$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/C820C000061E11EFA13A0F4AC4F9AE02.roa File: C820C000061E11EFA13A0F4AC4F9AE02.roa (raw, json) Hash identifier: 0K8hINvXeShf8i/9Td57E0NI0Gsp8mk0fOg1+44K/Pk= Subject key identifier: 18:A3:5F:8D:E6:3A:C0:0E:54:17:E6:64:5F:AE:A7:CF:E9:52:E4:51 Certificate issuer: /CN=A91FC1E4/serialNumber=2BA78BFED9C147EFFEC881D9C736F68F585534CB Certificate serial: 02 Authority key identifier: 2B:A7:8B:FE:D9:C1:47:EF:FE:C8:81:D9:C7:36:F6:8F:58:55:34:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6eL_tnBR-_-yIHZxzb2j1hVNMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/C820C000061E11EFA13A0F4AC4F9AE02.roa Signing time: Mon 29 Apr 2024 11:51:15 +0000 ROA not before: Mon 29 Apr 2024 11:51:15 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132386 IP address blocks: 103.162.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/K6eL_tnBR-_-yIHZxzb2j1hVNMs.crl rsync://rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/K6eL_tnBR-_-yIHZxzb2j1hVNMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6eL_tnBR-_-yIHZxzb2j1hVNMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1E4/serialNumber=2BA78BFED9C147EFFEC881D9C736F68F585534CB Validity Not Before: Apr 29 11:51:15 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=662f89b3-890a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:88:7f:c5:83:2b:10:a8:7a:ae:40:97:2a: ea:fd:84:67:08:51:80:50:95:f9:56:f4:76:70:ca: 34:c6:af:19:61:bb:3e:f2:29:66:52:59:6c:10:bb: 0c:5a:e5:92:06:9d:95:0a:cf:67:e0:99:f3:3e:50: 06:62:5c:b0:ca:35:9c:31:3e:a8:84:55:b2:98:95: 90:d5:5c:9d:25:c3:1a:8f:ae:c9:54:9b:f8:cd:79: c7:15:c0:06:f9:ce:c3:37:c1:84:1a:79:3d:c2:d4: 55:a3:fc:b6:98:7e:6f:12:60:3b:5c:63:73:07:93: 27:e5:e3:1c:ad:6d:fa:34:34:a9:d8:61:92:05:ad: 4b:da:aa:12:dc:af:b3:4b:44:ae:93:49:03:2b:a9: 7b:64:7a:3f:42:f4:d2:86:6d:75:f5:d5:8b:50:c7: 0f:91:1b:a8:8a:aa:19:b4:b9:fb:fe:50:39:5c:a8: 32:a2:7a:26:2c:9c:5a:b1:d5:85:be:0f:08:db:8e: bc:ab:61:ce:b1:5c:96:84:dc:8f:dd:53:e4:fb:76: 42:21:13:4e:10:e5:42:d6:5e:d1:33:aa:d2:ab:83: 20:9d:89:a7:27:34:5f:e3:1d:40:d8:04:2d:73:2c: e8:c2:27:3d:a3:51:55:42:48:7e:04:63:83:46:37: 94:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A3:5F:8D:E6:3A:C0:0E:54:17:E6:64:5F:AE:A7:CF:E9:52:E4:51 X509v3 Authority Key Identifier: keyid:2B:A7:8B:FE:D9:C1:47:EF:FE:C8:81:D9:C7:36:F6:8F:58:55:34:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/K6eL_tnBR-_-yIHZxzb2j1hVNMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6eL_tnBR-_-yIHZxzb2j1hVNMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1E4/2FD0CA98061911EFA926A723C4F9AE02/C820C000061E11EFA13A0F4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.41.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:f8:58:93:7c:4f:84:13:db:b3:d4:b2:3d:86:fa:a9:11:ac: 56:9b:10:7e:82:e7:3d:79:3e:47:66:96:2e:f8:c3:21:54:15: 16:40:3b:03:7b:c5:24:3c:27:1b:40:17:02:a9:3a:fc:f3:f9: 98:7f:46:9f:5d:49:d4:7b:60:a4:6f:75:aa:91:88:35:02:05: 6b:63:0a:c9:08:7c:75:65:9d:9a:80:9c:c1:a3:51:40:e9:e2: 5b:31:58:85:63:c4:da:9f:41:e7:0d:14:69:1f:4b:46:b6:a3: d6:f4:7a:b4:49:34:f4:97:c3:12:c8:5b:da:05:21:05:bb:8b: 5e:51:c9:f5:86:6e:2d:ab:69:04:d9:cd:cb:4f:dd:b2:fb:14: 8d:0d:fa:10:17:f0:3f:34:3d:93:f2:95:33:e8:9e:e1:4f:b9: ef:b6:57:c8:85:ba:29:bd:78:45:f1:4d:4e:c1:e8:32:52:16: 98:86:80:33:0b:ad:96:b7:26:f5:3b:7c:01:8a:8c:13:c8:66: f2:f4:d8:e3:5d:13:cf:66:e4:03:18:76:39:b9:f0:6b:f9:0d: 4c:87:56:90:97:38:06:01:b6:bb:d3:44:a4:26:b4:75:d6:58: 02:ce:30:d6:e3:29:42:ba:7b:5a:68:26:75:f1:7e:1e:11:f8: 89:32:c1:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QzFFNDExMC8GA1UEBRMoMkJBNzhCRkVEOUMxNDdFRkZFQzg4MUQ5QzczNkY2OEY1 ODU1MzRDQjAeFw0yNDA0MjkxMTUxMTVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmY4OWIzLTg5MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcm4h/xYMrEKh6rkCXKur9hGcIUYBQlflW9HZwyjTGrxlhuz7yKWZSWWwQuwxa 5ZIGnZUKz2fgmfM+UAZiXLDKNZwxPqiEVbKYlZDVXJ0lwxqPrslUm/jNeccVwAb5 zsM3wYQaeT3C1FWj/LaYfm8SYDtcY3MHkyfl4xytbfo0NKnYYZIFrUvaqhLcr7NL RK6TSQMrqXtkej9C9NKGbXX11YtQxw+RG6iKqhm0ufv+UDlcqDKieiYsnFqx1YW+ DwjbjryrYc6xXJaE3I/dU+T7dkIhE04Q5ULWXtEzqtKrgyCdiacnNF/jHUDYBC1z LOjCJz2jUVVCSH4EY4NGN5TjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGKNfjeY6 wA5UF+ZkX66nz+lS5FEwHwYDVR0jBBgwFoAUK6eL/tnBR+/+yIHZxzb2j1hVNMsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDMUU0LzJGRDBDQTk4MDYx OTExRUZBOTI2QTcyM0M0RjlBRTAyL0s2ZUxfdG5CUi1fLXlJSFp4emIyajFoVk5N cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzZlTF90bkJSLV8teUlIWnh6YjJqMWhWTk1zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFFNC8yRkQwQ0E5ODA2MTkxMUVGQTkyNkE3MjNDNEY5QUUwMi9DODIwQzAwMDA2 MUUxMUVGQTEzQTBGNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeiKTANBgkqhkiG9w0BAQsFAAOCAQEACvhYk3xPhBPbs9Sy PYb6qRGsVpsQfoLnPXk+R2aWLvjDIVQVFkA7A3vFJDwnG0AXAqk6/PP5mH9Gn11J 1HtgpG91qpGINQIFa2MKyQh8dWWdmoCcwaNRQOniWzFYhWPE2p9B5w0UaR9LRraj 1vR6tEk09JfDEshb2gUhBbuLXlHJ9YZuLatpBNnNy0/dsvsUjQ36EBfwPzQ9k/KV M+ie4U+577ZXyIW6Kb14RfFNTsHoMlIWmIaAMwutlrcm9Tt8AYqME8hm8vTY410T z2bkAxh2Obnwa/kNTIdWkJc4BgG2u9NEpCa0ddZYAs4w1uMpQrp7WmgmdfF+HhH4 iTLB8w== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:32 2024 by rpki-client on console-fra.rpki-client.org