$ rpki-client -vvf rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/5EA04634181911EA9CA3C619C4F9AE02.roa File: 5EA04634181911EA9CA3C619C4F9AE02.roa (raw, json) Hash identifier: 48GF2MfEalOknJ4Un1B+cRQbEEvbnBmSHRBaqdPfw0Y= Subject key identifier: E9:FD:C5:03:02:D0:1E:43:31:5C:E2:FB:44:1D:33:2C:53:D9:C2:72 Certificate issuer: /CN=A91936EB/serialNumber=54721E086109690A39652CBAA8A0E61AB0A9F072 Certificate serial: 0ADE Authority key identifier: 54:72:1E:08:61:09:69:0A:39:65:2C:BA:A8:A0:E6:1A:B0:A9:F0:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/5EA04634181911EA9CA3C619C4F9AE02.roa Signing time: Tue 12 Dec 2023 19:47:37 +0000 ROA not before: Tue 12 Dec 2023 19:47:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139826 IP address blocks: 103.146.36.0/23 maxlen: 23 103.146.36.0/24 maxlen: 24 103.146.37.0/24 maxlen: 24 2001:df2:4280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.crl rsync://rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91936EB/serialNumber=54721E086109690A39652CBAA8A0E61AB0A9F072 Validity Not Before: Dec 12 19:47:37 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6578b8d9-d945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:87:22:0c:3b:e6:fc:40:d1:29:ef:81:76: 90:24:06:2e:17:fe:9a:46:45:91:e1:d7:49:c7:73: 1d:24:1d:6f:1a:d6:43:bd:cb:6e:99:a9:70:5e:39: d6:17:cd:eb:a5:a5:6a:0c:39:c1:09:dd:35:a0:03: 8e:0f:80:cc:e2:84:62:4f:d5:12:1b:f7:08:d2:d1: 13:f5:77:44:6d:c1:cd:14:a4:07:37:93:61:92:51: ff:08:a5:69:61:b8:67:1c:c0:f3:6a:21:64:db:f4: ba:44:d8:e7:ba:0f:0b:64:79:cb:59:dc:eb:d3:23: 39:c7:a1:44:2c:4a:0c:41:d0:c6:93:70:ee:ef:10: 8c:d8:d4:a4:a5:20:9c:e4:62:d8:3c:ad:5b:10:ff: ea:46:99:44:25:36:c2:f7:19:5f:d7:73:1a:1a:af: 50:4f:7d:e7:14:dd:ab:74:2f:75:4a:49:41:90:87: 20:ef:df:6d:1c:3d:cc:e6:2b:6a:e3:4c:bf:2a:95: 9d:e7:a4:03:66:ba:c5:d2:87:7a:98:78:54:77:40: a7:f0:c1:8a:a3:85:77:68:d8:ca:cb:f1:ba:ba:f9: 83:08:44:80:3c:f6:44:95:ea:e0:73:d9:06:72:91: 0d:4b:d8:95:91:48:79:ca:19:38:2f:61:21:dc:53: 99:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FD:C5:03:02:D0:1E:43:31:5C:E2:FB:44:1D:33:2C:53:D9:C2:72 X509v3 Authority Key Identifier: keyid:54:72:1E:08:61:09:69:0A:39:65:2C:BA:A8:A0:E6:1A:B0:A9:F0:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VHIeCGEJaQo5ZSy6qKDmGrCp8HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91936EB/3EC02ECA175A11EAB2A6A851C4F9AE02/5EA04634181911EA9CA3C619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.36.0/23 IPv6: 2001:df2:4280::/48 Signature Algorithm: sha256WithRSAEncryption 10:06:89:3e:01:c7:69:de:14:9e:c9:01:28:f9:f3:8b:d5:3b: 91:a4:7e:51:8b:28:c1:8e:fc:73:66:46:aa:29:dd:c0:14:e6: e1:81:9c:69:72:42:53:ac:83:b8:a8:cf:4c:b2:03:0b:7e:35: da:d8:24:ca:bc:28:c4:3b:82:4a:b8:f4:1d:6b:63:a8:0d:ee: 6f:70:ba:e9:50:a5:74:c1:24:2d:8d:fa:4c:13:9b:58:1c:9b: f0:56:09:4b:2c:ae:6d:53:25:48:9d:af:47:01:15:d3:92:4d: 70:54:15:34:7a:5f:3b:f3:fa:28:c7:0c:f8:e0:2c:95:52:6f: 2c:43:30:05:71:0f:ad:a8:a0:3f:87:79:0c:b9:58:4a:07:a7: 66:cb:b4:cb:aa:9f:2d:14:cc:0e:90:86:e8:ea:81:21:08:52: 91:38:81:b3:3f:6e:78:ea:dc:91:b5:4f:c1:e5:7f:10:de:8d: d6:bd:6d:42:8c:f0:43:b0:1b:d7:ee:d6:88:ad:75:45:e7:3e: d0:86:dc:6d:50:25:59:b6:71:01:5c:a6:50:41:b2:82:b7:8d: 99:d8:86:fd:61:f3:da:b8:d6:f2:29:26:a1:28:97:13:c5:ce: 86:78:5d:f8:82:cf:65:b9:3a:e5:03:cd:6d:36:94:cb:d4:2e: 1a:f4:cb:b6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM2RUIxMTAvBgNVBAUTKDU0NzIxRTA4NjEwOTY5MEEzOTY1MkNCQUE4QTBFNjFB QjBBOUYwNzIwHhcNMjMxMjEyMTk0NzM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4YjhkOS1kOTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JyHIgw75vxA0SnvgXaQJAYuF/6aRkWR4ddJx3MdJB1vGtZDvctumalwXjnW F83rpaVqDDnBCd01oAOOD4DM4oRiT9USG/cI0tET9XdEbcHNFKQHN5NhklH/CKVp YbhnHMDzaiFk2/S6RNjnug8LZHnLWdzr0yM5x6FELEoMQdDGk3Du7xCM2NSkpSCc 5GLYPK1bEP/qRplEJTbC9xlf13MaGq9QT33nFN2rdC91SklBkIcg799tHD3M5itq 40y/KpWd56QDZrrF0od6mHhUd0Cn8MGKo4V3aNjKy/G6uvmDCESAPPZElergc9kG cpENS9iVkUh5yhk4L2Eh3FOZUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOn9xQMC 0B5DMVzi+0QdMyxT2cJyMB8GA1UdIwQYMBaAFFRyHghhCWkKOWUsuqig5hqwqfBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzZFQi8zRUMwMkVDQTE3 NUExMUVBQjJBNkE4NTFDNEY5QUUwMi9WSEllQ0dFSmFRbzVaU3k2cUtEbUdyQ3A4 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZISWVDR0VKYVFvNVpTeTZxS0RtR3JDcDhISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM2RUIvM0VDMDJFQ0ExNzVBMTFFQUIyQTZBODUxQzRGOUFFMDIvNUVBMDQ2MzQx ODE5MTFFQTlDQTNDNjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkiQwDwQCAAIwCQMHACABDfJCgDANBgkqhkiG9w0BAQsF AAOCAQEAEAaJPgHHad4UnskBKPnzi9U7kaR+UYsowY78c2ZGqindwBTm4YGcaXJC U6yDuKjPTLIDC3412tgkyrwoxDuCSrj0HWtjqA3ub3C66VCldMEkLY36TBObWByb 8FYJSyyubVMlSJ2vRwEV05JNcFQVNHpfO/P6KMcM+OAslVJvLEMwBXEPraigP4d5 DLlYSgenZsu0y6qfLRTMDpCG6OqBIQhSkTiBsz9ueOrckbVPweV/EN6N1r1tQozw Q7Ab1+7WiK11Rec+0IbcbVAlWbZxAVymUEGygreNmdiG/WHz2rjW8ikmoSiXE8XO hnhd+ILPZbk65QPNbTaUy9QuGvTLtg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org