$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/5A387584756311EEA256FD57C4F9AE02.roa File: 5A387584756311EEA256FD57C4F9AE02.roa (raw, json) Hash identifier: UFjrfeuvHWS1oxtfXr6IVRfPvTnGzzV9TdVJHu2o8cI= Subject key identifier: 92:38:0A:84:79:28:73:93:2B:76:14:39:7A:17:73:85:0C:D7:54:87 Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: CA Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/5A387584756311EEA256FD57C4F9AE02.roa Signing time: Thu 21 Nov 2024 04:07:58 +0000 ROA not before: Thu 21 Nov 2024 04:07:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147056 IP address blocks: 103.173.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Nov 21 04:07:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673eb21e-b566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:33:df:85:b5:b2:c1:80:6c:32:2c:08:d0:d2: e9:e7:7d:e0:e7:7b:7d:7c:d5:96:12:f4:fc:0c:a5: 6a:40:1b:e8:da:6e:18:f5:c6:5f:00:f7:24:0b:e5: 0d:77:b4:ca:c4:c8:2e:f2:81:63:a1:8b:8a:a7:53: 4d:c4:bd:f3:9a:c3:b2:bc:a9:0e:0f:df:dc:23:19: f0:43:6b:dc:b5:81:7e:ab:32:54:ab:d0:cb:2c:be: 82:6c:f7:17:01:cc:ae:c0:d1:38:d1:72:52:2c:c9: 17:e1:36:92:5b:40:a2:22:63:f0:6c:2a:18:99:9f: e9:2f:a7:e2:88:0c:90:4f:c6:23:b5:4f:e9:e3:f0: 10:7c:b8:e4:0d:bd:db:61:df:59:d7:83:e7:76:a0: 98:95:a0:35:33:bb:70:3a:e3:1f:a9:53:c4:28:64: f5:c2:fd:82:1d:e1:76:01:27:3b:dd:db:f3:d8:36: 5c:71:83:71:14:03:83:19:f3:55:13:2d:05:bf:7f: d1:e7:5a:6a:2e:5a:ab:e7:de:64:f2:ee:68:3f:e0: e3:11:1c:df:c5:05:2a:61:5a:bf:58:78:72:0e:91: eb:c9:d1:34:db:46:d9:58:84:61:a3:1c:5b:19:fc: 28:52:42:ce:e3:61:bc:a6:be:d7:06:f3:10:f9:87: 4a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:38:0A:84:79:28:73:93:2B:76:14:39:7A:17:73:85:0C:D7:54:87 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/5A387584756311EEA256FD57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.187.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:04:38:4b:ed:ba:16:6b:41:00:98:cf:8e:1d:56:7d:62:2d: 66:00:27:f1:83:5d:e6:70:21:5c:f2:65:e4:5d:16:bb:b6:a4: eb:d5:37:f9:29:d5:82:a4:c6:e0:f3:da:da:fb:18:8b:21:e4: 7b:25:b4:85:b0:94:97:ce:ab:3c:e7:fb:37:13:6e:05:63:40: ce:7f:60:f0:05:ef:fd:ea:d9:ac:4e:40:47:21:50:df:63:6d: d6:12:f4:a1:80:77:24:72:b0:18:d3:53:41:56:ba:4c:04:c6: eb:5c:82:56:d0:27:a1:d8:b1:6a:b3:3f:0a:a1:68:44:25:ef: 3a:ec:eb:04:96:f1:9b:97:13:69:d4:90:4a:d1:6c:00:6d:19: 40:f3:d7:a7:af:3c:3f:a4:1d:21:10:58:70:b7:23:4f:7f:21: ea:76:eb:42:61:0f:f5:a3:32:3b:ca:89:63:de:72:22:77:6e: 91:fa:18:6d:b6:e5:7c:1f:9c:14:a6:ee:2d:39:f4:3d:7e:8a: d6:fb:c1:e8:07:6d:ca:3d:ac:f1:66:e7:51:97:43:8a:1c:de: 90:be:db:11:ec:9b:ed:4b:33:03:9d:38:7c:07:b8:aa:84:7b: 70:ec:32:74:b1:ad:7c:c6:91:94:83:46:ed:a9:86:cb:ef:0a: b0:91:1d:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjQxMTIxMDQwNzU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlYjIxZS1iNTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DPfhbWywYBsMiwI0NLp533g53t9fNWWEvT8DKVqQBvo2m4Y9cZfAPckC+UN d7TKxMgu8oFjoYuKp1NNxL3zmsOyvKkOD9/cIxnwQ2vctYF+qzJUq9DLLL6CbPcX AcyuwNE40XJSLMkX4TaSW0CiImPwbCoYmZ/pL6fiiAyQT8YjtU/p4/AQfLjkDb3b Yd9Z14PndqCYlaA1M7twOuMfqVPEKGT1wv2CHeF2ASc73dvz2DZccYNxFAODGfNV Ey0Fv3/R51pqLlqr595k8u5oP+DjERzfxQUqYVq/WHhyDpHrydE020bZWIRhoxxb GfwoUkLO42G8pr7XBvMQ+YdKNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJI4CoR5 KHOTK3YUOXoXc4UM11SHMB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI5MjEvRERCOEUxNEM3NTYyMTFFRUJCODI1MjU3QzRGOUFFMDIvNUEzODc1ODQ3 NTYzMTFFRUEyNTZGRDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrbswDQYJKoZIhvcNAQELBQADggEBAD0EOEvtuhZrQQCY z44dVn1iLWYAJ/GDXeZwIVzyZeRdFru2pOvVN/kp1YKkxuDz2tr7GIsh5HsltIWw lJfOqzzn+zcTbgVjQM5/YPAF7/3q2axOQEchUN9jbdYS9KGAdyRysBjTU0FWukwE xutcglbQJ6HYsWqzPwqhaEQl7zrs6wSW8ZuXE2nUkErRbABtGUDz16evPD+kHSEQ WHC3I09/Iep260JhD/WjMjvKiWPeciJ3bpH6GG225XwfnBSm7i059D1+itb7wegH bco9rPFm51GXQ4oc3pC+2xHsm+1LMwOdOHwHuKqEe3DsMnSxrXzGkZSDRu2phsvv CrCRHfY= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org