$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/A98BD3DE91F211ECA28ADD36C4F9AE02.roa File: A98BD3DE91F211ECA28ADD36C4F9AE02.roa (raw, json) Hash identifier: E8V1sk0D8i4WfgIIWQOrfA2cQHivc9el6REKMjdr7Wo= Subject key identifier: 09:FA:FB:F5:FB:38:0E:83:51:69:7A:92:E3:8A:58:0F:CC:6D:1C:5A Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 0307 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/A98BD3DE91F211ECA28ADD36C4F9AE02.roa Signing time: Sun 03 Mar 2024 02:54:57 +0000 ROA not before: Sun 03 Mar 2024 02:54:57 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149485 IP address blocks: 103.181.0.0/23 maxlen: 23 103.181.0.0/24 maxlen: 24 103.181.1.0/24 maxlen: 24 2400:56a0::/32 maxlen: 32 2400:56a0:100::/40 maxlen: 40 2400:56a0:200::/40 maxlen: 40 2400:56a0:300::/40 maxlen: 40 2400:56a0:800::/40 maxlen: 40 2400:56a0:dc01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Mar 3 02:54:57 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e3e681-697e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0d:76:8a:8a:2f:b0:5c:6c:e4:e5:73:05:e6: 04:5d:a3:2f:4f:6f:24:cf:e1:81:a5:4f:a1:25:6b: 93:3b:ca:80:27:5b:06:a4:7d:d6:76:a3:d5:fd:69: 2a:17:99:dc:b4:ef:85:5b:4c:fd:a4:6d:0a:cf:56: ce:1c:e1:da:61:c9:98:40:3f:55:bb:02:a0:f2:a0: aa:8f:dd:98:54:99:f8:86:21:95:9d:d7:3e:f8:7f: 8b:77:dd:1c:79:03:d1:64:1e:fe:38:35:f0:e2:2c: 1f:a7:fc:bf:d1:db:12:5d:c8:de:28:92:d5:99:65: 2e:a1:8d:0c:31:59:89:ff:c8:5c:b6:d7:86:fb:d8: 19:ae:a2:66:46:ad:61:f1:37:43:73:83:86:a3:97: 0a:d2:79:5a:45:ca:b0:3b:f5:f1:bd:56:c8:7e:ea: 80:07:73:cb:7d:f2:4f:0b:6b:9f:c6:3a:db:b1:e0: 1e:50:88:b9:c1:b2:e9:dc:8e:bd:6e:4e:ee:bf:ab: 16:d4:42:f5:7f:7b:ca:f2:49:4c:db:ca:a1:52:21: 54:ba:b7:67:68:4e:c2:a1:67:bb:cc:18:fa:58:a8: d4:91:99:13:64:a1:e6:be:92:23:28:67:80:1c:3d: 55:da:00:33:1c:63:e5:49:8d:fd:8e:6e:70:ad:6a: b1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FA:FB:F5:FB:38:0E:83:51:69:7A:92:E3:8A:58:0F:CC:6D:1C:5A X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/A98BD3DE91F211ECA28ADD36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.0.0/23 IPv6: 2400:56a0::/32 Signature Algorithm: sha256WithRSAEncryption 65:ea:6a:0e:4e:55:a5:12:09:b2:92:3e:23:29:58:2f:8b:86: 10:0f:be:ee:4c:71:72:c0:93:0a:0b:fa:60:0a:10:e0:cf:99: 7a:89:99:1c:73:d1:4e:c0:92:13:e6:68:99:a5:e7:68:1c:2f: 98:c9:2f:72:3b:a4:84:76:11:88:6f:2a:fa:04:30:d1:db:23: 83:36:e9:cd:f4:74:b2:11:92:9d:09:70:d7:b0:96:c0:cc:d3: cd:e3:ca:50:58:41:44:13:7e:35:91:69:4d:84:52:1f:32:64: 4b:16:f7:15:db:16:61:dc:8b:54:e7:a6:01:cd:a6:63:4b:e2: b4:1b:f2:5f:99:1e:1b:b2:8e:76:52:f0:be:52:10:02:7a:18: 95:8c:ef:d2:ca:d2:c5:a0:e7:83:41:79:fa:34:3d:0a:fe:89: 1f:d6:92:66:6f:ba:fa:5a:e2:83:85:a6:e9:89:ad:ce:20:5d: a3:61:0c:95:06:73:88:47:5d:a6:f0:c6:1a:8a:4b:c3:1d:04: 65:2c:0b:1f:a5:96:a5:5e:68:47:21:24:72:20:40:79:51:5c: 45:5a:f2:13:fc:cf:0b:26:8b:79:f5:80:f4:a3:3b:f9:c3:4d: e2:3a:1f:98:a5:4f:f2:ca:05:75:14:e3:f5:aa:92:73:de:7b: aa:00:8d:5c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjQwMzAzMDI1NDU3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzZTY4MS02OTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAug12ioovsFxs5OVzBeYEXaMvT28kz+GBpU+hJWuTO8qAJ1sGpH3WdqPV/Wkq F5nctO+FW0z9pG0Kz1bOHOHaYcmYQD9VuwKg8qCqj92YVJn4hiGVndc++H+Ld90c eQPRZB7+ODXw4iwfp/y/0dsSXcjeKJLVmWUuoY0MMVmJ/8hctteG+9gZrqJmRq1h 8TdDc4OGo5cK0nlaRcqwO/XxvVbIfuqAB3PLffJPC2ufxjrbseAeUIi5wbLp3I69 bk7uv6sW1EL1f3vK8klM28qhUiFUurdnaE7CoWe7zBj6WKjUkZkTZKHmvpIjKGeA HD1V2gAzHGPlSY39jm5wrWqx4wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAn6+/X7 OA6DUWl6kuOKWA/MbRxaMB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgzQjQvRTc5RUQ0OTA4M0Y3MTFFQ0E0N0E2MjY1QzRGOUFFMDIvQTk4QkQzREU5 MUYyMTFFQ0EyOEFERDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFntQAwDQQCAAIwBwMFACQAVqAwDQYJKoZIhvcNAQELBQAD ggEBAGXqag5OVaUSCbKSPiMpWC+LhhAPvu5McXLAkwoL+mAKEODPmXqJmRxz0U7A khPmaJml52gcL5jJL3I7pIR2EYhvKvoEMNHbI4M26c30dLIRkp0JcNewlsDM083j ylBYQUQTfjWRaU2EUh8yZEsW9xXbFmHci1TnpgHNpmNL4rQb8l+ZHhuyjnZS8L5S EAJ6GJWM79LK0sWg54NBefo0PQr+iR/WkmZvuvpa4oOFpumJrc4gXaNhDJUGc4hH XabwxhqKS8MdBGUsCx+llqVeaEchJHIgQHlRXEVa8hP8zwsmi3n1gPSjO/nDTeI6 H5ilT/LKBXUU4/WqknPee6oAjVw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:57 2024 by rpki-client on console-fra.rpki-client.org