$ rpki-client -vvf rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa File: 19C035C6F3EF11EA82F3C251C4F9AE02.roa (raw, json) Hash identifier: pT4zou63z0QD14idxOoFq4yrI1uCNsK4K1MxijpKerg= Subject key identifier: 38:A5:36:31:1B:BC:FE:68:D5:A1:AD:DA:0C:90:9A:B6:1D:61:57:84 Certificate issuer: /CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789 Certificate serial: 0734 Authority key identifier: 4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa Signing time: Thu 04 Jul 2024 17:34:41 +0000 ROA not before: Thu 04 Jul 2024 17:34:41 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137854 IP address blocks: 103.115.167.0/24 maxlen: 24 103.125.25.0/24 maxlen: 24 103.125.26.0/23 maxlen: 23 103.125.26.0/24 maxlen: 24 103.125.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.crl rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Aug 2024 11:04:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1844 (0x734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789 Validity Not Before: Jul 4 17:34:41 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6686dd30-190d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:af:a4:22:b3:71:19:8b:5b:d6:8b:9e:c5:1d: 4f:90:47:98:1d:c9:ac:9f:b4:05:0b:b8:7b:3f:5e: fa:eb:0b:3a:90:9e:0d:62:e1:c7:96:20:a8:1b:1d: d9:5f:0c:c9:38:ad:b8:71:cc:3b:4a:6a:08:00:5a: 28:04:94:ac:3d:da:10:51:3c:bd:88:bd:10:a1:31: 2d:3a:96:53:5d:14:de:e4:65:95:55:44:45:3b:c5: cc:fc:1e:5d:48:d1:a7:1f:c8:f9:8d:e0:d1:d0:c9: 5d:1c:25:3e:72:bd:76:31:a5:80:a3:96:1c:a5:92: 84:bf:b7:fb:69:50:92:fe:a1:d4:f0:cf:c7:a4:50: 00:cd:85:d3:8e:33:8d:4d:56:9b:ce:0e:bb:b4:9d: 23:b3:fd:9e:e7:ac:19:a4:2a:91:33:0b:4e:9c:d7: 69:79:87:79:31:f3:18:de:e9:60:41:8f:84:86:2b: dd:8a:36:23:39:a3:2f:da:4c:20:39:d8:57:51:6a: 48:9f:e7:e9:dd:f7:44:55:75:4d:d4:b6:f6:28:0b: 85:96:8c:70:a6:53:46:bb:70:74:47:0a:b2:cc:2f: ad:32:8d:83:26:dd:4e:4e:54:76:bc:a0:64:81:49: 24:e6:4b:e2:d2:52:2e:a1:bc:7c:09:c7:5a:e0:de: a4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A5:36:31:1B:BC:FE:68:D5:A1:AD:DA:0C:90:9A:B6:1D:61:57:84 X509v3 Authority Key Identifier: keyid:4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.167.0/24 103.125.25.0-103.125.27.255 Signature Algorithm: sha256WithRSAEncryption 86:24:18:47:9e:d0:86:d6:06:22:8f:eb:d0:5c:a8:f3:52:90: 54:02:19:3c:22:2b:63:f2:f6:a4:4c:81:49:90:d2:39:39:03: f7:17:0d:48:82:45:80:cd:f5:2d:27:33:44:12:97:95:5c:cd: 0b:d2:ca:28:38:b7:5b:66:9f:0f:09:a0:6d:de:3f:f8:03:ed: 1a:5b:b2:14:35:94:43:96:e0:e2:ec:36:b3:77:91:96:c7:a2: 28:58:16:e4:13:10:dc:0d:32:95:1f:4f:e7:67:07:48:4a:fd: 49:05:c0:be:5f:3b:4a:22:d8:ee:bc:d8:91:9d:04:a1:23:6d: c2:07:50:a7:c5:c6:88:5c:72:a4:5d:e5:46:87:6e:c7:38:7a: 03:a8:10:b5:c2:50:95:a0:e8:22:f5:14:40:8a:aa:5f:d4:03: 99:02:fd:e9:19:ae:94:d6:2c:19:15:e6:54:b4:bf:6e:a4:50: dd:0a:1d:57:f5:e8:e2:9a:a7:7e:57:2d:a5:dd:d4:0f:cb:74: 11:81:ed:01:82:26:de:f3:06:d0:fb:8f:10:97:66:aa:3e:f2: 86:36:f9:28:7a:73:1f:91:f7:d6:06:e6:f5:ee:af:4c:45:e6: 11:57:80:6f:dc:ea:66:76:de:04:af:e1:20:5f:d0:93:a2:c2: 4f:17:4f:7f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1QTkxMTAvBgNVBAUTKDRDQjgxNUQ2OTc0NTVCQ0IzMDJCNzRENzlEQUE2QUU0 MUJCN0I3ODkwHhcNMjQwNzA0MTczNDQxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg2ZGQzMC0xOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq+kIrNxGYtb1ouexR1PkEeYHcmsn7QFC7h7P1766ws6kJ4NYuHHliCoGx3Z XwzJOK24ccw7SmoIAFooBJSsPdoQUTy9iL0QoTEtOpZTXRTe5GWVVURFO8XM/B5d SNGnH8j5jeDR0MldHCU+cr12MaWAo5YcpZKEv7f7aVCS/qHU8M/HpFAAzYXTjjON TVabzg67tJ0js/2e56wZpCqRMwtOnNdpeYd5MfMY3ulgQY+EhivdijYjOaMv2kwg OdhXUWpIn+fp3fdEVXVN1Lb2KAuFloxwplNGu3B0RwqyzC+tMo2DJt1OTlR2vKBk gUkk5kvi0lIuobx8Ccda4N6kYQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDilNjEb vP5o1aGt2gyQmrYdYVeEMB8GA1UdIwQYMBaAFEy4FdaXRVvLMCt0152qauQbt7eJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTVBOS82N0FFREU4QzVE MTkxMUU4OERERTM5M0VDNEY5QUUwMi9UTGdWMXBkRlc4c3dLM1RYbmFwcTVCdTN0 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMZ1YxcGRGVzhzd0szVFhuYXBxNUJ1M3Q0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk1QTkvNjdBRURFOEM1RDE5MTFFODhEREUzOTNFQzRGOUFFMDIvMTlDMDM1QzZG M0VGMTFFQTgyRjNDMjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnc6cwDAMEAGd9GQMEAmd9GDANBgkqhkiG9w0BAQsFAAOC AQEAhiQYR57QhtYGIo/r0Fyo81KQVAIZPCIrY/L2pEyBSZDSOTkD9xcNSIJFgM31 LSczRBKXlVzNC9LKKDi3W2afDwmgbd4/+APtGluyFDWUQ5bg4uw2s3eRlseiKFgW 5BMQ3A0ylR9P52cHSEr9SQXAvl87SiLY7rzYkZ0EoSNtwgdQp8XGiFxypF3lRodu xzh6A6gQtcJQlaDoIvUUQIqqX9QDmQL96RmulNYsGRXmVLS/bqRQ3QodV/Xo4pqn flctpd3UD8t0EYHtAYIm3vMG0PuPEJdmqj7yhjb5KHpzH5H31gbm9e6vTEXmEVeA b9zqZnbeBK/hIF/Qk6LCTxdPfw== -----END CERTIFICATE-----Generated at Fri Jul 26 14:10:37 2024 by rpki-client on console-fra.rpki-client.org