$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa File: 86550F680B4311EE8ABEE820C4F9AE02.roa (raw, json) Hash identifier: J+kNwKbZA9+MvDuLAMY45SZRzBH7dIz40cdBHlCeLTQ= Subject key identifier: 45:CD:22:23:01:C4:7C:F5:0D:D9:3C:A9:1F:49:E3:59:1F:88:AA:59 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 02DA Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa Signing time: Fri 15 Mar 2024 03:05:24 +0000 ROA not before: Fri 15 Mar 2024 03:05:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140630 IP address blocks: 103.84.44.0/24 maxlen: 24 103.84.45.0/24 maxlen: 24 103.84.46.0/24 maxlen: 24 103.84.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Oct 2024 01:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Mar 15 03:05:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3baf3-9618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c3:11:ac:5f:20:92:0c:cf:95:5e:c3:5f:42: 24:92:e8:98:f8:ed:60:5d:6c:7c:2e:8b:b7:0b:0a: 46:1d:72:ba:d9:0e:6d:07:b4:3e:b4:98:91:2b:9f: ce:d9:70:b2:50:a6:75:0c:52:db:2f:e0:80:90:8c: a2:11:70:c7:52:97:92:33:7e:49:d3:41:9e:f4:2f: c6:5a:84:1a:49:5c:a4:a6:ea:1e:40:dd:88:af:35: 61:60:24:7e:b2:79:5e:26:01:3b:be:3e:51:ad:30: 96:de:08:8f:a6:79:a7:9c:0c:73:ee:64:e6:5c:e1: e4:23:26:79:28:73:cf:20:71:c3:0b:78:1e:a2:21: 53:88:96:56:23:d5:40:1d:20:a3:b5:25:b0:85:ab: 27:1a:cd:fc:00:bb:7a:19:ef:fb:84:be:73:58:4b: 4e:cb:0a:c7:49:9e:61:a1:2f:49:40:d9:09:2e:d3: 51:a1:a4:ec:13:f0:e9:fd:b9:3e:1b:b1:0a:05:5f: f1:54:43:36:b8:27:a0:52:1d:c1:fd:34:a6:64:4a: 0e:b6:d1:6b:da:a1:08:04:33:54:2c:c2:08:6a:eb: 35:0d:a8:c2:89:7e:fa:b9:89:cf:28:40:2c:74:6f: e0:24:3a:71:f1:1c:14:5b:ca:d3:70:56:d3:74:62: 02:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CD:22:23:01:C4:7C:F5:0D:D9:3C:A9:1F:49:E3:59:1F:88:AA:59 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/86550F680B4311EE8ABEE820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.44.0/22 Signature Algorithm: sha256WithRSAEncryption 05:89:b3:90:18:1f:90:ad:e4:ef:96:de:b7:ed:a0:2e:88:71: c6:4b:0d:61:76:59:94:0c:40:63:46:a9:9a:f5:37:d5:d7:80: 65:92:a0:f0:01:d6:1a:2a:73:77:d7:14:0e:b6:cd:e2:0c:b0: 61:bf:c5:a9:f7:03:34:49:f8:d7:83:32:b1:e2:6b:62:0d:55: e0:fc:c8:97:82:35:64:cf:68:cc:30:a9:37:61:9d:0b:0a:c2: 16:f0:b8:54:83:50:b2:61:eb:2f:a4:cc:cf:5a:fb:1b:7f:61: b8:06:f6:80:89:30:b2:11:aa:e9:79:de:85:f7:6f:fd:07:eb: c7:d1:69:ea:d4:fa:0d:11:24:4a:72:da:0d:00:37:f5:51:bd: 68:3b:bd:a3:d2:ad:d3:5c:13:17:ae:72:7d:9c:5d:41:00:84: bf:6d:d3:62:e2:61:39:0c:30:37:8d:74:b0:23:bf:19:ad:32: 9f:92:91:7f:cb:87:19:09:0d:92:f3:d5:7d:02:14:b9:58:63: e6:02:62:a2:9b:d0:8f:0f:06:4e:1b:e7:6b:4c:43:a3:f9:e8: ac:57:c1:e9:37:62:ac:fa:23:7b:10:db:5d:61:b6:42:6a:63: 39:68:c1:2d:b1:5c:17:56:bd:d7:4d:0b:45:1d:2d:04:8f:75: d8:cd:19:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjQwMzE1MDMwNTI0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzYmFmMy05NjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08MRrF8gkgzPlV7DX0IkkuiY+O1gXWx8Lou3CwpGHXK62Q5tB7Q+tJiRK5/O 2XCyUKZ1DFLbL+CAkIyiEXDHUpeSM35J00Ge9C/GWoQaSVykpuoeQN2IrzVhYCR+ snleJgE7vj5RrTCW3giPpnmnnAxz7mTmXOHkIyZ5KHPPIHHDC3geoiFTiJZWI9VA HSCjtSWwhasnGs38ALt6Ge/7hL5zWEtOywrHSZ5hoS9JQNkJLtNRoaTsE/Dp/bk+ G7EKBV/xVEM2uCegUh3B/TSmZEoOttFr2qEIBDNULMIIaus1DajCiX76uYnPKEAs dG/gJDpx8RwUW8rTcFbTdGICUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEXNIiMB xHz1Ddk8qR9J41kfiKpZMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvODY1NTBGNjgw QjQzMTFFRThBQkVFODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnVCwwDQYJKoZIhvcNAQELBQADggEBAAWJs5AYH5Ct5O+W 3rftoC6IccZLDWF2WZQMQGNGqZr1N9XXgGWSoPAB1hoqc3fXFA62zeIMsGG/xan3 AzRJ+NeDMrHia2INVeD8yJeCNWTPaMwwqTdhnQsKwhbwuFSDULJh6y+kzM9a+xt/ YbgG9oCJMLIRqul53oX3b/0H68fRaerU+g0RJEpy2g0AN/VRvWg7vaPSrdNcExeu cn2cXUEAhL9t02LiYTkMMDeNdLAjvxmtMp+SkX/LhxkJDZLz1X0CFLlYY+YCYqKb 0I8PBk4b52tMQ6P56KxXwek3Yqz6I3sQ211htkJqYzlowS2xXBdWvddNC0UdLQSP ddjNGfo= -----END CERTIFICATE-----Generated at Fri Sep 27 03:17:03 2024 by rpki-client on console-fra.rpki-client.org