$ rpki-client -vvf rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa File: E7DBE2945B6A11EE8C05CA59C4F9AE02.roa (raw, json) Hash identifier: gVUndys1FOrdFAUgWj7NFlEkhtcr9jjG/N1oaA3t584= Subject key identifier: 8C:30:79:11:A0:81:91:3F:17:04:CB:D9:31:BC:29:CC:B5:92:2C:9D Certificate issuer: /CN=A91374BB/serialNumber=B312C22F3D0B97BAAF3273E5C66B8F140203E2F9 Certificate serial: 5E Authority key identifier: B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa Signing time: Wed 13 Mar 2024 06:39:10 +0000 ROA not before: Wed 13 Mar 2024 06:39:10 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132170 IP address blocks: 103.6.163.0/24 maxlen: 24 103.26.44.0/24 maxlen: 24 103.26.45.0/24 maxlen: 24 103.26.46.0/24 maxlen: 24 2001:df0:2a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91374BB/serialNumber=B312C22F3D0B97BAAF3273E5C66B8F140203E2F9 Validity Not Before: Mar 13 06:39:10 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f14a0d-9f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:38:77:b2:39:11:10:f3:e7:89:6b:6d:39:3b: b7:c3:e6:6b:a1:70:d4:2a:53:2b:83:ad:a4:f0:59: 05:05:61:36:98:dd:c5:15:46:97:12:92:74:c6:cb: 26:4a:88:8c:d4:61:38:20:88:9c:c6:15:2a:b9:86: 5f:cd:16:d6:db:8c:13:f7:a9:4b:d6:7b:15:6b:da: e9:46:e0:0d:76:19:ac:05:15:b6:fd:da:14:60:e7: 21:62:cc:3c:f9:66:5a:86:e7:8a:8d:f2:39:80:5c: a6:64:4c:28:85:77:47:63:79:60:75:5a:8f:63:7a: a4:bd:f7:4e:ea:20:6f:db:28:8d:ef:b6:e6:f8:35: b1:3f:cf:16:6e:b8:24:87:a5:51:c8:76:45:1a:38: 21:79:0d:c0:cc:f2:cc:61:a0:82:aa:44:bf:5c:ca: c5:dd:e1:31:aa:8b:36:b3:cc:99:c7:1a:e5:14:fb: 80:a5:b7:f8:12:1c:6f:82:0f:87:ea:e5:fb:aa:2a: 2f:60:2f:a0:0b:00:18:b4:cd:b4:6f:56:a8:1e:96: df:b9:c2:fd:cb:e9:14:be:cd:b1:06:d0:6a:cd:5e: 72:e1:9c:5f:35:20:a3:0b:a1:62:fa:b8:93:24:fd: 27:ef:15:01:c0:f8:1f:bc:9c:f2:93:73:f9:d1:a9: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:30:79:11:A0:81:91:3F:17:04:CB:D9:31:BC:29:CC:B5:92:2C:9D X509v3 Authority Key Identifier: keyid:B3:12:C2:2F:3D:0B:97:BA:AF:32:73:E5:C6:6B:8F:14:02:03:E2:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/sxLCLz0Ll7qvMnPlxmuPFAID4vk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxLCLz0Ll7qvMnPlxmuPFAID4vk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91374BB/648542C85B6A11EE80D36B54C4F9AE02/E7DBE2945B6A11EE8C05CA59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.163.0/24 103.26.44.0-103.26.46.255 IPv6: 2001:df0:2a0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:10:c0:40:ba:b4:8f:52:e2:98:da:a3:50:92:2e:45:f3:a9: f8:15:59:b6:0f:e3:b1:ab:ae:88:5f:05:4b:36:52:17:fb:57: 48:85:21:8d:13:12:d6:77:31:c9:8d:8d:f8:fb:0c:97:89:85: ae:90:1a:79:f7:74:0f:24:c4:79:40:4a:0a:5d:7c:4a:f1:3b: 28:64:e9:fc:71:1d:62:fb:76:2e:5e:0e:3f:a5:75:2a:ad:6f: 88:3d:79:87:4a:44:3d:b2:8c:5a:75:a9:ec:27:a1:38:21:0b: 73:dc:64:f7:1b:11:8c:83:6f:0a:1c:64:43:40:65:54:de:d7: d6:1e:ea:b7:64:f8:b3:1b:66:98:de:a6:47:b2:58:98:f3:0c: 26:21:0c:45:3b:f5:e0:d8:d5:30:2b:d1:7c:02:2a:dc:ae:99: d5:89:18:af:a2:79:03:c4:c8:71:66:91:ad:4d:fc:a7:cc:c9: a0:77:04:19:58:11:a1:e1:aa:68:68:83:b4:e0:3d:07:95:4a: bd:84:9f:ac:5b:d3:f1:f6:09:99:03:de:e4:ad:04:c9:90:05: 5a:e2:08:b7:af:4d:19:d4:2e:5e:4c:e0:ca:c1:0f:26:ed:7a: 6f:88:fc:2d:27:85:2b:64:8c:18:2d:f2:6e:ba:4f:97:97:9d: 67:90:aa:f2 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzRCQjExMC8GA1UEBRMoQjMxMkMyMkYzRDBCOTdCQUFGMzI3M0U1QzY2QjhGMTQw MjAzRTJGOTAeFw0yNDAzMTMwNjM5MTBaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjE0YTBkLTlmNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiOHeyOREQ8+eJa205O7fD5muhcNQqUyuDraTwWQUFYTaY3cUVRpcSknTGyyZK iIzUYTggiJzGFSq5hl/NFtbbjBP3qUvWexVr2ulG4A12GawFFbb92hRg5yFizDz5 ZlqG54qN8jmAXKZkTCiFd0djeWB1Wo9jeqS9907qIG/bKI3vtub4NbE/zxZuuCSH pVHIdkUaOCF5DcDM8sxhoIKqRL9cysXd4TGqizazzJnHGuUU+4Clt/gSHG+CD4fq 5fuqKi9gL6ALABi0zbRvVqgelt+5wv3L6RS+zbEG0GrNXnLhnF81IKMLoWL6uJMk /SfvFQHA+B+8nPKTc/nRqSAvAgMBAAGjggK0MIICsDAdBgNVHQ4EFgQUjDB5EaCB kT8XBMvZMbwpzLWSLJ0wHwYDVR0jBBgwFoAUsxLCLz0Ll7qvMnPlxmuPFAID4vkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3NEJCLzY0ODU0MkM4NUI2 QTExRUU4MEQzNkI1NEM0RjlBRTAyL3N4TENMejBMbDdxdk1uUGx4bXVQRkFJRDR2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc3hMQ0x6MExsN3F2TW5QbHhtdVBGQUlENHZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzRCQi82NDg1NDJDODVCNkExMUVFODBEMzZCNTRDNEY5QUUwMi9FN0RCRTI5NDVC NkExMUVFOEMwNUNBNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA+BggrBgEFBQcBBwEB/wQv MC0wGgQCAAEwFAMEAGcGozAMAwQCZxosAwQAZxouMA8EAgACMAkDBwAgAQ3wAqAw DQYJKoZIhvcNAQELBQADggEBAGoQwEC6tI9S4pjao1CSLkXzqfgVWbYP47Grrohf BUs2Uhf7V0iFIY0TEtZ3McmNjfj7DJeJha6QGnn3dA8kxHlASgpdfErxOyhk6fxx HWL7di5eDj+ldSqtb4g9eYdKRD2yjFp1qewnoTghC3PcZPcbEYyDbwocZENAZVTe 19Ye6rdk+LMbZpjepkeyWJjzDCYhDEU79eDY1TAr0XwCKtyumdWJGK+ieQPEyHFm ka1N/KfMyaB3BBlYEaHhqmhog7TgPQeVSr2En6xb0/H2CZkD3uStBMmQBVriCLev TRnULl5M4MrBDybtem+I/C0nhStkjBgt8m66T5eXnWeQqvI= -----END CERTIFICATE-----Generated at Sat Jun 15 08:17:48 2024 by rpki-client on console-fra.rpki-client.org