$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/059261A8BC5111EABE07AE32C4F9AE02.roa File: 059261A8BC5111EABE07AE32C4F9AE02.roa (raw, json) Hash identifier: cybKavsK+KygtFzdLH5ZiH4HxzktrVv6nGmG8yvNLOo= Subject key identifier: 7A:39:EC:AC:C7:9F:1F:5E:8A:CF:E0:CD:0A:A2:25:22:9E:2E:FC:DE Certificate issuer: /CN=A91C4F1B/serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Certificate serial: 080F Authority key identifier: 7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/059261A8BC5111EABE07AE32C4F9AE02.roa Signing time: Sun 18 Aug 2024 21:18:59 +0000 ROA not before: Sun 18 Aug 2024 21:18:59 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140879 IP address blocks: 103.152.218.0/23 maxlen: 23 103.152.218.0/24 maxlen: 24 103.152.219.0/24 maxlen: 24 2400:8ca0::/32 maxlen: 32 2400:8ca0::/48 maxlen: 48 2400:8ca0:1::/48 maxlen: 48 2400:8ca0:2::/48 maxlen: 48 2400:8ca0:3::/48 maxlen: 48 2400:8ca0:4::/48 maxlen: 48 2400:8ca0:5::/48 maxlen: 48 2400:8ca0:6::/48 maxlen: 48 2400:8ca0:7::/48 maxlen: 48 2400:8ca0:8::/48 maxlen: 48 2400:8ca0:9::/48 maxlen: 48 2400:8ca0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F1B/serialNumber=7B99F8D6B9413CE2A296EB1C7D7EFE6D47D0CBA4 Validity Not Before: Aug 18 21:18:59 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c26543-f201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:13:f6:43:f9:8f:29:53:3f:4d:1c:16:69:72: 00:02:7a:a1:2a:a6:be:10:61:5e:c2:33:34:f0:f9: 7f:8a:5a:7d:11:95:71:2a:06:29:3e:15:dc:a5:c0: f5:53:8d:7c:5f:da:4f:8a:7e:bd:f3:44:47:43:a7: c9:65:ba:25:c9:0e:ff:68:94:a6:ba:f9:89:e5:da: a9:32:c8:e8:01:22:4f:51:f5:89:b6:8d:f8:33:75: db:5f:a3:ec:df:7d:25:dc:08:cd:2c:5c:97:12:cc: 01:f6:2c:3b:5e:8c:56:ca:87:bb:68:d1:09:f7:b9: 08:9e:e6:1e:33:2c:65:a6:c6:0e:8d:fc:70:2c:51: 2f:35:57:55:42:86:88:fa:f8:cd:0f:79:25:46:e1: 20:c4:4f:c5:93:c1:2a:0e:8e:0f:5b:44:ea:27:2c: 80:d1:71:ee:5e:30:31:70:bf:e1:b6:0e:cf:d1:98: aa:cb:5d:a8:16:77:a3:53:ab:50:ee:7f:e5:34:30: 0a:ba:cc:ce:ef:9e:2c:37:03:3d:37:3c:ea:5f:3d: 1a:75:23:19:f8:8d:d0:5d:cf:26:4f:d9:e0:de:06: 68:48:bf:3c:ef:1d:c7:29:49:13:73:64:5f:23:d7: a8:df:03:bf:b3:1a:68:ff:f5:fe:fe:82:19:fe:c6: ff:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:39:EC:AC:C7:9F:1F:5E:8A:CF:E0:CD:0A:A2:25:22:9E:2E:FC:DE X509v3 Authority Key Identifier: keyid:7B:99:F8:D6:B9:41:3C:E2:A2:96:EB:1C:7D:7E:FE:6D:47:D0:CB:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/e5n41rlBPOKiluscfX7-bUfQy6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5n41rlBPOKiluscfX7-bUfQy6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F1B/23F30550BC4F11EABA8C962FC4F9AE02/059261A8BC5111EABE07AE32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.218.0/23 IPv6: 2400:8ca0::/32 Signature Algorithm: sha256WithRSAEncryption 23:27:00:34:f0:f5:9d:2d:ac:06:8d:08:bf:a4:e0:3c:80:07: 5c:f4:15:52:6f:8e:74:99:53:7b:54:9f:58:12:2e:b4:4e:55: 61:66:39:61:5a:0a:84:41:70:b5:e6:b1:1a:2e:35:37:03:3f: e0:c7:7d:91:d7:e8:bc:ac:68:89:8a:5f:36:8a:ff:9c:7a:8d: 47:12:e8:ab:14:c8:71:41:f3:dd:ac:28:ba:e9:94:40:90:03: a4:40:28:71:04:16:34:21:4a:98:54:9b:5f:8f:31:9d:5c:a5: dc:bf:10:04:1a:ca:d4:82:98:55:c5:24:6d:5a:55:88:55:5e: 1a:f2:7d:c2:64:8d:69:47:e4:7d:c1:96:b0:1f:1f:5a:bc:21: b3:25:07:4e:8d:30:4e:5f:2e:cd:a8:b6:1e:97:9c:9c:06:e6: 76:e7:4b:76:09:68:7f:29:f9:89:dc:0b:92:84:01:c0:cb:d2: 53:e2:87:fd:a3:db:6c:df:6b:2c:25:f6:b3:47:21:7c:17:ab: 24:45:a8:0b:a4:1f:25:ae:92:8f:c1:3e:cb:76:cf:82:f5:67: 40:8c:cb:ce:ca:df:1c:d8:c9:5f:d4:3c:27:ce:0c:7b:93:20: 0f:e4:2e:74:58:39:e4:aa:55:6d:1c:15:92:25:4d:9c:4b:d7: 4a:ad:69:07 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMUIxMTAvBgNVBAUTKDdCOTlGOEQ2Qjk0MTNDRTJBMjk2RUIxQzdEN0VGRTZE NDdEMENCQTQwHhcNMjQwODE4MjExODU5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyNjU0My1mMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hP2Q/mPKVM/TRwWaXIAAnqhKqa+EGFewjM08Pl/ilp9EZVxKgYpPhXcpcD1 U418X9pPin6980RHQ6fJZbolyQ7/aJSmuvmJ5dqpMsjoASJPUfWJto34M3XbX6Ps 330l3AjNLFyXEswB9iw7XoxWyoe7aNEJ97kInuYeMyxlpsYOjfxwLFEvNVdVQoaI +vjND3klRuEgxE/Fk8EqDo4PW0TqJyyA0XHuXjAxcL/htg7P0Ziqy12oFnejU6tQ 7n/lNDAKuszO754sNwM9NzzqXz0adSMZ+I3QXc8mT9ng3gZoSL887x3HKUkTc2Rf I9eo3wO/sxpo//X+/oIZ/sb/6wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHo57KzH nx9eis/gzQqiJSKeLvzeMB8GA1UdIwQYMBaAFHuZ+Na5QTziopbrHH1+/m1H0Muk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYxQi8yM0YzMDU1MEJD NEYxMUVBQkE4Qzk2MkZDNEY5QUUwMi9lNW40MXJsQlBPS2lsdXNjZlg3LWJVZlF5 NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U1bjQxcmxCUE9LaWx1c2NmWDctYlVmUXk2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMUIvMjNGMzA1NTBCQzRGMTFFQUJBOEM5NjJGQzRGOUFFMDIvMDU5MjYxQThC QzUxMTFFQUJFMDdBRTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmNowDQQCAAIwBwMFACQAjKAwDQYJKoZIhvcNAQELBQAD ggEBACMnADTw9Z0trAaNCL+k4DyAB1z0FVJvjnSZU3tUn1gSLrROVWFmOWFaCoRB cLXmsRouNTcDP+DHfZHX6LysaImKXzaK/5x6jUcS6KsUyHFB892sKLrplECQA6RA KHEEFjQhSphUm1+PMZ1cpdy/EAQaytSCmFXFJG1aVYhVXhryfcJkjWlH5H3BlrAf H1q8IbMlB06NME5fLs2oth6XnJwG5nbnS3YJaH8p+YncC5KEAcDL0lPih/2j22zf aywl9rNHIXwXqyRFqAukHyWuko/BPst2z4L1Z0CMy87K3xzYyV/UPCfODHuTIA/k LnRYOeSqVW0cFZIlTZxL10qtaQc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org