$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa File: B2119B7464BA11ED8544E91DC4F9AE02.roa (raw, json) Hash identifier: t0f95+tQnYA76e6kYwPJuJ4U/EW5wliE0lA0+E5Vqno= Subject key identifier: 24:52:DF:46:C5:D6:D9:61:9A:B3:D2:51:7B:16:97:1E:D6:A4:0F:AD Certificate issuer: /CN=A91BA239/serialNumber=108450C7EDFB78521B7E4871FE86E8F623A1051B Certificate serial: E6 Authority key identifier: 10:84:50:C7:ED:FB:78:52:1B:7E:48:71:FE:86:E8:F6:23:A1:05:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa Signing time: Fri 19 Jan 2024 04:45:42 +0000 ROA not before: Fri 19 Jan 2024 04:45:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150424 IP address blocks: 103.38.248.0/23 maxlen: 23 103.38.248.0/24 maxlen: 24 103.38.249.0/24 maxlen: 24 2401:1460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.crl rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA239/serialNumber=108450C7EDFB78521B7E4871FE86E8F623A1051B Validity Not Before: Jan 19 04:45:42 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65a9fe75-3409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:9f:fe:c4:e9:be:90:51:bf:a3:54:bb:b0: 72:bb:f1:ed:d5:8f:f7:61:d3:b9:fe:72:60:26:6b: 01:be:84:0b:78:99:24:b9:9d:98:02:56:a8:e7:29: 05:46:de:32:82:8f:44:57:c3:08:00:e2:8b:97:76: 72:45:8a:4c:9c:39:63:1b:2c:01:d8:0d:95:11:fd: 96:40:a8:f9:3f:f6:8e:a6:8f:cd:02:93:f9:11:e3: 28:51:1c:f7:fa:04:69:be:0f:15:e8:35:2d:f7:94: 4e:92:bc:82:bc:f6:07:9f:f8:45:0d:77:b0:26:b9: 1a:b1:70:4e:90:6b:15:fa:a7:eb:17:28:39:3f:6b: 6a:03:1e:8e:87:a7:f6:13:2f:78:1e:6e:0e:a0:2b: 34:8b:b5:e4:89:31:da:df:af:45:ed:ac:8f:74:ba: 1e:9e:a2:77:bd:ec:ef:b6:c0:5f:54:49:7a:40:bb: f0:0b:ed:01:39:76:b5:04:d1:b4:59:74:01:fd:4e: 99:a6:f6:f5:5d:79:1b:8c:3d:9b:75:b6:e7:6e:62: 33:a5:d1:c2:e2:b5:a2:bc:16:f1:fe:32:15:c2:c0: 75:9d:14:62:06:21:ce:d5:58:64:4a:09:f0:5b:fd: e0:c2:a1:71:70:f6:8a:e5:e2:97:c3:12:b3:4b:ac: 1d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:52:DF:46:C5:D6:D9:61:9A:B3:D2:51:7B:16:97:1E:D6:A4:0F:AD X509v3 Authority Key Identifier: keyid:10:84:50:C7:ED:FB:78:52:1B:7E:48:71:FE:86:E8:F6:23:A1:05:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.248.0/23 IPv6: 2401:1460::/32 Signature Algorithm: sha256WithRSAEncryption 52:ce:b7:0c:e2:3d:22:38:49:9d:62:3e:fd:4e:37:14:12:0d: 8b:f3:77:03:19:96:45:6e:da:f0:de:f8:d6:7d:22:fe:4a:b1: c6:3e:38:8e:62:dc:1d:78:f9:5a:e3:fe:66:44:bb:b3:98:72: fd:17:ff:6a:a9:e8:8c:5e:cd:7d:e5:a4:2a:06:2b:88:85:ac: c7:fc:92:d6:03:6b:93:48:8e:26:66:e0:c3:a4:cd:57:6c:45: ca:42:3f:0f:7c:27:d9:72:49:ac:19:c0:ac:85:ed:da:dd:e6: 61:3b:67:60:99:4a:d2:44:23:21:6f:c9:c4:8d:f0:86:52:1e: 43:86:d4:57:30:f2:24:e0:59:46:31:67:6c:ac:9f:3c:99:a6: 51:fb:3c:f8:4e:07:63:86:8a:f1:28:f9:39:4e:1f:33:2b:e5: ee:56:c5:2d:f4:ee:53:b0:2d:3b:c9:d4:0c:f8:b4:e6:6a:d1: 58:7b:d5:81:ee:67:9b:4e:ee:6f:9c:73:e1:7c:e1:91:37:d0: 23:fb:9d:b4:25:07:2f:6e:99:37:62:4a:a4:e2:f9:03:d3:26: 81:fa:45:78:7e:cf:31:45:9e:2c:19:b7:2d:1f:18:51:ea:fb: 34:92:4b:f5:20:73:fb:5c:28:8f:6d:83:79:1d:aa:c1:25:19: 7f:6d:f9:03 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyMzkxMTAvBgNVBAUTKDEwODQ1MEM3RURGQjc4NTIxQjdFNDg3MUZFODZFOEY2 MjNBMTA1MUIwHhcNMjQwMTE5MDQ0NTQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5ZmU3NS0zNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreCf/sTpvpBRv6NUu7Byu/Ht1Y/3YdO5/nJgJmsBvoQLeJkkuZ2YAlao5ykF Rt4ygo9EV8MIAOKLl3ZyRYpMnDljGywB2A2VEf2WQKj5P/aOpo/NApP5EeMoURz3 +gRpvg8V6DUt95ROkryCvPYHn/hFDXewJrkasXBOkGsV+qfrFyg5P2tqAx6Oh6f2 Ey94Hm4OoCs0i7XkiTHa369F7ayPdLoenqJ3vezvtsBfVEl6QLvwC+0BOXa1BNG0 WXQB/U6Zpvb1XXkbjD2bdbbnbmIzpdHC4rWivBbx/jIVwsB1nRRiBiHO1VhkSgnw W/3gwqFxcPaK5eKXwxKzS6wd9QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCRS30bF 1tlhmrPSUXsWlx7WpA+tMB8GA1UdIwQYMBaAFBCEUMft+3hSG35Icf6G6PYjoQUb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTIzOS8xOUFEMEYxMDY0 QjcxMUVEQTA5MThBODNDNEY5QUUwMi9FSVJReC0zN2VGSWJma2h4X29ibzlpT2hC UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VJUlF4LTM3ZUZJYmZraHhfb2JvOWlPaEJScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkEyMzkvMTlBRDBGMTA2NEI3MTFFREEwOTE4QTgzQzRGOUFFMDIvQjIxMTlCNzQ2 NEJBMTFFRDg1NDRFOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnJvgwDQQCAAIwBwMFACQBFGAwDQYJKoZIhvcNAQELBQAD ggEBAFLOtwziPSI4SZ1iPv1ONxQSDYvzdwMZlkVu2vDe+NZ9Iv5KscY+OI5i3B14 +Vrj/mZEu7OYcv0X/2qp6IxezX3lpCoGK4iFrMf8ktYDa5NIjiZm4MOkzVdsRcpC Pw98J9lySawZwKyF7drd5mE7Z2CZStJEIyFvycSN8IZSHkOG1Fcw8iTgWUYxZ2ys nzyZplH7PPhOB2OGivEo+TlOHzMr5e5WxS307lOwLTvJ1Az4tOZq0Vh71YHuZ5tO 7m+cc+F84ZE30CP7nbQlBy9umTdiSqTi+QPTJoH6RXh+zzFFniwZty0fGFHq+zSS S/Ugc/tcKI9tg3kdqsElGX9t+QM= -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:21 2024 by rpki-client on console-fra.rpki-client.org