$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa File: B39DCB807ADA11ED96D52C3DC4F9AE02.roa (raw, json) Hash identifier: 4kX/bMiiNEW4Y7jRP8PNbv+eh0k+hLB9jvnlH+HvCg8= Subject key identifier: 32:7F:6D:D9:25:0B:02:88:CC:A9:99:55:76:5A:87:5B:AD:D2:5F:41 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 127A Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa Signing time: Thu 30 May 2024 11:30:47 +0000 ROA not before: Thu 30 May 2024 11:30:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 3561 IP address blocks: 103.11.68.0/22 maxlen: 24 115.167.5.0/24 maxlen: 24 115.167.6.0/24 maxlen: 24 115.167.9.0/24 maxlen: 24 115.167.10.0/24 maxlen: 24 115.167.96.0/22 maxlen: 24 175.110.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4730 (0x127a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: May 30 11:30:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66586367-2e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d4:d8:c9:88:cb:b8:1b:b3:13:55:d6:f1:c9: 22:b6:50:83:c1:a8:fe:bd:04:d7:ea:a9:1d:b4:c5: 8e:99:86:3b:1a:8f:45:69:83:14:32:8a:ed:47:38: 89:e5:ea:c4:41:54:c3:ec:7e:e8:0e:ea:2b:85:5c: 63:b0:ea:42:a3:d7:55:cd:b0:63:41:49:57:60:fb: 0e:11:80:9e:32:bf:53:80:c2:92:40:e6:e3:ea:f8: 24:50:5b:2d:2e:5d:d5:b5:33:66:42:4c:9c:fe:86: ca:fa:40:1c:8a:75:ca:e6:e5:f9:3c:84:f4:2d:e5: e4:53:fe:3d:58:a2:de:5d:42:9a:d9:65:2b:da:d7: df:87:b1:34:c9:aa:24:14:9f:56:c0:24:11:2b:3b: 72:b4:ee:bb:a0:0a:ea:d4:42:ad:36:13:19:bf:6e: 10:cb:2e:75:3e:91:9e:f1:44:7c:68:a4:42:0a:4d: fb:bf:b2:9a:89:1b:10:36:d7:4e:53:6e:27:94:c1: 35:f7:88:14:91:c6:d6:14:42:a2:5c:e2:49:1d:d4: 2a:40:0a:f6:b6:4a:0f:20:02:0b:85:24:0b:2d:be: 1e:87:43:10:78:a2:42:ce:cf:e5:a0:0a:b2:d9:3a: 27:67:0c:72:ce:c6:d3:e3:f1:90:76:d2:4c:0d:32: 32:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7F:6D:D9:25:0B:02:88:CC:A9:99:55:76:5A:87:5B:AD:D2:5F:41 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/B39DCB807ADA11ED96D52C3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.68.0/22 115.167.5.0-115.167.6.255 115.167.9.0-115.167.10.255 115.167.96.0/22 175.110.100.0/22 Signature Algorithm: sha256WithRSAEncryption 48:d0:a5:a9:46:b5:66:a4:00:60:3f:22:5c:83:fb:db:fe:04: ae:c7:30:2a:42:48:31:99:d9:10:35:da:f3:7d:26:b0:96:66: fd:4f:85:eb:20:f9:54:be:a9:29:b5:f9:0b:8d:6e:4d:3c:dc: e1:11:68:51:38:18:52:d6:24:8e:a8:58:cc:47:25:cb:7f:fc: 9b:d2:b7:35:2d:fe:ed:35:75:93:f5:a5:d3:0f:18:a1:07:b4: 04:be:7d:35:65:fc:a7:63:2c:1e:d8:7f:c4:97:6b:19:bb:b0: f3:77:5a:84:37:65:5f:2f:f8:0d:d5:34:6e:7e:65:5b:90:2b: f8:6e:17:d6:3a:f7:c5:96:b4:87:57:52:69:07:7c:21:5a:30: 00:4a:a9:ae:04:4f:84:0d:bf:05:9b:c6:0d:da:f8:73:29:be: db:7d:a8:06:a0:ea:bd:72:96:c5:36:e1:ad:db:08:54:c0:50: 7f:9e:df:a4:c1:38:88:a2:e5:8c:d2:f5:48:74:32:4b:8d:c1: 36:2b:10:81:51:89:e5:76:a7:52:01:70:d9:c4:9c:88:83:b8: 99:1c:91:0d:5a:ec:38:8b:03:22:a1:af:d9:71:ff:7b:fd:e4: 0b:6a:e5:2c:7b:6e:2e:57:97:ab:70:cd:9a:44:b7:d6:79:1c: c1:ed:cb:8a -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICEnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQwNTMwMTEzMDQ3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4NjM2Ny0yZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59TYyYjLuBuzE1XW8ckitlCDwaj+vQTX6qkdtMWOmYY7Go9FaYMUMortRziJ 5erEQVTD7H7oDuorhVxjsOpCo9dVzbBjQUlXYPsOEYCeMr9TgMKSQObj6vgkUFst Ll3VtTNmQkyc/obK+kAcinXK5uX5PIT0LeXkU/49WKLeXUKa2WUr2tffh7E0yaok FJ9WwCQRKztytO67oArq1EKtNhMZv24Qyy51PpGe8UR8aKRCCk37v7KaiRsQNtdO U24nlME194gUkcbWFEKiXOJJHdQqQAr2tkoPIAILhSQLLb4eh0MQeKJCzs/loAqy 2TonZwxyzsbT4/GQdtJMDTIyXQIDAQABo4ICvTCCArkwHQYDVR0OBBYEFDJ/bdkl CwKIzKmZVXZah1ut0l9BMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvQjM5RENCODA3 QURBMTFFRDk2RDUyQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MDQEAgABMC4DBAJnC0QwDAMEAHOnBQMEAHOnBjAMAwQAc6cJAwQAc6cKAwQC c6dgAwQCr25kMA0GCSqGSIb3DQEBCwUAA4IBAQBI0KWpRrVmpABgPyJcg/vb/gSu xzAqQkgxmdkQNdrzfSawlmb9T4XrIPlUvqkptfkLjW5NPNzhEWhROBhS1iSOqFjM RyXLf/yb0rc1Lf7tNXWT9aXTDxihB7QEvn01ZfynYywe2H/El2sZu7Dzd1qEN2Vf L/gN1TRufmVbkCv4bhfWOvfFlrSHV1JpB3whWjAASqmuBE+EDb8Fm8YN2vhzKb7b fagGoOq9cpbFNuGt2whUwFB/nt+kwTiIouWM0vVIdDJLjcE2KxCBUYnldqdSAXDZ xJyIg7iZHJENWuw4iwMioa/Zcf97/eQLauUse24uV5ercM2aRLfWeRzB7cuK -----END CERTIFICATE-----Generated at Fri May 31 23:53:09 2024 by rpki-client on console-fra.rpki-client.org