$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/AA5D86B2381311EA998E103FC4F9AE02.roa File: AA5D86B2381311EA998E103FC4F9AE02.roa (raw, json) Hash identifier: IMXg+e7lIl/+YhIBBHrlvZcdovKUHcbEwD83DK84h1A= Subject key identifier: D5:96:77:99:86:14:A1:CE:EC:26:FF:57:63:1C:AE:42:BA:03:EB:93 Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0B38 Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/AA5D86B2381311EA998E103FC4F9AE02.roa Signing time: Mon 18 Dec 2023 19:27:01 +0000 ROA not before: Mon 18 Dec 2023 19:27:01 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136145 IP address blocks: 103.79.224.0/24 maxlen: 24 103.79.225.0/24 maxlen: 24 103.79.226.0/24 maxlen: 24 103.79.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2872 (0xb38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Dec 18 19:27:01 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65809d05-c3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9f:88:7e:f2:80:81:21:d4:70:47:47:df:00: 3e:94:2e:32:54:6a:75:7a:ac:28:9e:cb:bd:28:69: c8:af:f0:85:d9:53:28:42:44:b5:f8:69:d7:da:4a: 3f:f3:c6:3a:69:96:72:65:dd:be:8e:13:1a:c3:69: 49:91:c8:50:a7:6a:e8:1c:d7:92:93:72:14:25:56: 6d:2e:d5:8e:09:4c:61:ea:be:f9:c6:4a:16:5c:77: 63:e9:1d:4b:ce:7e:a3:a7:3c:a7:0f:b4:d8:e2:4b: 68:fa:49:b0:c4:c9:bf:6b:3f:52:ec:96:94:44:5e: 95:07:1f:ee:dc:93:37:69:b5:ed:ed:c5:db:ed:ca: bc:7d:49:b6:72:ed:f2:31:03:4f:d3:15:e5:11:94: ed:69:75:b0:99:92:c9:0b:b5:c5:50:9b:84:2f:71: db:2d:24:1d:fa:2d:3a:ae:43:44:78:1f:39:3d:20: e8:36:3b:d0:27:7b:db:43:c0:e5:2d:fe:cf:fe:fd: 66:a5:06:75:67:86:e9:dd:2f:22:bd:8c:a0:85:98: 46:d7:7b:ab:ff:99:3b:56:ab:4c:73:4b:95:49:23: e5:88:a7:b3:99:2f:4a:b9:fc:6d:2d:78:0c:ef:a1: d1:6a:6d:67:7d:dd:fe:cc:4d:26:72:ec:cf:4b:fb: 9a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:96:77:99:86:14:A1:CE:EC:26:FF:57:63:1C:AE:42:BA:03:EB:93 X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/AA5D86B2381311EA998E103FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.224.0/22 Signature Algorithm: sha256WithRSAEncryption 10:bb:f6:60:b3:72:98:90:5e:f3:39:e6:e8:7f:a0:a4:6e:67: ab:3b:14:51:31:46:24:5f:f7:6e:fd:b2:bf:22:05:c1:f6:96: db:61:5d:b9:67:3c:d1:18:49:71:b6:f1:a9:b0:59:62:11:73: 68:01:b8:8b:80:69:10:9c:96:af:bf:5b:08:0c:19:af:aa:9f: d3:ae:e9:b9:24:d9:7e:57:a8:05:bb:9b:13:3c:32:1a:a4:22: 99:f3:bc:27:ab:57:09:c6:ae:3a:01:20:a0:2b:f0:c8:62:1b: 32:0d:0a:61:b7:7f:b6:89:58:2c:cd:d0:a4:c7:c5:5b:02:ca: 79:aa:9f:80:27:45:b5:9c:bc:50:3d:fa:25:21:bc:16:7a:4d: 8d:d6:16:41:9a:a9:12:a1:9b:6e:2b:d5:fc:1a:8f:04:3e:fe: 5c:91:15:db:72:a5:9e:4e:3b:9d:75:21:12:45:f1:33:d6:73: 2a:e0:b9:dd:3d:38:4e:40:e7:79:ce:36:b3:7b:cc:55:c1:b6: 7c:ba:3a:b8:5b:4f:75:e8:e4:64:2f:34:f2:bf:1c:08:10:50: 02:d9:f9:21:cb:62:cb:45:5a:73:61:24:3b:29:c1:4d:17:a5: 17:c0:d4:da:b2:c3:21:a2:a9:a5:24:99:39:3a:e4:ef:9d:ec: 41:3e:68:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjMxMjE4MTkyNzAxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwOWQwNS1jM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8J+IfvKAgSHUcEdH3wA+lC4yVGp1eqwonsu9KGnIr/CF2VMoQkS1+GnX2ko/ 88Y6aZZyZd2+jhMaw2lJkchQp2roHNeSk3IUJVZtLtWOCUxh6r75xkoWXHdj6R1L zn6jpzynD7TY4kto+kmwxMm/az9S7JaURF6VBx/u3JM3abXt7cXb7cq8fUm2cu3y MQNP0xXlEZTtaXWwmZLJC7XFUJuEL3HbLSQd+i06rkNEeB85PSDoNjvQJ3vbQ8Dl Lf7P/v1mpQZ1Z4bp3S8ivYyghZhG13ur/5k7VqtMc0uVSSPliKezmS9KufxtLXgM 76HRam1nfd3+zE0mcuzPS/uaxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNWWd5mG FKHO7Cb/V2McrkK6A+uTMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQzOEEvOUFFRjE3QkUwNUY0MTFFQTg4NkEzQzIzQzRGOUFFMDIvQUE1RDg2QjIz ODEzMTFFQTk5OEUxMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnT+AwDQYJKoZIhvcNAQELBQADggEBABC79mCzcpiQXvM5 5uh/oKRuZ6s7FFExRiRf9279sr8iBcH2ltthXblnPNEYSXG28amwWWIRc2gBuIuA aRCclq+/WwgMGa+qn9Ou6bkk2X5XqAW7mxM8MhqkIpnzvCerVwnGrjoBIKAr8Mhi GzINCmG3f7aJWCzN0KTHxVsCynmqn4AnRbWcvFA9+iUhvBZ6TY3WFkGaqRKhm24r 1fwajwQ+/lyRFdtypZ5OO511IRJF8TPWcyrgud09OE5A53nONrN7zFXBtny6Orhb T3Xo5GQvNPK/HAgQUALZ+SHLYstFWnNhJDspwU0XpRfA1NqywyGiqaUkmTk65O+d 7EE+aFU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org