$ rpki-client -vvf rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa File: 624086E2E99611EA930A5B74C4F9AE02.roa (raw, json) Hash identifier: OSbXh9zQxt7fc7/E4bJQI3cGElZpZOUkVqVOHwbtAvI= Subject key identifier: 82:FB:6F:F8:4E:E5:F0:70:27:28:4A:7B:AA:56:1F:C2:B9:E0:96:9E Certificate issuer: /CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Certificate serial: 0735 Authority key identifier: E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa Signing time: Tue 02 Apr 2024 23:01:08 +0000 ROA not before: Tue 02 Apr 2024 23:01:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138005 IP address blocks: 103.244.56.0/24 maxlen: 24 103.244.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F85CD/serialNumber=E211CD85E072550E33E4CC86A63FBCDFAD1D3532 Validity Not Before: Apr 2 23:01:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c8e33-723b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:19:e4:83:23:89:02:d2:84:0d:d5:52:5c:05: a1:d0:14:b5:01:ac:77:d3:87:d2:4d:b2:bd:57:4e: 04:e8:18:38:6b:a6:be:2b:a8:ac:75:56:f2:7d:a7: d2:fa:64:fc:5a:1a:d1:6a:b1:50:e0:60:ff:c7:08: f9:fa:25:00:34:f5:17:91:c4:b7:60:ae:f1:e1:8d: 67:39:6d:9d:b5:58:d9:d2:9a:48:de:54:d1:26:bd: 0d:ca:1a:d9:28:e5:29:67:f8:81:ec:e7:aa:f6:c2: a2:40:74:40:6f:52:65:e2:8e:ad:66:cc:9a:a6:20: 88:45:c1:25:32:63:8b:1f:44:46:0b:10:b3:d3:73: 39:2b:75:61:50:94:9f:14:64:6a:5c:b6:37:bc:b2: 51:da:c7:ad:af:a5:dc:20:13:c8:f5:b6:5f:67:de: 3d:31:75:91:ac:a7:a6:d8:9c:48:8b:0a:78:68:c3: 05:4b:b2:4d:0e:f9:bb:ea:ec:ed:21:c8:67:c0:0e: 37:49:e1:fe:a6:b2:11:fe:08:6a:d1:ca:f3:76:3f: 5f:53:82:ad:e6:8a:47:4f:33:6a:73:a9:dc:91:3a: 9f:9d:6f:2e:ca:b0:a7:94:1c:d9:43:23:2d:ba:0c: 78:c1:a2:d8:7f:9b:3a:37:81:f3:ef:84:ec:1e:73: 40:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FB:6F:F8:4E:E5:F0:70:27:28:4A:7B:AA:56:1F:C2:B9:E0:96:9E X509v3 Authority Key Identifier: keyid:E2:11:CD:85:E0:72:55:0E:33:E4:CC:86:A6:3F:BC:DF:AD:1D:35:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/4hHNheByVQ4z5MyGpj-8360dNTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hHNheByVQ4z5MyGpj-8360dNTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F85CD/8A505588DD1911EA94D26011C4F9AE02/624086E2E99611EA930A5B74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.56.0/23 Signature Algorithm: sha256WithRSAEncryption 25:61:03:ef:45:58:2f:0a:65:b3:85:c4:2a:9b:18:53:4b:63: a9:22:98:30:83:f9:99:7d:a6:6a:f9:18:c2:1e:05:40:28:1a: 15:a9:d4:9c:ee:d5:3f:2d:75:66:14:6b:79:2b:bc:c3:39:03: 02:7a:75:a7:a9:0f:0f:e6:aa:45:0d:17:e9:f2:37:f7:40:6d: 7d:a0:12:ef:6b:9a:6f:a9:70:4a:a8:18:7b:f5:26:9c:a6:7f: 67:b8:d5:17:4b:ff:cf:1c:85:6b:6e:c8:82:ad:56:14:fa:de: 44:8d:7b:2d:17:d5:e1:0f:a9:b8:42:ba:85:10:8c:98:37:ba: a8:fc:57:95:71:6f:fc:a8:04:99:ec:6e:c7:0c:d9:c9:0a:ca: 44:7d:7b:3a:69:e4:f9:3a:6d:a6:78:5d:9a:2d:19:9e:e5:db: 05:19:66:c7:e8:04:11:de:81:c9:76:10:a0:b6:a1:e5:b4:e6: 84:b5:9d:91:8c:a8:a0:88:06:b5:ae:9a:2a:29:b8:bc:43:cf: 9b:97:fe:ca:6e:0d:0a:53:07:ed:3c:96:c0:0f:18:de:74:52: c0:40:16:7c:f0:7d:79:04:05:0e:ec:3c:7c:60:7e:5f:34:82: 23:7c:66:5b:30:86:53:b0:af:78:b0:78:cb:cf:09:1b:64:50: 70:e1:c7:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1Q0QxMTAvBgNVBAUTKEUyMTFDRDg1RTA3MjU1MEUzM0U0Q0M4NkE2M0ZCQ0RG QUQxRDM1MzIwHhcNMjQwNDAyMjMwMTA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjOGUzMy03MjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhnkgyOJAtKEDdVSXAWh0BS1Aax304fSTbK9V04E6Bg4a6a+K6isdVbyfafS +mT8WhrRarFQ4GD/xwj5+iUANPUXkcS3YK7x4Y1nOW2dtVjZ0ppI3lTRJr0NyhrZ KOUpZ/iB7Oeq9sKiQHRAb1Jl4o6tZsyapiCIRcElMmOLH0RGCxCz03M5K3VhUJSf FGRqXLY3vLJR2setr6XcIBPI9bZfZ949MXWRrKem2JxIiwp4aMMFS7JNDvm76uzt IchnwA43SeH+prIR/ghq0crzdj9fU4Kt5opHTzNqc6nckTqfnW8uyrCnlBzZQyMt ugx4waLYf5s6N4Hz74TsHnNAsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIL7b/hO 5fBwJyhKe6pWH8K54JaeMB8GA1UdIwQYMBaAFOIRzYXgclUOM+TMhqY/vN+tHTUy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODVDRC84QTUwNTU4OERE MTkxMUVBOTREMjYwMTFDNEY5QUUwMi80aEhOaGVCeVZRNHo1TXlHcGotODM2MGRO VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoSE5oZUJ5VlE0ejVNeUdwai04MzYwZE5USS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg1Q0QvOEE1MDU1ODhERDE5MTFFQTk0RDI2MDExQzRGOUFFMDIvNjI0MDg2RTJF OTk2MTFFQTkzMEE1Qjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9DgwDQYJKoZIhvcNAQELBQADggEBACVhA+9FWC8KZbOF xCqbGFNLY6kimDCD+Zl9pmr5GMIeBUAoGhWp1Jzu1T8tdWYUa3krvMM5AwJ6daep Dw/mqkUNF+nyN/dAbX2gEu9rmm+pcEqoGHv1Jpymf2e41RdL/88chWtuyIKtVhT6 3kSNey0X1eEPqbhCuoUQjJg3uqj8V5Vxb/yoBJnsbscM2ckKykR9ezpp5Pk6baZ4 XZotGZ7l2wUZZsfoBBHegcl2EKC2oeW05oS1nZGMqKCIBrWumiopuLxDz5uX/spu DQpTB+08lsAPGN50UsBAFnzwfXkEBQ7sPHxgfl80giN8ZlswhlOwr3iweMvPCRtk UHDhx94= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:15 2024 by rpki-client on console-fra.rpki-client.org