9MYCxUpyXVumgnqongswzfX6368zEjESX7RIhffQgyett8zT+qL+fJX9Iy pr1WTtgqz6KjAmZR2At5QAufbnU3C+a8pZqEP6gacb9Qyt2sv3mSltebjLePF4u4 R6+o7Y2D4WSlWPMOP+NCDlQU+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAj+15UT t8t3Tn10GEi2QbdMZH36MB8GA1UdIwQYMBaAFI2hn84O+uAiu6j44MEje+2+vj7z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQThFOC85MDM5NzgzMDEw RDkxMUVEODBCODBEMjlDNEY5QUUwMi9qYUdmemc3NjRDSzdxUGpnd1NONzdiNi1Q dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2phR2Z6Zzc2NENLN3FQamd3U043N2I2LVB2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4RTgvOTAzOTc4MzAxMEQ5MTFFRDgwQjgwRDI5QzRGOUFFMDIvQ0YwQUUyRjAx NTk0MTFFREI2NkM1RDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmkEwDQYJKoZIhvcNAQELBQADggEBAJwzFEeFG9GFZ7vn 0E37lEedEJxxluEmW+KXCWTRLJziQCAI8vLVnBg2TZdG7CzGq1m9B0AP8hn2GE6j cG8GRu4hFbj/NBxDEGxHkP6TnRPBxm10TnxzMZtf6lPSvNocBs8bb+nGuSP6EMiV Sjsvb6YMfN7/VNBU83mAK9EU7gQhEd6xI8Ps2OoRs44qUBX/1pM+sGQn938bykxb l5AUe3leKXjeBG8Seqt8BNtzBQ7j+OuWfT2m4QsdvIhbGy8yCEgVsy8u/0LKXPQ6 A6+g/S1ewHXgQ1l+kc8kmz6Cj5looz2w+OG47uzr3FlScSYHL1ALjg/y2hwPdw1M 9lpbDag= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:52 2024 by rpki-client on console-fra.rpki-client.org