$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/DB63DD0C511311E998B6E814C4F9AE02.roa File: DB63DD0C511311E998B6E814C4F9AE02.roa (raw, json) Hash identifier: /iSIvvhUoXFHLziQJqcGFPcc3ui1ySSnlRKhsUVXnlc= Subject key identifier: C9:60:B7:BF:AE:9B:EF:2A:76:C4:4B:CA:96:F5:DC:F4:B4:DF:5C:1B Certificate issuer: /CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Certificate serial: 0EB9 Authority key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/DB63DD0C511311E998B6E814C4F9AE02.roa Signing time: Sat 04 Nov 2023 18:05:42 +0000 ROA not before: Sat 04 Nov 2023 18:05:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137206 IP address blocks: 103.104.228.0/24 maxlen: 24 103.138.52.0/24 maxlen: 24 2001:df3:5900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3769 (0xeb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7BE4/serialNumber=1E6B3944B6788E90E997D8A8E8067C5969B8898C Validity Not Before: Nov 4 18:05:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=654687f6-6a29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e8:ed:80:7b:f5:75:35:48:f4:ca:4b:40:63: 4e:25:ce:8f:3c:c2:3f:d4:da:78:64:41:81:1c:6a: da:83:a3:d7:da:26:e9:17:e4:5d:ba:77:99:26:2f: 3f:0c:f0:09:61:32:3d:87:74:23:a1:49:77:65:0b: 55:21:d1:e4:7b:c8:59:f8:af:46:94:91:0e:fe:3a: 9e:f3:b3:cd:89:e2:a7:88:46:23:8b:ee:ba:24:37: ad:67:84:84:ac:73:93:58:df:42:53:c8:1e:71:e1: 7a:f0:61:f2:e5:3c:9e:31:17:05:0b:da:1c:f9:6a: d2:87:49:b6:0c:1c:19:73:df:bb:4b:21:45:ec:bb: 3c:b8:fd:75:a4:7e:94:39:00:60:4a:af:de:0c:76: 73:b6:84:ca:14:30:36:8d:e0:36:b6:fc:7c:e3:2d: 86:b8:e3:97:d1:8a:83:1e:e3:5b:52:df:51:d1:13: a7:7a:11:1b:70:1c:bb:cd:d1:38:24:1f:66:97:c3: 97:60:4d:4d:40:0a:23:92:d5:10:b7:f6:84:20:7e: 9b:b4:49:7c:21:72:d6:3f:b7:59:5b:bd:40:b2:67: 93:8d:d5:33:69:1a:a0:26:c5:4d:7b:bd:77:9d:99: 9c:25:93:87:7a:63:e1:da:e7:db:d4:05:5c:33:f4: 60:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:60:B7:BF:AE:9B:EF:2A:76:C4:4B:CA:96:F5:DC:F4:B4:DF:5C:1B X509v3 Authority Key Identifier: keyid:1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/DB63DD0C511311E998B6E814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.228.0/24 103.138.52.0/24 IPv6: 2001:df3:5900::/48 Signature Algorithm: sha256WithRSAEncryption 95:59:9a:07:65:98:50:38:3a:fe:0c:5d:54:fc:36:16:5a:c7: 0f:30:7d:7f:9e:14:cf:a8:42:ed:c2:eb:b8:d3:a1:2f:55:4a: 9b:f5:d6:55:d7:96:e7:61:53:16:20:6e:f7:76:a6:c5:06:ed: 1c:3f:04:53:26:36:1f:64:df:5f:bc:cd:c7:87:1a:55:90:94: 6a:75:4e:5c:35:b3:4b:6b:eb:48:6e:a1:47:d4:6d:83:58:2d: d1:9b:e2:a5:88:71:c5:8b:c8:45:7e:a4:b8:30:29:17:da:e6: ba:06:26:98:60:a9:3f:bb:f7:46:91:88:79:a8:e5:9e:8e:6f: a0:51:dd:a4:a6:64:36:d1:ad:53:ae:3c:25:2b:61:2d:79:d5: 36:a5:e9:22:9a:c9:77:01:e7:23:fe:ef:a4:c2:93:0c:9e:19: be:e8:3c:7a:0c:a1:6c:a4:41:0d:8f:78:f0:24:6c:15:a0:0a: 66:6b:21:e9:43:ef:3c:20:84:d2:e3:59:a7:59:6d:ee:8e:26: 97:5e:bf:03:37:9f:42:4b:9e:df:dc:62:78:11:bf:3f:94:30: 6c:4a:fe:4a:55:0f:08:70:b0:af:a0:d5:12:17:43:a4:93:11: bb:9b:5a:47:3e:60:72:ab:41:40:c7:46:b9:18:f1:6b:64:36: e9:bb:22:03 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdCRTQxMTAvBgNVBAUTKDFFNkIzOTQ0QjY3ODhFOTBFOTk3RDhBOEU4MDY3QzU5 NjlCODg5OEMwHhcNMjMxMTA0MTgwNTQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2ODdmNi02YTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzujtgHv1dTVI9MpLQGNOJc6PPMI/1Np4ZEGBHGrag6PX2ibpF+RduneZJi8/ DPAJYTI9h3QjoUl3ZQtVIdHke8hZ+K9GlJEO/jqe87PNieKniEYji+66JDetZ4SE rHOTWN9CU8geceF68GHy5TyeMRcFC9oc+WrSh0m2DBwZc9+7SyFF7Ls8uP11pH6U OQBgSq/eDHZztoTKFDA2jeA2tvx84y2GuOOX0YqDHuNbUt9R0ROnehEbcBy7zdE4 JB9ml8OXYE1NQAojktUQt/aEIH6btEl8IXLWP7dZW71AsmeTjdUzaRqgJsVNe713 nZmcJZOHemPh2ufb1AVcM/Rg0wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMlgt7+u m+8qdsRLypb13PS031wbMB8GA1UdIwQYMBaAFB5rOUS2eI6Q6ZfYqOgGfFlpuImM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0JFNC9BMDYzMDVDMjUx MTExMUU5OEM0QkYxMEZDNEY5QUUwMi9IbXM1UkxaNGpwRHBsOWlvNkFaOFdXbTRp WXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0htczVSTFo0anBEcGw5aW82QVo4V1dtNGlZdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdCRTQvQTA2MzA1QzI1MTExMTFFOThDNEJGMTBGQzRGOUFFMDIvREI2M0REMEM1 MTEzMTFFOTk4QjZFODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnaOQDBABnijQwDwQCAAIwCQMHACABDfNZADANBgkqhkiG 9w0BAQsFAAOCAQEAlVmaB2WYUDg6/gxdVPw2FlrHDzB9f54Uz6hC7cLruNOhL1VK m/XWVdeW52FTFiBu93amxQbtHD8EUyY2H2TfX7zNx4caVZCUanVOXDWzS2vrSG6h R9Rtg1gt0ZvipYhxxYvIRX6kuDApF9rmugYmmGCpP7v3RpGIeajlno5voFHdpKZk NtGtU648JSthLXnVNqXpIprJdwHnI/7vpMKTDJ4Zvug8egyhbKRBDY948CRsFaAK Zmsh6UPvPCCE0uNZp1lt7o4ml16/AzefQkue39xieBG/P5QwbEr+SlUPCHCwr6DV EhdDpJMRu5taRz5gcqtBQMdGuRjxa2Q26bsiAw== -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:26 2024 by rpki-client on console-fra.rpki-client.org