$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa File: 2FC13F564ED511EA945E3314C4F9AE02.roa (raw, json) Hash identifier: TXPw1rBEL7FEvLcSdgq3HIrDA+j+HPbArLAJjSl35pE= Subject key identifier: C3:C1:FF:57:53:23:44:F3:DA:B5:D7:D9:D9:A1:7F:02:CF:5E:04:36 Certificate issuer: /CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Certificate serial: 0A20 Authority key identifier: 0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa Signing time: Fri 24 May 2024 20:59:57 +0000 ROA not before: Fri 24 May 2024 20:59:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138965 IP address blocks: 103.137.204.0/22 maxlen: 22 103.137.204.0/24 maxlen: 24 103.137.205.0/24 maxlen: 24 103.137.206.0/24 maxlen: 24 103.137.207.0/24 maxlen: 24 2400:d3e0::/32 maxlen: 32 2400:d3e0::/35 maxlen: 35 2400:d3e0::/48 maxlen: 48 2400:d3e0:1::/48 maxlen: 48 2400:d3e0:2::/48 maxlen: 48 2400:d3e0:3::/48 maxlen: 48 2400:d3e0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:16:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2592 (0xa20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC82/serialNumber=0A9B6981B12D5A4D2DF36EE9D280A6595C325136 Validity Not Before: May 24 20:59:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6650ffcd-3b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bc:4d:b8:1d:23:2b:d4:2e:6f:21:51:1e:ad: 16:a8:b0:ba:48:89:ce:f5:7c:30:62:50:0f:ed:57: 73:fe:ca:7c:7d:14:ed:6a:7e:33:9c:55:98:7c:f9: 4c:13:9f:44:12:47:77:47:27:f1:51:a9:86:6c:59: ef:27:60:8b:38:12:6a:70:57:43:42:0d:23:7c:7a: c4:74:ed:9a:75:e0:56:1c:33:cc:83:c8:49:1f:21: 1d:c8:4a:83:15:18:63:92:d7:ec:de:92:cf:3a:a3: 0d:2b:d9:06:2e:03:ef:e6:24:0c:5a:1a:36:7c:d5: d7:67:c6:6b:62:f7:bc:9b:23:42:f7:ce:ee:93:bd: f7:1a:68:8d:d6:cf:1f:f9:b8:39:16:e6:68:ad:5b: ec:d7:97:d5:6c:4c:6f:09:1b:ec:cf:63:c4:b6:44: 4a:7f:99:f9:81:ee:a9:ec:a1:81:1b:e9:e0:79:8f: 17:a3:7e:a6:af:91:0b:4a:97:ec:79:2d:83:01:97: e8:73:dd:51:44:e5:7c:ea:e4:cf:9b:a1:97:10:bf: fb:86:8c:ac:36:46:02:f4:49:7d:d1:54:ab:01:0a: b2:39:7f:aa:bb:85:a9:13:53:3b:d3:6f:a6:ce:56: 32:0c:4f:7e:e4:fe:42:92:ef:3e:22:34:59:6a:ab: 60:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C1:FF:57:53:23:44:F3:DA:B5:D7:D9:D9:A1:7F:02:CF:5E:04:36 X509v3 Authority Key Identifier: keyid:0A:9B:69:81:B1:2D:5A:4D:2D:F3:6E:E9:D2:80:A6:59:5C:32:51:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/CptpgbEtWk0t827p0oCmWVwyUTY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CptpgbEtWk0t827p0oCmWVwyUTY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC82/CBD893A04ED311EAAD7BA211C4F9AE02/2FC13F564ED511EA945E3314C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.204.0/22 IPv6: 2400:d3e0::/32 Signature Algorithm: sha256WithRSAEncryption 59:f1:5a:1b:40:12:48:7c:3e:62:46:e7:da:99:cb:ca:21:84: cf:44:0b:5e:8b:01:65:73:0d:da:8f:05:c0:85:a2:4f:b8:86: 65:13:73:0f:df:e5:ad:72:b4:d2:82:82:25:89:b4:a2:ce:11: aa:d6:da:9c:26:4b:66:be:cb:74:1d:48:46:54:d0:1e:ef:8e: 11:bd:db:bf:0c:2f:77:94:d7:67:5a:8a:2a:e0:3d:89:f4:ae: ae:46:5c:93:3e:28:25:38:d0:10:55:c7:a7:3d:a8:6d:f5:dd: 42:e9:11:dd:91:d4:86:11:31:3f:17:27:f2:11:17:f4:3f:11: 47:48:10:19:b2:8a:1f:9c:27:35:d4:d0:bb:b8:c0:d3:c3:31: 8a:72:79:d4:07:1f:70:e6:91:e4:16:c9:66:d4:dd:10:1e:1f: 52:dc:26:72:47:54:54:87:5b:cc:39:4f:b5:f4:6e:d9:37:1c: 15:2d:3c:e0:24:c0:18:ac:ab:df:dd:21:2e:b9:37:bf:11:1a: 24:ff:dc:53:c8:59:aa:86:c5:e0:5d:cd:7f:01:a4:c3:4a:e0: 88:86:99:8b:18:a4:22:ca:d3:1d:71:9c:ef:20:8a:d0:9e:08: 1f:c7:c7:a3:b4:18:c8:f6:8c:19:76:e6:7b:2d:d1:23:11:15: 53:c4:66:aa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFDODIxMTAvBgNVBAUTKDBBOUI2OTgxQjEyRDVBNEQyREYzNkVFOUQyODBBNjU5 NUMzMjUxMzYwHhcNMjQwNTI0MjA1OTU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUwZmZjZC0zYjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrxNuB0jK9QubyFRHq0WqLC6SInO9XwwYlAP7Vdz/sp8fRTtan4znFWYfPlM E59EEkd3RyfxUamGbFnvJ2CLOBJqcFdDQg0jfHrEdO2adeBWHDPMg8hJHyEdyEqD FRhjktfs3pLPOqMNK9kGLgPv5iQMWho2fNXXZ8ZrYve8myNC987uk733GmiN1s8f +bg5FuZorVvs15fVbExvCRvsz2PEtkRKf5n5ge6p7KGBG+ngeY8Xo36mr5ELSpfs eS2DAZfoc91RROV86uTPm6GXEL/7hoysNkYC9El90VSrAQqyOX+qu4WpE1M702+m zlYyDE9+5P5Cku8+IjRZaqtgzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMPB/1dT I0Tz2rXX2dmhfwLPXgQ2MB8GA1UdIwQYMBaAFAqbaYGxLVpNLfNu6dKApllcMlE2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUM4Mi9DQkQ4OTNBMDRF RDMxMUVBQUQ3QkEyMTFDNEY5QUUwMi9DcHRwZ2JFdFdrMHQ4MjdwMG9DbVdWd3lV VFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwdHBnYkV0V2swdDgyN3Awb0NtV1Z3eVVUWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFDODIvQ0JEODkzQTA0RUQzMTFFQUFEN0JBMjExQzRGOUFFMDIvMkZDMTNGNTY0 RUQ1MTFFQTk0NUUzMzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnicwwDQQCAAIwBwMFACQA0+AwDQYJKoZIhvcNAQELBQAD ggEBAFnxWhtAEkh8PmJG59qZy8ohhM9EC16LAWVzDdqPBcCFok+4hmUTcw/f5a1y tNKCgiWJtKLOEarW2pwmS2a+y3QdSEZU0B7vjhG9278ML3eU12daiirgPYn0rq5G XJM+KCU40BBVx6c9qG313ULpEd2R1IYRMT8XJ/IRF/Q/EUdIEBmyih+cJzXU0Lu4 wNPDMYpyedQHH3DmkeQWyWbU3RAeH1LcJnJHVFSHW8w5T7X0btk3HBUtPOAkwBis q9/dIS65N78RGiT/3FPIWaqGxeBdzX8BpMNK4IiGmYsYpCLK0x1xnO8gitCeCB/H x6O0GMj2jBl25nst0SMRFVPEZqo= -----END CERTIFICATE-----Generated at Fri May 31 22:13:12 2024 by rpki-client on console-fra.rpki-client.org