$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/1A982CC85A7C11E9A28B110DC4F9AE02.roa File: 1A982CC85A7C11E9A28B110DC4F9AE02.roa (raw, json) Hash identifier: rA4hkIUyghNJGhY6y7qlDGe8Bvu+DeS8X5hf3GA24oo= Subject key identifier: 6B:5E:E1:FD:ED:C9:DE:49:AB:7B:92:C4:A4:E9:3B:76:83:44:23:1E Certificate issuer: /CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Certificate serial: 25AE Authority key identifier: B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/1A982CC85A7C11E9A28B110DC4F9AE02.roa Signing time: Tue 24 Sep 2024 15:52:59 +0000 ROA not before: Tue 24 Sep 2024 15:52:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132032 IP address blocks: 103.5.24.0/22 maxlen: 22 103.5.24.0/24 maxlen: 24 103.5.25.0/24 maxlen: 24 103.5.26.0/24 maxlen: 24 103.5.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9646 (0x25ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Validity Not Before: Sep 24 15:52:59 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2e05b-8efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:c8:7c:95:85:69:20:65:e9:f0:b5:e0:15: 0e:89:f8:80:ca:f3:fc:6c:18:73:b3:54:77:3f:3d: 59:bd:29:8f:ac:d5:d2:14:3f:26:7e:d4:87:f7:1e: d9:97:d7:3c:e3:0a:69:0a:61:a0:14:6e:c2:09:29: 13:0b:f8:39:2b:f4:44:a5:ca:ec:57:ce:ee:eb:bc: f6:dd:ba:64:cd:c8:79:48:71:13:2a:2a:a5:a7:35: fc:35:26:09:0d:6f:b4:cb:82:29:23:f4:fb:fd:70: cc:0b:6b:20:e5:77:a1:66:bf:34:b3:df:d6:db:26: 60:1b:45:81:d0:c1:24:9c:f0:4a:6e:29:ae:ca:17: 97:42:72:eb:35:0b:9c:66:d2:90:33:0a:a9:d1:62: 77:cc:d7:46:ba:45:60:2b:bb:fa:8b:e3:34:2d:6d: 7f:db:14:eb:42:0f:58:e9:9f:04:10:7b:c2:3f:94: 25:9f:76:b5:58:c7:c3:fe:c8:6f:98:0d:74:12:e7: f3:42:cb:05:08:30:ed:91:66:c7:2b:d6:78:ec:3f: ea:70:48:f3:8c:4b:47:54:36:30:53:9b:01:e6:be: fb:67:31:18:4c:7c:ce:0d:8a:a0:7e:ae:eb:fd:f5: 8c:8a:43:49:18:fa:ee:26:de:0c:fa:3c:8d:d9:be: 01:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:5E:E1:FD:ED:C9:DE:49:AB:7B:92:C4:A4:E9:3B:76:83:44:23:1E X509v3 Authority Key Identifier: keyid:B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/1A982CC85A7C11E9A28B110DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.24.0/22 Signature Algorithm: sha256WithRSAEncryption a9:69:a6:ef:66:f2:3c:fa:6c:cb:53:b2:7f:c1:7b:1b:78:1e: 0d:7f:91:d2:73:6f:c7:2e:18:1b:db:85:be:80:ac:fd:0a:b6: bc:8d:44:18:95:f4:c6:55:fb:13:82:4a:81:42:83:6d:20:98: 6d:eb:23:1f:d3:8e:be:87:a9:94:4b:c5:13:d7:ad:25:25:92: f5:64:da:87:14:80:b7:65:5d:50:54:be:73:58:5e:a4:00:87: 59:30:2d:f0:02:ad:88:80:cd:4f:a0:1d:56:f6:fc:17:06:55: 7f:c5:f6:54:f0:e8:6a:45:13:e6:e3:ec:27:9b:2a:6a:fd:66: 98:19:e9:9c:65:a5:75:b9:98:21:1b:c2:25:05:b4:26:ee:a1: c3:b7:97:fd:04:26:e1:88:f9:10:7e:a9:7c:cf:96:d5:fa:a0: 1e:fa:ed:36:bc:06:54:48:aa:d6:7f:98:cd:2c:f5:10:ab:78: 4e:51:5b:67:30:2e:a9:1c:74:6d:0a:7a:f9:56:21:c6:e1:ae: b4:1d:ed:2f:fe:a0:71:a1:98:e2:a9:ef:e5:7b:2f:8d:6f:71: f8:48:1a:85:51:f1:0f:26:34:a5:29:68:f9:07:1d:da:58:19: be:24:e4:f3:8e:43:a1:0e:05:46:6a:87:97:80:fb:63:6e:95: 84:49:24:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMzYxMTAvBgNVBAUTKEI3QjczRTg5QjYyMTA4MTYwOUNENjg5QUIwQUVGN0ZB RjE0ODkyNkMwHhcNMjQwOTI0MTU1MjU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZTA1Yi04ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlTIfJWFaSBl6fC14BUOifiAyvP8bBhzs1R3Pz1ZvSmPrNXSFD8mftSH9x7Z l9c84wppCmGgFG7CCSkTC/g5K/REpcrsV87u67z23bpkzch5SHETKiqlpzX8NSYJ DW+0y4IpI/T7/XDMC2sg5XehZr80s9/W2yZgG0WB0MEknPBKbimuyheXQnLrNQuc ZtKQMwqp0WJ3zNdGukVgK7v6i+M0LW1/2xTrQg9Y6Z8EEHvCP5Qln3a1WMfD/shv mA10EufzQssFCDDtkWbHK9Z47D/qcEjzjEtHVDYwU5sB5r77ZzEYTHzODYqgfq7r /fWMikNJGPruJt4M+jyN2b4BRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGte4f3t yd5Jq3uSxKTpO3aDRCMeMB8GA1UdIwQYMBaAFLe3Pom2IQgWCc1omrCu9/rxSJJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEzNi9DRjMyODFDODIx NUIxMUU1QTdCRjg5MEVDNEY5QUUwMi90N2MtaWJZaENCWUp6V2lhc0s3My12Rklr bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q3Yy1pYlloQ0JZSnpXaWFzSzczLXZGSWttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMzYvQ0YzMjgxQzgyMTVCMTFFNUE3QkY4OTBFQzRGOUFFMDIvMUE5ODJDQzg1 QTdDMTFFOUEyOEIxMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBRgwDQYJKoZIhvcNAQELBQADggEBAKlppu9m8jz6bMtT sn/Bext4Hg1/kdJzb8cuGBvbhb6ArP0KtryNRBiV9MZV+xOCSoFCg20gmG3rIx/T jr6HqZRLxRPXrSUlkvVk2ocUgLdlXVBUvnNYXqQAh1kwLfACrYiAzU+gHVb2/BcG VX/F9lTw6GpFE+bj7CebKmr9ZpgZ6ZxlpXW5mCEbwiUFtCbuocO3l/0EJuGI+RB+ qXzPltX6oB767Ta8BlRIqtZ/mM0s9RCreE5RW2cwLqkcdG0KevlWIcbhrrQd7S/+ oHGhmOKp7+V7L41vcfhIGoVR8Q8mNKUpaPkHHdpYGb4k5POOQ6EOBUZqh5eA+2Nu lYRJJAs= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:51 2024 by rpki-client on console-fra.rpki-client.org