$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/81A9AA2A30A011EC9613A82FC4F9AE02.roa File: 81A9AA2A30A011EC9613A82FC4F9AE02.roa (raw, json) Hash identifier: sdwmDbTL9d6N7lKxS/YB/i6htv88Z1LDyZ9CwaUF42o= Subject key identifier: 51:6F:B4:58:42:55:18:DA:49:68:D8:2C:07:05:66:5D:65:F7:DD:05 Certificate issuer: /CN=A91A6204/serialNumber=1F6FBA3FBF7C4E751080D6743E2FCE00D294DB41 Certificate serial: 0481 Authority key identifier: 1F:6F:BA:3F:BF:7C:4E:75:10:80:D6:74:3E:2F:CE:00:D2:94:DB:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2-6P798TnUQgNZ0Pi_OANKU20E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/81A9AA2A30A011EC9613A82FC4F9AE02.roa Signing time: Fri 13 Sep 2024 10:41:03 +0000 ROA not before: Fri 13 Sep 2024 10:41:03 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139484 IP address blocks: 103.172.104.0/23 maxlen: 23 103.172.104.0/24 maxlen: 24 103.172.105.0/24 maxlen: 24 2001:df7:6d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/H2-6P798TnUQgNZ0Pi_OANKU20E.crl rsync://rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/H2-6P798TnUQgNZ0Pi_OANKU20E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2-6P798TnUQgNZ0Pi_OANKU20E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6204/serialNumber=1F6FBA3FBF7C4E751080D6743E2FCE00D294DB41 Validity Not Before: Sep 13 10:41:03 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e416be-2082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:bb:5a:b2:d2:33:96:4f:9e:2f:9a:04:9d: 50:3f:72:27:99:6a:b4:3c:37:ab:f2:67:51:a3:ae: 8b:7b:76:b4:14:58:67:25:a6:93:08:68:56:6e:c3: ed:88:f4:b3:f3:32:f8:0b:9c:92:09:72:86:6f:35: fd:92:34:c5:b0:1a:02:07:54:61:e7:16:f5:1c:1c: 69:9e:74:2b:0c:11:a0:81:b6:5a:b3:0e:2c:3a:b6: be:b0:13:15:60:93:9f:80:63:d8:2f:11:c7:29:25: e3:4a:b8:6f:7c:63:18:fa:26:37:8e:4d:77:37:cc: 5f:9a:2b:40:55:1a:2b:9e:22:a6:a8:9e:8a:3e:90: 7f:dc:7f:07:1f:73:80:a5:07:5d:f6:ed:c7:c6:ea: ad:49:a8:74:0b:07:61:17:31:e4:25:a2:79:81:f8: 08:51:49:d4:8f:ba:45:c8:78:6b:5b:eb:f2:38:ac: 94:7d:5f:74:60:24:5d:87:d9:09:4f:04:c5:69:91: 96:70:04:56:b3:53:0c:f1:a2:48:84:dc:2a:bf:88: be:ca:0b:e6:9c:fb:12:a1:0c:43:97:59:8b:55:d4: f6:e3:e2:0e:04:1b:66:ef:bd:7e:04:ed:ff:0b:39: dc:3e:c7:b5:b3:23:d8:9c:45:25:5e:ca:97:0a:20: 7d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6F:B4:58:42:55:18:DA:49:68:D8:2C:07:05:66:5D:65:F7:DD:05 X509v3 Authority Key Identifier: keyid:1F:6F:BA:3F:BF:7C:4E:75:10:80:D6:74:3E:2F:CE:00:D2:94:DB:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/H2-6P798TnUQgNZ0Pi_OANKU20E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2-6P798TnUQgNZ0Pi_OANKU20E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6204/830A3A28120611ECAECED477C4F9AE02/81A9AA2A30A011EC9613A82FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.104.0/23 IPv6: 2001:df7:6d80::/48 Signature Algorithm: sha256WithRSAEncryption bc:4e:f2:bb:80:55:ab:4c:d8:4c:d1:d7:70:cf:1c:fe:b4:9d: 99:72:51:fd:c7:51:8b:60:bd:bc:80:50:dc:94:69:b6:7e:39: 4e:de:fd:f7:81:13:c8:a9:9e:bd:c9:a7:bf:f5:74:61:70:d2: c1:f0:52:eb:28:a3:f4:d5:a0:f1:6a:2a:2f:6c:d1:8e:77:73: d0:2d:75:56:66:10:9c:a5:21:ee:51:a4:d0:56:29:f5:0c:71: 87:39:dd:4f:6e:20:66:70:3f:39:98:e0:74:2a:76:01:64:fd: fc:d9:4f:d5:e1:32:b7:9c:73:cc:a7:3f:5e:b1:5d:d1:d8:ee: 31:42:27:24:d1:7f:0c:67:31:a8:d1:e7:88:f9:73:9d:63:fd: d3:63:59:e6:e3:fe:fc:71:f0:dc:78:87:bc:a8:af:7b:5a:79: d7:89:62:31:3b:19:9e:59:f7:34:78:da:9f:ad:9d:a0:e8:8a: 9f:6d:d0:6c:86:80:fb:f1:ce:e8:7d:2e:ec:8e:e0:e5:0e:50: e6:54:31:0a:92:32:19:6a:8d:b1:10:07:09:b6:95:ae:3a:4c: 24:46:2a:6b:20:30:bc:38:ac:95:cd:23:9f:b1:1a:b4:aa:a7: 8c:49:5e:f6:0b:ee:68:43:e3:32:f9:2a:33:e1:21:f2:dd:a0: 71:a1:7d:4e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYyMDQxMTAvBgNVBAUTKDFGNkZCQTNGQkY3QzRFNzUxMDgwRDY3NDNFMkZDRTAw RDI5NERCNDEwHhcNMjQwOTEzMTA0MTAzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU0MTZiZS0yMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0q7WrLSM5ZPni+aBJ1QP3InmWq0PDer8mdRo66Le3a0FFhnJaaTCGhWbsPt iPSz8zL4C5ySCXKGbzX9kjTFsBoCB1Rh5xb1HBxpnnQrDBGggbZasw4sOra+sBMV YJOfgGPYLxHHKSXjSrhvfGMY+iY3jk13N8xfmitAVRorniKmqJ6KPpB/3H8HH3OA pQdd9u3HxuqtSah0CwdhFzHkJaJ5gfgIUUnUj7pFyHhrW+vyOKyUfV90YCRdh9kJ TwTFaZGWcARWs1MM8aJIhNwqv4i+ygvmnPsSoQxDl1mLVdT24+IOBBtm771+BO3/ CzncPse1syPYnEUlXsqXCiB92wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFFvtFhC VRjaSWjYLAcFZl1l990FMB8GA1UdIwQYMBaAFB9vuj+/fE51EIDWdD4vzgDSlNtB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjIwNC84MzBBM0EyODEy MDYxMUVDQUVDRUQ0NzdDNEY5QUUwMi9IMi02UDc5OFRuVVFnTlowUGlfT0FOS1Uy MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyLTZQNzk4VG5VUWdOWjBQaV9PQU5LVTIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYyMDQvODMwQTNBMjgxMjA2MTFFQ0FFQ0VENDc3QzRGOUFFMDIvODFBOUFBMkEz MEEwMTFFQzk2MTNBODJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrGgwDwQCAAIwCQMHACABDfdtgDANBgkqhkiG9w0BAQsF AAOCAQEAvE7yu4BVq0zYTNHXcM8c/rSdmXJR/cdRi2C9vIBQ3JRptn45Tt7994ET yKmevcmnv/V0YXDSwfBS6yij9NWg8WoqL2zRjndz0C11VmYQnKUh7lGk0FYp9Qxx hzndT24gZnA/OZjgdCp2AWT9/NlP1eEyt5xzzKc/XrFd0djuMUInJNF/DGcxqNHn iPlznWP902NZ5uP+/HHw3HiHvKive1p514liMTsZnln3NHjan62doOiKn23QbIaA +/HO6H0u7I7g5Q5Q5lQxCpIyGWqNsRAHCbaVrjpMJEYqayAwvDislc0jn7EatKqn jEle9gvuaEPjMvkqM+Eh8t2gcaF9Tg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org