$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa File: A04E05E42CE911EC8F99F486C4F9AE02.roa (raw, json) Hash identifier: 4Bdu5c7KiVJ8qwTifJfb8PRfm9Z4srlRbM1n/IceWaU= Subject key identifier: 98:B9:C7:B6:80:A9:F8:A3:B0:A9:28:F1:F2:31:37:C1:2E:D5:CA:96 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 131F Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa Signing time: Tue 16 Jul 2024 17:34:46 +0000 ROA not before: Tue 16 Jul 2024 17:34:46 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137826 IP address blocks: 103.115.23.0/24 maxlen: 24 103.139.194.0/24 maxlen: 24 2001:df5:1b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4895 (0x131f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Jul 16 17:34:46 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6696af36-79be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:3d:61:5c:3f:21:5e:4b:73:70:86:b7:89: f9:7f:63:ee:01:91:6d:64:7c:d4:be:8e:d4:d7:56: c2:35:64:cc:24:6b:5b:64:5d:5e:c2:2a:e6:5f:67: 16:ec:70:6d:b7:bf:e2:31:0b:fd:95:78:2d:22:72: 21:e0:5b:8c:71:67:5b:56:19:ba:a1:c2:68:f2:3b: 5b:17:47:f3:d7:6d:26:28:2f:e8:46:f7:0f:7f:7a: 78:e3:e4:b9:b4:89:16:96:80:34:50:f0:9c:89:75: ee:74:12:a5:2e:b1:36:06:7c:36:d5:3b:27:2a:0a: 85:24:2f:07:1a:c8:7b:bc:ae:0d:2f:d1:0c:76:61: 9f:eb:db:97:30:30:8d:ca:c6:15:01:80:46:c0:58: dc:b4:73:6f:1d:4b:68:b4:4e:43:b3:02:30:57:cb: f0:0c:2a:05:eb:fe:95:a2:bb:1b:c5:d6:c6:fa:2b: 27:4f:ea:ff:b9:24:72:09:2a:96:97:4a:28:e7:6e: c8:38:29:fb:82:cf:a1:ff:09:64:29:5f:dd:91:8f: 8d:35:c7:54:6a:6a:e9:ff:6c:62:76:89:f5:83:c6: c8:8b:88:42:ae:60:c9:56:b2:62:30:af:53:4d:e1: 23:b2:d9:72:a7:ab:9b:c3:d4:c4:c7:31:5a:ff:1b: 80:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B9:C7:B6:80:A9:F8:A3:B0:A9:28:F1:F2:31:37:C1:2E:D5:CA:96 X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/A04E05E42CE911EC8F99F486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.23.0/24 103.139.194.0/24 IPv6: 2001:df5:1b00::/48 Signature Algorithm: sha256WithRSAEncryption 06:9a:1c:c8:ff:4c:07:0a:54:7e:a8:65:22:8c:f4:15:4e:6b: 51:6f:a4:cd:f0:ec:65:6d:a9:59:76:a9:35:c0:8d:1c:fa:6a: 0d:a8:6d:de:95:3a:b5:a5:4e:ec:93:67:e9:75:e7:77:75:09: 51:07:17:be:70:6e:c3:ac:22:c2:6d:9a:1f:32:e7:2e:4e:28: cb:03:1c:b6:67:9f:68:85:b1:94:94:33:1c:1a:0c:f9:11:92: 54:a3:bd:3f:86:95:fa:9b:de:1e:50:0b:dc:76:6f:e4:b9:dd: aa:ca:20:bf:6b:b7:df:be:4f:66:45:29:23:ab:ae:62:e4:1c: e2:0e:20:8e:f8:eb:d7:e1:1a:70:db:43:e0:e3:3b:32:be:9d: 81:8e:e4:e0:5b:96:90:4e:fb:e0:e4:54:b5:9e:df:a8:ad:e4: 7b:52:eb:f0:6c:1e:ae:e9:8e:7b:b0:11:b3:bf:1d:aa:e7:8b: 00:b0:c2:d8:2b:b2:dc:cf:af:0b:a9:70:64:c6:5f:1d:52:bb: 30:ec:f4:cc:ad:f9:6c:08:5e:5d:de:cd:00:bb:58:d1:7d:55: 21:52:9b:12:df:0b:fd:fd:7b:71:85:3e:5d:27:22:eb:fe:b5: 5b:7b:50:06:c9:9d:22:e5:c6:6b:94:48:56:b8:fd:55:91:f6: 42:94:19:a8 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjQwNzE2MTczNDQ2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2YWYzNi03OWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1A9YVw/IV5Lc3CGt4n5f2PuAZFtZHzUvo7U11bCNWTMJGtbZF1ewirmX2cW 7HBtt7/iMQv9lXgtInIh4FuMcWdbVhm6ocJo8jtbF0fz120mKC/oRvcPf3p44+S5 tIkWloA0UPCciXXudBKlLrE2Bnw21TsnKgqFJC8HGsh7vK4NL9EMdmGf69uXMDCN ysYVAYBGwFjctHNvHUtotE5DswIwV8vwDCoF6/6VorsbxdbG+isnT+r/uSRyCSqW l0oo527IOCn7gs+h/wlkKV/dkY+NNcdUamrp/2xidon1g8bIi4hCrmDJVrJiMK9T TeEjstlyp6ubw9TExzFa/xuAjQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJi5x7aA qfijsKko8fIxN8Eu1cqWMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNEMTUvN0M2ODVBODI5NUI5MTFFOEE2ODhCNjBFQzRGOUFFMDIvQTA0RTA1RTQy Q0U5MTFFQzhGOTlGNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABncxcDBABni8IwDwQCAAIwCQMHACABDfUbADANBgkqhkiG 9w0BAQsFAAOCAQEABpocyP9MBwpUfqhlIoz0FU5rUW+kzfDsZW2pWXapNcCNHPpq Daht3pU6taVO7JNn6XXnd3UJUQcXvnBuw6wiwm2aHzLnLk4oywMctmefaIWxlJQz HBoM+RGSVKO9P4aV+pveHlAL3HZv5Lndqsogv2u3375PZkUpI6uuYuQc4g4gjvjr 1+EacNtD4OM7Mr6dgY7k4FuWkE774ORUtZ7fqK3ke1Lr8GwerumOe7ARs78dqueL ALDC2Cuy3M+vC6lwZMZfHVK7MOz0zK35bAheXd7NALtY0X1VIVKbEt8L/f17cYU+ XSci6/61W3tQBsmdIuXGa5RIVrj9VZH2QpQZqA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org