$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa File: 751E90665BAB11EFB9769A80C4F9AE02.roa (raw, json) Hash identifier: pngEMElUQhJzXqzsiNvTLHbivykY5C0Rhd7ZreZTEyc= Subject key identifier: 29:1E:34:FC:8B:10:ED:E9:30:00:0D:F2:6D:28:1D:3A:8E:DC:D6:C5 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: EB Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa Signing time: Fri 16 Aug 2024 08:44:35 +0000 ROA not before: Fri 16 Aug 2024 08:44:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135817 IP address blocks: 103.78.46.0/24 maxlen: 24 103.97.46.0/23 maxlen: 24 103.97.84.0/24 maxlen: 24 103.148.152.0/23 maxlen: 23 103.148.152.0/24 maxlen: 24 103.148.153.0/24 maxlen: 24 2001:df2:da80::/48 maxlen: 48 2001:df4:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Aug 16 08:44:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66bf1172-963a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:d3:e0:44:1e:f3:d0:ef:88:fb:36:f0:8e: 63:25:2c:14:a1:e0:e3:41:98:a4:90:c6:15:d1:e7: 92:ad:8e:97:98:7d:d5:03:fe:d5:7c:cc:e4:7b:e8: eb:c4:c6:3f:1b:26:4a:a5:c8:82:c2:f2:56:6a:07: 92:b0:e6:0d:23:8a:26:01:99:ca:e8:f1:9e:9d:76: 99:2b:d8:37:f7:41:cb:fc:bf:e5:6e:b9:5b:38:5e: 3c:1b:bf:a4:53:49:56:9d:cf:7d:bd:c8:8b:d8:1b: 30:1c:a3:fd:ad:87:23:25:9b:10:47:69:8e:4f:1c: 07:57:ac:fa:48:f7:6d:83:30:7d:91:75:2d:7e:77: 1a:09:53:f3:af:3a:2c:d1:18:87:66:07:e8:2a:8d: 59:74:e1:62:ff:ae:ad:2c:23:d4:c6:bd:c2:a0:68: a6:2e:fd:1b:1e:cf:6d:a1:5a:4d:74:fd:24:a7:69: 20:eb:a3:d7:a8:d2:f7:b9:ac:85:5c:02:bd:6a:68: 84:eb:47:ca:5a:17:30:98:d0:b3:2d:45:cd:88:da: dd:ea:83:30:6e:ab:6e:14:96:7f:a6:cf:18:3d:ca: 7a:0f:69:44:76:82:08:86:e5:6b:b2:74:0a:ce:b7: c0:40:9e:d4:d3:59:4a:ad:23:19:38:6e:56:85:bd: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1E:34:FC:8B:10:ED:E9:30:00:0D:F2:6D:28:1D:3A:8E:DC:D6:C5 X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.46.0/24 103.97.46.0/23 103.97.84.0/24 103.148.152.0/23 IPv6: 2001:df2:da80::/48 2001:df4:a300::/48 Signature Algorithm: sha256WithRSAEncryption 68:c2:09:a6:1b:d6:be:f3:9b:e6:ca:cb:80:b2:06:da:47:22: b9:b0:ca:ea:6a:37:19:db:c7:32:ed:f4:22:e2:0e:a3:4b:59: 0b:74:0f:b4:99:cc:60:9d:d3:d9:d6:3a:e2:f2:e0:6c:12:6a: f9:4e:b5:56:c6:55:b4:1d:82:69:a1:1e:11:88:c7:a3:29:5b: 3e:00:03:78:fb:90:1f:37:6e:d7:b3:3d:4d:2d:e9:7b:66:5a: 5f:f0:d2:24:b9:6a:ae:f4:3e:8b:8d:2c:3d:4a:69:c5:44:c2: 24:b1:fb:be:e9:69:10:8f:1d:78:a7:37:41:f9:db:ec:db:98: 23:ac:7f:74:69:92:92:4b:ce:7a:c4:50:64:d6:1b:ab:8c:8f: 2f:2d:86:a7:8c:17:44:e1:01:01:4e:03:38:99:de:7f:6a:62: 88:cb:95:05:bc:b8:79:d5:8b:ef:2d:80:fd:70:b6:7f:c3:af: 6a:c5:0e:bd:34:1f:8e:c3:08:ee:dc:ba:96:98:c2:7d:b0:d1: da:63:11:09:34:2a:57:bf:97:9f:e9:9c:4d:15:6c:0d:29:33: b8:b7:18:cf:00:03:c6:e0:60:85:44:fc:94:96:75:4b:87:64: cb:8f:a9:fe:75:44:21:11:5b:25:57:84:e1:2c:56:6a:8e:cf: e9:9a:92:e0 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjQwODE2MDg0NDM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmMTE3Mi05NjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsXT4EQe89DviPs28I5jJSwUoeDjQZikkMYV0eeSrY6XmH3VA/7VfMzke+jr xMY/GyZKpciCwvJWageSsOYNI4omAZnK6PGenXaZK9g390HL/L/lbrlbOF48G7+k U0lWnc99vciL2BswHKP9rYcjJZsQR2mOTxwHV6z6SPdtgzB9kXUtfncaCVPzrzos 0RiHZgfoKo1ZdOFi/66tLCPUxr3CoGimLv0bHs9toVpNdP0kp2kg66PXqNL3uayF XAK9amiE60fKWhcwmNCzLUXNiNrd6oMwbqtuFJZ/ps8YPcp6D2lEdoIIhuVrsnQK zrfAQJ7U01lKrSMZOG5Whb0cAQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFCkeNPyL EO3pMAAN8m0oHTqO3NbFMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1QjcvNzFFN0EyMjI1MTk1MTFFQTg0NjRCQTc4QzRGOUFFMDIvNzUxRTkwNjY1 QkFCMTFFRkI5NzY5QTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBABnTi4DBAFnYS4DBABnYVQDBAFnlJgwGAQCAAIwEgMHACAB DfLagAMHACABDfSjADANBgkqhkiG9w0BAQsFAAOCAQEAaMIJphvWvvOb5srLgLIG 2kciubDK6mo3GdvHMu30IuIOo0tZC3QPtJnMYJ3T2dY64vLgbBJq+U61VsZVtB2C aaEeEYjHoylbPgADePuQHzdu17M9TS3pe2ZaX/DSJLlqrvQ+i40sPUppxUTCJLH7 vulpEI8deKc3Qfnb7NuYI6x/dGmSkkvOesRQZNYbq4yPLy2Gp4wXROEBAU4DOJne f2piiMuVBby4edWL7y2A/XC2f8OvasUOvTQfjsMI7ty6lpjCfbDR2mMRCTQqV7+X n+mcTRVsDSkzuLcYzwADxuBghUT8lJZ1S4dky4+p/nVEIRFbJVeE4SxWao7P6ZqS 4A== -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org