$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa File: A9511B7AA0B511EA94365A38C4F9AE02.roa (raw, json) Hash identifier: awdMDI45WMoyA7Hv0k/0lwP8aK2FFS10Os+VOyBIq0U= Subject key identifier: 97:C5:F5:EB:7F:A5:7C:21:D3:09:E7:28:8E:4B:1E:CA:02:4A:78:EB Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 083F Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa Signing time: Sat 02 Mar 2024 21:30:18 +0000 ROA not before: Sat 02 Mar 2024 21:30:18 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137477 IP address blocks: 103.110.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Validity Not Before: Mar 2 21:30:18 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e39a6a-0b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:93:2e:57:cb:cc:d9:dc:5d:97:a4:bb:9d:a7: 5f:72:af:95:2c:74:4b:39:ff:34:ce:54:61:8b:5d: ca:b3:ed:68:61:30:05:c0:f8:a3:d3:27:fc:5f:26: f5:ca:d3:b3:3c:29:fb:89:5e:48:2c:72:04:61:88: 41:8f:47:c6:5b:a6:db:83:00:4f:c5:94:68:22:db: fd:5c:b3:77:2f:70:ea:a3:33:88:6e:b1:e1:c7:43: 37:00:b5:f8:b4:9b:af:b6:24:88:92:72:a8:ba:0f: b1:30:5f:42:05:eb:36:2a:21:8b:c3:83:66:8e:41: e7:2e:7f:8f:69:d9:c8:b6:91:c2:e9:36:2c:dc:83: 04:00:92:57:3e:04:6a:0e:09:87:bb:79:bb:ca:88: e8:91:ba:52:dc:13:7f:21:d8:de:1d:5d:fe:11:df: ad:25:f2:2b:ce:99:c0:e7:16:57:cf:1e:5e:12:a4: 43:80:8a:99:44:f5:ec:30:6f:c5:59:d9:65:9c:17: b6:cc:21:39:8a:41:16:a7:c0:11:da:7b:d6:54:4e: 8c:e4:39:c0:98:06:f7:65:01:f8:4c:7e:a7:66:ad: 83:0e:a6:86:08:14:15:ef:39:f8:d6:bd:45:42:15: cc:18:0f:8c:bd:52:c0:2a:ad:00:49:c1:ea:7d:f2: 34:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C5:F5:EB:7F:A5:7C:21:D3:09:E7:28:8E:4B:1E:CA:02:4A:78:EB X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/A9511B7AA0B511EA94365A38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.40.0/24 Signature Algorithm: sha256WithRSAEncryption e7:05:7e:24:ac:46:b8:2c:3d:fb:22:d8:33:e9:df:e9:07:21: 3f:86:8c:38:e9:19:4c:0b:97:b2:1d:44:3b:2f:95:a4:74:32: 62:67:f7:c5:4f:59:e8:9f:a2:72:e9:a4:42:6c:3d:f0:96:74: 7a:09:b2:f0:ea:70:79:84:f8:f6:09:6d:1f:50:58:46:45:0f: ee:65:f8:78:5a:29:5c:0f:0f:37:21:cd:16:fd:e8:47:19:38: 0a:8b:72:4c:dd:72:ad:85:60:3f:83:22:b9:fc:36:cb:cb:54: 29:33:4f:33:31:57:8f:c6:f7:88:79:01:a9:27:37:ed:10:04: 0b:65:0f:a0:c2:c4:8b:9e:84:05:0e:10:4b:bc:44:7b:95:39: 34:35:da:98:86:3b:a6:53:c4:2b:85:ea:86:ba:54:3b:5f:33: b3:4c:57:6f:14:c5:ba:60:66:3c:4c:42:d6:b2:f8:db:5f:fd: 22:fa:dd:45:0e:c8:43:79:a6:11:f8:9b:2a:7e:21:40:2a:1d: 1e:f6:49:8d:f5:08:49:d5:a4:2a:86:9f:64:e9:49:92:13:b7: 0c:9e:d2:08:ea:db:ec:1a:e1:e1:3d:83:9a:63:85:ff:43:57: 60:7f:93:6f:4e:50:d0:b5:a9:95:b6:2e:f6:d4:b8:d8:a0:70: cd:a9:ba:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjQwMzAyMjEzMDE4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzOWE2YS0wYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJMuV8vM2dxdl6S7nadfcq+VLHRLOf80zlRhi13Ks+1oYTAFwPij0yf8Xyb1 ytOzPCn7iV5ILHIEYYhBj0fGW6bbgwBPxZRoItv9XLN3L3DqozOIbrHhx0M3ALX4 tJuvtiSIknKoug+xMF9CBes2KiGLw4NmjkHnLn+PadnItpHC6TYs3IMEAJJXPgRq DgmHu3m7yojokbpS3BN/IdjeHV3+Ed+tJfIrzpnA5xZXzx5eEqRDgIqZRPXsMG/F WdllnBe2zCE5ikEWp8AR2nvWVE6M5DnAmAb3ZQH4TH6nZq2DDqaGCBQV7zn41r1F QhXMGA+MvVLAKq0AScHqffI0OwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJfF9et/ pXwh0wnnKI5LHsoCSnjrMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI0MjEvMTE5ODA2MEFBMEI0MTFFQTk3NzE5RTM1QzRGOUFFMDIvQTk1MTFCN0FB MEI1MTFFQTk0MzY1QTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbigwDQYJKoZIhvcNAQELBQADggEBAOcFfiSsRrgsPfsi 2DPp3+kHIT+GjDjpGUwLl7IdRDsvlaR0MmJn98VPWeifonLppEJsPfCWdHoJsvDq cHmE+PYJbR9QWEZFD+5l+HhaKVwPDzchzRb96EcZOAqLckzdcq2FYD+DIrn8NsvL VCkzTzMxV4/G94h5AaknN+0QBAtlD6DCxIuehAUOEEu8RHuVOTQ12piGO6ZTxCuF 6oa6VDtfM7NMV28UxbpgZjxMQtay+Ntf/SL63UUOyEN5phH4myp+IUAqHR72SY31 CEnVpCqGn2TpSZITtwye0gjq2+wa4eE9g5pjhf9DV2B/k29OUNC1qZW2LvbUuNig cM2puoM= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org