$ rpki-client -vvf rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa File: 939AAE78B1D511EA8E3DAE1CC4F9AE02.roa (raw, json) Hash identifier: 2AnHzJwonUE0Oio1jBjuypmq05cqTxtCSZ5dai/xpII= Subject key identifier: E7:16:C2:3B:6D:14:6A:EB:AB:12:65:05:E2:29:E9:4F:70:12:D2:A6 Certificate issuer: /CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Certificate serial: 07F6 Authority key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa Signing time: Sun 31 Mar 2024 22:30:51 +0000 ROA not before: Sun 31 Mar 2024 22:30:51 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135107 IP address blocks: 103.86.188.0/23 maxlen: 23 103.209.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2038 (0x7f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F Validity Not Before: Mar 31 22:30:51 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6609e41b-0c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6b:b0:0e:a7:ee:92:2f:bf:fb:f6:f6:5e:74: 37:ca:bb:5c:73:22:6f:1e:02:0e:9d:32:8a:66:f2: 7a:53:07:05:5c:95:a9:0a:03:b4:3e:02:ee:b5:6d: 6f:36:7f:48:62:9e:4e:74:7b:ee:af:96:9e:11:d1: ec:d4:c7:e5:0e:e5:0a:08:99:d4:29:41:c7:de:dd: 9f:58:44:d2:85:a0:03:a1:2d:ad:08:ea:cf:b4:00: 9c:3b:e0:75:4e:c2:a0:83:f5:16:5f:d2:a5:68:80: d6:6c:b6:c6:1d:78:fe:4a:03:27:06:c2:1e:b9:50: f3:85:fb:87:26:c5:f5:d4:42:d3:36:bf:bc:e9:aa: a9:a8:70:40:51:cf:26:0d:34:7a:c1:c2:99:de:47: 3f:31:11:75:b2:53:38:46:b8:8d:96:d1:b0:c5:15: 31:c4:ed:ac:b5:52:9c:f5:3c:67:53:f1:4c:0c:a4: f9:94:2d:93:1b:13:c0:94:14:b2:60:10:d6:ea:e2: 76:f4:8e:f3:6d:89:38:4b:95:04:5a:4d:24:8a:05: 4a:e3:2c:5f:3f:d5:4e:8a:34:2f:15:0e:6f:8a:6b: 81:cf:d6:63:a4:97:91:a7:b7:22:22:15:c2:e4:31: c7:f7:af:0d:fa:7b:74:c1:51:16:a9:7f:c6:b1:e3: f5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:16:C2:3B:6D:14:6A:EB:AB:12:65:05:E2:29:E9:4F:70:12:D2:A6 X509v3 Authority Key Identifier: keyid:1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/939AAE78B1D511EA8E3DAE1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.188.0/23 103.209.152.0/23 Signature Algorithm: sha256WithRSAEncryption 97:d2:47:d6:1e:21:ba:57:e7:11:e2:d3:ad:03:6f:58:8e:61: 90:c4:00:c6:c7:40:48:79:36:12:38:28:50:15:57:8b:a3:4a: 97:97:f8:57:f0:32:8a:24:31:72:6f:d8:32:92:ca:39:d7:5e: 9d:3b:c8:0d:05:0f:55:a9:78:aa:22:5d:ce:d1:0a:bb:7e:17: 83:25:a3:e6:da:43:ba:3e:18:22:d2:09:ae:e6:7b:72:03:a6: b4:be:07:9c:10:c0:e9:2f:9e:b4:b8:8f:d4:1d:4f:80:0f:56: d4:04:a3:0a:bd:47:93:ac:98:4b:78:79:11:f8:f1:69:17:fa: cb:f3:9c:b9:4f:02:76:b3:72:bb:d6:04:9b:9e:36:37:84:16: 5b:fc:58:ff:f8:6b:2a:31:89:38:d6:71:55:c8:55:38:49:7e: c3:3b:d4:25:cf:8a:ac:90:1b:ae:1d:a0:65:a9:d3:70:1e:39: 37:32:a6:84:16:70:8f:f4:f2:f6:55:69:7d:74:0e:09:82:81: 11:ac:d5:b8:93:57:4a:fa:cf:16:d7:3b:9f:9b:c7:15:64:29: 68:49:8e:a5:6f:60:c8:d1:ea:2d:92:61:32:8d:ba:1e:58:b6: 19:1e:86:be:55:23:4d:ae:cc:08:af:54:9b:c8:75:73:ea:7b: 3a:8f:6c:98 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUyQzYxMTAvBgNVBAUTKDFEQTAxQUZDMDg4OENBQTYxNzFFMEEwRTc0MUNGQzkw NEVEMkRGNkYwHhcNMjQwMzMxMjIzMDUxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5ZTQxYi0wYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWuwDqfuki+/+/b2XnQ3yrtccyJvHgIOnTKKZvJ6UwcFXJWpCgO0PgLutW1v Nn9IYp5OdHvur5aeEdHs1MflDuUKCJnUKUHH3t2fWETShaADoS2tCOrPtACcO+B1 TsKgg/UWX9KlaIDWbLbGHXj+SgMnBsIeuVDzhfuHJsX11ELTNr+86aqpqHBAUc8m DTR6wcKZ3kc/MRF1slM4RriNltGwxRUxxO2stVKc9TxnU/FMDKT5lC2TGxPAlBSy YBDW6uJ29I7zbYk4S5UEWk0kigVK4yxfP9VOijQvFQ5vimuBz9ZjpJeRp7ciIhXC 5DHH968N+nt0wVEWqX/GseP1qwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOcWwjtt FGrrqxJlBeIp6U9wEtKmMB8GA1UdIwQYMBaAFB2gGvwIiMqmFx4KDnQc/JBO0t9v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTJDNi8xRURGRTQ5NkIx RDQxMUVBQTQ2RjAwMUFDNEY5QUUwMi9IYUFhX0FpSXlxWVhIZ29PZEJ6OGtFN1Mz MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hhQWFfQWlJeXFZWEhnb09kQno4a0U3UzMyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUyQzYvMUVERkU0OTZCMUQ0MTFFQUE0NkYwMDFBQzRGOUFFMDIvOTM5QUFFNzhC MUQ1MTFFQThFM0RBRTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnVrwDBAFn0ZgwDQYJKoZIhvcNAQELBQADggEBAJfSR9Ye IbpX5xHi060Db1iOYZDEAMbHQEh5NhI4KFAVV4ujSpeX+FfwMookMXJv2DKSyjnX Xp07yA0FD1WpeKoiXc7RCrt+F4Mlo+baQ7o+GCLSCa7me3IDprS+B5wQwOkvnrS4 j9QdT4APVtQEowq9R5OsmEt4eRH48WkX+svznLlPAnazcrvWBJueNjeEFlv8WP/4 ayoxiTjWcVXIVThJfsM71CXPiqyQG64doGWp03AeOTcypoQWcI/08vZVaX10DgmC gRGs1biTV0r6zxbXO5+bxxVkKWhJjqVvYMjR6i2SYTKNuh5Ythkehr5VI02uzAiv VJvIdXPqezqPbJg= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org