$ rpki-client -vvf rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa File: 58C8DF8E1D3711ED9E2D8867C4F9AE02.roa (raw, json) Hash identifier: FSYr699megaB2rJpIagzzWfYpNq6JBYAS+eCRbgyO2c= Subject key identifier: 61:97:BA:28:B6:ED:CA:6B:72:21:AC:08:E9:3D:4F:98:97:F1:01:B8 Certificate issuer: /CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB Certificate serial: 01E0 Authority key identifier: F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa Signing time: Fri 13 Sep 2024 05:47:53 +0000 ROA not before: Fri 13 Sep 2024 05:47:53 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142618 IP address blocks: 103.111.38.0/24 maxlen: 24 103.111.39.0/24 maxlen: 24 2001:df1:1a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C05AD/serialNumber=F512AD663A63326355CA8D8E9100B3CEAB3CB9FB Validity Not Before: Sep 13 05:47:53 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e3d209-b523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:03:ec:fd:e1:7f:f5:45:ce:da:09:3b:1a:e5: c9:59:c0:11:ee:92:6e:51:2b:a1:b5:26:ec:13:b1: 95:07:d1:93:56:76:be:e4:0e:47:39:ea:4f:f6:b4: 8d:22:1c:64:d0:f6:aa:1b:09:cb:87:c5:17:f5:11: 12:3d:45:66:c4:9e:07:8d:ea:9b:65:5a:02:e3:ef: ca:00:fa:35:73:44:7a:cf:03:f2:84:ff:bf:3f:a3: 00:56:b0:52:92:a8:f1:07:b3:94:7f:86:d0:71:02: 4b:07:8f:4c:cf:af:6c:4d:fd:28:75:22:11:a2:66: d4:43:75:fd:58:76:3c:90:bb:8f:10:b7:c2:c8:e3: b5:cb:b2:47:ad:bb:f2:ec:99:77:89:9e:86:82:49: b8:84:09:2d:e8:0b:2c:70:ec:d5:ea:91:a3:cf:06: 5c:51:b1:61:e7:36:ec:57:31:fb:5c:34:43:37:38: 45:84:5c:67:e4:57:07:52:40:8a:62:54:ba:1e:9f: 00:bd:a5:fb:be:d1:71:f1:b2:b1:08:9d:8d:81:4d: a7:49:57:31:90:ed:2d:90:89:14:4b:46:ff:e4:49: ba:18:da:2f:88:9a:3f:73:4a:c6:49:69:e3:35:b0: db:23:41:b7:c8:da:a0:6a:e5:5f:91:43:bb:25:42: cb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:97:BA:28:B6:ED:CA:6B:72:21:AC:08:E9:3D:4F:98:97:F1:01:B8 X509v3 Authority Key Identifier: keyid:F5:12:AD:66:3A:63:32:63:55:CA:8D:8E:91:00:B3:CE:AB:3C:B9:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/9RKtZjpjMmNVyo2OkQCzzqs8ufs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9RKtZjpjMmNVyo2OkQCzzqs8ufs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C05AD/95BE3BD61D3311ED96A10A60C4F9AE02/58C8DF8E1D3711ED9E2D8867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.38.0/23 IPv6: 2001:df1:1a40::/48 Signature Algorithm: sha256WithRSAEncryption 68:81:32:4e:06:dc:8f:f7:35:5e:23:15:53:d7:7c:d0:8a:81: 77:59:82:de:46:56:db:bc:ce:39:88:8a:f5:5a:fe:98:f7:ec: 2b:30:b1:84:24:10:ce:2b:75:80:50:13:19:f5:7d:5c:7c:ff: d1:68:ad:5a:0f:30:23:ca:ed:19:49:2d:67:46:f9:9b:07:4c: 84:94:0b:e1:c2:57:70:9a:01:8d:92:c9:88:59:d4:9c:94:5e: 4e:a6:d5:f1:97:1e:29:13:70:39:22:19:e6:4d:31:b2:bc:5f: 68:b6:8a:82:90:30:85:d1:58:1e:48:ab:c1:51:4f:78:53:3d: 45:ce:16:3f:9e:c4:64:1b:60:7c:09:27:23:85:57:13:11:a6: 46:93:ad:5c:59:63:61:00:65:df:8f:bc:b1:8e:2a:2f:84:97: 85:9e:1f:7a:1c:9d:42:31:a7:29:40:63:ec:29:22:05:ee:9c: a8:7d:1e:90:30:0c:15:b0:76:a2:8f:3c:f8:d6:c5:20:b9:a0: 5a:18:1d:5d:a0:9c:f3:65:79:80:92:97:a3:85:22:34:31:a3: 6a:b6:c8:ea:a5:ad:e7:b1:51:04:ef:2f:3e:c7:e5:7f:8d:28: b7:1a:92:b9:ae:4a:ce:41:18:8b:c5:1d:2d:39:d8:82:4f:b2: a3:6b:dd:68 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA1QUQxMTAvBgNVBAUTKEY1MTJBRDY2M0E2MzMyNjM1NUNBOEQ4RTkxMDBCM0NF QUIzQ0I5RkIwHhcNMjQwOTEzMDU0NzUzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzZDIwOS1iNTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2APs/eF/9UXO2gk7GuXJWcAR7pJuUSuhtSbsE7GVB9GTVna+5A5HOepP9rSN Ihxk0PaqGwnLh8UX9RESPUVmxJ4HjeqbZVoC4+/KAPo1c0R6zwPyhP+/P6MAVrBS kqjxB7OUf4bQcQJLB49Mz69sTf0odSIRombUQ3X9WHY8kLuPELfCyOO1y7JHrbvy 7Jl3iZ6Ggkm4hAkt6AsscOzV6pGjzwZcUbFh5zbsVzH7XDRDNzhFhFxn5FcHUkCK YlS6Hp8AvaX7vtFx8bKxCJ2NgU2nSVcxkO0tkIkUS0b/5Em6GNoviJo/c0rGSWnj NbDbI0G3yNqgauVfkUO7JULLVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGGXuii2 7cprciGsCOk9T5iX8QG4MB8GA1UdIwQYMBaAFPUSrWY6YzJjVcqNjpEAs86rPLn7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDVBRC85NUJFM0JENjFE MzMxMUVEOTZBMTBBNjBDNEY5QUUwMi85Ukt0Wmpwak1tTlZ5bzJPa1FDenpxczh1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSS3RaanBqTW1OVnlvMk9rUUN6enFzOHVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzA1QUQvOTVCRTNCRDYxRDMzMTFFRDk2QTEwQTYwQzRGOUFFMDIvNThDOERGOEUx RDM3MTFFRDlFMkQ4ODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnbyYwDwQCAAIwCQMHACABDfEaQDANBgkqhkiG9w0BAQsF AAOCAQEAaIEyTgbcj/c1XiMVU9d80IqBd1mC3kZW27zOOYiK9Vr+mPfsKzCxhCQQ zit1gFATGfV9XHz/0WitWg8wI8rtGUktZ0b5mwdMhJQL4cJXcJoBjZLJiFnUnJRe TqbV8ZceKRNwOSIZ5k0xsrxfaLaKgpAwhdFYHkirwVFPeFM9Rc4WP57EZBtgfAkn I4VXExGmRpOtXFljYQBl34+8sY4qL4SXhZ4fehydQjGnKUBj7CkiBe6cqH0ekDAM FbB2oo88+NbFILmgWhgdXaCc82V5gJKXo4UiNDGjarbI6qWt57FRBO8vPsflf40o txqSua5KzkEYi8UdLTnYgk+yo2vdaA== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org