$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa File: 7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa (raw, json) Hash identifier: oNHAY+RH8azs+WtnEjYSGA9lvHIaeiPbqTK24H6N+nw= Subject key identifier: A2:EF:AD:DB:53:AB:CB:7E:9E:40:98:80:E5:19:12:A4:FC:0E:42:B8 Certificate issuer: /CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Certificate serial: 1520 Authority key identifier: DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa Signing time: Wed 08 May 2024 17:35:46 +0000 ROA not before: Wed 08 May 2024 17:35:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136530 IP address blocks: 103.90.144.0/22 maxlen: 24 2400:f6c0::/32 maxlen: 32 2400:f6c0::/40 maxlen: 40 2400:f6c0:100::/40 maxlen: 40 2400:f6c0:200::/40 maxlen: 40 2400:f6c0:300::/40 maxlen: 40 2400:f6c0:400::/40 maxlen: 40 2400:f6c0:500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5408 (0x1520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2CDA/serialNumber=DA0354FB381F4521C10B163ECBD22A083FB7A26C Validity Not Before: May 8 17:35:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663bb7f2-de0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5d:1c:f5:48:e3:7b:a0:16:23:42:08:da:78: 31:a3:2b:1c:09:fb:69:8a:e3:f9:31:94:94:32:7b: 32:79:6c:4d:4d:15:1d:84:e8:8f:91:97:13:e6:c8: ff:21:21:ae:75:c6:1a:20:79:65:ed:70:9e:64:d1: 61:a4:5d:a3:1d:c6:0b:8a:f3:68:ed:62:c0:61:e8: 8f:f0:55:cc:06:ed:a2:c6:47:4b:b2:b1:b3:15:d5: 19:85:bd:d7:32:47:3e:5c:96:63:d6:0e:da:af:26: 55:77:3b:c4:e1:b2:b2:4f:c8:70:21:06:e6:e8:b5: 77:b4:38:79:31:d0:8c:9e:5e:06:d7:6d:8e:0d:7d: 3f:da:65:99:71:9c:5a:cb:64:96:68:d5:99:a7:33: de:63:9f:e3:e9:72:5d:77:0e:be:75:76:a4:7d:af: 1f:00:60:9d:df:9c:a2:eb:97:98:0c:37:e6:20:b6: 72:b9:92:47:8c:63:13:e4:25:0a:49:93:ce:72:ef: 66:56:e5:76:ae:c5:a3:b6:59:d4:28:c9:cb:ac:85: 8f:d7:39:94:ba:67:a7:5d:b1:2b:fb:1a:28:46:b2: f4:38:a8:f0:97:49:f4:1e:dd:84:f1:f8:14:68:f8: d5:53:bc:af:58:49:65:ee:3b:ee:c4:dd:c4:4e:6d: a1:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:EF:AD:DB:53:AB:CB:7E:9E:40:98:80:E5:19:12:A4:FC:0E:42:B8 X509v3 Authority Key Identifier: keyid:DA:03:54:FB:38:1F:45:21:C1:0B:16:3E:CB:D2:2A:08:3F:B7:A2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/2gNU-zgfRSHBCxY-y9IqCD-3omw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gNU-zgfRSHBCxY-y9IqCD-3omw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2CDA/F4E2BAB825C311E8A0714A34C4F9AE02/7F3ED5DE9C4411ECBD85CE4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.144.0/22 IPv6: 2400:f6c0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:2f:ad:36:25:6e:fd:63:24:76:df:31:6e:e9:74:6d:a7:d4: 66:3f:e6:b9:8a:77:35:2e:a7:44:16:0c:ff:97:ab:73:01:f4: 61:4e:b5:53:97:50:7d:2a:6b:e7:bb:12:54:e7:94:46:c6:f3: 23:d5:bb:fd:f3:5e:f3:5b:76:37:7c:a7:fb:38:f6:a0:6b:62: 5c:ce:9d:57:72:86:b3:1d:1b:68:0c:00:88:6f:ad:ac:75:de: 06:e7:a4:ea:03:68:4c:a3:26:c7:98:df:43:45:c3:ef:b5:11: 30:e9:43:46:90:a1:3f:ac:9e:3c:5e:06:c5:9a:67:d4:d7:32: 78:bb:d0:08:20:79:56:b4:9f:ea:c0:85:4f:94:a9:5e:9f:92: 21:f7:06:a8:f3:72:ba:a1:19:72:5d:0c:a0:b4:8f:53:fd:b4: 43:54:af:8e:0d:f8:6b:ca:ea:6d:b9:f6:4d:49:06:8f:52:5c: 86:37:a7:f2:cf:e6:1c:fa:bd:5a:a4:a5:7a:8d:b9:9d:dd:33: cd:12:40:8d:ff:6d:59:60:12:d1:f3:5e:c5:04:cf:59:35:c1: 37:9b:13:19:f0:e4:2d:7f:be:80:8c:68:72:77:da:d4:83:65: 7c:00:01:61:b2:f1:bc:d6:bc:f8:33:7e:4d:b4:96:39:bd:a0: bf:02:4d:cd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDREExMTAvBgNVBAUTKERBMDM1NEZCMzgxRjQ1MjFDMTBCMTYzRUNCRDIyQTA4 M0ZCN0EyNkMwHhcNMjQwNTA4MTczNTQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiYjdmMi1kZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1F0c9Ujje6AWI0II2ngxoyscCftpiuP5MZSUMnsyeWxNTRUdhOiPkZcT5sj/ ISGudcYaIHll7XCeZNFhpF2jHcYLivNo7WLAYeiP8FXMBu2ixkdLsrGzFdUZhb3X Mkc+XJZj1g7aryZVdzvE4bKyT8hwIQbm6LV3tDh5MdCMnl4G122ODX0/2mWZcZxa y2SWaNWZpzPeY5/j6XJddw6+dXakfa8fAGCd35yi65eYDDfmILZyuZJHjGMT5CUK SZPOcu9mVuV2rsWjtlnUKMnLrIWP1zmUumenXbEr+xooRrL0OKjwl0n0Ht2E8fgU aPjVU7yvWEll7jvuxN3ETm2hjwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKLvrdtT q8t+nkCYgOUZEqT8DkK4MB8GA1UdIwQYMBaAFNoDVPs4H0UhwQsWPsvSKgg/t6Js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkNEQS9GNEUyQkFCODI1 QzMxMUU4QTA3MTRBMzRDNEY5QUUwMi8yZ05VLXpnZlJTSEJDeFkteTlJcUNELTNv bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnTlUtemdmUlNIQkN4WS15OUlxQ0QtM29tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJDREEvRjRFMkJBQjgyNUMzMTFFOEEwNzE0QTM0QzRGOUFFMDIvN0YzRUQ1REU5 QzQ0MTFFQ0JEODVDRTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnWpAwDQQCAAIwBwMFACQA9sAwDQYJKoZIhvcNAQELBQAD ggEBACovrTYlbv1jJHbfMW7pdG2n1GY/5rmKdzUup0QWDP+Xq3MB9GFOtVOXUH0q a+e7ElTnlEbG8yPVu/3zXvNbdjd8p/s49qBrYlzOnVdyhrMdG2gMAIhvrax13gbn pOoDaEyjJseY30NFw++1ETDpQ0aQoT+snjxeBsWaZ9TXMni70AggeVa0n+rAhU+U qV6fkiH3BqjzcrqhGXJdDKC0j1P9tENUr44N+GvK6m259k1JBo9SXIY3p/LP5hz6 vVqkpXqNuZ3dM80SQI3/bVlgEtHzXsUEz1k1wTebExnw5C1/voCMaHJ32tSDZXwA AWGy8bzWvPgzfk20ljm9oL8CTc0= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org