$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5E89A9888CBD11EFBA479615C4F9AE02.roa File: 5E89A9888CBD11EFBA479615C4F9AE02.roa (raw, json) Hash identifier: YUDcoFmZ6Z8eSf+ykpnCcDAS77nR9kd6RW9K0Z7WPIA= Subject key identifier: EB:FB:D4:F1:00:CF:5A:D3:F7:25:0D:90:20:72:76:1D:BF:01:C7:8D Certificate issuer: /CN=A91EDFAF/serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Certificate serial: 08 Authority key identifier: 0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5E89A9888CBD11EFBA479615C4F9AE02.roa Signing time: Fri 18 Oct 2024 01:05:26 +0000 ROA not before: Fri 18 Oct 2024 01:05:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132805 IP address blocks: 103.2.104.0/24 maxlen: 24 103.2.107.0/24 maxlen: 24 223.130.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDFAF/serialNumber=0E663CB4900EF4D822F99ABDE27FA403AB9F4C40 Validity Not Before: Oct 18 01:05:26 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6711b456-3809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fb:1c:28:8b:9c:6a:7b:c8:b6:59:b5:7b:c0: b6:a9:46:8a:97:b9:55:bc:23:51:31:9f:0d:26:4a: a9:d8:b2:b2:f3:83:ce:9b:1e:00:b0:17:72:ff:b4: 7b:22:92:e6:16:4c:a2:d3:53:3c:89:de:d5:fb:ac: 4c:8c:31:ed:a3:6a:dd:da:f6:95:07:86:55:c9:7e: 70:f6:95:2a:a8:58:b5:3c:e5:df:3c:14:7b:fe:e2: 66:a2:83:92:5c:4c:95:96:05:b3:dc:a1:5a:44:91: ff:c3:e2:11:ff:22:6f:fe:04:c3:be:a3:15:46:b6: 6d:cb:6c:e3:53:7c:58:2b:e8:c3:84:0a:9f:82:a6: ad:92:8e:9d:94:a0:ed:69:cc:1f:17:7a:d6:b2:52: b0:b2:da:c1:33:1e:51:8f:1e:f0:11:bc:e1:5a:c0: 25:fb:08:b2:2d:07:5e:7f:e9:66:8d:62:75:c2:e1: b5:57:95:5d:ce:db:9f:62:87:6e:50:75:8b:11:c6: d1:76:fd:83:f2:ba:f7:03:17:c7:63:00:63:10:92: ca:f1:42:ad:9a:fd:a2:50:42:24:f8:1f:2b:99:2e: e3:5f:22:6e:37:1f:43:2d:8e:cc:a7:69:ca:60:0c: d3:9c:f7:d5:55:a3:36:c6:47:9d:93:90:4d:65:15: 8e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FB:D4:F1:00:CF:5A:D3:F7:25:0D:90:20:72:76:1D:BF:01:C7:8D X509v3 Authority Key Identifier: keyid:0E:66:3C:B4:90:0E:F4:D8:22:F9:9A:BD:E2:7F:A4:03:AB:9F:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmY8tJAO9Ngi-Zq94n-kA6ufTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDFAF/97BE930E8CBC11EFBF220012C4F9AE02/5E89A9888CBD11EFBA479615C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.104.0/24 103.2.107.0/24 223.130.0.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:b1:14:0b:85:e0:b6:0f:aa:5d:ec:a2:ba:c8:a5:64:74:62: f2:3c:9e:b7:15:af:05:fb:0b:c3:69:fe:a7:02:89:52:12:86: e2:13:b9:b6:81:f8:4d:88:1c:9c:33:0e:a0:d4:1d:75:ce:77: 57:43:95:79:e2:13:b0:5b:46:de:0e:b2:7a:2a:5d:27:40:0e: 23:71:e4:63:31:99:83:3e:6c:65:fb:9a:34:55:83:fe:a1:df: b8:bd:6a:c5:a0:40:1d:d5:92:c5:a7:5c:e5:e3:fd:5c:8a:f3: b0:a3:8b:ab:f5:25:ab:a3:92:81:27:28:30:7a:9c:f9:e3:0c: f3:a5:2e:4f:69:32:d0:20:bf:59:b6:03:a2:1f:77:7d:2e:fc: c2:46:4c:08:12:f3:83:c7:30:1d:61:0f:bd:e9:44:d7:f3:86: 8c:dc:23:9d:c9:12:92:59:8f:2a:e9:c2:f5:aa:74:fd:1e:00: be:41:08:ea:c9:03:a6:9b:d2:97:86:5e:27:1b:4e:54:ff:03: c6:36:4a:a9:70:f8:6b:60:f7:72:9d:ec:dc:d9:bb:35:1e:0c: 25:7b:93:2b:1b:55:44:f8:eb:47:00:8e:af:44:38:fc:76:11: 5f:42:70:68:37:15:c9:0e:e8:48:f8:6e:e0:b6:79:da:d0:58: f7:a7:dd:77 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REZBRjExMC8GA1UEBRMoMEU2NjNDQjQ5MDBFRjREODIyRjk5QUJERTI3RkE0MDNB QjlGNEM0MDAeFw0yNDEwMTgwMTA1MjZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTFiNDU2LTM4MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD+xwoi5xqe8i2WbV7wLapRoqXuVW8I1Exnw0mSqnYsrLzg86bHgCwF3L/tHsi kuYWTKLTUzyJ3tX7rEyMMe2jat3a9pUHhlXJfnD2lSqoWLU85d88FHv+4maig5Jc TJWWBbPcoVpEkf/D4hH/Im/+BMO+oxVGtm3LbONTfFgr6MOECp+Cpq2Sjp2UoO1p zB8XetayUrCy2sEzHlGPHvARvOFawCX7CLItB15/6WaNYnXC4bVXlV3O259ih25Q dYsRxtF2/YPyuvcDF8djAGMQksrxQq2a/aJQQiT4HyuZLuNfIm43H0Mtjsynacpg DNOc99VVozbGR52TkE1lFY7NAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQU6/vU8QDP WtP3JQ2QIHJ2Hb8Bx40wHwYDVR0jBBgwFoAUDmY8tJAO9Ngi+Zq94n+kA6ufTEAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVERkFGLzk3QkU5MzBFOENC QzExRUZCRjIyMDAxMkM0RjlBRTAyL0RtWTh0SkFPOU5naS1acTk0bi1rQTZ1ZlRF QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG1ZOHRKQU85TmdpLVpxOTRuLWtBNnVmVEVBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REZBRi85N0JFOTMwRThDQkMxMUVGQkYyMjAwMTJDNEY5QUUwMi81RTg5QTk4ODhD QkQxMUVGQkE0Nzk2MTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAGcCaAMEAGcCawMEAt+CADANBgkqhkiG9w0BAQsFAAOCAQEA GrEUC4Xgtg+qXeyiusilZHRi8jyetxWvBfsLw2n+pwKJUhKG4hO5toH4TYgcnDMO oNQddc53V0OVeeITsFtG3g6yeipdJ0AOI3HkYzGZgz5sZfuaNFWD/qHfuL1qxaBA HdWSxadc5eP9XIrzsKOLq/Ulq6OSgScoMHqc+eMM86UuT2ky0CC/WbYDoh93fS78 wkZMCBLzg8cwHWEPvelE1/OGjNwjnckSklmPKunC9ap0/R4AvkEI6skDppvSl4Ze JxtOVP8DxjZKqXD4a2D3cp3s3Nm7NR4MJXuTKxtVRPjrRwCOr0Q4/HYRX0JwaDcV yQ7oSPhu4LZ52tBY96fddw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org