$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa File: 870C2B58B47811E788EC7E65C4F9AE02.roa (raw, json) Hash identifier: aRH01IUvItkJMk65lvOFWwpfHYd0U/w3NKuSxLWLFjE= Subject key identifier: C9:73:3E:DD:18:FD:39:0B:38:79:EB:46:9D:61:02:BF:C6:99:07:6D Certificate issuer: /CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Certificate serial: 1725 Authority key identifier: 6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa Signing time: Sat 24 Feb 2024 17:04:58 +0000 ROA not before: Sat 24 Feb 2024 17:04:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136404 IP address blocks: 103.86.184.0/22 maxlen: 22 103.86.184.0/24 maxlen: 24 103.86.185.0/24 maxlen: 24 103.86.186.0/24 maxlen: 24 103.86.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5925 (0x1725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D9/serialNumber=6C1B638EA9D7C6CE023CB5E57E3CAE16A11B4505 Validity Not Before: Feb 24 17:04:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65da21ba-da36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fe:f3:dd:05:7a:e3:2c:ab:96:e7:cc:99:3d: 47:73:e5:4d:08:64:c4:d4:54:b9:e9:f7:25:f1:0a: 99:c1:a5:1a:73:03:ee:1c:ea:38:55:54:fb:9a:d1: 2e:41:1a:cc:4c:4c:b8:d8:74:32:df:82:46:6e:7c: 4f:98:b5:20:ec:45:63:fa:c9:d6:87:79:7a:22:bd: 3b:e5:70:60:5b:ee:2c:c6:ba:e5:78:db:99:ed:47: 8d:29:28:04:3d:da:37:3f:32:d7:2e:76:f7:b0:56: 05:85:18:1c:5c:0d:fa:91:03:8e:0f:6b:a2:2a:3e: 2c:0d:58:41:6b:16:27:6c:05:4b:19:6b:c1:5e:b8: 2e:04:9a:b2:ec:a5:9c:c2:4a:04:be:76:e5:21:08: 59:79:eb:aa:b6:88:b3:22:f0:de:88:79:42:cb:92: 45:f5:be:cd:16:d0:4d:df:68:66:20:8d:3f:a2:b6: 5c:13:10:9f:44:73:56:5f:fd:9d:6d:d2:a7:e3:82: 55:a8:f1:76:34:f8:b4:49:dc:7b:80:b4:27:40:0f: 84:a8:01:ac:04:5e:57:99:16:ba:d2:e7:72:16:35: e9:cb:c2:1f:f4:01:4e:9a:f5:31:ef:d2:cc:08:47: 33:e3:e6:ef:42:b3:a3:a9:ca:21:08:bc:63:fc:08: b0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:73:3E:DD:18:FD:39:0B:38:79:EB:46:9D:61:02:BF:C6:99:07:6D X509v3 Authority Key Identifier: keyid:6C:1B:63:8E:A9:D7:C6:CE:02:3C:B5:E5:7E:3C:AE:16:A1:1B:45:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/bBtjjqnXxs4CPLXlfjyuFqEbRQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBtjjqnXxs4CPLXlfjyuFqEbRQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D9/D89BB30EB47711E7AD54B664C4F9AE02/870C2B58B47811E788EC7E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.184.0/22 Signature Algorithm: sha256WithRSAEncryption a3:de:01:20:4b:ac:ff:1f:ca:c0:d9:25:96:e7:1b:0b:54:d0: 72:9e:6d:d2:72:cc:07:21:78:c4:f1:eb:5e:56:46:bd:97:6d: 6f:70:12:8f:ef:1a:9e:62:c6:d0:2a:d3:32:2a:b5:52:cd:ff: 2d:30:8a:7d:66:3d:cd:38:73:80:56:f0:d6:21:b7:3e:2e:e4: 61:19:17:68:f0:4c:d3:30:e3:d3:99:51:ac:c2:5a:48:da:c3: 97:0e:cc:c0:e2:6f:d5:e4:7b:16:88:14:72:42:de:f7:a6:cc: df:43:a8:54:13:95:63:7b:9f:99:8b:1d:fb:c5:6b:63:4c:77: bb:96:a1:8d:b2:ea:17:6d:7a:81:f7:9d:27:a7:8f:0d:71:5f: 71:92:37:ee:76:d0:9b:47:b7:0f:9f:d9:7d:b2:73:1d:a9:c0: 7d:9d:ca:92:42:7a:c6:44:8e:f6:f5:f9:12:41:51:b8:c3:04: 4e:78:4a:65:95:94:a1:02:5c:6b:76:d2:a0:be:67:80:60:e1: f3:60:96:05:ec:8b:c6:3e:cf:ef:f0:20:5e:93:28:ab:78:e2: ed:35:c6:2d:ca:f1:1b:1d:c7:ab:ba:76:10:5a:e1:fb:e3:15: 60:67:94:a5:b1:35:42:85:f7:7b:bc:35:fb:85:09:2a:56:56: ce:44:28:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgxRDkxMTAvBgNVBAUTKDZDMUI2MzhFQTlEN0M2Q0UwMjNDQjVFNTdFM0NBRTE2 QTExQjQ1MDUwHhcNMjQwMjI0MTcwNDU4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhMjFiYS1kYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/7z3QV64yyrlufMmT1Hc+VNCGTE1FS56fcl8QqZwaUacwPuHOo4VVT7mtEu QRrMTEy42HQy34JGbnxPmLUg7EVj+snWh3l6Ir075XBgW+4sxrrleNuZ7UeNKSgE Pdo3PzLXLnb3sFYFhRgcXA36kQOOD2uiKj4sDVhBaxYnbAVLGWvBXrguBJqy7KWc wkoEvnblIQhZeeuqtoizIvDeiHlCy5JF9b7NFtBN32hmII0/orZcExCfRHNWX/2d bdKn44JVqPF2NPi0Sdx7gLQnQA+EqAGsBF5XmRa60udyFjXpy8If9AFOmvUx79LM CEcz4+bvQrOjqcohCLxj/AiwywIDAQABo4IClTCCApEwHQYDVR0OBBYEFMlzPt0Y /TkLOHnrRp1hAr/GmQdtMB8GA1UdIwQYMBaAFGwbY46p18bOAjy15X48rhahG0UF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODFEOS9EODlCQjMwRUI0 NzcxMUU3QUQ1NEI2NjRDNEY5QUUwMi9iQnRqanFuWHhzNENQTFhsZmp5dUZxRWJS UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCdGpqcW5YeHM0Q1BMWGxmanl1RnFFYlJRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgxRDkvRDg5QkIzMEVCNDc3MTFFN0FENTRCNjY0QzRGOUFFMDIvODcwQzJCNThC NDc4MTFFNzg4RUM3RTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnVrgwDQYJKoZIhvcNAQELBQADggEBAKPeASBLrP8fysDZ JZbnGwtU0HKebdJyzAcheMTx615WRr2XbW9wEo/vGp5ixtAq0zIqtVLN/y0win1m Pc04c4BW8NYhtz4u5GEZF2jwTNMw49OZUazCWkjaw5cOzMDib9XkexaIFHJC3vem zN9DqFQTlWN7n5mLHfvFa2NMd7uWoY2y6hdteoH3nSenjw1xX3GSN+520JtHtw+f 2X2ycx2pwH2dypJCesZEjvb1+RJBUbjDBE54SmWVlKECXGt20qC+Z4Bg4fNglgXs i8Y+z+/wIF6TKKt44u01xi3K8Rsdx6u6dhBa4fvjFWBnlKWxNUKF93u8NfuFCSpW Vs5EKMQ= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:51 2024 by rpki-client on console-fra.rpki-client.org