$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa File: F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa (raw, json) Hash identifier: zhhux1n5VimQG2Opw0t79vR4Z74YBehcUmhiid+R0gw= Subject key identifier: 77:86:35:3C:67:60:B3:DB:A8:1B:6A:A9:26:EA:16:B0:FD:94:0D:D4 Certificate issuer: /CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Certificate serial: 2E Authority key identifier: 80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa Signing time: Tue 02 Jan 2024 10:08:57 +0000 ROA not before: Tue 02 Jan 2024 10:08:57 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139043 IP address blocks: 103.249.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Validity Not Before: Jan 2 10:08:57 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6593e0b9-e8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d3:48:fc:e2:48:40:e5:8f:1a:49:c1:8b:95: ef:4e:4b:f2:27:6f:aa:f7:f9:1b:78:ad:c7:ef:32: 46:e6:ce:14:cc:48:33:b9:84:53:56:4b:2e:4f:9f: 1c:29:db:51:66:2e:46:80:66:44:4f:bf:d4:4e:8e: 16:3e:69:ab:55:c7:5c:b5:c3:3b:73:46:a1:34:db: 64:84:cf:1e:00:dc:7f:15:f1:19:12:bb:b1:2c:c2: 5e:05:5a:37:14:4c:b9:85:a8:6d:6e:0d:f5:6b:72: e6:fe:1e:1d:8b:ef:91:0b:03:47:99:6b:e2:2d:c7: 95:94:d1:98:90:08:f9:26:21:10:ee:61:17:da:96: f3:75:14:a9:0b:a4:2d:43:60:ed:e6:5a:78:8a:33: 0a:9f:83:d4:0a:b2:51:df:cf:71:67:50:f3:50:86: 24:44:cc:11:b6:e0:01:d8:dd:01:9b:21:3c:30:38: c3:e1:c6:8f:b0:00:da:3e:84:12:f2:30:08:36:18: 89:f0:c8:42:29:92:11:ad:85:43:be:39:10:fc:fe: 74:f2:c2:32:53:6c:dc:d8:90:40:3f:9a:ca:de:dd: 6e:61:c2:fe:ce:4d:87:35:6c:ba:40:c7:f1:bb:bb: 2a:24:f4:43:d8:45:77:fc:62:cf:dc:90:eb:95:8d: da:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:86:35:3C:67:60:B3:DB:A8:1B:6A:A9:26:EA:16:B0:FD:94:0D:D4 X509v3 Authority Key Identifier: keyid:80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.115.0/24 Signature Algorithm: sha256WithRSAEncryption 59:cc:8d:86:03:1e:7e:11:b5:57:98:89:ab:c6:3c:94:7b:e0: 8a:23:8b:04:ff:10:63:1d:1e:f3:19:80:01:7b:8c:21:d5:f6: a9:77:be:1f:84:a6:72:c2:a4:da:38:6d:06:55:f8:8a:ae:e5: 27:3e:f3:59:3e:05:89:fa:96:6f:b3:bf:b7:87:3d:10:d7:34: aa:eb:c8:ab:02:91:0a:64:2b:52:d3:31:45:01:35:22:bd:51: ed:bc:b6:38:38:67:1e:df:25:ba:cb:50:be:e0:df:fd:1a:e9: c0:e1:95:b3:2e:ba:ec:1d:94:3c:2a:2f:54:da:64:68:db:0a: d6:be:05:90:6a:e6:37:7b:34:83:29:3d:34:fc:41:21:85:6a: d0:99:37:c7:35:cc:f6:18:90:d3:a2:f3:b2:01:15:4b:34:0c: 77:fa:d9:bc:8b:e6:8f:e1:28:7b:13:c3:fb:b6:d1:0e:e0:e8: 9f:d2:c0:10:2e:0a:c8:99:2c:e8:22:86:a4:57:dd:38:73:78: 1d:2e:76:bc:fc:a4:f5:ca:16:cd:61:9d:8a:ef:8f:55:66:e7: 5e:ff:28:5d:91:7d:03:8b:95:d2:38:bf:55:57:aa:a7:81:ca: 4c:2e:87:e6:ff:39:bd:12:8e:96:94:3d:92:b9:7b:80:fd:b0: aa:13:52:9e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MEMzMzExMC8GA1UEBRMoODBCRTkzMEUzMDY0OUIxMkFDRUU4REM0MEI1NzVBQjdE REU2NDk0NTAeFw0yNDAxMDIxMDA4NTdaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTNlMGI5LWU4ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS00j84khA5Y8aScGLle9OS/Inb6r3+Rt4rcfvMkbmzhTMSDO5hFNWSy5Pnxwp 21FmLkaAZkRPv9ROjhY+aatVx1y1wztzRqE022SEzx4A3H8V8RkSu7Eswl4FWjcU TLmFqG1uDfVrcub+Hh2L75ELA0eZa+Itx5WU0ZiQCPkmIRDuYRfalvN1FKkLpC1D YO3mWniKMwqfg9QKslHfz3FnUPNQhiREzBG24AHY3QGbITwwOMPhxo+wANo+hBLy MAg2GInwyEIpkhGthUO+ORD8/nTywjJTbNzYkEA/msre3W5hwv7OTYc1bLpAx/G7 uyok9EPYRXf8Ys/ckOuVjdpPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUd4Y1PGdg s9uoG2qpJuoWsP2UDdQwHwYDVR0jBBgwFoAUgL6TDjBkmxKs7o3EC1dat93mSUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQzMzLzU0MjY1RjM0NjY4 NzExRUVCOTNEM0Y2Q0M0RjlBRTAyL2dMNlREakJrbXhLczdvM0VDMWRhdDkzbVNV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0w2VERqQmtteEtzN28zRUMxZGF0OTNtU1VVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMzMy81NDI2NUYzNDY2ODcxMUVFQjkzRDNGNkNDNEY5QUUwMi9GMEZCOTRBQ0E5 NTYxMUVFQTZFN0RCN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf5czANBgkqhkiG9w0BAQsFAAOCAQEAWcyNhgMefhG1V5iJ q8Y8lHvgiiOLBP8QYx0e8xmAAXuMIdX2qXe+H4SmcsKk2jhtBlX4iq7lJz7zWT4F ifqWb7O/t4c9ENc0quvIqwKRCmQrUtMxRQE1Ir1R7by2ODhnHt8lustQvuDf/Rrp wOGVsy667B2UPCovVNpkaNsK1r4FkGrmN3s0gyk9NPxBIYVq0Jk3xzXM9hiQ06Lz sgEVSzQMd/rZvIvmj+EoexPD+7bRDuDon9LAEC4KyJks6CKGpFfdOHN4HS52vPyk 9coWzWGdiu+PVWbnXv8oXZF9A4uV0ji/VVeqp4HKTC6H5v85vRKOlpQ9krl7gP2w qhNSng== -----END CERTIFICATE-----Generated at Fri May 31 10:42:52 2024 by rpki-client on console-fra.rpki-client.org