$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa File: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (raw, json) Hash identifier: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44= Subject key identifier: FA:66:DE:DB:04:C4:91:77:BE:4F:D6:7B:E0:80:B0:67:D3:6F:19:03 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: BF Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa Signing time: Tue 23 Apr 2024 06:39:40 +0000 ROA not before: Tue 23 Apr 2024 06:39:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 23750 IP address blocks: 103.158.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 23 06:39:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662757ab-4e20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:09:4d:d9:b4:d0:77:77:26:ab:c0:b4:de:0e: d2:0b:9a:c5:dc:cf:2a:42:e1:d6:f3:6b:db:89:91: 0a:14:92:d5:8e:08:3b:61:e9:a7:ab:3f:9d:86:5b: a0:1b:16:de:53:41:f9:03:a8:93:e1:ea:3f:3a:82: 54:94:2e:aa:10:6f:60:cb:7b:5c:02:52:f5:be:90: b0:e5:a1:31:4c:68:d2:57:09:8f:f2:8d:0d:1c:0b: 38:39:7a:27:7a:f9:eb:ec:64:e9:7d:ff:9c:31:17: 70:60:30:46:a6:c8:2e:b1:11:c8:37:5e:bd:86:95: 12:a9:1f:66:0c:e9:91:a6:9b:f0:a4:d2:a8:d0:7c: ae:44:92:0e:81:cd:ab:c3:b7:92:84:c9:10:41:0f: 91:c2:2c:6d:17:9f:e4:88:e7:ce:88:0d:df:d1:2c: ab:af:27:88:59:99:d7:10:77:f4:a9:46:8f:ce:f2: 59:1a:0c:44:1e:67:cf:74:68:2c:76:73:11:f7:c5: c7:e0:5c:37:6c:75:3d:fa:8b:43:f8:8b:5c:bd:dc: 37:00:e3:64:58:b8:50:57:42:80:c3:f1:9c:3b:59: bb:e4:37:34:94:00:c6:4d:25:97:2a:9f:78:8b:9c: 01:95:0c:8e:7a:26:01:17:98:e8:b4:09:10:04:50: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:66:DE:DB:04:C4:91:77:BE:4F:D6:7B:E0:80:B0:67:D3:6F:19:03 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.237.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:92:92:60:c3:e3:68:1c:3d:a3:28:33:ec:61:d8:7f:8e:4b: d6:5e:ef:74:0b:61:62:a8:6a:92:36:5e:88:d2:55:84:00:1b: 0a:d4:90:e3:66:0e:2a:59:9f:1a:15:59:80:d3:49:7b:f8:02: b9:a8:45:e5:7e:c0:f7:53:88:48:aa:8f:fa:6e:a4:d1:3a:35: cd:d8:6d:6d:14:80:c7:d3:f4:e8:e6:a2:c1:11:63:e1:97:12: df:db:89:39:90:ce:1c:74:01:29:fb:82:fb:e3:e0:34:1d:32: 4c:93:2d:47:7c:71:95:27:13:5a:55:2f:ab:cd:24:51:93:3b: 32:86:85:87:64:a7:5f:2f:a7:a2:ff:2c:40:dd:e3:67:17:77: 2a:03:1b:8e:7c:a6:57:bd:33:ba:ed:04:4c:c2:68:7a:9a:2c: 82:3f:4c:d6:80:a8:e7:e5:81:87:3f:32:5f:9d:71:f0:71:99: c8:61:cc:6f:e6:4b:8e:88:b5:5a:54:97:d9:d3:1e:a1:22:3c: 92:89:6a:3b:b1:f5:ff:66:46:ff:8a:2d:3b:4f:6f:12:1d:33: 20:2c:8e:e4:83:af:d3:ac:0a:6c:14:32:fc:0c:bc:07:3b:ac: c2:1b:e7:14:22:b4:9e:03:e1:b7:07:cb:13:38:36:07:f7:ef: 48:41:b6:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjQwNDIzMDYzOTQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3NTdhYi00ZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwglN2bTQd3cmq8C03g7SC5rF3M8qQuHW82vbiZEKFJLVjgg7Yemnqz+dhlug GxbeU0H5A6iT4eo/OoJUlC6qEG9gy3tcAlL1vpCw5aExTGjSVwmP8o0NHAs4OXon evnr7GTpff+cMRdwYDBGpsgusRHIN169hpUSqR9mDOmRppvwpNKo0HyuRJIOgc2r w7eShMkQQQ+RwixtF5/kiOfOiA3f0SyrryeIWZnXEHf0qUaPzvJZGgxEHmfPdGgs dnMR98XH4Fw3bHU9+otD+Itcvdw3AONkWLhQV0KAw/GcO1m75Dc0lADGTSWXKp94 i5wBlQyOeiYBF5jotAkQBFC50wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPpm3tsE xJF3vk/We+CAsGfTbxkDMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVGQkIvRDg5NkI1QzhFQTZBMTFFREI1QjZCNTVFQzRGOUFFMDIvMjYxRDNCOEFF RTQ2MTFFRDlCRUZFRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnu0wDQYJKoZIhvcNAQELBQADggEBAHySkmDD42gcPaMo M+xh2H+OS9Ze73QLYWKoapI2XojSVYQAGwrUkONmDipZnxoVWYDTSXv4ArmoReV+ wPdTiEiqj/pupNE6Nc3YbW0UgMfT9OjmosERY+GXEt/biTmQzhx0ASn7gvvj4DQd MkyTLUd8cZUnE1pVL6vNJFGTOzKGhYdkp18vp6L/LEDd42cXdyoDG458ple9M7rt BEzCaHqaLII/TNaAqOflgYc/Ml+dcfBxmchhzG/mS46ItVpUl9nTHqEiPJKJajux 9f9mRv+KLTtPbxIdMyAsjuSDr9OsCmwUMvwMvAc7rMIb5xQitJ4D4bcHyxM4Ngf3 70hBthA= -----END CERTIFICATE-----Generated at Sat Nov 23 03:59:00 2024 by rpki-client on console-ams.rpki-client.org