$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa File: A5B7D874091F11EFA6EDE141C4F9AE02.roa (raw, json) Hash identifier: 2rvUxpqj7Y+E1RimjzmymQTO9YIeEHWwe9dn2EcRiJ4= Subject key identifier: 42:B7:42:EE:79:F7:A4:29:15:B6:0D:C3:7F:5A:1D:DA:96:66:AA:6E Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0DC4 Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa Signing time: Thu 30 May 2024 19:41:53 +0000 ROA not before: Thu 30 May 2024 19:41:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136617 IP address blocks: 103.94.68.0/22 maxlen: 24 203.109.36.0/22 maxlen: 22 203.109.36.0/24 maxlen: 24 203.109.37.0/24 maxlen: 24 203.109.38.0/24 maxlen: 24 203.109.39.0/24 maxlen: 24 2401:35c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: May 30 19:41:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658d681-14d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2f:01:85:82:9d:89:cf:f0:86:4b:11:e4:46: 69:55:2a:5e:61:0b:31:2e:a7:a7:13:6a:cd:c9:3f: eb:ca:c1:ac:c8:3a:02:4f:6e:37:98:f8:4a:3b:95: dd:83:e7:0c:e3:17:58:72:e9:f6:a4:c4:3a:9f:45: 17:57:fd:43:71:4a:88:76:9d:98:38:b4:b8:e0:e2: 71:88:f1:a4:b4:eb:40:13:d7:95:a7:37:f0:7e:31: 61:1c:ac:c2:8f:cd:16:29:ae:ad:81:6c:a5:f8:93: a9:96:59:94:25:be:0b:bd:69:02:78:2e:bf:3e:1d: a9:48:01:9d:be:41:8b:63:7b:e4:dd:d4:b0:5c:38: 76:e7:55:fc:94:83:7f:b8:f4:10:f2:50:bf:d1:63: 94:5c:6c:09:d0:bd:ce:68:97:29:47:44:9f:28:f1: 25:85:ef:d5:45:3d:d8:39:1a:e6:94:e5:67:82:53: 17:e1:83:45:35:0e:5b:a1:ed:a1:dc:f6:56:16:12: ce:c1:92:fc:5f:1d:23:f2:ea:01:16:a9:09:e1:0a: 05:12:78:0e:2d:e6:ed:7d:4f:86:eb:de:c5:88:11: 78:e3:7e:db:aa:75:be:fa:06:5c:d2:39:94:ea:98: 8e:2f:29:01:53:26:9e:27:69:d0:6c:94:c3:3f:f9: 0d:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B7:42:EE:79:F7:A4:29:15:B6:0D:C3:7F:5A:1D:DA:96:66:AA:6E X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/A5B7D874091F11EFA6EDE141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.68.0/22 203.109.36.0/22 IPv6: 2401:35c0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:7c:ce:0f:9b:b0:bb:43:6c:07:d7:ec:c3:16:76:16:85:d7: 2f:0c:c1:14:7a:2e:b2:05:84:c6:a5:43:c1:37:12:b3:73:c9: 9e:7b:10:d2:34:ee:09:d8:2e:92:47:c6:dc:d4:c4:2a:11:9d: 2a:3c:0e:7b:de:3c:9e:4c:ab:11:16:73:f8:c7:9e:22:f0:83: b0:24:1c:e9:36:61:f5:92:b8:4b:94:4b:8e:c1:b6:91:43:3a: 52:fb:84:56:41:a2:de:2e:0a:30:74:32:16:6c:aa:9b:04:cc: ce:ba:fe:ba:fe:ee:ac:42:f8:2c:6f:35:6d:d3:f6:78:a9:50: 70:6b:86:4c:f6:ba:ce:c9:e7:a2:be:fe:92:0c:f7:1b:e4:5d: bd:3f:1d:46:2b:cd:5b:e3:d9:7e:d3:02:c0:85:a1:4f:14:2d: f4:28:c8:38:af:de:20:a4:7e:9f:b5:46:1c:3c:0f:03:f8:5b: 0f:6f:d4:03:aa:92:30:f5:af:6a:85:e4:7a:60:cc:af:64:84: ba:a4:f6:9a:b8:b9:1f:c9:ce:44:83:3c:89:ec:ee:df:eb:b3: cf:2b:9c:e0:7c:d1:cf:c0:6a:8c:fc:a7:9a:ae:c8:53:07:5b: 8c:5d:1c:55:0d:30:d2:51:8c:c5:81:25:20:f8:07:0c:b6:7c: 4e:88:a9:9b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjQwNTMwMTk0MTUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4ZDY4MS0xNGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS8BhYKdic/whksR5EZpVSpeYQsxLqenE2rNyT/rysGsyDoCT243mPhKO5Xd g+cM4xdYcun2pMQ6n0UXV/1DcUqIdp2YOLS44OJxiPGktOtAE9eVpzfwfjFhHKzC j80WKa6tgWyl+JOpllmUJb4LvWkCeC6/Ph2pSAGdvkGLY3vk3dSwXDh251X8lIN/ uPQQ8lC/0WOUXGwJ0L3OaJcpR0SfKPElhe/VRT3YORrmlOVnglMX4YNFNQ5boe2h 3PZWFhLOwZL8Xx0j8uoBFqkJ4QoFEngOLebtfU+G697FiBF4437bqnW++gZc0jmU 6piOLykBUyaeJ2nQbJTDP/kNwwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEK3Qu55 96QpFbYNw39aHdqWZqpuMB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2NjgvN0M5MDA5QUM5N0YxMTFFOUEyRTUxOTgxQzRGOUFFMDIvQTVCN0Q4NzQw OTFGMTFFRkE2RURFMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnXkQDBALLbSQwDQQCAAIwBwMFACQBNcAwDQYJKoZIhvcN AQELBQADggEBABt8zg+bsLtDbAfX7MMWdhaF1y8MwRR6LrIFhMalQ8E3ErNzyZ57 ENI07gnYLpJHxtzUxCoRnSo8DnvePJ5MqxEWc/jHniLwg7AkHOk2YfWSuEuUS47B tpFDOlL7hFZBot4uCjB0MhZsqpsEzM66/rr+7qxC+CxvNW3T9nipUHBrhkz2us7J 56K+/pIM9xvkXb0/HUYrzVvj2X7TAsCFoU8ULfQoyDiv3iCkfp+1Rhw8DwP4Ww9v 1AOqkjD1r2qF5HpgzK9khLqk9pq4uR/JzkSDPIns7t/rs88rnOB80c/Aaoz8p5qu yFMHW4xdHFUNMNJRjMWBJSD4Bwy2fE6IqZs= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org