$ rpki-client -vvf rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa File: 305A9890EAEF11EDBBFC2B0BC4F9AE02.roa (raw, json) Hash identifier: ePVRm39tIyAswyhwrdMeKFH+yRFfrkV0msYN8ZorCeo= Subject key identifier: 63:9A:06:8F:64:E9:E5:EE:A8:85:E2:29:F9:16:52:0D:42:A3:B9:7D Certificate issuer: /CN=A91672E3/serialNumber=8EE5226E057A65442422EAFED9C62E290DF3248A Certificate serial: D6 Authority key identifier: 8E:E5:22:6E:05:7A:65:44:24:22:EA:FE:D9:C6:2E:29:0D:F3:24:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa Signing time: Fri 07 Jun 2024 07:40:44 +0000 ROA not before: Fri 07 Jun 2024 07:40:44 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151197 IP address blocks: 103.140.194.0/23 maxlen: 23 103.140.194.0/25 maxlen: 25 103.140.194.128/25 maxlen: 25 103.140.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.crl rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91672E3/serialNumber=8EE5226E057A65442422EAFED9C62E290DF3248A Validity Not Before: Jun 7 07:40:44 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6662b97b-4519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b2:0f:2a:0b:01:9c:cf:4a:7e:32:f3:42:31: 12:e6:68:3d:a2:e1:5d:bc:81:e9:ee:a7:7b:76:d2: 6c:e2:68:a0:d8:a8:a1:9b:19:00:bf:e8:d4:14:92: de:c6:bf:a2:96:a9:57:24:72:81:a1:cf:15:de:b9: 1c:64:5e:a9:78:49:29:f8:57:e0:90:6f:80:4f:cc: 33:32:9f:86:7f:fb:ae:d9:b8:79:cc:d0:9d:80:1f: af:48:ba:b5:dc:ed:b5:9b:fa:b2:8e:3e:65:6a:fe: 53:ee:77:c4:67:18:26:fc:b5:e2:9d:6a:45:6b:f7: 48:da:f0:ec:70:7c:5d:c3:65:76:bb:76:57:5b:2b: b1:b8:b1:a0:2f:99:d0:59:88:9e:81:9c:d7:66:cb: 8c:ec:d9:79:e3:78:d9:82:a4:17:0d:9d:bb:02:4e: 02:79:89:91:7c:47:ca:6a:d7:b7:44:51:0c:22:5a: cb:07:23:80:18:17:f1:88:00:ad:90:aa:0b:e6:6f: ba:dc:6f:dc:22:9f:ab:a7:87:41:29:f4:bb:90:f4: 0b:a5:b7:f4:cb:39:cb:ff:56:a6:05:59:50:5c:22: e5:ee:45:fa:4b:f3:df:b5:8c:a9:5a:bb:43:4f:08: 08:0b:ac:e0:75:76:eb:0d:d1:b8:63:91:f3:1a:99: 66:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9A:06:8F:64:E9:E5:EE:A8:85:E2:29:F9:16:52:0D:42:A3:B9:7D X509v3 Authority Key Identifier: keyid:8E:E5:22:6E:05:7A:65:44:24:22:EA:FE:D9:C6:2E:29:0D:F3:24:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/juUibgV6ZUQkIur-2cYuKQ3zJIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/juUibgV6ZUQkIur-2cYuKQ3zJIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91672E3/C6B5013CEAE911ED875A2D51C4F9AE02/305A9890EAEF11EDBBFC2B0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.194.0/23 Signature Algorithm: sha256WithRSAEncryption ba:8c:6d:bc:63:27:53:52:e6:76:25:32:ba:95:e7:80:32:31: 9e:f5:76:2b:50:68:d6:29:e4:21:31:32:e4:a3:9b:1d:f4:aa: 86:04:a2:f0:a6:f0:6d:81:46:b0:48:e3:0d:8d:85:39:ba:b2: 2d:40:f8:8d:06:88:61:a0:bb:1e:75:fd:f0:e2:6b:a0:41:7e: b6:42:c9:b9:82:de:8b:db:e6:c4:6a:31:fa:ef:4a:72:cf:63: e5:28:a9:a9:00:75:fe:fb:a4:12:00:4c:77:59:71:35:53:25: 71:15:09:86:2b:a4:6c:d5:f0:9d:88:ca:e9:c7:53:b2:13:2c: a9:99:f7:1f:59:aa:9b:96:83:10:9a:62:0e:4c:e5:8b:62:45: 58:03:1e:ff:26:23:4c:29:9d:03:d8:ea:93:ca:44:b5:b0:21: 3c:ca:5a:27:ae:1d:46:1f:04:1a:92:aa:7f:ba:bd:e6:f3:8a: 7c:5e:df:df:15:3b:00:17:1d:47:8c:ae:17:e5:cc:fa:24:e3: b0:52:16:67:24:51:6b:72:e3:20:27:3a:46:1b:d8:e5:75:73: 0c:cc:29:4b:4e:04:56:8e:f8:40:e2:fa:b2:9c:5d:0b:7a:27: ed:6a:91:00:e1:60:45:18:a4:32:6f:25:74:70:87:62:5c:22: 4b:44:03:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyRTMxMTAvBgNVBAUTKDhFRTUyMjZFMDU3QTY1NDQyNDIyRUFGRUQ5QzYyRTI5 MERGMzI0OEEwHhcNMjQwNjA3MDc0MDQ0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyYjk3Yi00NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3bIPKgsBnM9KfjLzQjES5mg9ouFdvIHp7qd7dtJs4mig2KihmxkAv+jUFJLe xr+ilqlXJHKBoc8V3rkcZF6peEkp+FfgkG+AT8wzMp+Gf/uu2bh5zNCdgB+vSLq1 3O21m/qyjj5lav5T7nfEZxgm/LXinWpFa/dI2vDscHxdw2V2u3ZXWyuxuLGgL5nQ WYiegZzXZsuM7Nl543jZgqQXDZ27Ak4CeYmRfEfKate3RFEMIlrLByOAGBfxiACt kKoL5m+63G/cIp+rp4dBKfS7kPQLpbf0yznL/1amBVlQXCLl7kX6S/PftYypWrtD TwgIC6zgdXbrDdG4Y5HzGplmFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGOaBo9k 6eXuqIXiKfkWUg1Co7l9MB8GA1UdIwQYMBaAFI7lIm4FemVEJCLq/tnGLikN8ySK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzJFMy9DNkI1MDEzQ0VB RTkxMUVEODc1QTJENTFDNEY5QUUwMi9qdVVpYmdWNlpVUWtJdXItMmNZdUtRM3pK SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p1VWliZ1Y2WlVRa0l1ci0yY1l1S1EzekpJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcyRTMvQzZCNTAxM0NFQUU5MTFFRDg3NUEyRDUxQzRGOUFFMDIvMzA1QTk4OTBF QUVGMTFFREJCRkMyQjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjMIwDQYJKoZIhvcNAQELBQADggEBALqMbbxjJ1NS5nYl MrqV54AyMZ71ditQaNYp5CExMuSjmx30qoYEovCm8G2BRrBI4w2NhTm6si1A+I0G iGGgux51/fDia6BBfrZCybmC3ovb5sRqMfrvSnLPY+UoqakAdf77pBIATHdZcTVT JXEVCYYrpGzV8J2IyunHU7ITLKmZ9x9ZqpuWgxCaYg5M5YtiRVgDHv8mI0wpnQPY 6pPKRLWwITzKWieuHUYfBBqSqn+6vebzinxe398VOwAXHUeMrhflzPok47BSFmck UWty4yAnOkYb2OV1cwzMKUtOBFaO+EDi+rKcXQt6J+1qkQDhYEUYpDJvJXRwh2Jc IktEA/4= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org