$ rpki-client -vvf rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa File: 58C8DF8E1D3711ED9E2D8867C4F9AE02.roa (raw, json) Hash identifier: IwjuKCD97eJEKGGmOQ5Nag3muStG8Nve98elP/V9zzQ= Subject key identifier: 18:3D:2A:4C:C1:0E:3E:53:27:E4:07:56:4E:22:28:2E:11:D1:74:F7 Certificate issuer: /CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB Certificate serial: 012B Authority key identifier: F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa Signing time: Wed 27 Sep 2023 03:44:18 +0000 ROA not before: Wed 27 Sep 2023 03:44:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 142618 IP address blocks: 103.111.38.0/24 maxlen: 24 103.111.39.0/24 maxlen: 24 2001:df1:1a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB Validity Not Before: Sep 27 03:44:18 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6513a512-53c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4f:85:07:ed:de:49:51:d1:bb:54:dc:35:69: 7f:40:a1:34:7d:0e:17:52:69:11:c6:ac:ae:48:ad: 08:7c:a1:cd:ab:db:d8:2e:16:8c:27:5b:6a:c1:ca: b9:08:be:0e:27:4e:1e:1a:34:09:33:c0:5b:f2:ee: b9:8c:b8:8e:0f:fb:3d:04:5f:2f:a7:7b:18:41:0b: c9:fa:6c:e4:85:ca:ee:97:87:31:11:c1:eb:43:a6: 2d:57:a9:b6:9f:2b:cc:8b:29:6d:c2:f4:c2:27:3c: 89:d3:c3:67:af:b6:51:49:77:93:56:7c:cc:d5:69: 92:10:e4:00:7b:ee:a5:eb:17:e4:2e:b1:06:25:65: 9e:b7:bd:5b:a3:3f:17:f0:4e:86:fc:b1:db:af:72: 86:ab:9f:15:e8:aa:33:0b:3b:a1:09:de:26:b6:48: 69:d3:2d:42:94:c1:45:7c:52:05:37:de:b9:ef:f1: 52:21:2b:46:68:63:5a:65:44:37:d3:d8:a9:50:3f: 23:3c:c1:bd:5e:f4:41:ea:c3:8a:c0:ca:c5:4a:63: f9:bc:2f:3d:4f:35:fd:fd:24:75:40:9c:41:dc:45: 17:34:bd:c3:50:0b:1a:33:67:15:d1:ee:54:53:7e: dd:cf:ee:ea:ed:9d:ea:d1:dd:46:3f:82:48:7f:ba: 3c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3D:2A:4C:C1:0E:3E:53:27:E4:07:56:4E:22:28:2E:11:D1:74:F7 X509v3 Authority Key Identifier: keyid:F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.38.0/23 IPv6: 2001:df1:1a40::/48 Signature Algorithm: sha256WithRSAEncryption a3:76:d8:da:04:20:37:7c:4d:13:93:5b:9a:2d:3c:e6:a7:87: 88:ab:5b:63:51:7f:78:9d:ce:47:e4:7c:3b:44:bb:d7:c5:52: 6f:ef:4c:3b:7a:84:89:f8:c9:68:85:d6:8b:5c:f2:72:80:c6: 9e:78:07:90:29:d3:8e:e3:da:0f:68:c3:d2:07:fd:c4:83:4c: 93:b5:ae:ae:db:a9:d7:66:8b:40:04:c6:a8:a2:cf:8a:11:71: 30:6c:4f:c1:eb:77:f7:18:8c:a2:3e:76:0f:22:0b:ea:86:4d: 3b:6b:5c:d5:22:6e:e0:50:ed:3a:85:59:94:2f:fb:a2:e7:ad: 12:de:9a:92:18:31:64:9b:9c:a2:bc:9a:d0:00:e5:2d:25:bd: ef:62:df:85:fd:11:e9:a2:ed:ef:cf:89:88:c3:e3:4e:2d:bd: c7:30:1a:54:e7:37:8d:96:8f:63:95:25:46:dc:53:a9:7f:63: 62:f5:c7:b1:49:ee:f6:02:bc:6c:a5:9e:0b:ee:eb:c8:89:20: 12:ad:3b:a1:be:56:bc:36:d0:14:e9:96:bf:18:32:b5:c1:77: bf:87:91:af:da:d0:17:2c:93:b3:f1:0c:0b:fc:96:d3:c3:27: e7:11:f9:53:d8:c6:5b:a0:40:20:d8:96:0b:8f:be:74:36:5a: ee:48:2e:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA1QUQxMTAvBgNVBAUTKEY1MTJBRDY2M0E2MzMyNjM1NUNBOEQ4RTkxMDBCM0NF QUIzQ0I5RkIwHhcNMjMwOTI3MDM0NDE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzYTUxMi01M2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsU+FB+3eSVHRu1TcNWl/QKE0fQ4XUmkRxqyuSK0IfKHNq9vYLhaMJ1tqwcq5 CL4OJ04eGjQJM8Bb8u65jLiOD/s9BF8vp3sYQQvJ+mzkhcrul4cxEcHrQ6YtV6m2 nyvMiyltwvTCJzyJ08Nnr7ZRSXeTVnzM1WmSEOQAe+6l6xfkLrEGJWWet71boz8X 8E6G/LHbr3KGq58V6KozCzuhCd4mtkhp0y1ClMFFfFIFN9657/FSIStGaGNaZUQ3 09ipUD8jPMG9XvRB6sOKwMrFSmP5vC89TzX9/SR1QJxB3EUXNL3DUAsaM2cV0e5U U37dz+7q7Z3q0d1GP4JIf7o8RwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBg9KkzB Dj5TJ+QHVk4iKC4R0XT3MB8GA1UdIwQYMBaAFPUSrWY6YzJjVcqNjpEAs86rPLn7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDVBRC85NUJFM0JENjFE MzMxMUVEOTZBMTBBNjBDNEY5QUUwMi85Ukt0Wmpwak1tTlZ5bzJPa1FDenpxczh1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSS3RaanBqTW1OVnlvMk9rUUN6enFzOHVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA1QUQvOTVCRTNCRDYxRDMzMTFFRDk2QTEwQTYwQzRGOUFFMDIvNThDOERGOEUx RDM3MTFFRDlFMkQ4ODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnbyYwDwQCAAIwCQMHACABDfEaQDANBgkqhkiG9w0BAQsF AAOCAQEAo3bY2gQgN3xNE5Nbmi085qeHiKtbY1F/eJ3OR+R8O0S718VSb+9MO3qE ifjJaIXWi1zycoDGnngHkCnTjuPaD2jD0gf9xINMk7Wurtup12aLQATGqKLPihFx MGxPwet39xiMoj52DyIL6oZNO2tc1SJu4FDtOoVZlC/7ouetEt6akhgxZJucorya 0ADlLSW972Lfhf0R6aLt78+JiMPjTi29xzAaVOc3jZaPY5UlRtxTqX9jYvXHsUnu 9gK8bKWeC+7ryIkgEq07ob5WvDbQFOmWvxgytcF3v4eRr9rQFyyTs/EMC/yW08Mn 5xH5U9jGW6BAINiWC4++dDZa7kguEg== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:26 2024 by rpki-client on console-ams.rpki-client.org