$ rpki-client -vvf rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/5E9461285DB711EF8AB66F0EC4F9AE02.roa File: 5E9461285DB711EF8AB66F0EC4F9AE02.roa (raw, json) Hash identifier: hMAkv0SPUa2fx1kdkftE1TeJlCXaC/PpyWLtj7Qjwao= Subject key identifier: EE:59:0F:13:6E:3A:48:4F:30:83:83:32:6A:76:B7:5F:6D:EB:66:E3 Certificate issuer: /CN=A91610DD/serialNumber=D8BD676518366034B888848B3B5718FA9070E192 Certificate serial: 1E Authority key identifier: D8:BD:67:65:18:36:60:34:B8:88:84:8B:3B:57:18:FA:90:70:E1:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/5E9461285DB711EF8AB66F0EC4F9AE02.roa Signing time: Mon 19 Aug 2024 00:08:14 +0000 ROA not before: Mon 19 Aug 2024 00:08:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 9313 IP address blocks: 103.21.144.0/24 maxlen: 24 103.21.145.0/24 maxlen: 24 103.21.146.0/24 maxlen: 24 103.21.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.crl rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91610DD/serialNumber=D8BD676518366034B888848B3B5718FA9070E192 Validity Not Before: Aug 19 00:08:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66c28cee-53c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:99:c2:4f:1b:5a:6a:3f:4e:51:40:4d:2f:b7: e3:3f:87:9a:98:8e:e0:3a:79:2c:f9:c9:cd:cc:f6: e9:7e:99:d6:37:f1:4e:17:97:00:53:81:67:4a:0c: 77:1f:59:a5:c4:58:04:3a:c5:e9:8c:65:06:d3:b6: 9f:b3:12:da:7e:91:88:c4:a7:44:d5:20:e6:98:94: ca:58:58:36:0f:98:cc:cc:dc:22:c9:0a:b8:d9:e6: fd:5b:98:86:54:81:f2:60:43:3d:8a:b2:cd:92:1e: 0f:b1:3f:c0:d3:ae:02:34:68:9f:09:cc:21:b3:f0: 53:d3:a8:46:86:36:e6:57:d3:b6:fe:42:f6:e8:ff: 41:9b:b8:cb:6b:b2:90:b2:fe:d6:0c:f4:89:d3:98: 7e:24:ab:6c:e1:03:a4:5b:f9:1c:a6:58:ad:33:75: ee:c0:b5:6f:d0:2e:cf:0c:e8:d5:16:f9:c6:01:36: 7c:a9:ff:bc:f2:7b:64:ec:28:b6:a1:12:1b:96:ca: d8:97:9d:55:d8:22:9a:f5:f8:ce:8d:ac:22:68:39: dd:6a:57:77:aa:d5:e0:cc:61:a4:fc:df:74:8c:95: 8f:1e:f9:00:dc:09:0f:5b:99:6b:4e:28:94:b6:b7: 06:9c:cd:b5:ca:cd:00:f4:70:cd:42:81:95:7d:06: 10:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:59:0F:13:6E:3A:48:4F:30:83:83:32:6A:76:B7:5F:6D:EB:66:E3 X509v3 Authority Key Identifier: keyid:D8:BD:67:65:18:36:60:34:B8:88:84:8B:3B:57:18:FA:90:70:E1:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/2L1nZRg2YDS4iISLO1cY-pBw4ZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2L1nZRg2YDS4iISLO1cY-pBw4ZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91610DD/656324F438EA11EFB0FB217DC4F9AE02/5E9461285DB711EF8AB66F0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.144.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:24:a1:ab:4b:3b:b6:51:e8:65:80:a1:ee:de:c2:cc:c1:7c: e9:9b:eb:62:1e:a2:02:9e:e0:aa:60:2c:4f:84:78:bf:75:c4: a4:1c:4b:2f:e6:76:70:19:04:88:e2:45:1e:19:5e:c3:ec:0d: d1:6c:92:a8:e2:3f:83:4e:a4:04:66:ce:1c:55:47:ff:3e:4e: cb:6c:bd:d3:a4:ef:aa:88:d5:27:04:56:33:78:90:74:eb:36: e5:8d:3a:c8:94:fd:98:bb:e2:41:e2:c0:9d:cb:22:23:73:66: e5:5d:a3:d7:c6:b6:94:9e:fe:fe:8e:63:92:6c:36:72:f6:90: 8c:cd:7c:3c:25:3c:22:b2:ba:0f:77:db:7f:a6:bc:95:f5:d4: c2:a7:47:83:48:58:dc:ca:20:93:b6:d8:1f:1e:a7:ee:f1:0d: 94:55:55:a2:9f:55:64:54:65:af:2b:7d:9c:b2:41:1a:b1:5d: 23:42:5d:9f:8e:dd:84:9a:6a:ee:5d:4c:85:5d:39:f0:bc:6f: 21:64:3f:25:dc:4e:14:c1:04:ff:d5:88:55:28:3f:06:65:b7: f4:c3:46:c4:f0:3a:32:ff:a6:8d:8e:21:00:98:c0:47:13:2c: 6d:d7:c3:78:d5:8b:d0:1c:bb:7d:3f:ca:8f:f5:02:62:55:57: ee:b9:1e:ed -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTBERDExMC8GA1UEBRMoRDhCRDY3NjUxODM2NjAzNEI4ODg4NDhCM0I1NzE4RkE5 MDcwRTE5MjAeFw0yNDA4MTkwMDA4MTRaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzI4Y2VlLTUzYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfmcJPG1pqP05RQE0vt+M/h5qYjuA6eSz5yc3M9ul+mdY38U4XlwBTgWdKDHcf WaXEWAQ6xemMZQbTtp+zEtp+kYjEp0TVIOaYlMpYWDYPmMzM3CLJCrjZ5v1bmIZU gfJgQz2Kss2SHg+xP8DTrgI0aJ8JzCGz8FPTqEaGNuZX07b+Qvbo/0GbuMtrspCy /tYM9InTmH4kq2zhA6Rb+RymWK0zde7AtW/QLs8M6NUW+cYBNnyp/7zye2TsKLah EhuWytiXnVXYIpr1+M6NrCJoOd1qV3eq1eDMYaT833SMlY8e+QDcCQ9bmWtOKJS2 twaczbXKzQD0cM1CgZV9BhCnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7lkPE246 SE8wg4Myana3X23rZuMwHwYDVR0jBBgwFoAU2L1nZRg2YDS4iISLO1cY+pBw4ZIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxMERELzY1NjMyNEY0MzhF QTExRUZCMEZCMjE3REM0RjlBRTAyLzJMMW5aUmcyWURTNGlJU0xPMWNZLXBCdzRa SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkwxblpSZzJZRFM0aUlTTE8xY1ktcEJ3NFpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTBERC82NTYzMjRGNDM4RUExMUVGQjBGQjIxN0RDNEY5QUUwMi81RTk0NjEyODVE QjcxMUVGOEFCNjZGMEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmcVkDANBgkqhkiG9w0BAQsFAAOCAQEAKiShq0s7tlHoZYCh 7t7CzMF86ZvrYh6iAp7gqmAsT4R4v3XEpBxLL+Z2cBkEiOJFHhlew+wN0WySqOI/ g06kBGbOHFVH/z5Oy2y906TvqojVJwRWM3iQdOs25Y06yJT9mLviQeLAncsiI3Nm 5V2j18a2lJ7+/o5jkmw2cvaQjM18PCU8IrK6D3fbf6a8lfXUwqdHg0hY3Mogk7bY Hx6n7vENlFVVop9VZFRlryt9nLJBGrFdI0Jdn47dhJpq7l1MhV058LxvIWQ/JdxO FMEE/9WIVSg/BmW39MNGxPA6Mv+mjY4hAJjARxMsbdfDeNWL0By7fT/Kj/UCYlVX 7rke7Q== -----END CERTIFICATE-----Generated at Tue Sep 17 07:38:15 2024 by rpki-client on console-fra.rpki-client.org