$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/A862F866AA3111EA9E08C324C4F9AE02.roa File: A862F866AA3111EA9E08C324C4F9AE02.roa (raw, json) Hash identifier: 3Ir1IuKRfOTCPGTcqkNhUsK0tdvw53ia+7U41pr4LNw= Subject key identifier: D8:41:C4:51:17:54:10:55:2B:B1:C3:85:66:EA:70:F5:CD:A5:39:C6 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 084B Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/A862F866AA3111EA9E08C324C4F9AE02.roa Signing time: Mon 24 Jun 2024 21:24:25 +0000 ROA not before: Mon 24 Jun 2024 21:24:25 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139292 IP address blocks: 103.140.216.0/23 maxlen: 23 103.140.216.0/24 maxlen: 24 103.140.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Jun 24 21:24:25 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6679e408-8269 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b0:0c:04:ec:aa:cd:2c:07:ba:25:8a:7d:4f: 5a:3a:2d:83:e0:0c:96:c5:89:25:1b:72:7b:23:e2: a5:1f:54:c2:3b:02:dc:4f:37:a0:be:4f:47:60:94: 37:e6:7f:ef:48:bd:9b:7f:9d:f3:7e:b4:d6:ee:fd: 9c:d3:a2:90:d3:86:cb:01:e7:7c:c6:3b:31:fc:72: 4d:2f:67:89:5b:bd:14:05:81:96:7c:57:4f:b8:c0: 2b:77:89:53:17:dd:2f:40:71:d8:bc:42:3e:1e:4c: c8:33:75:53:f9:e5:9a:5e:d6:fd:70:e1:15:88:10: 48:52:07:f3:02:02:13:95:46:7a:2f:6a:01:61:11: 17:3a:e8:1a:77:95:ca:b2:12:e2:8d:98:a4:ed:bd: 7b:04:99:58:5d:5a:83:70:01:db:f6:6a:29:f3:b7: 83:5d:5a:27:ac:25:8e:b5:fd:a9:40:53:34:93:c2: 94:30:4f:49:98:18:d8:0b:2e:94:8e:c6:67:c3:a7: 26:5f:31:ae:51:9e:c5:ed:fb:23:f2:0a:8d:54:e8: 4a:ed:d7:0a:6a:e4:f4:99:b3:68:d2:3d:53:82:7e: 1c:92:ce:57:54:4e:ce:c3:82:65:ac:ec:cc:54:2c: e4:01:33:cd:4e:6c:02:ed:bf:d0:d4:58:e0:9d:b7: 1c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:41:C4:51:17:54:10:55:2B:B1:C3:85:66:EA:70:F5:CD:A5:39:C6 X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/A862F866AA3111EA9E08C324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.216.0/23 Signature Algorithm: sha256WithRSAEncryption 47:dd:9d:9a:77:4e:32:e5:e1:d2:c9:f6:e6:f0:58:f3:79:9d: 16:f3:9f:11:7d:d8:6b:3f:d8:f4:7e:91:4f:fe:90:d8:8b:ce: ef:43:b7:29:3b:08:e7:a5:69:aa:32:3f:bb:ea:17:f8:2c:e0: fc:f0:f9:e1:da:1c:c7:51:3d:91:1f:18:fe:f3:a4:cf:58:ed: 14:10:5d:74:f4:42:e4:77:eb:e3:01:86:bc:e1:2a:47:31:ed: 74:d5:12:78:b0:df:73:08:e2:35:f1:f6:1d:44:d9:37:47:ef: d3:06:c2:5b:29:bd:0a:52:b3:2a:d8:47:53:d8:ba:93:76:10: 9b:5f:0e:44:bc:20:3c:f5:ee:6a:35:bd:98:e5:9a:b9:15:8b: f5:b9:3b:56:1f:63:d9:84:26:ed:7c:12:65:01:c3:eb:78:05: 59:0e:d0:87:3d:96:76:22:55:20:b7:0d:3a:7b:3b:cd:fa:78: 50:62:5f:9b:4e:f1:a6:33:64:d8:34:99:53:51:d9:9b:c9:e1: 64:8c:bb:03:b7:e1:cd:f6:15:d1:81:f3:11:c6:24:d6:97:f5: 8f:4b:6e:fc:11:33:3f:81:2f:06:b7:9b:ce:31:a5:f8:3e:82: 4f:f1:c1:19:8c:e2:c6:81:41:61:b3:16:27:03:a9:0f:ab:c7: fa:77:ed:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjQwNjI0MjEyNDI1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc5ZTQwOC04MjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7AMBOyqzSwHuiWKfU9aOi2D4AyWxYklG3J7I+KlH1TCOwLcTzegvk9HYJQ3 5n/vSL2bf53zfrTW7v2c06KQ04bLAed8xjsx/HJNL2eJW70UBYGWfFdPuMArd4lT F90vQHHYvEI+HkzIM3VT+eWaXtb9cOEViBBIUgfzAgITlUZ6L2oBYREXOugad5XK shLijZik7b17BJlYXVqDcAHb9mop87eDXVonrCWOtf2pQFM0k8KUME9JmBjYCy6U jsZnw6cmXzGuUZ7F7fsj8gqNVOhK7dcKauT0mbNo0j1Tgn4cks5XVE7Ow4JlrOzM VCzkATPNTmwC7b/Q1FjgnbccvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNhBxFEX VBBVK7HDhWbqcPXNpTnGMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRCRDIvRjQwQjExNkFBQTJGMTFFQTlDMjk1OTFFQzRGOUFFMDIvQTg2MkY4NjZB QTMxMTFFQTlFMDhDMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjNgwDQYJKoZIhvcNAQELBQADggEBAEfdnZp3TjLl4dLJ 9ubwWPN5nRbznxF92Gs/2PR+kU/+kNiLzu9Dtyk7COelaaoyP7vqF/gs4Pzw+eHa HMdRPZEfGP7zpM9Y7RQQXXT0QuR36+MBhrzhKkcx7XTVEniw33MI4jXx9h1E2TdH 79MGwlspvQpSsyrYR1PYupN2EJtfDkS8IDz17mo1vZjlmrkVi/W5O1YfY9mEJu18 EmUBw+t4BVkO0Ic9lnYiVSC3DTp7O836eFBiX5tO8aYzZNg0mVNR2ZvJ4WSMuwO3 4c32FdGB8xHGJNaX9Y9LbvwRMz+BLwa3m84xpfg+gk/xwRmM4saBQWGzFicDqQ+r x/p37WU= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org