$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/D93EA75AEE5C11E995881B1BC4F9AE02.roa File: D93EA75AEE5C11E995881B1BC4F9AE02.roa (raw, json) Hash identifier: gjp3o9tIm4VyqLrJwyLfxpBmtpdyfXJMbbExRvAW/uQ= Subject key identifier: 79:05:EF:73:F3:67:A4:F5:A1:AB:80:B5:16:20:71:7C:B9:B3:1A:1A Certificate issuer: /CN=A91E7363/serialNumber=A897C04DE12F0A6F59C1AD1509F0B209FA5438B3 Certificate serial: 33E2 Authority key identifier: A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/D93EA75AEE5C11E995881B1BC4F9AE02.roa Signing time: Wed 31 Jan 2024 14:40:27 +0000 ROA not before: Wed 31 Jan 2024 14:40:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45489 IP address blocks: 103.87.124.0/23 maxlen: 24 203.96.160.0/22 maxlen: 22 2001:df4:1b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.crl rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13282 (0x33e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7363/serialNumber=A897C04DE12F0A6F59C1AD1509F0B209FA5438B3 Validity Not Before: Jan 31 14:40:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ba5bdb-0181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c4:85:2c:42:3e:ab:98:81:35:8c:61:14:46: 3b:ef:39:ab:4c:93:37:46:19:65:57:0f:4b:30:7c: 44:8c:2d:fa:10:9d:1e:d1:44:51:a9:cb:50:d7:34: 94:e4:4b:a3:e6:ec:f3:74:3e:a4:b9:ba:ef:85:b7: 20:30:27:cb:60:f3:4c:2a:b6:78:59:87:8a:73:03: dd:d5:2d:b3:63:1b:23:ce:01:6f:7b:d5:31:9a:fb: de:07:a0:4f:a9:b2:e7:60:83:46:42:54:b6:2a:48: 9e:ac:19:47:61:4c:70:f1:26:98:63:c6:e0:7f:e7: 89:0b:9f:28:6d:14:41:f7:60:4a:17:6b:85:f8:7b: c0:e3:b4:93:87:60:ab:f1:f0:73:01:53:ed:3c:53: e7:3d:b3:5e:fa:c0:a6:32:03:8e:1f:a1:62:93:41: f2:81:d0:78:26:32:49:e8:db:5d:4f:31:1f:97:57: 07:7a:a5:d1:53:bf:5b:b7:7f:49:b3:80:c0:8a:2f: 19:0f:62:32:74:b6:7e:6d:ca:7c:45:cb:e4:50:18: 39:1a:32:43:75:bd:54:67:c7:7d:6e:0f:ec:7b:af: 25:1a:1f:37:a7:cf:22:8f:08:26:ff:29:d1:51:48: 69:95:b7:93:c5:2e:fc:69:1f:ec:78:7e:7b:58:cd: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:05:EF:73:F3:67:A4:F5:A1:AB:80:B5:16:20:71:7C:B9:B3:1A:1A X509v3 Authority Key Identifier: keyid:A8:97:C0:4D:E1:2F:0A:6F:59:C1:AD:15:09:F0:B2:09:FA:54:38:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJfATeEvCm9Zwa0VCfCyCfpUOLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7363/FF8B4B6C1D8411E28CD33DDB08B02CD2/D93EA75AEE5C11E995881B1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.124.0/23 203.96.160.0/22 IPv6: 2001:df4:1b00::/48 Signature Algorithm: sha256WithRSAEncryption af:8d:70:26:e8:8d:17:c3:6e:81:15:69:12:27:62:9c:9e:fd: dc:0b:54:f8:da:ed:03:80:f2:2d:32:94:a7:36:df:ec:18:d0: 47:61:ba:27:e0:a2:3c:85:60:d3:1e:c3:ad:f9:3a:24:ae:3e: 34:53:62:50:5b:be:db:af:d6:e5:6e:99:7a:44:e8:f2:87:3b: 2b:e8:43:92:e5:ee:95:e7:d7:5e:de:b6:13:43:23:3e:80:61: 9f:7a:a2:79:da:d9:38:36:c6:36:95:8c:ac:97:79:f0:47:a2: 16:f4:a7:55:fd:0c:77:bf:36:72:24:e2:5e:31:bd:c8:2b:34: b1:6c:77:c2:d4:82:34:3c:a1:61:cb:39:ef:29:52:1a:bd:7f: 0c:80:4d:c5:4e:49:e1:c8:0c:19:0d:51:88:ef:97:cf:78:60: 7d:0d:96:bc:32:59:fe:4d:69:81:a0:34:0b:0f:9f:e6:cd:ee: 60:b7:24:dc:14:17:f9:61:a6:0f:c7:37:c1:17:20:97:36:10: c5:d4:cf:64:0b:ce:07:ac:26:3c:5b:67:4d:2b:7b:0d:f2:f6: c1:82:ed:b8:b3:37:a0:5d:ca:4e:d6:8a:34:46:21:45:e4:82: e0:b0:7a:4e:12:e4:7e:20:c2:e3:07:32:94:4c:ff:82:ea:01: cc:da:f4:b3 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICM+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNjMxMTAvBgNVBAUTKEE4OTdDMDRERTEyRjBBNkY1OUMxQUQxNTA5RjBCMjA5 RkE1NDM4QjMwHhcNMjQwMTMxMTQ0MDI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhNWJkYi0wMTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18SFLEI+q5iBNYxhFEY77zmrTJM3RhllVw9LMHxEjC36EJ0e0URRqctQ1zSU 5Euj5uzzdD6kubrvhbcgMCfLYPNMKrZ4WYeKcwPd1S2zYxsjzgFve9UxmvveB6BP qbLnYINGQlS2KkierBlHYUxw8SaYY8bgf+eJC58obRRB92BKF2uF+HvA47STh2Cr 8fBzAVPtPFPnPbNe+sCmMgOOH6Fik0HygdB4JjJJ6NtdTzEfl1cHeqXRU79bt39J s4DAii8ZD2IydLZ+bcp8RcvkUBg5GjJDdb1UZ8d9bg/se68lGh83p88ijwgm/ynR UUhplbeTxS78aR/seH57WM3WvQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHkF73Pz Z6T1oauAtRYgcXy5sxoaMB8GA1UdIwQYMBaAFKiXwE3hLwpvWcGtFQnwsgn6VDiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM2My9GRjhCNEI2QzFE ODQxMUUyOENEMzNEREIwOEIwMkNEMi9xSmZBVGVFdkNtOVp3YTBWQ2ZDeUNmcFVP TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKZkFUZUV2Q205WndhMFZDZkN5Q2ZwVU9MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNjMvRkY4QjRCNkMxRDg0MTFFMjhDRDMzRERCMDhCMDJDRDIvRDkzRUE3NUFF RTVDMTFFOTk1ODgxQjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnV3wDBALLYKAwDwQCAAIwCQMHACABDfQbADANBgkqhkiG 9w0BAQsFAAOCAQEAr41wJuiNF8NugRVpEidinJ793AtU+NrtA4DyLTKUpzbf7BjQ R2G6J+CiPIVg0x7Drfk6JK4+NFNiUFu+26/W5W6ZekTo8oc7K+hDkuXulefXXt62 E0MjPoBhn3qiedrZODbGNpWMrJd58EeiFvSnVf0Md782ciTiXjG9yCs0sWx3wtSC NDyhYcs57ylSGr1/DIBNxU5J4cgMGQ1RiO+Xz3hgfQ2WvDJZ/k1pgaA0Cw+f5s3u YLck3BQX+WGmD8c3wRcglzYQxdTPZAvOB6wmPFtnTSt7DfL2wYLtuLM3oF3KTtaK NEYhReSC4LB6ThLkfiDC4wcylEz/guoBzNr0sw== -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:44 2024 by rpki-client on console-fra.rpki-client.org