$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa File: 90F09734F1B311EDA789BB57C4F9AE02.roa (raw, json) Hash identifier: 12wpcAe05HtenMlOH90kdV4i4OluuZbyZiMI0pKZkoI= Subject key identifier: 27:91:D3:EE:1A:7B:92:D2:C1:27:58:B2:7D:BC:B0:61:39:73:DB:F7 Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: D3 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa Signing time: Mon 17 Jun 2024 07:15:40 +0000 ROA not before: Mon 17 Jun 2024 07:15:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151215 IP address blocks: 103.161.8.0/23 maxlen: 24 2001:df2:67c0::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: Jun 17 07:15:40 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666fe29c-3a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:9b:ed:96:cf:cd:ed:fc:ef:35:48:7a:66: 71:bb:d4:d9:6a:d2:5b:22:5a:4a:42:44:f9:0e:31: ad:08:fd:5b:1c:ed:6e:3a:7f:fa:85:f4:03:f8:24: e6:b9:c2:85:c3:6b:29:4f:7b:f9:ce:55:f1:8f:ef: 07:34:6d:db:50:c2:fe:9c:0f:c3:3f:74:34:d2:03: c0:42:60:9e:27:a8:ce:f0:aa:f4:87:88:2a:c5:34: d4:c7:24:bd:e6:01:6d:a3:f1:55:60:1c:f7:6d:cd: e1:02:83:5b:59:cb:03:0e:15:bf:5a:f3:a8:cd:fb: 80:d7:bb:4f:8e:3c:b1:b8:29:c2:e9:95:f4:c3:ad: f0:e4:6e:4c:e8:83:55:c8:19:89:da:4f:51:26:21: 7f:12:63:37:32:06:be:11:25:96:14:0e:15:bc:e3: b0:53:b9:02:95:ac:48:a7:9b:e1:b1:81:7d:54:8b: da:4a:10:55:07:8f:70:99:ad:60:bb:8b:d2:ab:42: 86:db:18:ad:f5:16:d3:e1:49:d5:1f:cb:e0:fa:b5: 60:ee:31:67:84:fa:fb:87:24:19:1d:69:a1:bb:73: 89:13:0e:58:05:a3:71:c2:61:0c:78:49:40:ee:86: 01:90:93:f5:d5:e4:b3:a4:59:a0:7c:55:cf:0f:a2: ea:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:91:D3:EE:1A:7B:92:D2:C1:27:58:B2:7D:BC:B0:61:39:73:DB:F7 X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.8.0/23 IPv6: 2001:df2:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 1a:25:21:f5:49:e9:ff:97:cf:23:20:75:3b:c9:21:48:15:36: 0c:25:ed:58:aa:17:d4:0e:95:6e:84:ce:4a:2c:99:1c:41:c7: cb:4a:10:d9:ae:f9:cd:a9:4c:89:a4:fe:dc:6b:21:45:c1:2f: cd:12:09:e5:d5:4f:32:b1:2b:0e:e3:54:e2:5d:77:d6:97:89: 12:4c:a2:65:7e:0e:0e:b7:a8:bf:a3:40:8c:9e:95:04:01:20: 70:9d:28:cd:d9:bb:17:5f:69:2a:97:e8:db:8a:cb:22:32:c6: 6b:d5:ca:ae:a1:9f:12:6a:56:8b:b5:79:56:41:6e:17:7f:77: 1b:00:14:74:da:33:a5:d5:8f:a4:db:7d:90:4a:72:6d:02:fe: d1:56:f6:26:f5:6c:11:11:60:c7:f6:3a:cc:18:b3:0a:71:ef: de:48:7d:85:c5:ca:db:e7:b1:c0:45:03:78:a8:aa:10:d4:19: bf:a6:9f:6a:7a:83:dd:fb:49:68:9f:5a:57:2f:63:d3:04:b6: 3e:dd:9b:4f:82:5e:03:3f:cd:e3:e1:e4:f0:a4:f3:b1:4e:36: 52:3e:04:d8:d0:9f:87:c1:29:ef:4f:7c:ba:51:ed:d2:0c:ad: 8c:09:ce:ee:76:22:db:1a:5d:d7:fa:7a:3c:e3:7e:ca:e3:6a: c6:00:b6:20 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFMTUxMTAvBgNVBAUTKDk1MzUxQTE5MjdBOEYxMEVCQUQxQ0UzQzZDNEE1QUM0 NjUxNUNBNzAwHhcNMjQwNjE3MDcxNTQwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmZTI5Yy0zYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KKb7ZbPze387zVIemZxu9TZatJbIlpKQkT5DjGtCP1bHO1uOn/6hfQD+CTm ucKFw2spT3v5zlXxj+8HNG3bUML+nA/DP3Q00gPAQmCeJ6jO8Kr0h4gqxTTUxyS9 5gFto/FVYBz3bc3hAoNbWcsDDhW/WvOozfuA17tPjjyxuCnC6ZX0w63w5G5M6INV yBmJ2k9RJiF/EmM3Mga+ESWWFA4VvOOwU7kClaxIp5vhsYF9VIvaShBVB49wma1g u4vSq0KG2xit9RbT4UnVH8vg+rVg7jFnhPr7hyQZHWmhu3OJEw5YBaNxwmEMeElA 7oYBkJP11eSzpFmgfFXPD6Lq/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCeR0+4a e5LSwSdYsn28sGE5c9v3MB8GA1UdIwQYMBaAFJU1GhknqPEOutHOPGxKWsRlFcpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEUxNS81RERCNDQ0MEYx QUMxMUVEQTNEMUI3NEZDNEY5QUUwMi9sVFVhR1NlbzhRNjYwYzQ4YkVwYXhHVVZ5 bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnluQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDRFMTUvNUREQjQ0NDBGMUFDMTFFREEzRDFCNzRGQzRGOUFFMDIvOTBGMDk3MzRG MUIzMTFFREE3ODlCQjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoQgwDwQCAAIwCQMHACABDfJnwDANBgkqhkiG9w0BAQsF AAOCAQEAGiUh9Unp/5fPIyB1O8khSBU2DCXtWKoX1A6VboTOSiyZHEHHy0oQ2a75 zalMiaT+3GshRcEvzRIJ5dVPMrErDuNU4l131peJEkyiZX4ODreov6NAjJ6VBAEg cJ0ozdm7F19pKpfo24rLIjLGa9XKrqGfEmpWi7V5VkFuF393GwAUdNozpdWPpNt9 kEpybQL+0Vb2JvVsERFgx/Y6zBizCnHv3kh9hcXK2+exwEUDeKiqENQZv6afanqD 3ftJaJ9aVy9j0wS2Pt2bT4JeAz/N4+Hk8KTzsU42Uj4E2NCfh8Ep7098ulHt0gyt jAnO7nYi2xpd1/p6PON+yuNqxgC2IA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:58 2024 by rpki-client on console-fra.rpki-client.org