$ rpki-client -vvf rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa File: 72D9F434AD2411E98D9E935AC4F9AE02.roa (raw, json) Hash identifier: zKxP5VFtHCRy0JiVu3mKaiT0ToLV7OxR+IDhqx/RqV0= Subject key identifier: 31:56:3D:6B:CF:6F:73:9D:E7:58:6B:E9:AD:23:0E:16:50:58:E6:22 Certificate issuer: /CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Certificate serial: 0D0B Authority key identifier: 24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa Signing time: Sat 06 Jan 2024 18:36:33 +0000 ROA not before: Sat 06 Jan 2024 18:36:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137404 IP address blocks: 103.107.80.0/22 maxlen: 22 103.107.80.0/24 maxlen: 24 103.107.81.0/24 maxlen: 24 103.107.82.0/24 maxlen: 24 103.107.83.0/24 maxlen: 24 2402:4f40::/32 maxlen: 32 2402:4f40:1000::/36 maxlen: 36 2402:4f40:2000::/36 maxlen: 36 2402:4f40:3000::/36 maxlen: 36 2402:4f40:4000::/36 maxlen: 36 2402:4f40:5000::/36 maxlen: 36 2402:4f40:6000::/36 maxlen: 36 2402:4f40:7000::/36 maxlen: 36 2402:4f40:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3339 (0xd0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523C5/serialNumber=243D92437CE230503E548EFD293C2A6381B5C426 Validity Not Before: Jan 6 18:36:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65999db1-8a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:44:aa:95:46:8b:55:34:f4:ad:9c:55:ee:72: a3:86:cd:de:85:04:de:6d:b6:8b:64:8c:12:74:a5: 19:cb:8e:87:e7:c3:60:18:7a:66:66:ba:a4:a8:27: f6:5e:07:f9:b2:0f:66:e6:d2:99:ab:ba:6d:10:f9: 9f:20:24:32:35:4f:ba:14:e4:1e:1f:75:c5:72:c6: 91:af:4b:f9:08:41:c9:2e:33:12:d0:79:e3:3b:f8: 15:7f:65:8a:ee:ae:dd:13:6f:00:05:24:1f:c1:cf: 77:63:a8:9f:12:70:d0:7a:e6:6d:26:cb:59:39:0e: 59:87:1f:8e:47:91:5c:e1:56:93:cc:62:f6:4d:27: 38:e8:89:31:7f:23:de:53:f6:72:ee:38:76:2a:a1: db:94:07:e8:4e:fe:de:79:9b:80:fb:db:c8:da:9d: 15:cc:b0:70:35:b5:db:03:23:1e:ec:c3:ff:15:cf: e2:1b:66:2c:7a:4e:5b:4f:05:e1:82:58:21:99:1c: 4e:f6:5e:35:4d:0f:85:69:5f:c8:54:95:2e:4c:e8: 05:77:3d:ef:ec:5b:aa:61:8b:31:14:fb:4d:7a:f8: 71:6e:f8:99:6f:c1:39:f2:3a:09:26:92:e9:5e:3c: db:82:81:41:d8:45:37:10:06:fb:fa:87:7d:70:e7: 2c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:56:3D:6B:CF:6F:73:9D:E7:58:6B:E9:AD:23:0E:16:50:58:E6:22 X509v3 Authority Key Identifier: keyid:24:3D:92:43:7C:E2:30:50:3E:54:8E:FD:29:3C:2A:63:81:B5:C4:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/JD2SQ3ziMFA-VI79KTwqY4G1xCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JD2SQ3ziMFA-VI79KTwqY4G1xCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523C5/0366D7AEACE111E9BFA56423C4F9AE02/72D9F434AD2411E98D9E935AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.80.0/22 IPv6: 2402:4f40::/32 Signature Algorithm: sha256WithRSAEncryption 42:da:2d:ab:a0:46:f4:96:a8:31:51:af:0a:da:1d:2a:d8:0b: f3:60:87:07:d2:9d:77:17:36:75:ff:bb:2f:4f:ce:6c:85:a0: e1:65:35:2d:89:23:38:9d:d4:04:54:78:fe:7d:dc:ba:d8:ad: ad:b9:18:ba:49:24:64:51:fb:87:f3:7f:05:a4:3a:ea:7d:9c: e8:e3:39:a2:0c:8a:b7:f0:67:a3:1e:f0:22:31:f6:b9:f2:c7: 55:38:6a:ea:28:0f:68:9c:0c:ac:e9:49:70:31:ec:ad:22:38: 4d:51:66:df:bb:50:39:ef:0f:08:60:00:7d:a4:78:76:51:ab: d1:a9:a4:da:0e:c3:b7:58:7b:d4:33:fa:a0:4b:68:13:e8:8d: 87:53:40:e5:7c:97:6b:af:c2:9d:ba:af:5a:4c:b8:d8:16:a6: 25:0c:68:bd:29:7d:3c:37:b9:aa:f0:d9:8c:d2:dd:f5:bb:a5: c1:e6:d5:ba:6d:52:58:20:71:58:0d:a3:35:1b:90:16:62:f2: 70:b7:1a:eb:a2:00:c8:b8:ed:5c:7a:25:75:24:6e:63:e7:32: e6:23:9b:19:1b:ab:9c:3f:45:8f:49:91:13:90:d1:bd:d3:09: 7a:8c:e1:2f:60:fb:8f:1f:6a:fb:52:8f:96:68:92:df:fe:f2: 28:5d:26:68 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzQzUxMTAvBgNVBAUTKDI0M0Q5MjQzN0NFMjMwNTAzRTU0OEVGRDI5M0MyQTYz ODFCNUM0MjYwHhcNMjQwMTA2MTgzNjMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk5OWRiMS04YTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqESqlUaLVTT0rZxV7nKjhs3ehQTebbaLZIwSdKUZy46H58NgGHpmZrqkqCf2 Xgf5sg9m5tKZq7ptEPmfICQyNU+6FOQeH3XFcsaRr0v5CEHJLjMS0HnjO/gVf2WK 7q7dE28ABSQfwc93Y6ifEnDQeuZtJstZOQ5Zhx+OR5Fc4VaTzGL2TSc46IkxfyPe U/Zy7jh2KqHblAfoTv7eeZuA+9vI2p0VzLBwNbXbAyMe7MP/Fc/iG2Ysek5bTwXh glghmRxO9l41TQ+FaV/IVJUuTOgFdz3v7FuqYYsxFPtNevhxbviZb8E58joJJpLp XjzbgoFB2EU3EAb7+od9cOcswwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDFWPWvP b3Od51hr6a0jDhZQWOYiMB8GA1UdIwQYMBaAFCQ9kkN84jBQPlSO/Sk8KmOBtcQm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjNDNS8wMzY2RDdBRUFD RTExMUU5QkZBNTY0MjNDNEY5QUUwMi9KRDJTUTN6aU1GQS1WSTc5S1R3cVk0RzF4 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pEMlNRM3ppTUZBLVZJNzlLVHdxWTRHMXhDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTIzQzUvMDM2NkQ3QUVBQ0UxMTFFOUJGQTU2NDIzQzRGOUFFMDIvNzJEOUY0MzRB RDI0MTFFOThEOUU5MzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJna1AwDQQCAAIwBwMFACQCT0AwDQYJKoZIhvcNAQELBQAD ggEBAELaLaugRvSWqDFRrwraHSrYC/NghwfSnXcXNnX/uy9PzmyFoOFlNS2JIzid 1ARUeP593LrYra25GLpJJGRR+4fzfwWkOup9nOjjOaIMirfwZ6Me8CIx9rnyx1U4 auooD2icDKzpSXAx7K0iOE1RZt+7UDnvDwhgAH2keHZRq9GppNoOw7dYe9Qz+qBL aBPojYdTQOV8l2uvwp26r1pMuNgWpiUMaL0pfTw3uarw2YzS3fW7pcHm1bptUlgg cVgNozUbkBZi8nC3GuuiAMi47Vx6JXUkbmPnMuYjmxkbq5w/RY9JkROQ0b3TCXqM 4S9g+48favtSj5Zokt/+8ihdJmg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org