$ rpki-client -vvf rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/5541D6A21F9A11EE9BB7905DC4F9AE02.roa File: 5541D6A21F9A11EE9BB7905DC4F9AE02.roa (raw, json) Hash identifier: ZCVYghnlBBULLQqokv1P6cracGy0h9WOzePiXeVHY4A= Subject key identifier: 34:91:18:0F:08:78:97:DC:B9:82:18:AB:4A:13:E3:29:DB:20:04:D7 Certificate issuer: /CN=A91F583B/serialNumber=CA7CEEF918807E671B1624E63AB6F68103DFD5E3 Certificate serial: CF Authority key identifier: CA:7C:EE:F9:18:80:7E:67:1B:16:24:E6:3A:B6:F6:81:03:DF:D5:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/5541D6A21F9A11EE9BB7905DC4F9AE02.roa Signing time: Wed 07 Aug 2024 05:26:30 +0000 ROA not before: Wed 07 Aug 2024 05:26:30 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151491 IP address blocks: 103.239.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.crl rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F583B/serialNumber=CA7CEEF918807E671B1624E63AB6F68103DFD5E3 Validity Not Before: Aug 7 05:26:30 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b30586-232f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:7e:fc:31:ae:bd:83:4f:4e:21:49:1c:44: 25:10:ee:f4:21:20:4c:d4:1f:de:c7:3c:06:7a:00: d3:6c:33:a6:fc:01:86:81:27:92:24:81:bf:b8:22: 15:c3:25:e9:56:32:7d:38:5e:2b:36:ba:06:1e:b1: a0:ff:5c:bb:e0:b9:cd:85:df:89:37:3a:5d:0f:c3: 4c:5e:b7:96:6b:dd:db:25:60:2c:ad:48:c2:c5:32: 2a:3f:38:02:09:6f:77:97:fc:db:68:69:bf:48:6c: 5a:57:46:1e:2d:5c:49:d0:1b:90:6f:30:6a:46:a8: 30:e9:a6:9a:32:28:ce:8b:5b:67:77:42:ac:53:0f: 5a:1e:49:cd:46:24:5e:bc:c6:72:9b:b2:e4:3a:f6: 48:68:74:8f:5b:76:45:bc:0b:e5:9d:04:4f:c1:79: fd:df:39:16:df:e9:14:23:67:84:93:8e:04:5b:1b: 64:54:ad:f7:28:b4:23:c7:13:69:53:6d:ed:96:fd: f9:0e:ec:83:7b:4f:85:cc:ad:5d:84:06:31:83:50: 88:c7:da:22:1e:0d:31:9b:97:56:93:22:e7:61:b9: c3:9a:18:10:89:7e:8b:c7:e8:22:e4:b3:ea:21:e5: 3b:11:39:ed:4c:ef:95:cb:fa:bd:49:52:33:31:fc: f4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:91:18:0F:08:78:97:DC:B9:82:18:AB:4A:13:E3:29:DB:20:04:D7 X509v3 Authority Key Identifier: keyid:CA:7C:EE:F9:18:80:7E:67:1B:16:24:E6:3A:B6:F6:81:03:DF:D5:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/ynzu-RiAfmcbFiTmOrb2gQPf1eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynzu-RiAfmcbFiTmOrb2gQPf1eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F583B/5AF0419C1BE411EE9B8FAB53C4F9AE02/5541D6A21F9A11EE9BB7905DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.105.0/24 Signature Algorithm: sha256WithRSAEncryption c9:a9:d3:31:e9:69:6f:24:fb:c1:d1:d6:fa:c8:6c:0f:c6:de: 5c:80:d4:b9:61:e6:92:56:75:54:a2:2e:47:53:74:17:2d:8c: 21:5f:9b:81:40:0e:5a:66:6a:80:7c:d5:9d:f2:88:e9:2c:c6: 0e:cb:21:de:34:f5:c4:da:6b:31:d0:70:c6:55:9a:3d:a7:94: 49:5e:62:af:1c:e0:17:5e:29:e2:e0:39:5a:9e:7d:22:10:5f: b8:6c:8c:be:73:fd:12:54:47:33:92:e4:f6:62:90:88:08:53: 00:8c:18:76:18:53:7b:16:9b:57:29:d5:e5:95:26:e5:00:b1: 9a:6e:57:c4:dc:46:9e:f5:42:e4:14:19:e3:66:84:b0:ef:6a: d6:ea:b8:8a:18:e1:cb:d8:01:99:ce:08:0f:6a:c1:18:a4:64: fb:13:bf:d7:d8:09:a3:28:ba:b1:4d:19:1b:2d:22:86:c0:d3: 2c:e9:34:00:38:b0:e4:6c:54:c3:f7:b9:99:52:6e:18:b8:f0: 53:6d:9f:13:2b:d4:af:f9:9c:6f:68:5c:34:3a:a1:a0:b1:c0: 51:31:91:70:98:1e:d5:32:a2:bf:24:f9:f7:2c:21:0b:ad:c9: a2:99:6d:a1:4f:6c:2a:df:b6:99:d3:8b:18:ab:97:4e:e2:61: 0b:6e:b9:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4M0IxMTAvBgNVBAUTKENBN0NFRUY5MTg4MDdFNjcxQjE2MjRFNjNBQjZGNjgx MDNERkQ1RTMwHhcNMjQwODA3MDUyNjMwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMDU4Ni0yMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQl+/DGuvYNPTiFJHEQlEO70ISBM1B/exzwGegDTbDOm/AGGgSeSJIG/uCIV wyXpVjJ9OF4rNroGHrGg/1y74LnNhd+JNzpdD8NMXreWa93bJWAsrUjCxTIqPzgC CW93l/zbaGm/SGxaV0YeLVxJ0BuQbzBqRqgw6aaaMijOi1tnd0KsUw9aHknNRiRe vMZym7LkOvZIaHSPW3ZFvAvlnQRPwXn93zkW3+kUI2eEk44EWxtkVK33KLQjxxNp U23tlv35DuyDe0+FzK1dhAYxg1CIx9oiHg0xm5dWkyLnYbnDmhgQiX6Lx+gi5LPq IeU7ETntTO+Vy/q9SVIzMfz0tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDSRGA8I eJfcuYIYq0oT4ynbIATXMB8GA1UdIwQYMBaAFMp87vkYgH5nGxYk5jq29oED39Xj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgzQi81QUYwNDE5QzFC RTQxMUVFOUI4RkFCNTNDNEY5QUUwMi95bnp1LVJpQWZtY2JGaVRtT3JiMmdRUGYx ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3luenUtUmlBZm1jYkZpVG1PcmIyZ1FQZjFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4M0IvNUFGMDQxOUMxQkU0MTFFRTlCOEZBQjUzQzRGOUFFMDIvNTU0MUQ2QTIx RjlBMTFFRTlCQjc5MDVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn72kwDQYJKoZIhvcNAQELBQADggEBAMmp0zHpaW8k+8HR 1vrIbA/G3lyA1Llh5pJWdVSiLkdTdBctjCFfm4FADlpmaoB81Z3yiOksxg7LId40 9cTaazHQcMZVmj2nlEleYq8c4BdeKeLgOVqefSIQX7hsjL5z/RJURzOS5PZikIgI UwCMGHYYU3sWm1cp1eWVJuUAsZpuV8TcRp71QuQUGeNmhLDvatbquIoY4cvYAZnO CA9qwRikZPsTv9fYCaMourFNGRstIobA0yzpNAA4sORsVMP3uZlSbhi48FNtnxMr 1K/5nG9oXDQ6oaCxwFExkXCYHtUyor8k+fcsIQutyaKZbaFPbCrftpnTixirl07i YQtuubE= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org