$ rpki-client -vvf rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/E51ECC8610E711EBAD066E1DC4F9AE02.roa File: E51ECC8610E711EBAD066E1DC4F9AE02.roa (raw, json) Hash identifier: X8l5WKdTykN4pkEEFbxZ8zv5lBUZDC68tJ50QcKI1zk= Subject key identifier: 71:14:4E:0E:70:C7:89:EF:A1:45:78:F5:29:B7:DA:01:06:85:93:CE Certificate issuer: /CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Certificate serial: 06AF Authority key identifier: B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/E51ECC8610E711EBAD066E1DC4F9AE02.roa Signing time: Sat 30 Mar 2024 23:32:00 +0000 ROA not before: Sat 30 Mar 2024 23:32:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.106.248.0/24 maxlen: 24 103.106.249.0/24 maxlen: 24 103.106.250.0/24 maxlen: 24 103.106.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897BB/serialNumber=B49E8EE81703A4A0BACCA82437802FB5C30B6568 Validity Not Before: Mar 30 23:32:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6608a0f0-7633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c9:89:73:9d:03:fa:39:d5:29:c0:04:91:dc: 43:56:ed:c6:69:57:cd:23:52:91:75:af:d3:52:e2: f6:f8:80:c3:19:9a:44:6e:8a:28:75:10:bd:b9:8b: f5:da:24:54:a0:13:36:79:44:01:83:db:02:25:58: c1:9a:38:0f:79:52:29:f8:a7:7a:35:7a:54:74:41: 55:e5:13:77:61:0c:c6:78:1f:c8:43:a6:b5:ef:dc: a1:fc:9d:c6:48:8c:5b:12:f7:03:2d:da:91:ec:9a: 3d:d6:36:fc:96:af:56:6d:76:86:ca:0c:d0:1e:d9: 3e:82:45:5b:77:ab:e7:9b:b7:0a:38:26:f5:a7:99: 22:94:c9:90:67:56:af:29:40:fa:78:9f:c6:6b:c6: f5:7c:4f:2c:20:8c:14:75:1e:af:15:59:ab:72:83: 13:5e:21:cc:18:24:e4:04:84:f2:26:80:e9:16:4f: c7:52:03:7e:56:2e:17:36:50:66:c8:66:32:6c:e2: 62:1f:64:b3:33:08:b0:e5:8e:53:1c:ab:51:76:89: 58:42:eb:e6:52:72:e7:0e:23:1c:7d:f6:40:3d:49: 5d:a1:e3:7f:96:bb:25:54:4d:90:04:68:fb:d9:93: f5:88:5a:39:9a:06:a6:82:bb:44:4d:95:0d:ff:f1: 5f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:14:4E:0E:70:C7:89:EF:A1:45:78:F5:29:B7:DA:01:06:85:93:CE X509v3 Authority Key Identifier: keyid:B4:9E:8E:E8:17:03:A4:A0:BA:CC:A8:24:37:80:2F:B5:C3:0B:65:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJ6O6BcDpKC6zKgkN4AvtcMLZWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897BB/FC73FA0610E611EBB4A2521DC4F9AE02/E51ECC8610E711EBAD066E1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.248.0/22 Signature Algorithm: sha256WithRSAEncryption a5:4e:7c:71:d3:c8:29:f3:3b:a0:8b:09:3d:0b:5d:81:91:cf: 6f:0f:40:d8:6b:1e:e1:fd:27:92:f4:d5:c4:57:38:5a:6b:16: ca:c5:e7:90:d6:f7:3f:bf:0e:db:0d:77:e8:06:47:06:6c:7e: a4:04:b6:10:3b:d0:a4:76:32:58:b3:49:fa:47:2d:da:e7:09: 7d:0b:7a:11:ce:a4:a0:93:f1:14:96:8f:79:f8:00:71:b4:a0: 42:9f:7e:ed:b3:28:d8:b6:75:93:63:00:ac:98:22:35:11:ff: d0:6c:07:95:64:ac:16:9d:97:7f:d8:aa:96:37:fe:3c:00:73: 92:fd:fb:18:d1:52:f2:52:6a:28:02:01:9d:51:10:9e:62:10: 11:e4:28:be:3f:52:01:55:7d:03:97:e5:70:60:b0:56:d0:fe: 70:4f:4f:58:b6:4b:f5:57:e4:9b:d6:be:f7:71:b1:9f:0d:a4: c2:21:68:2f:f4:f6:02:91:35:27:ea:21:53:d0:67:78:76:91: 4d:69:f4:d7:43:05:4e:b4:53:a3:ef:3e:e1:03:82:ff:c3:cc: 20:5d:5a:82:8b:3c:e4:49:73:a0:30:8c:b0:13:82:4f:9a:b6: c6:3b:7e:ba:38:1c:db:9f:23:ff:d0:60:e2:de:74:f0:61:c7: e3:dd:b4:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QkIxMTAvBgNVBAUTKEI0OUU4RUU4MTcwM0E0QTBCQUNDQTgyNDM3ODAyRkI1 QzMwQjY1NjgwHhcNMjQwMzMwMjMzMjAwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4YTBmMC03NjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMmJc50D+jnVKcAEkdxDVu3GaVfNI1KRda/TUuL2+IDDGZpEbooodRC9uYv1 2iRUoBM2eUQBg9sCJVjBmjgPeVIp+Kd6NXpUdEFV5RN3YQzGeB/IQ6a179yh/J3G SIxbEvcDLdqR7Jo91jb8lq9WbXaGygzQHtk+gkVbd6vnm7cKOCb1p5kilMmQZ1av KUD6eJ/Ga8b1fE8sIIwUdR6vFVmrcoMTXiHMGCTkBITyJoDpFk/HUgN+Vi4XNlBm yGYybOJiH2SzMwiw5Y5THKtRdolYQuvmUnLnDiMcffZAPUldoeN/lrslVE2QBGj7 2ZP1iFo5mgamgrtETZUN//Ff/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEUTg5w x4nvoUV49Sm32gEGhZPOMB8GA1UdIwQYMBaAFLSejugXA6SgusyoJDeAL7XDC2Vo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCQi9GQzczRkEwNjEw RTYxMUVCQjRBMjUyMURDNEY5QUUwMi90SjZPNkJjRHBLQzZ6S2drTjRBdnRjTUxa V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKNk82QmNEcEtDNnpLZ2tONEF2dGNNTFpXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk3QkIvRkM3M0ZBMDYxMEU2MTFFQkI0QTI1MjFEQzRGOUFFMDIvRTUxRUNDODYx MEU3MTFFQkFEMDY2RTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnavgwDQYJKoZIhvcNAQELBQADggEBAKVOfHHTyCnzO6CL CT0LXYGRz28PQNhrHuH9J5L01cRXOFprFsrF55DW9z+/DtsNd+gGRwZsfqQEthA7 0KR2MlizSfpHLdrnCX0LehHOpKCT8RSWj3n4AHG0oEKffu2zKNi2dZNjAKyYIjUR /9BsB5VkrBadl3/YqpY3/jwAc5L9+xjRUvJSaigCAZ1REJ5iEBHkKL4/UgFVfQOX 5XBgsFbQ/nBPT1i2S/VX5JvWvvdxsZ8NpMIhaC/09gKRNSfqIVPQZ3h2kU1p9NdD BU60U6PvPuEDgv/DzCBdWoKLPORJc6AwjLATgk+atsY7fro4HNufI//QYOLedPBh x+PdtBw= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:46 2024 by rpki-client on console-fra.rpki-client.org