$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/15FB452EE46E11EABA2FD316C4F9AE02.roa File: 15FB452EE46E11EABA2FD316C4F9AE02.roa (raw, json) Hash identifier: AXlGmtPAr/+ZjGZEvsdIuhh3ValXH523UgvEJrH07C4= Subject key identifier: D8:35:AB:A6:DC:7B:4D:BB:5B:37:08:3E:DB:CE:62:68:1A:57:6E:69 Certificate issuer: /CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Certificate serial: 0B51 Authority key identifier: DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/15FB452EE46E11EABA2FD316C4F9AE02.roa Signing time: Thu 28 Mar 2024 19:58:22 +0000 ROA not before: Thu 28 Mar 2024 19:58:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135346 IP address blocks: 103.109.212.0/22 maxlen: 22 103.109.212.0/24 maxlen: 24 103.109.213.0/24 maxlen: 24 103.109.214.0/24 maxlen: 24 103.109.215.0/24 maxlen: 24 2402:7e40::/32 maxlen: 32 2402:7e40:212::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9E0E/serialNumber=DACA636996E819AA1F951DC66FF29AD0979C05C8 Validity Not Before: Mar 28 19:58:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605cbde-ad52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4e:7a:aa:aa:79:a7:d2:fb:31:9f:6f:c1:99: 15:5e:a1:84:96:db:fe:5e:4b:28:0e:2e:59:04:59: ba:fa:8b:90:65:f9:c6:8b:d8:1c:9b:46:50:89:97: ee:90:fb:16:cf:1e:b0:28:d2:f8:32:5c:9f:36:b0: 65:ef:ed:87:5d:28:20:c9:75:20:c2:c5:43:20:bd: 03:c4:81:da:aa:b2:24:6a:61:9c:13:b9:be:a0:9a: b7:9f:5f:c1:b7:ae:89:d8:f2:da:de:83:29:a5:a2: 2a:45:67:65:9d:eb:99:0f:c5:21:fd:dc:0d:2d:1c: b2:48:a3:f4:0a:28:48:5e:5a:f8:79:19:3e:86:87: 9a:35:9c:7b:09:34:dc:5c:ff:c8:0e:44:0e:35:1f: ea:de:b6:bb:fc:c5:c7:23:09:50:a4:69:7b:c7:e7: c8:36:af:99:6f:b0:6a:df:20:be:21:92:4b:a1:87: c7:97:fc:58:c0:4e:0f:26:90:17:b8:29:42:f3:0e: 84:1c:c4:8d:b0:f2:d4:ab:46:a7:06:b2:bd:88:f0: 62:f1:76:78:38:6d:92:9e:04:3a:bd:8b:64:26:73: 30:53:12:cf:4f:e2:b0:5b:da:64:36:14:48:cd:38: d2:fa:9c:74:e6:c1:aa:31:87:8c:d5:4c:38:93:31: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:35:AB:A6:DC:7B:4D:BB:5B:37:08:3E:DB:CE:62:68:1A:57:6E:69 X509v3 Authority Key Identifier: keyid:DA:CA:63:69:96:E8:19:AA:1F:95:1D:C6:6F:F2:9A:D0:97:9C:05:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/2spjaZboGaoflR3Gb_Ka0JecBcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2spjaZboGaoflR3Gb_Ka0JecBcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9E0E/472C392210EE11EA9852957FC4F9AE02/15FB452EE46E11EABA2FD316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.212.0/22 IPv6: 2402:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 07:ac:7a:b3:61:df:6f:af:19:5f:ae:b9:86:58:25:ec:f0:2b: a0:a8:0e:b6:24:ac:97:33:be:5b:5d:ab:22:84:6c:d0:3b:a6: 82:36:6c:d8:7c:52:86:ab:60:2c:aa:ed:37:60:ea:45:29:8a: 7f:0f:a1:b5:08:8f:30:43:31:9f:40:88:a3:ba:6e:d5:78:d4: 33:cd:00:c8:5e:5e:29:d2:14:ed:20:cf:d5:36:e5:a2:a5:e6: 0b:91:d3:50:4c:a3:c5:41:e0:25:b3:be:a8:e1:55:31:00:35: 42:2e:30:ab:3d:37:2e:28:a1:07:43:5c:50:43:d1:b1:c0:32: 4b:ce:68:8e:74:de:b0:2c:6a:dc:2a:e4:07:b9:67:20:b9:e4: 54:5a:be:14:d3:9a:e3:85:05:6b:ad:81:a1:07:7a:d9:66:d1: 2d:12:b5:22:3f:33:f7:78:30:6c:c1:d5:d2:7f:1f:42:c3:48: f0:26:c7:1c:cd:b2:0f:63:4f:c7:70:93:45:1f:c9:08:62:45: f9:2c:36:35:25:74:71:2b:d7:6f:f8:35:aa:52:28:2b:ef:8f: 70:e4:86:bb:fa:cc:be:1c:38:95:61:d8:68:27:f5:16:62:e8: 02:76:59:9b:a2:1d:25:94:14:74:a1:d3:bd:f5:27:ca:13:61: 4f:c2:ff:4f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFMEUxMTAvBgNVBAUTKERBQ0E2MzY5OTZFODE5QUExRjk1MURDNjZGRjI5QUQw OTc5QzA1QzgwHhcNMjQwMzI4MTk1ODIyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1Y2JkZS1hZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU56qqp5p9L7MZ9vwZkVXqGEltv+XksoDi5ZBFm6+ouQZfnGi9gcm0ZQiZfu kPsWzx6wKNL4MlyfNrBl7+2HXSggyXUgwsVDIL0DxIHaqrIkamGcE7m+oJq3n1/B t66J2PLa3oMppaIqRWdlneuZD8Uh/dwNLRyySKP0CihIXlr4eRk+hoeaNZx7CTTc XP/IDkQONR/q3ra7/MXHIwlQpGl7x+fINq+Zb7Bq3yC+IZJLoYfHl/xYwE4PJpAX uClC8w6EHMSNsPLUq0anBrK9iPBi8XZ4OG2SngQ6vYtkJnMwUxLPT+KwW9pkNhRI zTjS+px05sGqMYeM1Uw4kzEmoQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNg1q6bc e027WzcIPtvOYmgaV25pMB8GA1UdIwQYMBaAFNrKY2mW6BmqH5Udxm/ymtCXnAXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUUwRS80NzJDMzkyMjEw RUUxMUVBOTg1Mjk1N0ZDNEY5QUUwMi8yc3BqYVpib0dhb2ZsUjNHYl9LYTBKZWNC Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJzcGphWmJvR2FvZmxSM0diX0thMEplY0JjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlFMEUvNDcyQzM5MjIxMEVFMTFFQTk4NTI5NTdGQzRGOUFFMDIvMTVGQjQ1MkVF NDZFMTFFQUJBMkZEMzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbdQwDQQCAAIwBwMFACQCfkAwDQYJKoZIhvcNAQELBQAD ggEBAAeserNh32+vGV+uuYZYJezwK6CoDrYkrJczvltdqyKEbNA7poI2bNh8Uoar YCyq7Tdg6kUpin8PobUIjzBDMZ9AiKO6btV41DPNAMheXinSFO0gz9U25aKl5guR 01BMo8VB4CWzvqjhVTEANUIuMKs9Ny4ooQdDXFBD0bHAMkvOaI503rAsatwq5Ae5 ZyC55FRavhTTmuOFBWutgaEHetlm0S0StSI/M/d4MGzB1dJ/H0LDSPAmxxzNsg9j T8dwk0UfyQhiRfksNjUldHEr12/4NapSKCvvj3Dkhrv6zL4cOJVh2Ggn9RZi6AJ2 WZuiHSWUFHSh0731J8oTYU/C/08= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org