$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa File: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (raw, json) Hash identifier: J/8oDeRELdGOcwKCSIyZI2ucZRyx8ILa8bbFd/o79oQ= Subject key identifier: 01:5D:29:64:C8:68:7A:C0:10:6F:9A:A4:B2:11:FB:20:50:9B:1A:A5 Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0A9A Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa Signing time: Sun 06 Oct 2024 19:38:45 +0000 ROA not before: Sun 06 Oct 2024 19:38:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 63844 IP address blocks: 103.41.244.0/23 maxlen: 24 103.77.252.0/23 maxlen: 24 116.206.252.0/22 maxlen: 24 2405:9140::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Oct 6 19:38:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6702e745-2eff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:92:47:bf:03:89:d3:8b:7e:9a:17:ef:fc:2e: 77:fe:1f:10:70:54:f0:3b:43:57:79:5f:12:d7:7b: 69:5d:70:7a:a1:2e:13:58:cf:d2:b2:36:00:51:d2: 02:7f:03:71:25:4e:30:89:6e:e1:48:18:fb:16:bf: 4d:d4:5e:0e:94:3e:eb:a9:42:f0:43:5b:ea:1f:e6: 30:f6:50:59:95:e3:15:63:4a:0d:94:48:c9:19:b7: 3a:db:f9:be:88:7f:02:92:e4:d1:48:51:ff:31:97: d3:00:a2:de:36:53:df:e3:88:7e:cc:97:c3:bb:df: c7:e3:cf:87:35:bc:95:4e:e6:ac:68:1e:7c:9f:78: 2b:98:ed:68:ce:87:4b:c0:ab:6d:f3:f7:4d:03:b2: 44:0d:1d:28:69:c2:1e:7e:01:53:7a:44:07:25:b9: d1:70:92:3a:6e:73:e9:7e:c8:d9:57:7c:38:f7:2a: 6b:68:8d:37:58:e1:d8:98:c5:2b:ed:1e:61:de:bb: 32:f9:36:de:8e:cd:a5:11:80:75:ca:a6:01:94:a2: ab:3d:68:fd:d0:93:26:80:e2:a0:a5:7b:04:ed:3d: 03:76:04:4d:3a:8e:88:08:57:59:5f:ed:a8:8e:e5: 0c:48:22:81:05:f4:e6:ab:2f:e4:0d:ff:4b:32:1d: f4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5D:29:64:C8:68:7A:C0:10:6F:9A:A4:B2:11:FB:20:50:9B:1A:A5 X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.244.0/23 103.77.252.0/23 116.206.252.0/22 IPv6: 2405:9140::/32 Signature Algorithm: sha256WithRSAEncryption 75:6a:56:a0:8e:27:46:67:15:93:62:64:59:d2:e4:3a:d2:77: ff:67:8c:57:e0:d3:22:6b:0c:45:c7:57:38:85:e3:08:a8:7f: cd:86:1a:40:3e:b0:b3:17:14:3b:e0:24:14:47:e5:35:f9:6c: 4e:9a:1f:a2:4e:a6:00:ee:a9:50:4e:ba:87:ea:b1:05:40:c4: a7:43:01:db:02:0c:c3:b1:9f:8a:d2:8a:8c:e1:eb:11:cf:c8: 95:9d:10:2a:70:6e:55:5f:7c:dd:a0:70:10:f6:a2:b8:5d:c3: 7a:47:99:03:b6:f7:4b:51:b4:45:19:28:d5:01:ea:55:58:1d: 55:ad:9a:90:57:ed:62:dd:7b:f8:fa:40:0c:af:9c:05:90:7c: 6e:09:c2:2a:3f:02:2d:94:c9:d7:f7:40:81:05:13:60:5a:68: 8b:19:a2:2c:39:1c:05:b8:9a:e0:d8:35:83:54:15:0f:ff:9d: 87:aa:ce:2d:42:52:46:cc:d8:84:41:d3:a6:c1:75:2d:2d:a2: fb:96:33:b8:15:7f:18:53:a9:70:ed:25:f3:ba:76:b0:51:da: f7:a6:0e:b0:09:99:90:ea:a1:e8:55:59:6b:40:f0:de:af:03: b9:f6:4b:ca:94:f6:36:01:63:40:55:45:00:72:38:de:06:44: cb:db:a5:39 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjQxMDA2MTkzODQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAyZTc0NS0yZWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JJHvwOJ04t+mhfv/C53/h8QcFTwO0NXeV8S13tpXXB6oS4TWM/SsjYAUdIC fwNxJU4wiW7hSBj7Fr9N1F4OlD7rqULwQ1vqH+Yw9lBZleMVY0oNlEjJGbc62/m+ iH8CkuTRSFH/MZfTAKLeNlPf44h+zJfDu9/H48+HNbyVTuasaB58n3grmO1ozodL wKtt8/dNA7JEDR0oacIefgFTekQHJbnRcJI6bnPpfsjZV3w49ypraI03WOHYmMUr 7R5h3rsy+Tbejs2lEYB1yqYBlKKrPWj90JMmgOKgpXsE7T0DdgRNOo6ICFdZX+2o juUMSCKBBfTmqy/kDf9LMh30owIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFAFdKWTI aHrAEG+apLIR+yBQmxqlMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA4QkUvQTJDODI3RUU0MTBCMTFFQUI2OTU0QTJDQzRGOUFFMDIvNURDQjBBMEM0 MTBDMTFFQThBNkM0MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnKfQDBAFnTfwDBAJ0zvwwDQQCAAIwBwMFACQFkUAwDQYJ KoZIhvcNAQELBQADggEBAHVqVqCOJ0ZnFZNiZFnS5DrSd/9njFfg0yJrDEXHVziF 4wiof82GGkA+sLMXFDvgJBRH5TX5bE6aH6JOpgDuqVBOuofqsQVAxKdDAdsCDMOx n4rSiozh6xHPyJWdECpwblVffN2gcBD2orhdw3pHmQO290tRtEUZKNUB6lVYHVWt mpBX7WLde/j6QAyvnAWQfG4Jwio/Ai2Uydf3QIEFE2BaaIsZoiw5HAW4muDYNYNU FQ//nYeqzi1CUkbM2IRB06bBdS0tovuWM7gVfxhTqXDtJfO6drBR2vemDrAJmZDq oehVWWtA8N6vA7n2S8qU9jYBY0BVRQByON4GRMvbpTk= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org