$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa File: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (raw, json) Hash identifier: GNWLaVT5bvTFzhKfPjl/RaZJainXlieK9QJZ8Ys4PmE= Subject key identifier: 75:D8:E5:2D:BA:01:E3:80:A1:12:52:79:C6:51:2D:53:55:25:3C:BC Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 0200 Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa Signing time: Wed 21 Aug 2024 03:16:47 +0000 ROA not before: Wed 21 Aug 2024 03:16:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150137 IP address blocks: 103.90.12.0/24 maxlen: 24 103.90.13.0/24 maxlen: 24 103.191.181.0/24 maxlen: 24 2001:df1:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Aug 21 03:16:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c55c1f-386f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:1b:e2:8b:2b:55:55:61:88:34:67:a9:9b: a1:4d:fd:a4:0a:ab:3a:84:a1:5e:0c:a7:39:8e:20: f9:a4:83:c2:d8:16:7a:93:09:01:f7:ec:5c:59:77: 39:e3:67:ce:c4:f8:0f:33:3c:19:0e:84:71:03:c4: f6:41:ac:38:6b:05:60:ef:68:9f:c6:ba:d5:b1:88: 66:ae:be:87:2a:29:46:0a:a5:30:82:6d:1f:90:e2: 76:d0:2e:a9:85:bd:b0:2c:4b:32:58:68:b8:13:12: 39:14:76:71:73:79:42:96:40:ac:2c:a6:ad:7b:2a: cd:54:71:d5:73:18:4f:24:f6:5b:f1:e2:49:88:d4: a2:54:e4:0c:26:0a:0d:55:1b:65:e8:68:b4:8f:e9: 87:8c:ab:c6:a8:7f:aa:ba:12:3e:81:5e:a9:36:08: d9:b6:7c:e5:e0:af:2e:75:5c:2d:ef:9a:73:18:39: 12:33:7c:58:6d:58:56:d0:03:c0:da:55:0e:98:cc: 6e:7b:73:fd:b2:ff:14:cf:4e:af:d9:bf:5a:f7:85: 0c:38:64:d9:05:6c:c1:4e:43:ab:f8:e8:c5:43:8f: f2:db:28:43:64:ed:8a:fc:af:bb:6d:a4:63:17:8b: 5b:4c:25:2b:c9:94:7a:11:9e:7b:fc:72:41:f9:84: 9a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D8:E5:2D:BA:01:E3:80:A1:12:52:79:C6:51:2D:53:55:25:3C:BC X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.12.0/23 103.191.181.0/24 IPv6: 2001:df1:940::/48 Signature Algorithm: sha256WithRSAEncryption bd:89:19:8c:8e:c9:4b:4e:42:e5:0a:89:39:03:48:59:81:d3: 55:29:d2:f5:98:ee:f9:de:1f:35:a3:4b:bd:65:66:5b:c5:db: 39:71:95:fe:35:57:13:2b:a0:03:55:9a:7d:2c:1b:fe:1b:38: bf:31:86:d4:04:fb:a9:93:65:25:5f:99:4f:f4:e4:8e:e4:0b: 7d:f8:25:b2:f7:2b:85:38:18:4b:0f:8e:89:d6:29:92:22:ec: 98:ed:53:4c:e1:ad:d7:08:83:ec:e5:05:5a:bc:bb:d0:8e:5a: 31:9a:04:52:b4:c9:04:8c:72:28:db:90:80:42:38:b6:de:d0: 2b:81:ed:19:4e:eb:44:93:e2:0e:4d:45:2f:61:6b:fa:41:b0: ff:8b:e2:36:a0:4f:0c:20:6b:0f:dd:47:0e:4e:3e:7e:8e:30: 55:94:43:7f:db:ca:2c:82:42:f0:64:0c:86:31:f5:85:c4:64: 0b:ce:8a:08:de:8d:e8:0e:5b:0c:d3:ba:0d:8c:09:44:98:02: d9:fa:66:55:47:b9:02:96:1a:63:f6:1f:61:9b:42:34:93:e5: dc:38:da:f0:28:89:75:92:c0:34:bf:f3:f7:c5:0c:50:9a:5c: 94:0f:f9:a7:f2:72:c2:e0:e9:1a:11:b9:b4:05:69:1b:f0:c1: 3e:03:d1:01 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjQwODIxMDMxNjQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1NWMxZi0zODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy0b4osrVVVhiDRnqZuhTf2kCqs6hKFeDKc5jiD5pIPC2BZ6kwkB9+xcWXc5 42fOxPgPMzwZDoRxA8T2Qaw4awVg72ifxrrVsYhmrr6HKilGCqUwgm0fkOJ20C6p hb2wLEsyWGi4ExI5FHZxc3lClkCsLKateyrNVHHVcxhPJPZb8eJJiNSiVOQMJgoN VRtl6Gi0j+mHjKvGqH+quhI+gV6pNgjZtnzl4K8udVwt75pzGDkSM3xYbVhW0APA 2lUOmMxue3P9sv8Uz06v2b9a94UMOGTZBWzBTkOr+OjFQ4/y2yhDZO2K/K+7baRj F4tbTCUryZR6EZ57/HJB+YSa/QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHXY5S26 AeOAoRJSecZRLVNVJTy8MB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcyRTIvMkYxOTUzNUMwQ0IyMTFFRDk1Q0VDOTVDQzRGOUFFMDIvMjE2RUU4MDJG ODdBMTFFREFBRTU2QzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnWgwDBABnv7UwDwQCAAIwCQMHACABDfEJQDANBgkqhkiG 9w0BAQsFAAOCAQEAvYkZjI7JS05C5QqJOQNIWYHTVSnS9Zju+d4fNaNLvWVmW8Xb OXGV/jVXEyugA1WafSwb/hs4vzGG1AT7qZNlJV+ZT/TkjuQLffglsvcrhTgYSw+O idYpkiLsmO1TTOGt1wiD7OUFWry70I5aMZoEUrTJBIxyKNuQgEI4tt7QK4HtGU7r RJPiDk1FL2Fr+kGw/4viNqBPDCBrD91HDk4+fo4wVZRDf9vKLIJC8GQMhjH1hcRk C86KCN6N6A5bDNO6DYwJRJgC2fpmVUe5ApYaY/YfYZtCNJPl3Dja8CiJdZLANL/z 98UMUJpclA/5p/JywuDpGhG5tAVpG/DBPgPRAQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org