$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/5892BB44853E11EB9D9E2D39C4F9AE02.roa File: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (raw, json) Hash identifier: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc= Subject key identifier: 85:A3:F6:85:68:8A:12:B9:E2:AE:51:E9:F3:C7:87:D4:FE:51:30:73 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 0606 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/5892BB44853E11EB9D9E2D39C4F9AE02.roa Signing time: Thu 14 Nov 2024 22:41:44 +0000 ROA not before: Thu 14 Nov 2024 22:41:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 38809 IP address blocks: 103.198.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Nov 14 22:41:44 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67367ca7-bc81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:ab:40:c4:64:df:41:04:48:8b:30:38:2b: 6e:a5:97:39:01:fe:af:61:08:64:bf:a6:89:e4:ff: 5d:db:4b:f1:14:f2:61:8b:b9:52:3e:fd:37:85:37: ab:cc:39:12:46:d0:d5:ac:90:f8:ce:4d:b4:1d:ef: 5e:85:8c:54:2e:05:18:ee:5a:19:7e:d1:ff:86:45: 13:9d:f0:25:a1:f6:26:c3:42:e2:0d:61:f7:ef:70: b1:00:5d:9d:76:8e:ce:93:4e:a7:a2:2e:db:0b:35: fa:37:c9:22:85:bb:40:02:f5:da:06:29:3b:f7:0d: b0:ae:e7:41:0f:3e:47:0d:8c:67:fd:0d:17:c4:eb: be:e2:e2:5a:3b:36:df:17:24:09:90:38:e5:e5:14: 33:07:50:e8:3d:62:b9:e1:a5:a3:20:04:86:46:f7: e1:c4:93:08:e8:0b:9e:85:f4:4b:fd:f9:7f:6c:77: 76:84:7a:97:e3:32:ff:c1:a4:62:dd:f7:d7:c8:7c: 55:06:90:ae:2a:ab:eb:db:f1:50:f8:be:53:5b:bb: f1:86:2c:75:6a:76:36:54:08:f5:aa:d8:4e:f2:64: c7:96:3f:95:51:8c:1b:70:cd:f0:22:ee:e8:af:90: d8:e4:ea:b5:7b:ba:2f:54:84:00:e0:ca:6a:76:e7: b6:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A3:F6:85:68:8A:12:B9:E2:AE:51:E9:F3:C7:87:D4:FE:51:30:73 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/5892BB44853E11EB9D9E2D39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.92.0/24 Signature Algorithm: sha256WithRSAEncryption 69:25:ac:e0:10:9a:ce:02:46:dd:9a:0a:63:e4:09:64:cb:c6: 31:86:e3:e4:7c:af:36:f3:86:f7:5d:74:1b:cc:1f:b5:43:a8: 6c:26:75:ce:c0:4e:e7:ab:62:f2:59:f2:69:d0:a1:cb:7e:c3: e2:0f:f7:d1:40:70:1a:b2:ea:45:32:2e:76:ea:da:26:03:c6: e7:28:31:37:17:97:4c:4b:3e:90:13:dd:59:b9:38:f4:78:ef: 6e:17:58:5c:93:78:4a:46:ab:09:ab:dd:06:28:7f:26:7d:70: 30:dc:41:a4:1e:1e:25:f9:1d:73:bc:2f:88:33:23:90:34:42: 82:a9:06:a2:b0:09:a9:8b:8d:82:ba:7b:85:6c:99:50:4d:3c: c2:87:eb:aa:82:a7:e5:a3:14:95:20:4f:08:cd:8f:55:9e:5b: 5f:2b:cd:cd:d0:9d:29:d2:4a:b8:08:59:30:81:0b:be:fa:61: 5a:06:bd:01:03:84:47:b9:f9:8a:96:ed:ef:fc:f8:eb:4e:ee: a7:dd:78:46:05:ce:d7:c7:c0:37:f8:12:e1:60:13:da:d4:a0: 61:4d:12:af:9f:c4:65:41:3a:c3:3e:51:5a:b2:f0:82:b2:1e: 5f:98:0c:33:ce:86:55:8e:55:cd:e7:14:b2:95:f8:72:25:61: 6c:48:da:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjQxMTE0MjI0MTQ0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2N2NhNy1iYzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRGrQMRk30EESIswOCtupZc5Af6vYQhkv6aJ5P9d20vxFPJhi7lSPv03hTer zDkSRtDVrJD4zk20He9ehYxULgUY7loZftH/hkUTnfAlofYmw0LiDWH373CxAF2d do7Ok06noi7bCzX6N8kihbtAAvXaBik79w2wrudBDz5HDYxn/Q0XxOu+4uJaOzbf FyQJkDjl5RQzB1DoPWK54aWjIASGRvfhxJMI6AuehfRL/fl/bHd2hHqX4zL/waRi 3ffXyHxVBpCuKqvr2/FQ+L5TW7vxhix1anY2VAj1qthO8mTHlj+VUYwbcM3wIu7o r5DY5Oq1e7ovVIQA4Mpqdue2DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWj9oVo ihK54q5R6fPHh9T+UTBzMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0QjcvRTE4MENFN0E4NTFFMTFFQjg0MTlCMzI3QzRGOUFFMDIvNTg5MkJCNDQ4 NTNFMTFFQjlEOUUyRDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxlwwDQYJKoZIhvcNAQELBQADggEBAGklrOAQms4CRt2a CmPkCWTLxjGG4+R8rzbzhvdddBvMH7VDqGwmdc7ATuerYvJZ8mnQoct+w+IP99FA cBqy6kUyLnbq2iYDxucoMTcXl0xLPpAT3Vm5OPR4724XWFyTeEpGqwmr3QYofyZ9 cDDcQaQeHiX5HXO8L4gzI5A0QoKpBqKwCamLjYK6e4VsmVBNPMKH66qCp+WjFJUg TwjNj1WeW18rzc3QnSnSSrgIWTCBC776YVoGvQEDhEe5+YqW7e/8+OtO7qfdeEYF ztfHwDf4EuFgE9rUoGFNEq+fxGVBOsM+UVqy8IKyHl+YDDPOhlWOVc3nFLKV+HIl YWxI2pA= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:49 2024 by rpki-client on console-fra.rpki-client.org