$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/5261CE84068511EE9F71F964C4F9AE02.roa File: 5261CE84068511EE9F71F964C4F9AE02.roa (raw, json) Hash identifier: dHhZT58EPueclWY/wjCtwq28vLwEg1BiZyhs8/2Uyog= Subject key identifier: 25:33:27:F9:74:30:EB:2F:27:79:7A:4C:EA:EA:8E:8D:9F:1D:AD:8B Certificate issuer: /CN=A91A1D4A/serialNumber=C9E8090060F8AE6370A01B7E1EC1D6E26E4FC01A Certificate serial: D2 Authority key identifier: C9:E8:09:00:60:F8:AE:63:70:A0:1B:7E:1E:C1:D6:E2:6E:4F:C0:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yegJAGD4rmNwoBt-HsHW4m5PwBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/5261CE84068511EE9F71F964C4F9AE02.roa Signing time: Sun 07 Jul 2024 05:36:31 +0000 ROA not before: Sun 07 Jul 2024 05:36:31 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132829 IP address blocks: 103.215.180.0/23 maxlen: 23 103.215.180.0/24 maxlen: 24 103.215.181.0/24 maxlen: 24 2401:8e0::/32 maxlen: 32 2401:8e0::/48 maxlen: 48 2401:8e0:1::/48 maxlen: 48 2401:8e0:2::/48 maxlen: 48 2401:8e0:3::/48 maxlen: 48 2401:8e0:4::/48 maxlen: 48 2401:8e0:5::/48 maxlen: 48 2401:8e0:6::/48 maxlen: 48 2401:8e0:7::/48 maxlen: 48 2401:8e0:8::/48 maxlen: 48 2401:8e0:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/yegJAGD4rmNwoBt-HsHW4m5PwBo.crl rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/yegJAGD4rmNwoBt-HsHW4m5PwBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yegJAGD4rmNwoBt-HsHW4m5PwBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D4A/serialNumber=C9E8090060F8AE6370A01B7E1EC1D6E26E4FC01A Validity Not Before: Jul 7 05:36:31 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668a295f-37ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a2:39:a2:cd:be:ea:87:7a:b6:22:61:c6:81: 72:a5:5f:a4:a2:e1:81:ea:aa:76:84:0a:fb:d7:4d: f4:3e:d4:b7:89:b8:20:3e:e3:e8:97:29:34:2e:fb: 32:b5:ac:92:cc:36:27:ab:88:16:4b:00:5a:84:77: ff:eb:41:24:8f:7c:b1:2c:7d:b8:87:d1:ff:b7:5d: 9f:84:f0:f3:9f:c6:42:5e:80:2d:f2:7c:07:ce:40: e4:dd:27:cc:9d:f2:06:d0:dc:7d:5b:d2:27:be:14: bd:23:d0:50:42:a8:26:4a:13:90:04:32:ae:fc:35: ee:06:43:4a:2f:21:9d:ba:1b:c5:50:78:ee:72:d5: 47:15:21:fc:68:45:d8:7f:cd:64:28:16:e4:42:fe: 07:a2:64:e3:79:f4:7e:84:2a:d7:72:86:e1:9b:5d: ca:e8:b1:39:50:71:08:93:3b:76:f7:b7:30:4d:fa: ce:df:69:97:76:a7:90:93:9e:d2:66:89:a6:3e:e2: 7c:9a:b0:d2:35:3e:3e:89:05:81:c0:fd:53:ae:e7: 80:71:b9:9b:53:54:ed:4b:f9:a9:ec:a5:7a:3e:97: 4b:3d:6c:10:1a:e2:4e:34:fd:7b:88:70:9b:70:5e: b4:ac:6b:1b:17:9e:40:d9:3b:02:3f:c5:34:45:8c: f8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:33:27:F9:74:30:EB:2F:27:79:7A:4C:EA:EA:8E:8D:9F:1D:AD:8B X509v3 Authority Key Identifier: keyid:C9:E8:09:00:60:F8:AE:63:70:A0:1B:7E:1E:C1:D6:E2:6E:4F:C0:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/yegJAGD4rmNwoBt-HsHW4m5PwBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yegJAGD4rmNwoBt-HsHW4m5PwBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D4A/819698FC05D511EE93F91C15C4F9AE02/5261CE84068511EE9F71F964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.180.0/23 IPv6: 2401:8e0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:e3:cb:a5:7e:2a:c2:70:40:d2:30:72:9f:27:a3:0a:be:bb: 8d:d9:ba:3e:a6:99:58:8f:68:38:a0:50:53:b2:28:bb:cd:60: 29:5f:96:4e:17:09:07:54:d7:de:38:fa:f3:ce:0d:1a:01:ce: 98:05:1a:4c:ba:ad:2c:2e:85:bf:05:4f:7a:13:d4:f8:46:11: c9:fe:11:df:03:41:89:09:2f:23:e0:42:ba:76:f8:e9:5c:72: 3e:cc:e5:85:46:fd:29:15:fa:13:66:cd:5a:c9:78:80:51:8e: 86:bd:14:57:90:6e:47:54:02:f7:e9:a7:61:48:a5:99:43:67: 6b:ca:86:6e:ac:2c:c1:d5:ce:bd:72:4d:d8:a1:41:0e:ed:cb: f2:ed:aa:88:ee:23:26:c3:c0:fc:e6:8c:55:99:46:54:4e:00: f6:8c:2c:29:36:d3:05:db:e3:06:8c:21:d6:db:99:ea:9b:d7: a6:4c:f1:67:f3:62:7c:68:f7:30:02:28:93:b8:49:78:2f:aa: 8c:c7:62:eb:cf:e9:00:51:d6:ce:34:0c:8a:26:32:4a:ab:bd: 1c:8b:ba:28:4d:12:7f:3a:ba:0c:3c:f5:d1:4a:29:89:e3:5e: fb:ae:62:32:ab:f8:f7:a9:ff:06:9b:17:7c:f3:75:5f:20:43: 56:9f:e5:4f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENEExMTAvBgNVBAUTKEM5RTgwOTAwNjBGOEFFNjM3MEEwMUI3RTFFQzFENkUy NkU0RkMwMUEwHhcNMjQwNzA3MDUzNjMxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhhMjk1Zi0zN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaI5os2+6od6tiJhxoFypV+kouGB6qp2hAr71030PtS3ibggPuPolyk0Lvsy taySzDYnq4gWSwBahHf/60Ekj3yxLH24h9H/t12fhPDzn8ZCXoAt8nwHzkDk3SfM nfIG0Nx9W9InvhS9I9BQQqgmShOQBDKu/DXuBkNKLyGduhvFUHjuctVHFSH8aEXY f81kKBbkQv4HomTjefR+hCrXcobhm13K6LE5UHEIkzt297cwTfrO32mXdqeQk57S ZommPuJ8mrDSNT4+iQWBwP1TrueAcbmbU1TtS/mp7KV6PpdLPWwQGuJONP17iHCb cF60rGsbF55A2TsCP8U0RYz4swIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCUzJ/l0 MOsvJ3l6TOrqjo2fHa2LMB8GA1UdIwQYMBaAFMnoCQBg+K5jcKAbfh7B1uJuT8Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0QS84MTk2OThGQzA1 RDUxMUVFOTNGOTFDMTVDNEY5QUUwMi95ZWdKQUdENHJtTndvQnQtSHNIVzRtNVB3 Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llZ0pBR0Q0cm1Od29CdC1Ic0hXNG01UHdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFENEEvODE5Njk4RkMwNUQ1MTFFRTkzRjkxQzE1QzRGOUFFMDIvNTI2MUNFODQw Njg1MTFFRTlGNzFGOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn17QwDQQCAAIwBwMFACQBCOAwDQYJKoZIhvcNAQELBQAD ggEBADzjy6V+KsJwQNIwcp8nowq+u43Zuj6mmViPaDigUFOyKLvNYClflk4XCQdU 1944+vPODRoBzpgFGky6rSwuhb8FT3oT1PhGEcn+Ed8DQYkJLyPgQrp2+Olccj7M 5YVG/SkV+hNmzVrJeIBRjoa9FFeQbkdUAvfpp2FIpZlDZ2vKhm6sLMHVzr1yTdih QQ7ty/LtqojuIybDwPzmjFWZRlROAPaMLCk20wXb4waMIdbbmeqb16ZM8WfzYnxo 9zACKJO4SXgvqozHYuvP6QBR1s40DIomMkqrvRyLuihNEn86ugw89dFKKYnjXvuu YjKr+Pep/wabF3zzdV8gQ1af5U8= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org