$ rpki-client -vvf rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5879949ADE9B11EC9AE23269C4F9AE02.roa File: 5879949ADE9B11EC9AE23269C4F9AE02.roa (raw, json) Hash identifier: 1W1utkz3ijyEngxKL3HT/wTn1CGNqvqDy4otJjVWoPI= Subject key identifier: AA:AF:B0:97:99:3B:F8:87:4D:C3:04:EB:DD:60:5F:41:43:6F:70:37 Certificate issuer: /CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Certificate serial: 0314 Authority key identifier: 77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5879949ADE9B11EC9AE23269C4F9AE02.roa Signing time: Sun 31 Dec 2023 02:24:14 +0000 ROA not before: Sun 31 Dec 2023 02:24:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137427 IP address blocks: 103.80.132.0/24 maxlen: 24 103.80.133.0/24 maxlen: 24 103.80.134.0/24 maxlen: 24 103.80.135.0/24 maxlen: 24 182.161.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 788 (0x314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Validity Not Before: Dec 31 02:24:14 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6590d0ce-938e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:af:2b:a1:6d:c3:df:6b:f9:97:1a:74:ec:51: f0:45:2c:5a:c6:64:03:4d:86:25:1d:ff:d7:f0:e3: 00:75:23:fa:a6:72:12:6d:09:0a:01:1c:45:48:85: 80:09:56:ad:e3:0b:88:56:8a:06:b3:2b:0c:fa:d2: 96:0a:da:98:97:09:e6:3a:85:06:9e:8f:5a:04:9b: 18:f6:37:dc:bc:b7:d6:dc:32:b4:77:60:9a:7c:89: 90:d7:7e:10:66:c5:67:67:d8:a8:5d:4b:65:9a:33: 1f:41:45:40:11:4e:d5:f5:27:2a:74:39:cc:df:84: c4:e8:48:39:39:47:97:8e:9d:f0:6e:ae:65:70:bc: ce:6a:60:b3:1f:3b:c8:fa:a8:f9:b2:23:d8:66:1e: 5b:30:ce:48:b6:6a:24:f2:fc:31:61:3b:6c:9e:d3: a7:47:e8:51:df:c2:cb:67:cb:eb:f4:aa:3d:83:ab: d7:49:7e:1e:79:b4:5b:dd:d9:9f:0b:27:98:d1:7b: 00:10:01:81:e5:e3:87:c8:ee:2f:49:43:0e:11:63: 17:d2:1b:f7:2d:8c:ab:ee:e8:7c:19:11:55:23:3f: 24:a8:cc:f0:6b:95:e3:d6:bd:80:31:c8:81:bb:c5: ef:67:09:0f:a2:38:4b:ca:23:4d:5f:2a:ec:a6:63: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AF:B0:97:99:3B:F8:87:4D:C3:04:EB:DD:60:5F:41:43:6F:70:37 X509v3 Authority Key Identifier: keyid:77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5879949ADE9B11EC9AE23269C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.132.0/22 182.161.66.0/24 Signature Algorithm: sha256WithRSAEncryption 49:1f:74:05:8a:c8:c4:79:ca:de:cd:73:12:68:8e:ef:36:44: 4d:57:91:64:2c:00:19:7f:f7:4c:5e:ca:02:6a:1a:58:f4:1b: e8:4f:93:7d:19:1c:34:88:68:6b:55:57:af:b1:fa:4f:b6:be: 76:b9:62:36:45:38:1b:59:38:c8:8b:86:26:6d:cf:72:28:96: 85:e5:3c:f9:74:2e:88:f8:f0:97:cd:5f:8e:c6:41:af:ff:89: e6:7b:19:a5:45:97:b6:56:11:cd:c3:34:89:66:79:03:80:0f: ad:f4:21:c1:4a:8b:95:6e:1f:37:8d:0c:c8:4c:db:57:a4:9a: 01:b2:a2:8c:d6:90:fc:18:22:57:d6:c5:28:c6:8f:dd:45:a3: 61:3c:ee:71:30:4f:d6:7c:a4:e2:42:73:b8:3c:5c:0a:6a:69: 5d:16:c9:0f:ee:50:b0:7b:6d:0e:6d:6a:08:49:79:17:2a:7f: b3:dc:f3:51:5a:1b:00:77:e1:36:5c:26:ef:09:81:84:3e:fd: 03:1a:db:62:25:3f:3a:07:ab:0c:0c:52:43:51:9d:3a:b2:ec: 2d:9e:79:51:8f:09:d3:61:1d:4e:87:10:23:d9:02:d6:d9:ec: aa:90:03:cd:10:b2:12:a3:bb:12:b5:29:0b:3c:55:f3:8b:05: b9:91:69:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4QTMxMTAvBgNVBAUTKDc3NUZFNUExRjYxQTc0MDhERkVFRDQ3RjE0NDdFMzQ2 NERBNTBCMkEwHhcNMjMxMjMxMDIyNDE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwZDBjZS05MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy68roW3D32v5lxp07FHwRSxaxmQDTYYlHf/X8OMAdSP6pnISbQkKARxFSIWA CVat4wuIVooGsysM+tKWCtqYlwnmOoUGno9aBJsY9jfcvLfW3DK0d2CafImQ134Q ZsVnZ9ioXUtlmjMfQUVAEU7V9ScqdDnM34TE6Eg5OUeXjp3wbq5lcLzOamCzHzvI +qj5siPYZh5bMM5Itmok8vwxYTtsntOnR+hR38LLZ8vr9Ko9g6vXSX4eebRb3dmf CyeY0XsAEAGB5eOHyO4vSUMOEWMX0hv3LYyr7uh8GRFVIz8kqMzwa5Xj1r2AMciB u8XvZwkPojhLyiNNXyrspmPipQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKqvsJeZ O/iHTcME691gX0FDb3A3MB8GA1UdIwQYMBaAFHdf5aH2GnQI3+7UfxRH40ZNpQsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThBMy9FMjE5QjYxQzcx MTMxMUVDQkMzMDg5MTlDNEY5QUUwMi9kMV9sb2ZZYWRBamY3dFJfRkVmalJrMmxD eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QxX2xvZllhZEFqZjd0Ul9GRWZqUmsybEN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk4QTMvRTIxOUI2MUM3MTEzMTFFQ0JDMzA4OTE5QzRGOUFFMDIvNTg3OTk0OUFE RTlCMTFFQzlBRTIzMjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUIQDBAC2oUIwDQYJKoZIhvcNAQELBQADggEBAEkfdAWK yMR5yt7NcxJoju82RE1XkWQsABl/90xeygJqGlj0G+hPk30ZHDSIaGtVV6+x+k+2 vna5YjZFOBtZOMiLhiZtz3IoloXlPPl0Loj48JfNX47GQa//ieZ7GaVFl7ZWEc3D NIlmeQOAD630IcFKi5VuHzeNDMhM21ekmgGyoozWkPwYIlfWxSjGj91Fo2E87nEw T9Z8pOJCc7g8XApqaV0WyQ/uULB7bQ5taghJeRcqf7Pc81FaGwB34TZcJu8JgYQ+ /QMa22IlPzoHqwwMUkNRnTqy7C2eeVGPCdNhHU6HECPZAtbZ7KqQA80QshKjuxK1 KQs8VfOLBbmRaWI= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org