$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa File: ECB38BAA5C3211E9816E7981C4F9AE02.roa (raw, json) Hash identifier: X/citOv1Ggn8GInkQClxSFdoCzSDhLVJCA7AtRBk39U= Subject key identifier: F3:C5:2E:A8:AF:D5:5C:21:8C:C8:F9:6A:5A:33:EF:5D:F0:2D:69:60 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0ED9 Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa Signing time: Wed 08 May 2024 18:37:15 +0000 ROA not before: Wed 08 May 2024 18:37:15 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138972 IP address blocks: 103.137.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3801 (0xed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: May 8 18:37:15 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663bc65b-8810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:ac:51:3b:fb:40:eb:d5:f4:16:59:57:72: 4c:58:01:d7:c9:4c:67:c0:a7:26:e7:45:40:c6:25: 61:5d:10:9c:29:96:ec:c0:7d:f5:74:71:b5:b8:e0: a3:48:2a:d3:26:3b:aa:74:f4:bd:a7:53:c1:25:14: 1a:ac:6e:55:6e:31:8d:fe:d1:fe:8c:16:2e:8c:59: 7c:e4:77:d2:50:f1:3b:c4:09:66:c3:3f:1a:41:b5: 42:58:52:19:0e:68:36:e5:22:e4:ab:16:84:e0:96: 98:5b:fd:98:0b:ad:10:48:b0:5c:36:5a:87:ec:e0: 92:bc:c0:af:27:19:9b:62:ab:38:10:04:7a:e8:01: 29:be:59:03:c2:2d:3b:79:90:f2:2d:2f:37:80:1a: c8:ef:16:30:d4:0a:51:8d:8e:81:b2:88:54:40:3a: 45:68:5e:d2:63:bf:c9:eb:2f:b6:a3:43:ce:ee:76: f0:af:5a:c5:63:21:91:da:0c:f4:8e:3f:3c:df:3e: 57:05:18:c7:40:21:a9:5a:e0:7c:d5:0e:d7:3b:2a: bc:13:59:ee:ac:7d:87:b4:bc:2d:02:71:64:5b:1c: cf:66:33:1c:8e:fe:b5:26:35:5d:4c:2c:9c:be:77: 67:a8:68:f4:c2:ac:5c:4b:ec:87:ec:e2:51:2a:bd: d4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C5:2E:A8:AF:D5:5C:21:8C:C8:F9:6A:5A:33:EF:5D:F0:2D:69:60 X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/ECB38BAA5C3211E9816E7981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.244.0/24 Signature Algorithm: sha256WithRSAEncryption 55:4b:c3:19:c4:e3:f1:bc:18:f2:a2:93:45:3a:4d:8c:f0:76: e0:9f:f3:47:4f:9b:29:fb:ed:bd:12:ea:6a:31:fe:0a:88:8a: c5:01:67:26:b7:50:f2:9c:03:1d:5e:a0:d5:5a:48:67:0f:6f: 6e:c3:9a:4b:1c:24:8e:37:22:6b:dc:a8:df:5c:01:cb:33:a7: 06:6b:28:00:3f:b2:f9:15:98:70:94:b6:f1:2f:5a:3b:5e:e9: a8:6d:79:60:94:b4:ba:34:81:b7:19:cf:a7:87:7d:58:0a:47: 8c:ec:7e:e6:d5:93:a0:af:c1:ca:13:fe:c8:9d:6e:7a:82:07: ba:12:a1:ba:cb:6b:64:31:0e:37:9c:d2:99:89:9f:7f:40:84: 64:d1:b4:73:58:e1:7b:25:5e:8c:52:c4:df:e1:78:fa:4d:1d: 0d:37:9b:c6:e6:47:ec:e5:e7:51:7b:20:5a:1d:72:90:2c:12: 77:64:0c:ed:c5:f3:d0:94:93:c8:f7:be:92:21:4b:49:76:7a: ed:0b:de:6f:f8:48:80:04:52:a0:9f:1b:72:82:6b:59:c7:e5: a3:d1:b5:2d:cd:79:38:39:97:89:5b:65:82:53:84:f3:84:5f: 7d:3e:dc:dc:df:0a:df:5e:c0:e3:e0:ad:fc:9d:8e:43:82:94: f7:40:dd:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjQwNTA4MTgzNzE1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiYzY1Yi04ODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugasUTv7QOvV9BZZV3JMWAHXyUxnwKcm50VAxiVhXRCcKZbswH31dHG1uOCj SCrTJjuqdPS9p1PBJRQarG5VbjGN/tH+jBYujFl85HfSUPE7xAlmwz8aQbVCWFIZ Dmg25SLkqxaE4JaYW/2YC60QSLBcNlqH7OCSvMCvJxmbYqs4EAR66AEpvlkDwi07 eZDyLS83gBrI7xYw1ApRjY6BsohUQDpFaF7SY7/J6y+2o0PO7nbwr1rFYyGR2gz0 jj883z5XBRjHQCGpWuB81Q7XOyq8E1nurH2HtLwtAnFkWxzPZjMcjv61JjVdTCyc vndnqGj0wqxcS+yH7OJRKr3UCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPPFLqiv 1VwhjMj5aloz713wLWlgMB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE1MkIvMjhDQkZCMTQ1QzMyMTFFOUFCNjI0NTgwQzRGOUFFMDIvRUNCMzhCQUE1 QzMyMTFFOTgxNkU3OTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnifQwDQYJKoZIhvcNAQELBQADggEBAFVLwxnE4/G8GPKi k0U6TYzwduCf80dPmyn77b0S6mox/gqIisUBZya3UPKcAx1eoNVaSGcPb27Dmksc JI43ImvcqN9cAcszpwZrKAA/svkVmHCUtvEvWjte6ahteWCUtLo0gbcZz6eHfVgK R4zsfubVk6CvwcoT/sidbnqCB7oSobrLa2QxDjec0pmJn39AhGTRtHNY4XslXoxS xN/hePpNHQ03m8bmR+zl51F7IFodcpAsEndkDO3F89CUk8j3vpIhS0l2eu0L3m/4 SIAEUqCfG3KCa1nH5aPRtS3NeTg5l4lbZYJThPOEX30+3NzfCt9ewOPgrfydjkOC lPdA3es= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org