$ rpki-client -vvf rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/F85178E05DD111EF83CF1063C4F9AE02.roa File: F85178E05DD111EF83CF1063C4F9AE02.roa (raw, json) Hash identifier: cJsfZl/cFkpKQozJq2xwkeH6mLrWaa6pn1llxMbhow4= Subject key identifier: B5:DA:2E:AF:B3:DF:BB:4F:70:C6:C0:ED:56:17:05:D9:80:95:A5:0D Certificate issuer: /CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Certificate serial: 0469 Authority key identifier: 8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/F85178E05DD111EF83CF1063C4F9AE02.roa Signing time: Mon 19 Aug 2024 02:27:22 +0000 ROA not before: Mon 19 Aug 2024 02:27:22 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137239 IP address blocks: 103.105.212.0/22 maxlen: 22 103.105.212.0/24 maxlen: 24 103.105.213.0/24 maxlen: 24 103.105.214.0/24 maxlen: 24 103.105.215.0/24 maxlen: 24 2403:240::/32 maxlen: 32 2403:240::/34 maxlen: 34 2403:240:4000::/34 maxlen: 34 2403:240:8000::/34 maxlen: 34 2403:240:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91385F2/serialNumber=8C0A1FFF1AA31CEA6CC0C88B67AC22D594639C75 Validity Not Before: Aug 19 02:27:22 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66c2ad8a-a815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:b9:59:66:dd:05:21:e0:ab:6b:29:72:3f: 3c:2a:5d:84:25:a4:78:ed:29:fe:65:ac:4b:da:97: 80:bb:e5:7e:a9:27:cf:c2:55:7b:1e:5a:a1:ae:90: 4d:39:22:b7:85:d1:b3:c0:2f:57:4a:5a:65:bc:09: 7e:b7:18:b6:e6:19:d5:31:9e:0c:d6:07:8a:ba:f3: f5:6d:58:0b:30:61:13:6d:18:bb:cf:4f:3f:45:ce: ea:13:57:57:e8:db:10:4c:0e:54:59:46:ea:da:7d: f3:ac:33:b2:e1:c3:2a:e5:5d:ce:0c:81:24:3a:df: f0:f8:d3:c4:c3:2c:50:8f:81:67:79:38:bd:54:0d: f8:2c:66:e1:46:fa:69:98:ae:73:ed:18:a8:af:66: 09:e0:fe:d8:13:22:90:9b:71:30:59:7a:9f:1c:77: 51:94:91:a1:f2:e6:bc:c9:de:05:50:c0:31:7c:70: d0:80:43:48:f8:e4:ea:c4:08:02:a1:57:ee:3f:4a: 54:15:3d:d7:98:60:5a:b1:9e:6d:a1:d9:13:6d:61: dc:25:96:de:5d:40:e9:51:fb:7f:e3:8e:6d:c4:0f: 74:1d:09:f5:c3:ca:7e:d5:ca:26:54:f5:ed:09:c9: e7:f8:fd:eb:a2:a9:a5:f7:91:57:ec:e1:53:07:56: f8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DA:2E:AF:B3:DF:BB:4F:70:C6:C0:ED:56:17:05:D9:80:95:A5:0D X509v3 Authority Key Identifier: keyid:8C:0A:1F:FF:1A:A3:1C:EA:6C:C0:C8:8B:67:AC:22:D5:94:63:9C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/jAof_xqjHOpswMiLZ6wi1ZRjnHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jAof_xqjHOpswMiLZ6wi1ZRjnHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91385F2/4D3016E8152111ECBE886A29C4F9AE02/F85178E05DD111EF83CF1063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.212.0/22 IPv6: 2403:240::/32 Signature Algorithm: sha256WithRSAEncryption 1f:81:ac:2f:4e:71:41:00:14:e6:c6:d2:92:8e:19:65:ee:50: a1:a5:c0:23:b0:0c:57:d9:04:2d:b8:c3:d8:54:c8:d6:a7:4c: aa:5c:72:c6:14:85:74:96:53:92:0b:60:99:40:11:15:64:ad: f6:5b:a8:20:ab:2a:d7:46:9b:06:8b:09:86:05:9c:eb:f2:21: f1:63:d8:6f:fa:6a:7b:17:45:3c:70:5b:9f:3b:28:9d:7f:40: bc:41:20:90:33:3f:7b:d6:fc:f4:48:9e:ee:78:28:3c:a3:ba: 76:99:02:05:b6:da:87:34:f6:b5:bd:66:ab:34:6a:e3:23:e5: 8f:68:6c:e2:03:87:cb:1b:72:85:ca:9b:17:d6:e5:95:bc:04: 19:69:1a:70:6c:53:0c:31:2b:14:db:fd:24:cc:c5:08:b8:61: a3:b5:99:8f:7d:0c:b8:57:d9:13:b2:3c:7a:cd:10:2c:d1:7d: 34:9a:8d:db:72:88:b7:05:95:a7:56:99:a4:ee:b2:fe:d5:25: 45:1e:03:7d:a4:ee:20:a5:9a:dd:e9:e5:7a:29:5a:d4:6e:4b: 18:6e:2c:f7:32:d6:20:f4:b7:63:14:c9:ff:d3:b2:20:7f:d0: 4d:ca:86:4b:8e:55:93:b6:0d:77:06:f0:4c:25:79:fb:25:8d: 71:c4:d0:08 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg1RjIxMTAvBgNVBAUTKDhDMEExRkZGMUFBMzFDRUE2Q0MwQzg4QjY3QUMyMkQ1 OTQ2MzlDNzUwHhcNMjQwODE5MDIyNzIyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyYWQ4YS1hODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpC5WWbdBSHgq2spcj88Kl2EJaR47Sn+ZaxL2peAu+V+qSfPwlV7HlqhrpBN OSK3hdGzwC9XSlplvAl+txi25hnVMZ4M1geKuvP1bVgLMGETbRi7z08/Rc7qE1dX 6NsQTA5UWUbq2n3zrDOy4cMq5V3ODIEkOt/w+NPEwyxQj4FneTi9VA34LGbhRvpp mK5z7Rior2YJ4P7YEyKQm3EwWXqfHHdRlJGh8ua8yd4FUMAxfHDQgENI+OTqxAgC oVfuP0pUFT3XmGBasZ5todkTbWHcJZbeXUDpUft/445txA90HQn1w8p+1comVPXt Ccnn+P3roqml95FX7OFTB1b4KQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLXaLq+z 37tPcMbA7VYXBdmAlaUNMB8GA1UdIwQYMBaAFIwKH/8aoxzqbMDIi2esItWUY5x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODVGMi80RDMwMTZFODE1 MjExMUVDQkU4ODZBMjlDNEY5QUUwMi9qQW9mX3hxakhPcHN3TWlMWjZ3aTFaUmpu SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pBb2ZfeHFqSE9wc3dNaUxaNndpMVpSam5IVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg1RjIvNEQzMDE2RTgxNTIxMTFFQ0JFODg2QTI5QzRGOUFFMDIvRjg1MTc4RTA1 REQxMTFFRjgzQ0YxMDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnadQwDQQCAAIwBwMFACQDAkAwDQYJKoZIhvcNAQELBQAD ggEBAB+BrC9OcUEAFObG0pKOGWXuUKGlwCOwDFfZBC24w9hUyNanTKpccsYUhXSW U5ILYJlAERVkrfZbqCCrKtdGmwaLCYYFnOvyIfFj2G/6ansXRTxwW587KJ1/QLxB IJAzP3vW/PRInu54KDyjunaZAgW22oc09rW9Zqs0auMj5Y9obOIDh8sbcoXKmxfW 5ZW8BBlpGnBsUwwxKxTb/STMxQi4YaO1mY99DLhX2ROyPHrNECzRfTSajdtyiLcF ladWmaTusv7VJUUeA32k7iClmt3p5XopWtRuSxhuLPcy1iD0t2MUyf/TsiB/0E3K hkuOVZO2DXcG8EwlefsljXHE0Ag= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org