$ rpki-client -vvf rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa File: A87AAC50C47711EDA3EF8884C4F9AE02.roa (raw, json) Hash identifier: qChpEQLnwvQfQt0g6Fvv38do/llT7ziZs8Oh2reiHWU= Subject key identifier: 48:BA:95:09:15:7E:EF:97:09:65:C9:DF:57:2E:E9:59:32:C6:D0:EC Certificate issuer: /CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Certificate serial: 0127 Authority key identifier: 4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa Signing time: Sat 05 Oct 2024 03:37:12 +0000 ROA not before: Sat 05 Oct 2024 03:37:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133730 IP address blocks: 103.39.55.0/24 maxlen: 24 103.39.84.0/23 maxlen: 24 103.208.155.0/24 maxlen: 24 137.59.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91515BC/serialNumber=4CA890367B1EA49EBCF9402C86200DCD7446B6C0 Validity Not Before: Oct 5 03:37:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6700b468-3db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ce:b9:aa:4d:eb:9a:a3:73:60:a9:0c:e8:ac: fd:c0:5f:f5:12:a1:e0:03:83:d1:53:4c:4d:95:f9: b0:7a:03:2b:c1:34:05:20:13:54:f6:95:f2:6e:d4: 87:17:28:fd:29:1d:47:27:4c:b0:0d:45:92:b0:8a: 0f:81:1d:4f:ec:84:3e:43:66:a3:ae:33:07:a2:87: 09:e9:e0:c5:44:bd:6c:39:4f:3d:72:d0:fe:0d:d2: 74:28:f9:78:ac:63:91:8b:44:0a:04:99:19:c7:ba: 80:39:4a:e3:77:71:21:8f:95:3a:28:11:15:c7:61: f1:0f:67:5a:8f:be:94:4a:68:d2:69:36:65:cd:9a: 3f:23:17:23:28:ad:98:d6:5b:09:52:a9:0e:c2:59: 2f:61:0a:dd:8c:f0:e8:a0:64:9d:8a:73:bd:b5:49: 00:46:ac:06:8c:3c:cb:2a:cd:da:8f:ec:89:3e:7e: 65:92:61:39:8e:a6:cd:bc:5f:b2:cc:45:fe:c7:07: d3:50:59:7b:2a:9e:14:e3:94:87:11:32:50:55:a6: 16:18:ab:f6:f6:8c:3e:7a:5e:8f:4d:cb:cc:15:25: ef:3a:e7:03:29:e5:3d:e4:b6:b9:a6:e5:be:48:0a: 93:c8:a7:8f:fe:8b:ad:13:58:5c:db:f1:9a:70:84: d9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:BA:95:09:15:7E:EF:97:09:65:C9:DF:57:2E:E9:59:32:C6:D0:EC X509v3 Authority Key Identifier: keyid:4C:A8:90:36:7B:1E:A4:9E:BC:F9:40:2C:86:20:0D:CD:74:46:B6:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/TKiQNnsepJ68-UAshiANzXRGtsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKiQNnsepJ68-UAshiANzXRGtsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91515BC/164D92B2C47111EDA9C5CB60C4F9AE02/A87AAC50C47711EDA3EF8884C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.55.0/24 103.39.84.0/23 103.208.155.0/24 137.59.196.0/22 Signature Algorithm: sha256WithRSAEncryption 90:a0:7e:e2:54:88:c4:5c:79:0e:ce:b4:ee:ea:fe:39:ae:51: 8d:b7:3a:10:6d:b8:8b:32:f5:76:31:2b:6c:56:d8:c6:99:fd: 14:98:f1:3e:5d:60:2b:9b:82:74:b5:a6:45:e5:88:91:59:fc: 4c:54:f0:b9:4f:d0:3f:83:30:f0:ee:48:eb:bc:c4:09:b4:2b: c7:2b:5e:08:5a:2d:21:5e:6b:e0:08:63:95:8e:74:a5:8c:2f: ed:87:6a:f6:67:82:12:d1:2d:62:e8:d1:dc:93:2f:f7:18:24: a2:0e:44:e6:50:f4:0f:6a:4c:53:36:13:33:79:e7:9d:eb:df: 28:a6:72:40:fc:7c:64:ae:9d:55:2e:57:9d:c8:4c:ad:e8:19: 89:74:ba:99:d4:5a:fd:8e:b5:6c:ec:c0:9b:d5:3b:9e:a6:28: 1f:bf:9e:bc:ed:67:22:28:14:f3:2b:d5:4e:18:d6:f2:5e:bd: 15:fa:b7:37:7d:0a:2f:19:98:6e:25:45:dd:df:b6:ac:7c:89: 94:f3:c1:e1:94:7e:01:13:97:6d:5c:ca:fd:21:37:01:7c:3a: 5d:29:4d:ab:50:98:88:60:73:92:6b:8f:2c:29:dc:bc:83:63: 5d:7c:6d:a5:0b:a9:06:44:01:63:bc:00:ee:5a:e4:53:9f:f4: fb:31:ac:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE1QkMxMTAvBgNVBAUTKDRDQTg5MDM2N0IxRUE0OUVCQ0Y5NDAyQzg2MjAwRENE NzQ0NkI2QzAwHhcNMjQxMDA1MDMzNzEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYjQ2OC0zZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo865qk3rmqNzYKkM6Kz9wF/1EqHgA4PRU0xNlfmwegMrwTQFIBNU9pXybtSH Fyj9KR1HJ0ywDUWSsIoPgR1P7IQ+Q2ajrjMHoocJ6eDFRL1sOU89ctD+DdJ0KPl4 rGORi0QKBJkZx7qAOUrjd3Ehj5U6KBEVx2HxD2daj76USmjSaTZlzZo/IxcjKK2Y 1lsJUqkOwlkvYQrdjPDooGSdinO9tUkARqwGjDzLKs3aj+yJPn5lkmE5jqbNvF+y zEX+xwfTUFl7Kp4U45SHETJQVaYWGKv29ow+el6PTcvMFSXvOucDKeU95La5puW+ SAqTyKeP/outE1hc2/GacITZ/wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEi6lQkV fu+XCWXJ31cu6VkyxtDsMB8GA1UdIwQYMBaAFEyokDZ7HqSevPlALIYgDc10RrbA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTVCQy8xNjREOTJCMkM0 NzExMUVEQTlDNUNCNjBDNEY5QUUwMi9US2lRTm5zZXBKNjgtVUFzaGlBTnpYUkd0 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLaVFObnNlcEo2OC1VQXNoaUFOelhSR3RzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE1QkMvMTY0RDkyQjJDNDcxMTFFREE5QzVDQjYwQzRGOUFFMDIvQTg3QUFDNTBD NDc3MTFFREEzRUY4ODg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnJzcDBAFnJ1QDBABn0JsDBAKJO8QwDQYJKoZIhvcNAQEL BQADggEBAJCgfuJUiMRceQ7OtO7q/jmuUY23OhBtuIsy9XYxK2xW2MaZ/RSY8T5d YCubgnS1pkXliJFZ/ExU8LlP0D+DMPDuSOu8xAm0K8crXghaLSFea+AIY5WOdKWM L+2HavZnghLRLWLo0dyTL/cYJKIOROZQ9A9qTFM2EzN5553r3yimckD8fGSunVUu V53ITK3oGYl0upnUWv2OtWzswJvVO56mKB+/nrztZyIoFPMr1U4Y1vJevRX6tzd9 Ci8ZmG4lRd3ftqx8iZTzweGUfgETl21cyv0hNwF8Ol0pTatQmIhgc5Jrjywp3LyD Y118baULqQZEAWO8AO5a5FOf9PsxrP8= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org