$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/CAF5E0EA6BDA11EF942AB06BC4F9AE02.roa File: CAF5E0EA6BDA11EF942AB06BC4F9AE02.roa (raw, json) Hash identifier: PLkTX8vn1+WKFw3HdqAbAwP/NjRYQ3swUNgQj1k4DSE= Subject key identifier: 73:6F:79:EB:A3:F9:F1:1D:E8:DB:71:46:D4:6A:A2:98:A4:CB:BC:C3 Certificate issuer: /CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Certificate serial: 5F Authority key identifier: 0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/CAF5E0EA6BDA11EF942AB06BC4F9AE02.roa Signing time: Thu 05 Sep 2024 23:01:32 +0000 ROA not before: Thu 05 Sep 2024 23:01:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 401276 IP address blocks: 103.230.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:51:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Validity Not Before: Sep 5 23:01:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66da384c-eb39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3e:f1:90:ff:7d:ee:c7:81:43:fd:63:90:8c: eb:79:de:99:d1:43:fd:37:b5:c5:fd:87:97:fe:f1: 88:42:89:d6:91:82:50:8e:db:d4:c8:f1:dc:1d:cc: 5a:2f:5b:8b:e5:5e:4c:16:24:3d:27:11:38:8a:7e: ed:9d:86:19:fe:0e:27:a9:e5:b0:97:3c:48:63:23: 3e:2b:2d:5e:8a:67:b9:48:ae:53:e1:59:0c:18:c6: aa:88:d0:c3:cf:18:62:b1:91:5e:ab:c4:05:8a:f3: ed:d8:89:6a:51:f1:41:35:eb:42:0d:6a:e7:bc:0a: 2e:1a:0e:58:67:7a:5d:72:c0:5c:90:c5:d4:bc:5d: dc:14:5d:1c:08:df:d8:cd:23:22:6a:14:cc:d3:de: ca:c9:e6:73:41:74:c0:c4:9b:34:b2:70:cb:b7:9c: cb:39:15:98:49:9e:aa:e7:67:23:3f:26:39:42:bb: 62:7d:fc:c5:2f:f1:a1:db:7a:7d:e7:5a:02:5e:97: aa:70:d9:e4:82:29:d5:0d:ec:e5:c6:d9:20:89:ad: 7a:7d:62:e1:d0:84:b0:68:3d:ca:12:fb:13:2f:14: 04:23:93:08:94:86:a1:0b:2e:69:24:ba:48:14:8f: 87:91:3b:54:ab:1b:be:ab:74:cd:c2:07:f3:ec:0c: 25:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6F:79:EB:A3:F9:F1:1D:E8:DB:71:46:D4:6A:A2:98:A4:CB:BC:C3 X509v3 Authority Key Identifier: keyid:0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/CAF5E0EA6BDA11EF942AB06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.93.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:e1:12:a8:f2:37:17:a0:ce:13:c4:6a:af:fd:7e:23:77:7f: b5:f1:c5:69:20:1b:fc:6c:76:8d:62:59:0d:f3:4f:4e:8f:73: b2:15:e3:45:3d:ad:42:07:c8:93:f1:e2:b1:de:cc:2d:ea:7d: d6:ee:0e:1e:3f:50:ad:37:66:dc:23:bf:e8:d1:d8:c1:e6:64: ac:77:aa:a8:50:67:0e:44:ae:70:11:77:8a:50:77:0a:d7:8b: 19:2e:30:35:b2:7e:23:d6:05:19:6a:0c:7b:74:c6:f9:40:ac: 90:58:00:ef:48:76:b3:03:f1:65:4d:90:68:b3:3e:6c:a0:6d: 41:c1:b3:8a:b6:93:5c:bf:69:d7:78:91:25:85:99:cc:89:85: 5f:da:db:6e:a4:f0:0a:79:6c:a7:c7:e2:72:30:70:72:8e:a4: 2e:08:04:94:ec:ac:49:4c:1e:77:f8:fd:7f:3d:63:b9:5e:4c: c6:b3:cc:af:8e:c2:11:a9:44:3f:a9:c7:f6:53:87:ed:05:a4: 62:fa:3c:35:37:38:1c:20:52:24:44:b7:55:52:4d:a3:23:28: 91:01:00:68:85:41:61:0f:7a:1f:ed:b3:5e:53:d7:05:fb:5f: 8e:2a:74:85:0a:37:cc:6d:3f:6b:c6:1f:65:4b:0d:2a:d7:e9: bd:1f:5a:4e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RTlEQzExMC8GA1UEBRMoMEY5RjcxNThEQkRGRkEyQTU3QUUwMjQ4N0M5ODIwNkI3 ODM4MDQ5NjAeFw0yNDA5MDUyMzAxMzJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGEzODRjLWViMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsPvGQ/33ux4FD/WOQjOt53pnRQ/03tcX9h5f+8YhCidaRglCO29TI8dwdzFov W4vlXkwWJD0nETiKfu2dhhn+Diep5bCXPEhjIz4rLV6KZ7lIrlPhWQwYxqqI0MPP GGKxkV6rxAWK8+3YiWpR8UE160INaue8Ci4aDlhnel1ywFyQxdS8XdwUXRwI39jN IyJqFMzT3srJ5nNBdMDEmzSycMu3nMs5FZhJnqrnZyM/JjlCu2J9/MUv8aHben3n WgJel6pw2eSCKdUN7OXG2SCJrXp9YuHQhLBoPcoS+xMvFAQjkwiUhqELLmkkukgU j4eRO1SrG76rdM3CB/PsDCW3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUc29566P5 8R3o23FG1GqimKTLvMMwHwYDVR0jBBgwFoAUD59xWNvf+ipXrgJIfJgga3g4BJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFOURDLzZFRUMxRjVDRUZG RDExRUU5MDI4OEE3MkM0RjlBRTAyL0Q1OXhXTnZmLWlwWHJnSklmSmdnYTNnNEJK WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDU5eFdOdmYtaXBYcmdKSWZKZ2dhM2c0QkpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlEQy82RUVDMUY1Q0VGRkQxMUVFOTAyODhBNzJDNEY5QUUwMi9DQUY1RTBFQTZC REExMUVGOTQyQUIwNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfmXTANBgkqhkiG9w0BAQsFAAOCAQEAXeESqPI3F6DOE8Rq r/1+I3d/tfHFaSAb/Gx2jWJZDfNPTo9zshXjRT2tQgfIk/Hisd7MLep91u4OHj9Q rTdm3CO/6NHYweZkrHeqqFBnDkSucBF3ilB3CteLGS4wNbJ+I9YFGWoMe3TG+UCs kFgA70h2swPxZU2QaLM+bKBtQcGziraTXL9p13iRJYWZzImFX9rbbqTwCnlsp8fi cjBwco6kLggElOysSUwed/j9fz1juV5MxrPMr47CEalEP6nH9lOH7QWkYvo8NTc4 HCBSJES3VVJNoyMokQEAaIVBYQ96H+2zXlPXBftfjip0hQo3zG0/a8YfZUsNKtfp vR9aTg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:40 2024 by rpki-client on console-ams.rpki-client.org