$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa File: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (raw, json) Hash identifier: tIDiP3hNqVNzA0IqRbP/SuZVvzepUKW2qtpK5KHsOYE= Subject key identifier: A5:38:F6:2B:30:97:A8:03:86:89:00:4F:70:F9:D5:F1:4D:5A:C3:A0 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 90 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa Signing time: Tue 29 Oct 2024 01:56:59 +0000 ROA not before: Tue 29 Oct 2024 01:56:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132686 IP address blocks: 103.73.236.0/22 maxlen: 22 103.73.236.0/24 maxlen: 24 103.73.237.0/24 maxlen: 24 103.73.238.0/24 maxlen: 24 103.73.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Oct 29 01:56:59 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=672040eb-8a53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:34:7c:ca:be:4c:f9:86:c8:a0:9b:5d:d2:da: 26:c7:3c:a6:10:46:ee:e9:41:d3:fe:3f:67:27:69: 52:65:40:b7:18:f5:5c:3c:11:08:45:44:af:83:35: bd:ce:be:26:bf:64:fe:15:ee:8e:12:fa:e4:29:be: d3:50:83:69:f8:fe:31:d8:71:cb:3e:66:e0:9e:2b: a4:4e:de:fc:40:c5:ce:5a:28:b4:70:72:33:ef:05: 37:b0:91:55:eb:b4:9c:a9:06:25:3c:60:b6:f8:4c: 48:b5:b5:7a:e1:0e:dc:0a:88:ed:e9:33:a8:fd:5e: db:6a:6b:d4:34:80:92:fc:07:0e:ae:60:22:1c:a8: ce:76:ea:12:77:fa:e7:dc:00:36:96:4c:7e:5e:36: e3:f5:33:1d:e2:05:d3:35:23:e1:14:48:92:8b:14: c0:95:fd:b1:1a:be:7a:23:8a:7e:a9:86:c2:e3:5e: 46:0c:93:25:1a:71:cb:22:e3:25:ef:89:d1:32:f1: 97:a1:b8:a3:35:f2:2e:e4:42:32:57:71:d4:43:7b: f1:a5:fd:b2:d5:66:82:e4:e9:d0:28:7a:42:ba:16: a7:d4:72:33:e0:dc:52:41:cc:52:88:7e:93:7a:3d: 1c:0c:b5:17:76:33:66:5f:c5:2b:d3:ff:03:53:b2: ce:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:38:F6:2B:30:97:A8:03:86:89:00:4F:70:F9:D5:F1:4D:5A:C3:A0 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.236.0/22 Signature Algorithm: sha256WithRSAEncryption 00:fc:0c:0e:00:f6:21:1f:5c:bd:0d:ad:2d:1c:c0:66:8e:87: f8:6d:3e:f7:71:75:7a:fd:6d:df:e0:2f:e5:76:ff:88:e0:54: eb:01:94:c6:13:07:27:db:12:fa:fb:3d:ea:57:18:8f:b1:b6: ca:0a:51:5b:a9:64:f3:8c:09:fe:ed:10:f3:be:53:ed:ed:55: 09:38:43:e4:03:3f:b6:a1:51:c3:7a:9a:58:b5:e6:6f:a2:6b: 12:72:48:fb:21:68:ae:34:7b:e7:37:d9:33:6e:b1:87:00:ae: 4f:34:47:f7:9f:52:e9:fd:98:45:81:e5:38:d1:9a:9a:68:4a: 9f:02:28:50:ca:92:25:60:4d:2b:ed:f2:c2:b4:00:e8:87:ca: 81:fa:fa:0a:28:51:c1:cd:74:58:a4:25:54:54:6f:75:f8:7d: 65:ca:b2:b8:63:8b:6f:03:18:02:40:eb:26:3d:aa:e8:46:65: 75:fb:df:21:ff:eb:2c:55:9e:4f:f9:af:c4:2b:40:01:71:64: cc:cb:58:5c:dc:d3:e9:33:18:d6:b8:cf:09:3b:5f:95:a3:17: ed:cc:e2:87:be:48:cd:55:5f:bc:a1:76:00:17:a1:b3:50:2c: 78:25:c2:cc:15:d8:a9:dc:80:57:e1:5e:4d:2c:47:82:80:d9: c0:b3:c0:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjQxMDI5MDE1NjU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNDBlYi04YTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTR8yr5M+YbIoJtd0tomxzymEEbu6UHT/j9nJ2lSZUC3GPVcPBEIRUSvgzW9 zr4mv2T+Fe6OEvrkKb7TUINp+P4x2HHLPmbgniukTt78QMXOWii0cHIz7wU3sJFV 67ScqQYlPGC2+ExItbV64Q7cCojt6TOo/V7bamvUNICS/AcOrmAiHKjOduoSd/rn 3AA2lkx+Xjbj9TMd4gXTNSPhFEiSixTAlf2xGr56I4p+qYbC415GDJMlGnHLIuMl 74nRMvGXobijNfIu5EIyV3HUQ3vxpf2y1WaC5OnQKHpCuhan1HIz4NxSQcxSiH6T ej0cDLUXdjNmX8Ur0/8DU7LO7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKU49isw l6gDhokAT3D51fFNWsOgMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyRDcvNUI5RjcxRDJFRDMwMTFFQ0JGMDdGMDEyQzRGOUFFMDIvQ0U1Rjc0RTJC RTU4MTFFRUE4QzAyRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSewwDQYJKoZIhvcNAQELBQADggEBAAD8DA4A9iEfXL0N rS0cwGaOh/htPvdxdXr9bd/gL+V2/4jgVOsBlMYTByfbEvr7PepXGI+xtsoKUVup ZPOMCf7tEPO+U+3tVQk4Q+QDP7ahUcN6mli15m+iaxJySPshaK40e+c32TNusYcA rk80R/efUun9mEWB5TjRmppoSp8CKFDKkiVgTSvt8sK0AOiHyoH6+gooUcHNdFik JVRUb3X4fWXKsrhji28DGAJA6yY9quhGZXX73yH/6yxVnk/5r8QrQAFxZMzLWFzc 0+kzGNa4zwk7X5WjF+3M4oe+SM1VX7yhdgAXobNQLHglwswV2KncgFfhXk0sR4KA 2cCzwNM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org