$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa File: 08ADD496B19E11EC86ADF246C4F9AE02.roa (raw, json) Hash identifier: yGqCF5v+KObB7qjgr+mXcAd6zcIwQYt5WbjRgGaPcCk= Subject key identifier: 8D:41:51:97:8D:12:C2:F6:C2:E8:24:26:08:DE:29:10:8B:9F:C8:0A Certificate issuer: /CN=A91EEA4D/serialNumber=281E953DAE717280A16E4BC56E41352E84763CBC Certificate serial: 077A Authority key identifier: 28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa Signing time: Tue 18 Jun 2024 20:46:09 +0000 ROA not before: Tue 18 Jun 2024 20:46:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138561 IP address blocks: 103.133.4.0/22 maxlen: 22 103.133.4.0/23 maxlen: 23 103.133.4.0/24 maxlen: 24 103.133.5.0/24 maxlen: 24 103.133.6.0/23 maxlen: 23 103.133.6.0/24 maxlen: 24 103.133.7.0/24 maxlen: 24 2404:44c0::/32 maxlen: 32 2404:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEA4D/serialNumber=281E953DAE717280A16E4BC56E41352E84763CBC Validity Not Before: Jun 18 20:46:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6671f211-b5b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e9:41:27:15:bc:5e:09:bb:2f:b1:9f:d3:34: 63:67:50:f7:1e:74:6d:53:bf:6a:f4:81:1e:f0:75: 51:15:ee:61:bd:29:05:de:ba:32:03:ab:71:7b:2a: f2:e0:81:6d:e6:03:a3:5b:20:63:39:da:9a:5f:07: 4e:4a:a3:c0:49:94:52:dd:9d:58:5e:a4:32:62:18: 0a:f9:07:cf:21:55:a0:dd:d6:17:f1:c3:6c:36:95: 24:9d:c6:7b:04:7b:bf:5b:35:f8:f8:5a:4e:78:6c: df:37:b5:f6:7b:ba:e3:14:8d:fd:e3:e0:c9:34:cf: 3f:1a:82:1e:e0:b4:84:fb:60:e2:f3:8c:f6:6b:1d: ff:3b:e7:e9:e4:65:33:aa:b6:ad:d1:fa:e4:93:ad: 75:f7:42:28:e8:14:d0:13:7b:5f:ac:6a:30:e9:ab: 5e:a1:89:1e:3f:d7:d0:7b:e3:ba:3b:d3:26:4f:d1: eb:0f:33:14:d2:88:38:c6:39:61:6b:5c:6b:61:f5: 91:43:b7:4c:15:fe:47:b9:1d:fd:81:b3:a4:ff:0c: e6:0e:fe:5f:f5:a4:d5:a9:5b:09:11:28:ba:6e:c9: a2:f4:f8:94:36:33:63:1f:d4:d4:9d:f1:e5:d1:2e: a4:56:be:e2:29:9b:12:b1:31:b0:07:63:0b:07:6b: 57:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:41:51:97:8D:12:C2:F6:C2:E8:24:26:08:DE:29:10:8B:9F:C8:0A X509v3 Authority Key Identifier: keyid:28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.4.0/22 IPv6: 2404:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 44:4e:02:f1:2d:40:d0:a8:fb:5c:b0:ec:e2:87:e3:86:91:92: b7:ca:9d:97:36:de:5f:58:1f:f6:3d:4d:59:49:88:bb:7c:0c: 03:f8:0b:ee:e2:82:ef:e1:a8:3e:80:eb:93:c8:6f:29:c2:7e: 61:26:35:33:fe:50:04:3e:b4:36:32:ec:8b:4f:6a:c2:9a:89: 76:16:6e:d2:d1:16:fe:b8:0b:ce:9d:4e:e3:52:3a:25:76:22: 5b:32:2b:ad:67:dc:79:8c:de:ea:9b:64:e4:48:a6:4e:48:ae: 4f:60:af:45:06:93:8b:12:ee:8c:71:b8:45:68:01:51:36:7f: 4b:9b:7b:f1:26:d1:a3:2f:c2:3f:d4:8f:a5:65:40:54:aa:4f: 6e:fb:d8:90:f8:cd:75:d0:c9:2f:26:92:0c:27:82:0e:01:d4: ba:68:8b:f3:9c:3b:c2:99:2f:dc:40:a3:5a:31:2b:38:27:12: 86:39:52:64:3e:b6:6e:3e:30:6d:db:64:88:d4:cc:52:55:81: 6e:eb:c3:6a:e4:05:9d:26:8e:33:99:5d:bd:12:1d:22:ef:87: 0e:b9:04:79:d2:ee:a5:e8:d5:75:57:da:7d:6e:b8:a0:f7:7e: e6:6d:2f:80:76:eb:15:88:44:55:4a:71:be:65:d9:d7:1d:e7: c8:95:1b:cd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVBNEQxMTAvBgNVBAUTKDI4MUU5NTNEQUU3MTcyODBBMTZFNEJDNTZFNDEzNTJF ODQ3NjNDQkMwHhcNMjQwNjE4MjA0NjA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcxZjIxMS1iNWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+lBJxW8Xgm7L7Gf0zRjZ1D3HnRtU79q9IEe8HVRFe5hvSkF3royA6txeyry 4IFt5gOjWyBjOdqaXwdOSqPASZRS3Z1YXqQyYhgK+QfPIVWg3dYX8cNsNpUkncZ7 BHu/WzX4+FpOeGzfN7X2e7rjFI394+DJNM8/GoIe4LSE+2Di84z2ax3/O+fp5GUz qrat0frkk61190Io6BTQE3tfrGow6ateoYkeP9fQe+O6O9MmT9HrDzMU0og4xjlh a1xrYfWRQ7dMFf5HuR39gbOk/wzmDv5f9aTVqVsJESi6bsmi9PiUNjNjH9TUnfHl 0S6kVr7iKZsSsTGwB2MLB2tXTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI1BUZeN EsL2wugkJgjeKRCLn8gKMB8GA1UdIwQYMBaAFCgelT2ucXKAoW5LxW5BNS6Edjy8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUE0RC82NjFGNzNFQzQ3 MzcxMUVBQUIxNkJCNTBDNEY5QUUwMi9LQjZWUGE1eGNvQ2hia3ZGYmtFMUxvUjJQ THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCNlZQYTV4Y29DaGJrdkZia0UxTG9SMlBMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBNEQvNjYxRjczRUM0NzM3MTFFQUFCMTZCQjUwQzRGOUFFMDIvMDhBREQ0OTZC MTlFMTFFQzg2QURGMjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhQQwDQQCAAIwBwMFACQERMAwDQYJKoZIhvcNAQELBQAD ggEBAEROAvEtQNCo+1yw7OKH44aRkrfKnZc23l9YH/Y9TVlJiLt8DAP4C+7igu/h qD6A65PIbynCfmEmNTP+UAQ+tDYy7ItPasKaiXYWbtLRFv64C86dTuNSOiV2Ilsy K61n3HmM3uqbZORIpk5Irk9gr0UGk4sS7oxxuEVoAVE2f0ube/Em0aMvwj/Uj6Vl QFSqT2772JD4zXXQyS8mkgwngg4B1Lpoi/OcO8KZL9xAo1oxKzgnEoY5UmQ+tm4+ MG3bZIjUzFJVgW7rw2rkBZ0mjjOZXb0SHSLvhw65BHnS7qXo1XVX2n1uuKD3fuZt L4B26xWIRFVKcb5l2dcd58iVG80= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org