$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/98DB93A4301011EEA92BE919C4F9AE02.roa File: 98DB93A4301011EEA92BE919C4F9AE02.roa (raw, json) Hash identifier: U86j7UjADgM2E45QTk1FhQ37u/QVFr1IVoMXiU/NlC8= Subject key identifier: AE:E4:9D:87:0D:72:44:35:3D:37:3C:F5:9E:C1:55:4B:13:83:1C:35 Certificate issuer: /CN=A91D5BDA/serialNumber=D8AF07D43A9B8BBB81D60E4C177EA818EC8B73E5 Certificate serial: 85 Authority key identifier: D8:AF:07:D4:3A:9B:8B:BB:81:D6:0E:4C:17:7E:A8:18:EC:8B:73:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/98DB93A4301011EEA92BE919C4F9AE02.roa Signing time: Wed 03 Apr 2024 07:38:48 +0000 ROA not before: Wed 03 Apr 2024 07:38:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58907 IP address blocks: 43.230.108.0/22 maxlen: 22 43.230.108.0/24 maxlen: 24 43.230.109.0/24 maxlen: 24 43.230.110.0/24 maxlen: 24 43.230.111.0/24 maxlen: 24 103.249.140.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.crl rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5BDA/serialNumber=D8AF07D43A9B8BBB81D60E4C177EA818EC8B73E5 Validity Not Before: Apr 3 07:38:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660d0787-2efc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:20:dc:a3:7f:7c:8c:6f:5b:a5:ac:c3:52:96: 9a:f2:71:4c:a2:f7:e2:f6:a0:a6:14:db:40:1e:39: c1:05:85:c8:6d:bf:95:3b:ec:b1:14:73:2f:14:a2: 91:ae:93:24:ab:9a:9c:27:a9:be:cc:47:5f:50:cf: 49:35:24:9c:d8:ec:1d:c5:29:d9:29:4b:b2:10:83: 92:4e:df:b8:c3:91:67:5a:cb:9a:2e:21:ee:2b:d1: 17:99:ee:7e:b9:44:35:8d:d1:87:33:48:c4:12:29: 29:2e:b5:46:ff:30:79:45:e7:32:b6:e7:e3:c7:69: af:39:15:31:7b:85:1f:01:98:4a:07:b1:ba:45:f3: a5:ac:52:5d:bb:af:89:20:b5:07:9b:a5:cf:f5:03: 21:3f:51:44:d1:74:65:4d:ea:d0:97:87:ca:05:70: ab:cd:61:75:59:99:03:f4:ae:30:95:57:f5:53:a8: af:44:5c:25:f0:9c:14:c6:9c:13:07:ad:dd:d7:30: de:ee:7d:5f:f1:df:50:86:a9:61:2a:cd:0a:ef:9f: 82:c0:ab:25:45:7a:0b:f4:75:f2:d1:7f:8c:af:1c: dd:22:ab:dc:a2:d3:cb:57:64:b2:8a:5c:8e:32:8b: 8c:43:81:04:8e:7f:5f:f5:e0:8a:ff:47:f3:e0:6f: 67:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E4:9D:87:0D:72:44:35:3D:37:3C:F5:9E:C1:55:4B:13:83:1C:35 X509v3 Authority Key Identifier: keyid:D8:AF:07:D4:3A:9B:8B:BB:81:D6:0E:4C:17:7E:A8:18:EC:8B:73:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/2K8H1Dqbi7uB1g5MF36oGOyLc-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K8H1Dqbi7uB1g5MF36oGOyLc-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5BDA/F73F20A6300F11EE85EA0415C4F9AE02/98DB93A4301011EEA92BE919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.108.0/22 103.249.140.0/22 Signature Algorithm: sha256WithRSAEncryption b5:4d:d8:3a:cb:77:64:33:76:c0:88:8a:72:1d:c4:a5:f4:20: 06:fd:c5:f6:6d:bf:90:f3:b1:4d:c5:d1:60:1e:fe:12:9a:d5: 4a:6e:70:40:cb:36:c0:7a:d9:d4:e1:b4:ab:df:48:0a:9f:ce: 83:61:5a:2b:45:71:50:4e:1d:1b:c9:3a:84:08:af:56:fc:13: fb:5f:b8:3b:d0:7c:ab:c1:6e:8a:e7:26:79:1a:0f:9a:97:a4: 07:29:90:7b:44:76:1b:35:d8:e8:b4:0e:ae:e4:05:c8:e0:79: 00:4d:f3:43:e9:09:1c:f7:55:89:f9:5e:67:91:39:7c:72:68: be:1f:d9:95:3a:24:53:3a:20:f0:d5:39:c3:de:87:19:ac:b0: 16:4e:8a:c7:37:1e:b6:6d:b1:58:0b:55:ac:a0:c4:91:bd:12: 05:33:be:e1:31:f3:25:bf:cb:ad:31:e1:76:f8:c1:97:92:72: b4:85:18:91:c9:dd:ac:cc:d0:45:4b:56:8d:42:54:ef:7b:11: ca:1f:d2:02:14:ba:78:d9:27:fb:9f:7e:60:40:e3:f8:8f:b4: 88:93:78:3a:13:0b:60:6a:74:c7:d5:c3:25:af:a8:79:9c:30: c2:4d:4e:a1:2f:89:e2:37:52:a2:c4:13:7d:20:02:3a:f9:ee: 0f:19:af:5d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVCREExMTAvBgNVBAUTKEQ4QUYwN0Q0M0E5QjhCQkI4MUQ2MEU0QzE3N0VBODE4 RUM4QjczRTUwHhcNMjQwNDAzMDczODQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkMDc4Ny0yZWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyDco398jG9bpazDUpaa8nFMovfi9qCmFNtAHjnBBYXIbb+VO+yxFHMvFKKR rpMkq5qcJ6m+zEdfUM9JNSSc2OwdxSnZKUuyEIOSTt+4w5FnWsuaLiHuK9EXme5+ uUQ1jdGHM0jEEikpLrVG/zB5Recytufjx2mvORUxe4UfAZhKB7G6RfOlrFJdu6+J ILUHm6XP9QMhP1FE0XRlTerQl4fKBXCrzWF1WZkD9K4wlVf1U6ivRFwl8JwUxpwT B63d1zDe7n1f8d9QhqlhKs0K75+CwKslRXoL9HXy0X+MrxzdIqvcotPLV2SyilyO MouMQ4EEjn9f9eCK/0fz4G9n/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK7knYcN ckQ1PTc89Z7BVUsTgxw1MB8GA1UdIwQYMBaAFNivB9Q6m4u7gdYOTBd+qBjsi3Pl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUJEQS9GNzNGMjBBNjMw MEYxMUVFODVFQTA0MTVDNEY5QUUwMi8ySzhIMURxYmk3dUIxZzVNRjM2b0dPeUxj LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLOEgxRHFiaTd1QjFnNU1GMzZvR095TGMtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVCREEvRjczRjIwQTYzMDBGMTFFRTg1RUEwNDE1QzRGOUFFMDIvOThEQjkzQTQz MDEwMTFFRUE5MkJFOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5mwDBAJn+YwwDQYJKoZIhvcNAQELBQADggEBALVN2DrL d2QzdsCIinIdxKX0IAb9xfZtv5DzsU3F0WAe/hKa1UpucEDLNsB62dThtKvfSAqf zoNhWitFcVBOHRvJOoQIr1b8E/tfuDvQfKvBbornJnkaD5qXpAcpkHtEdhs12Oi0 Dq7kBcjgeQBN80PpCRz3VYn5XmeROXxyaL4f2ZU6JFM6IPDVOcPehxmssBZOisc3 HrZtsVgLVaygxJG9EgUzvuEx8yW/y60x4Xb4wZeScrSFGJHJ3azM0EVLVo1CVO97 Ecof0gIUunjZJ/uffmBA4/iPtIiTeDoTC2BqdMfVwyWvqHmcMMJNTqEvieI3UqLE E30gAjr57g8Zr10= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:58 2024 by rpki-client on console-fra.rpki-client.org