$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/E96CDD7A614611EE9C2B1380C4F9AE02.roa File: E96CDD7A614611EE9C2B1380C4F9AE02.roa (raw, json) Hash identifier: XdXCF2Xi5uxog6z5KJooofR84p3s7vuCyigfGvk5wSA= Subject key identifier: 3A:68:89:A0:0D:56:1D:01:D8:6D:13:F3:8B:CE:CF:FE:6E:1A:D7:CC Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: A4 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/E96CDD7A614611EE9C2B1380C4F9AE02.roa Signing time: Wed 17 Apr 2024 07:09:28 +0000 ROA not before: Wed 17 Apr 2024 07:09:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 10225 IP address blocks: 103.116.80.0/23 maxlen: 23 103.116.80.0/24 maxlen: 24 103.116.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: Apr 17 07:09:28 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661f75a8-caa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:54:49:1e:11:d9:67:1e:cc:4c:82:ad:28:6e: 27:53:e6:ab:3e:89:de:8f:f7:aa:03:74:1c:d9:d6: 0f:6d:88:55:79:d4:e7:46:92:53:44:d5:c8:8b:b6: 43:62:9a:43:da:91:f6:b6:b8:18:ba:bf:db:1a:0d: 56:40:c5:40:e6:01:7f:5e:88:e8:2c:5e:42:dd:06: c0:3c:65:34:52:52:24:1f:d2:f2:d0:d5:84:4e:74: 52:b8:6b:b4:67:ee:dc:41:ca:d1:d6:9a:30:69:44: 73:a5:90:c0:78:17:fd:c2:ca:d1:33:0e:a5:ff:61: 24:2d:e6:91:b1:0d:c8:1c:77:ae:4d:97:e7:32:25: f7:d2:ba:22:44:26:70:80:88:da:29:de:94:db:5c: 3d:d9:8a:f5:a8:71:93:cd:ad:6e:d4:fc:45:fd:bf: 54:34:ad:c3:50:0f:cd:e5:15:4b:b6:10:9f:9c:fd: eb:7f:c1:87:f2:66:36:9a:cd:9a:fd:e1:52:ff:95: 19:9a:d4:8e:22:04:13:c9:e2:7e:63:08:f3:2b:f8: 10:a3:81:8f:47:3f:e0:f0:a5:d2:be:3c:67:5e:09: 2d:88:2a:82:ce:37:ca:d7:db:ee:c7:9c:01:ee:cf: 02:3b:79:9f:97:28:33:07:87:88:0f:9f:bd:68:ed: 37:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:68:89:A0:0D:56:1D:01:D8:6D:13:F3:8B:CE:CF:FE:6E:1A:D7:CC X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/E96CDD7A614611EE9C2B1380C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.80.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:ea:04:e0:c3:63:be:d3:f3:d7:ea:c7:b2:5c:bd:3b:8a:2d: 2f:56:ac:42:3d:47:69:a9:9a:69:45:92:0a:6b:bd:d4:b1:29: bb:3d:ca:44:9a:bf:bb:bb:53:96:2a:96:4c:18:7f:ac:96:9e: 34:37:41:ba:3a:6f:38:92:b3:8d:f5:fa:f6:70:64:d1:80:c2: 6e:a1:0c:e5:63:73:a4:29:90:ce:42:99:e5:69:6b:1e:6b:e0: dc:e0:d7:41:22:38:bd:ed:88:be:b1:f6:8b:32:51:33:87:98: 9b:89:a7:86:e2:d0:3b:74:cf:ce:cb:5c:9c:a0:91:ea:b5:0e: f3:08:96:f6:98:1f:0d:ed:42:76:aa:ff:d0:33:9b:56:52:6d: f7:e8:bc:d9:dd:cc:53:84:af:89:3c:f0:dc:42:8b:9c:30:4d: 61:97:cd:c1:15:ea:ef:75:b6:d0:7d:74:b3:f5:34:97:76:72: 27:90:7d:b7:c9:89:5d:f5:86:79:03:ae:ff:28:69:51:2f:55: 96:a7:b6:04:f6:6a:10:81:3b:8d:98:86:37:41:5a:09:71:72: d0:cb:36:0f:8b:7e:26:15:09:3a:b7:22:6e:29:43:34:a1:56: c0:f3:7f:eb:ee:fe:b2:85:3c:7e:12:ac:1d:c4:80:ad:67:49: b3:93:71:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjQwNDE3MDcwOTI4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNzVhOC1jYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklRJHhHZZx7MTIKtKG4nU+arPonej/eqA3Qc2dYPbYhVedTnRpJTRNXIi7ZD YppD2pH2trgYur/bGg1WQMVA5gF/XojoLF5C3QbAPGU0UlIkH9Ly0NWETnRSuGu0 Z+7cQcrR1powaURzpZDAeBf9wsrRMw6l/2EkLeaRsQ3IHHeuTZfnMiX30roiRCZw gIjaKd6U21w92Yr1qHGTza1u1PxF/b9UNK3DUA/N5RVLthCfnP3rf8GH8mY2ms2a /eFS/5UZmtSOIgQTyeJ+YwjzK/gQo4GPRz/g8KXSvjxnXgktiCqCzjfK19vux5wB 7s8CO3mflygzB4eID5+9aO03DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDpoiaAN Vh0B2G0T84vOz/5uGtfMMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ4NDQvNzg3Njk0NzQxNjUyMTFFRTkxNEI3QjU2QzRGOUFFMDIvRTk2Q0REN0E2 MTQ2MTFFRTlDMkIxMzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndFAwDQYJKoZIhvcNAQELBQADggEBAF7qBODDY77T89fq x7JcvTuKLS9WrEI9R2mpmmlFkgprvdSxKbs9ykSav7u7U5YqlkwYf6yWnjQ3Qbo6 bziSs431+vZwZNGAwm6hDOVjc6QpkM5CmeVpax5r4Nzg10EiOL3tiL6x9osyUTOH mJuJp4bi0Dt0z87LXJygkeq1DvMIlvaYHw3tQnaq/9Azm1ZSbffovNndzFOEr4k8 8NxCi5wwTWGXzcEV6u91ttB9dLP1NJd2cieQfbfJiV31hnkDrv8oaVEvVZantgT2 ahCBO42YhjdBWglxctDLNg+LfiYVCTq3Im4pQzShVsDzf+vu/rKFPH4SrB3EgK1n SbOTcWM= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org