$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa File: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (raw, json) Hash identifier: ItHODf/LTjer4aEMy+uXKhQTAYqJmb+1V4ZxxdvfZf8= Subject key identifier: A5:EA:DD:D3:CC:CF:AB:F7:43:E4:C0:3B:3A:84:77:89:20:F6:4E:1B Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 018B Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa Signing time: Sat 03 Feb 2024 04:15:53 +0000 ROA not before: Sat 03 Feb 2024 04:15:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133189 IP address blocks: 103.87.218.0/23 maxlen: 23 103.226.8.0/23 maxlen: 23 2401:3ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Feb 3 04:15:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bdbdf8-ff84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:ea:fd:45:74:b8:25:25:59:3f:51:9a:cf: 98:a1:18:9a:51:5b:8f:ae:89:07:cd:98:50:f0:00: ec:26:b0:3b:51:4f:a2:40:3e:cc:c8:ce:5a:1c:52: 86:e3:93:ec:c1:46:cf:48:2c:b6:b1:5c:5f:11:ba: 37:9b:03:82:e3:e9:47:2d:25:2b:07:b3:0e:fe:89: 96:44:b0:ab:6c:70:b6:59:57:85:95:4f:8a:ca:18: 2e:a5:81:f7:6a:e1:90:ff:b8:91:28:82:c8:5f:54: af:3e:3a:13:92:fa:18:47:78:19:93:be:14:43:8c: 28:da:2a:77:05:8d:ee:0a:10:a8:6f:81:c9:ae:c3: 17:bb:90:eb:8f:45:54:27:e2:ab:03:8d:20:61:e4: cc:54:2b:da:04:5a:18:7c:cc:02:44:61:8c:2b:c2: 10:db:0a:de:7d:3f:16:49:e0:7e:45:9b:46:10:60: ef:e2:02:22:02:27:13:39:51:13:6c:ae:21:28:34: 52:64:91:f9:97:6d:b6:cf:10:9d:e8:92:57:18:20: b1:47:ad:e6:43:ad:1f:47:99:f6:79:73:8d:94:6f: e3:b5:83:e2:86:c4:b0:54:37:eb:60:47:65:c4:cd: 84:24:0b:94:a3:ca:9d:47:b2:10:7a:29:66:46:96: ad:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:EA:DD:D3:CC:CF:AB:F7:43:E4:C0:3B:3A:84:77:89:20:F6:4E:1B X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/2841A0CE0BE111ED9E3AA135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.218.0/23 103.226.8.0/23 IPv6: 2401:3ac0::/32 Signature Algorithm: sha256WithRSAEncryption 91:72:d7:38:11:9c:97:21:d4:5a:27:f3:b0:33:33:f9:b0:5c: e1:3c:c3:42:95:68:bf:a7:4e:e4:1a:0c:79:a1:80:2e:4f:b5: bf:95:9e:18:f9:cc:c6:49:1d:3a:52:a5:7b:7e:15:41:e6:d6: 72:84:a0:94:d0:fe:e5:01:cc:d6:6f:92:ad:18:3d:5a:87:1f: 33:23:fa:fb:3a:70:1a:08:cf:87:f0:cb:3b:14:f8:c4:a3:a8: 61:86:a9:4d:e1:34:b8:18:8c:f3:d6:83:d9:13:25:67:c9:f7: e0:82:59:57:61:b3:fd:36:b8:21:34:b5:43:e6:1b:f5:32:af: 98:9b:b0:c0:0e:c6:b3:8d:94:fa:9b:64:7a:54:64:98:72:b5: 48:6d:eb:af:1d:db:35:45:16:63:86:48:ab:e1:74:88:74:b5: 70:08:2c:4e:53:9f:a0:38:f1:05:93:53:46:c5:36:0a:01:c0: 89:59:45:30:8b:5f:ca:13:0f:53:0d:b2:7a:b3:4e:56:b8:18: 59:19:67:3b:35:57:a6:95:ef:e7:c7:94:7b:51:1e:04:ef:95: ad:95:f8:12:6f:cc:db:27:43:5d:e0:22:f0:86:0b:09:62:10: 50:db:59:19:f1:28:c8:1e:1a:ac:f3:a6:4c:e1:ff:bc:74:dd: 5e:48:85:16 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjQwMjAzMDQxNTUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkYmRmOC1mZjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyObq/UV0uCUlWT9Rms+YoRiaUVuProkHzZhQ8ADsJrA7UU+iQD7MyM5aHFKG 45PswUbPSCy2sVxfEbo3mwOC4+lHLSUrB7MO/omWRLCrbHC2WVeFlU+KyhgupYH3 auGQ/7iRKILIX1SvPjoTkvoYR3gZk74UQ4wo2ip3BY3uChCob4HJrsMXu5Drj0VU J+KrA40gYeTMVCvaBFoYfMwCRGGMK8IQ2wrefT8WSeB+RZtGEGDv4gIiAicTOVET bK4hKDRSZJH5l222zxCd6JJXGCCxR63mQ60fR5n2eXONlG/jtYPihsSwVDfrYEdl xM2EJAuUo8qdR7IQeilmRpat8QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKXq3dPM z6v3Q+TAOzqEd4kg9k4bMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcwQjcvQTUyNjRFRTAwQkREMTFFRDlBQjlFQzJCQzRGOUFFMDIvMjg0MUEwQ0Uw QkUxMTFFRDlFM0FBMTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnV9oDBAFn4ggwDQQCAAIwBwMFACQBOsAwDQYJKoZIhvcN AQELBQADggEBAJFy1zgRnJch1Fon87AzM/mwXOE8w0KVaL+nTuQaDHmhgC5Ptb+V nhj5zMZJHTpSpXt+FUHm1nKEoJTQ/uUBzNZvkq0YPVqHHzMj+vs6cBoIz4fwyzsU +MSjqGGGqU3hNLgYjPPWg9kTJWfJ9+CCWVdhs/02uCE0tUPmG/Uyr5ibsMAOxrON lPqbZHpUZJhytUht668d2zVFFmOGSKvhdIh0tXAILE5Tn6A48QWTU0bFNgoBwIlZ RTCLX8oTD1MNsnqzTla4GFkZZzs1V6aV7+fHlHtRHgTvla2V+BJvzNsnQ13gIvCG CwliEFDbWRnxKMgeGqzzpkzh/7x03V5IhRY= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org