$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa File: 94A1F97A369711EA866E381CC4F9AE02.roa (raw, json) Hash identifier: KWbJbgpGfDdYPVO+KIuyWusqQxr6PU0FBc6ESlEd+IQ= Subject key identifier: FC:CE:4F:BC:CD:E1:C0:91:65:3B:50:AE:3C:AF:B9:CD:17:FA:F3:E8 Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 1730 Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa Signing time: Mon 10 Jun 2024 17:48:16 +0000 ROA not before: Mon 10 Jun 2024 17:48:16 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 131310 IP address blocks: 103.21.252.0/22 maxlen: 24 103.246.88.0/22 maxlen: 24 2404:6300::/32 maxlen: 126 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5936 (0x1730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Jun 10 17:48:16 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66673c60-4712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:85:c7:44:ce:07:ee:cd:4c:ab:fa:e8:a4: ff:14:37:19:9c:b6:fd:69:cd:ed:df:c9:a4:2d:29: 0b:38:09:3b:e4:5b:e8:87:16:e2:2b:0b:26:27:f5: ca:b3:a0:71:3a:4d:80:48:a3:9e:1d:ad:be:77:6e: ff:6f:37:b7:48:4c:93:7f:7c:f2:92:29:01:60:98: dd:58:cf:05:75:4f:2f:84:2d:45:f5:21:da:f0:7e: 0d:31:8e:59:74:f7:fb:55:96:26:1d:54:8d:a6:9a: 55:ca:cc:d2:a5:e4:d7:fc:62:5b:7e:62:3f:e3:29: c6:04:b2:1b:a9:ee:bc:67:38:21:7c:8b:1c:94:3c: 89:e3:65:43:ca:5d:ee:50:0b:d0:9a:c3:fb:8d:c2: bc:97:ec:8a:e0:98:20:4b:a4:cc:ab:b9:d4:2d:69: 32:e5:91:0a:05:68:af:b8:a7:f8:0a:e5:2e:9d:d3: 98:24:c7:c3:12:14:f8:0a:5a:8c:4e:c5:5e:6e:3f: 19:9d:74:a4:97:3d:b1:d1:e7:18:7f:60:f0:f2:e9: 05:f1:db:a3:b6:a3:d4:4e:92:c5:25:09:4e:19:83: 05:c9:15:f0:79:68:59:4b:8d:7c:9f:dc:b4:32:c5: 59:cb:19:b2:f9:8e:66:3f:d3:a9:ca:4e:ec:ed:48: 35:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:CE:4F:BC:CD:E1:C0:91:65:3B:50:AE:3C:AF:B9:CD:17:FA:F3:E8 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.252.0/22 103.246.88.0/22 IPv6: 2404:6300::/32 Signature Algorithm: sha256WithRSAEncryption b3:8f:d0:c9:2f:81:00:3d:e3:55:a9:65:4e:cc:d1:34:9f:30: 9c:2d:f5:ab:3d:90:a8:f1:e6:98:02:3d:b1:22:c0:7c:de:31: 02:a7:07:e1:fc:96:2b:32:73:d2:3e:f7:7f:f1:95:6d:4e:61: e9:dd:9a:0b:4d:26:2a:68:6b:d1:90:d9:e1:3b:0b:23:b0:30: f1:b1:f2:32:76:a5:2d:8c:a6:b6:e0:a4:35:f1:c6:0c:65:97: ac:a2:c0:0c:43:6f:e2:a2:e0:d4:96:eb:71:be:f4:23:2e:b6: 99:70:5e:75:80:48:f0:f0:18:0a:5b:d3:c6:b2:b6:2c:4f:ac: 18:94:6a:ad:c4:47:0b:60:24:51:af:b2:05:24:78:de:b2:de: aa:58:94:a7:12:77:c7:3b:66:76:3b:03:6a:c1:11:d3:80:9d: 7d:01:67:71:5b:c6:8f:79:9b:96:55:44:af:43:50:9f:cb:c4: 0e:70:60:2c:39:c4:55:90:8b:2e:d4:a7:0c:fc:62:8c:0a:ee: c4:af:22:d0:66:2b:bb:08:27:97:6a:ba:43:1e:89:ba:09:5f: 81:01:94:79:9b:86:45:91:63:9d:a3:ca:4e:48:19:0c:65:55: d7:2b:9f:97:d8:91:17:65:86:77:64:06:02:d4:15:5c:53:49: f2:86:d2:97 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjQwNjEwMTc0ODE2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3M2M2MC00NzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGCFx0TOB+7NTKv66KT/FDcZnLb9ac3t38mkLSkLOAk75FvohxbiKwsmJ/XK s6BxOk2ASKOeHa2+d27/bze3SEyTf3zykikBYJjdWM8FdU8vhC1F9SHa8H4NMY5Z dPf7VZYmHVSNpppVyszSpeTX/GJbfmI/4ynGBLIbqe68ZzghfIsclDyJ42VDyl3u UAvQmsP7jcK8l+yK4JggS6TMq7nULWky5ZEKBWivuKf4CuUundOYJMfDEhT4ClqM TsVebj8ZnXSklz2x0ecYf2Dw8ukF8dujtqPUTpLFJQlOGYMFyRXweWhZS418n9y0 MsVZyxmy+Y5mP9Opyk7s7Ug1qwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPzOT7zN 4cCRZTtQrjyvuc0X+vPoMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg5RTcvRjhGRjE1MjJCREZCMTFFN0I4NzNGRTI3QzRGOUFFMDIvOTRBMUY5N0Ez Njk3MTFFQTg2NkUzODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnFfwDBAJn9lgwDQQCAAIwBwMFACQEYwAwDQYJKoZIhvcN AQELBQADggEBALOP0MkvgQA941WpZU7M0TSfMJwt9as9kKjx5pgCPbEiwHzeMQKn B+H8lisyc9I+93/xlW1OYendmgtNJipoa9GQ2eE7CyOwMPGx8jJ2pS2MprbgpDXx xgxll6yiwAxDb+Ki4NSW63G+9CMutplwXnWASPDwGApb08aytixPrBiUaq3ERwtg JFGvsgUkeN6y3qpYlKcSd8c7ZnY7A2rBEdOAnX0BZ3Fbxo95m5ZVRK9DUJ/LxA5w YCw5xFWQiy7Upwz8YowK7sSvItBmK7sIJ5dqukMeiboJX4EBlHmbhkWRY52jyk5I GQxlVdcrn5fYkRdlhndkBgLUFVxTSfKG0pc= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org