$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/623705DA339111ED9249064BC4F9AE02.roa File: 623705DA339111ED9249064BC4F9AE02.roa (raw, json) Hash identifier: oE8Ftzk8b1pgimy4jf77z4BKi4j6G1jlmkYSbgOmtg8= Subject key identifier: 8F:6E:D7:A9:EB:BC:C9:63:5C:F8:DF:70:02:1F:31:2B:18:80:C4:46 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 0157 Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/623705DA339111ED9249064BC4F9AE02.roa Signing time: Wed 15 May 2024 05:09:20 +0000 ROA not before: Wed 15 May 2024 05:09:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133209 IP address blocks: 103.186.102.0/23 maxlen: 23 103.186.102.0/24 maxlen: 24 103.186.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: May 15 05:09:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6644437f-612a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:8f:fa:59:05:af:d5:6f:00:d6:1a:1c:b2:20: 0f:d0:b9:eb:4b:c0:8d:93:7d:95:2e:cd:af:de:9b: a1:6a:ae:72:26:ff:f9:93:b0:b2:22:38:9a:a4:15: f6:9a:0a:aa:ce:fd:c5:89:49:1e:30:79:00:86:24: b7:fa:f8:60:03:ed:59:e1:5f:1c:63:49:b9:05:cd: 58:db:29:40:78:f0:55:37:07:39:c4:c3:c6:fe:9c: d5:f2:81:c9:78:6b:f0:55:df:6c:27:79:e7:bf:13: 14:34:93:86:9a:96:f9:8d:c1:41:5c:e8:b5:3b:80: 66:a6:5b:81:aa:bf:09:5c:c6:06:5d:1f:43:7a:fd: f3:2d:b6:6d:24:3c:77:88:0b:bc:c5:4b:9a:a3:1f: ec:b8:69:fc:c6:b1:19:8d:cc:89:f4:f1:ad:6f:e6: 22:fd:b1:f1:1a:86:5a:d0:d6:19:c4:20:83:cd:6b: 48:8c:99:67:83:80:9a:a9:5a:91:42:65:01:1d:1f: c0:d5:36:5a:6b:dc:d9:fd:88:39:83:b7:96:26:ba: 2b:9e:8b:15:2a:c8:e5:63:1b:eb:99:10:5c:cb:84: 11:60:42:8b:33:d5:ba:7f:0f:f1:c0:d7:3d:18:9b: df:9a:7e:7f:0d:13:6d:3d:8b:af:95:12:96:27:81: 20:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6E:D7:A9:EB:BC:C9:63:5C:F8:DF:70:02:1F:31:2B:18:80:C4:46 X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/623705DA339111ED9249064BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.102.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:42:88:75:d8:83:45:d8:5c:ff:c2:42:5e:12:e7:4f:10:35: 3c:07:32:dd:a4:e6:b4:db:3e:dd:7c:3e:f4:e8:46:2c:e2:71: 41:73:e0:88:bc:dc:08:39:0c:36:5f:24:2b:30:aa:a2:74:27: 62:c6:33:59:57:1b:69:e6:a9:e4:28:7f:e6:cc:c9:c4:a7:9f: b1:09:5f:47:2d:03:16:e3:23:c1:aa:d4:84:51:71:74:2c:6b: 6e:bc:b6:be:ee:83:1b:8c:bd:02:9f:5e:36:98:55:b1:cd:3a: 8d:86:b2:f3:c8:e6:8e:17:c0:3c:33:0a:93:84:96:29:06:6c: a7:cb:ec:3f:0b:e7:35:df:e7:61:ee:d9:7c:1e:e7:8c:2b:6f: 17:11:00:aa:a6:ac:08:f2:a8:a8:12:e6:46:42:a2:0a:88:5a: 09:53:da:f3:c1:77:1b:c1:77:b9:bc:c2:88:02:9b:6a:45:6d: da:fd:e8:76:99:45:59:83:28:a8:74:a3:7a:cf:82:6b:70:e6: 78:7e:f6:ac:91:d3:07:86:dc:c9:5c:39:89:17:b0:e2:e5:22: d2:79:ae:4a:ed:16:de:20:0f:3b:06:fc:58:ad:ed:7c:c1:00: 15:b9:86:73:50:7e:9a:60:2a:aa:34:94:2c:fd:c2:3b:23:30: 85:4c:7f:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjQwNTE1MDUwOTIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0NDM3Zi02MTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+o/6WQWv1W8A1hocsiAP0LnrS8CNk32VLs2v3puhaq5yJv/5k7CyIjiapBX2 mgqqzv3FiUkeMHkAhiS3+vhgA+1Z4V8cY0m5Bc1Y2ylAePBVNwc5xMPG/pzV8oHJ eGvwVd9sJ3nnvxMUNJOGmpb5jcFBXOi1O4BmpluBqr8JXMYGXR9Dev3zLbZtJDx3 iAu8xUuaox/suGn8xrEZjcyJ9PGtb+Yi/bHxGoZa0NYZxCCDzWtIjJlng4CaqVqR QmUBHR/A1TZaa9zZ/Yg5g7eWJrornosVKsjlYxvrmRBcy4QRYEKLM9W6fw/xwNc9 GJvfmn5/DRNtPYuvlRKWJ4EgbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9u16nr vMljXPjfcAIfMSsYgMRGMB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIyRTUvRjVFMzRFNjQzMzhEMTFFRDk3RTNFMjVGQzRGOUFFMDIvNjIzNzA1REEz MzkxMTFFRDkyNDkwNjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnumYwDQYJKoZIhvcNAQELBQADggEBAA9CiHXYg0XYXP/C Ql4S508QNTwHMt2k5rTbPt18PvToRizicUFz4Ii83Ag5DDZfJCswqqJ0J2LGM1lX G2nmqeQof+bMycSnn7EJX0ctAxbjI8Gq1IRRcXQsa268tr7ugxuMvQKfXjaYVbHN Oo2GsvPI5o4XwDwzCpOElikGbKfL7D8L5zXf52Hu2Xwe54wrbxcRAKqmrAjyqKgS 5kZCogqIWglT2vPBdxvBd7m8wogCm2pFbdr96HaZRVmDKKh0o3rPgmtw5nh+9qyR 0weG3MlcOYkXsOLlItJ5rkrtFt4gDzsG/Fit7XzBABW5hnNQfppgKqo0lCz9wjsj MIVMf38= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org