$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/3474AD64FAD311ED9CEE0E29C4F9AE02.roa File: 3474AD64FAD311ED9CEE0E29C4F9AE02.roa (raw, json) Hash identifier: 6NUoQsi6MufbTG0wg5lLW6EPmg3seRvoOTXJysh5OoQ= Subject key identifier: B1:EB:33:32:BB:F5:09:20:CF:79:6D:12:77:54:34:B0:99:70:10:E7 Certificate issuer: /CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Certificate serial: CE Authority key identifier: 5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/3474AD64FAD311ED9CEE0E29C4F9AE02.roa Signing time: Fri 31 May 2024 07:41:43 +0000 ROA not before: Fri 31 May 2024 07:41:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138611 IP address blocks: 103.206.16.0/23 maxlen: 23 103.206.16.0/24 maxlen: 24 103.206.17.0/24 maxlen: 24 2401:160::/32 maxlen: 32 2401:160::/46 maxlen: 46 2401:160::/48 maxlen: 48 2401:160:1::/48 maxlen: 48 2401:160:2::/48 maxlen: 48 2401:160:3::/48 maxlen: 48 2401:160:4::/46 maxlen: 46 2401:160:4::/48 maxlen: 48 2401:160:5::/48 maxlen: 48 2401:160:6::/48 maxlen: 48 2401:160:7::/48 maxlen: 48 2401:160:8::/48 maxlen: 48 2401:160:9::/48 maxlen: 48 2401:160:10::/48 maxlen: 48 2401:160:11::/48 maxlen: 48 2401:160:12::/48 maxlen: 48 2401:160:13::/48 maxlen: 48 2401:160:14::/48 maxlen: 48 2401:160:15::/48 maxlen: 48 2401:160:200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF01C/serialNumber=5DD4685A2E96B1416F7CD335CDEB4AD1822F7DEB Validity Not Before: May 31 07:41:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66597f37-808d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:27:f0:40:b7:9c:c9:68:93:df:99:bc:ea:6b: da:ef:48:96:98:e0:77:98:2a:5b:3c:05:e4:86:37: 40:24:fe:7b:bf:30:8d:b1:8f:d9:6d:bb:65:84:c8: 2c:7b:45:54:c6:0d:64:3e:c5:4d:29:27:d7:2c:d0: 46:75:34:37:50:6b:87:d0:3e:59:22:ce:66:40:8c: 69:55:97:b6:71:00:c4:b0:8d:b3:78:a7:22:94:ef: 7c:6b:5d:16:f1:91:7c:df:10:49:3a:91:ee:e4:80: b0:41:b2:35:0e:a3:39:e8:00:04:2a:b7:fb:be:c5: a7:79:6e:63:65:20:e2:00:0d:d0:69:ea:2d:b4:8f: 93:32:e8:7c:15:eb:e9:98:88:39:16:53:75:b1:a9: 75:bd:8f:89:a3:c2:40:55:fc:65:80:ea:3c:f6:a8: 98:0b:99:94:9b:e1:8d:22:52:d1:43:39:60:87:c5: 2e:d6:08:dc:49:e0:bf:b3:b6:c7:d3:d9:a7:5a:c2: c5:3c:b2:3e:12:e6:33:b1:17:a2:70:10:84:2a:26: f1:0f:93:dd:eb:eb:4f:9a:4d:95:ef:7d:2e:6f:48: b5:60:7a:db:d2:1e:87:07:08:5a:2f:de:8e:4e:1e: cd:f7:84:bd:dc:46:23:94:f5:15:3a:1f:6e:57:6b: 03:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EB:33:32:BB:F5:09:20:CF:79:6D:12:77:54:34:B0:99:70:10:E7 X509v3 Authority Key Identifier: keyid:5D:D4:68:5A:2E:96:B1:41:6F:7C:D3:35:CD:EB:4A:D1:82:2F:7D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/XdRoWi6WsUFvfNM1zetK0YIvfes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XdRoWi6WsUFvfNM1zetK0YIvfes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF01C/E5D9E734FACB11EDB8F97D85C4F9AE02/3474AD64FAD311ED9CEE0E29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.16.0/23 IPv6: 2401:160::/32 Signature Algorithm: sha256WithRSAEncryption 5f:e3:91:52:c3:e0:41:01:76:67:b5:a9:e0:8f:4e:c4:78:66: 2a:c4:85:8f:67:7a:60:52:5b:dd:35:9e:6f:e6:76:e2:83:33: 5b:12:bf:10:eb:1b:c6:f3:7a:85:1d:80:bf:18:b3:52:47:f2: 86:c9:71:0e:bc:bf:c9:96:f1:42:9b:b6:10:dc:d6:72:22:e4: 56:1a:bd:79:dc:f5:f4:d4:4e:1d:16:99:65:5c:93:33:d2:de: c2:e2:87:8f:cf:01:d9:31:70:58:50:d8:16:f4:da:80:77:49: a6:86:8a:62:1e:79:47:dd:f8:4c:bb:8a:ec:cf:c2:5e:7b:15: 8e:cc:29:34:30:2f:ec:9e:26:2c:f5:e0:91:bc:ba:ce:e7:24: 20:ae:2c:a6:59:dc:e5:60:eb:6a:99:2b:e0:e1:a6:00:9e:d0: 77:e9:67:6c:e2:29:49:3c:8e:3d:c0:59:a1:a9:c8:0c:73:ef: 31:82:29:8f:0a:b7:a7:7e:5a:b7:15:9d:7f:8f:be:39:93:2e: 6e:2e:df:03:57:af:b0:1c:96:d6:92:1e:87:41:4d:32:c9:38: 81:a0:f3:2c:84:81:34:7d:a6:99:80:97:a5:50:b0:9f:5f:e1: f4:97:0a:f4:10:b2:55:b1:37:9f:b1:57:c9:fe:c5:ab:23:f4: f7:59:5d:da -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwMUMxMTAvBgNVBAUTKDVERDQ2ODVBMkU5NkIxNDE2RjdDRDMzNUNERUI0QUQx ODIyRjdERUIwHhcNMjQwNTMxMDc0MTQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5N2YzNy04MDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuifwQLecyWiT35m86mva70iWmOB3mCpbPAXkhjdAJP57vzCNsY/ZbbtlhMgs e0VUxg1kPsVNKSfXLNBGdTQ3UGuH0D5ZIs5mQIxpVZe2cQDEsI2zeKcilO98a10W 8ZF83xBJOpHu5ICwQbI1DqM56AAEKrf7vsWneW5jZSDiAA3QaeottI+TMuh8Fevp mIg5FlN1sal1vY+Jo8JAVfxlgOo89qiYC5mUm+GNIlLRQzlgh8Uu1gjcSeC/s7bH 09mnWsLFPLI+EuYzsReicBCEKibxD5Pd6+tPmk2V730ub0i1YHrb0h6HBwhaL96O Th7N94S93EYjlPUVOh9uV2sD8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLHrMzK7 9Qkgz3ltEndUNLCZcBDnMB8GA1UdIwQYMBaAFF3UaFoulrFBb3zTNc3rStGCL33r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjAxQy9FNUQ5RTczNEZB Q0IxMUVEQjhGOTdEODVDNEY5QUUwMi9YZFJvV2k2V3NVRnZmTk0xemV0SzBZSXZm ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hkUm9XaTZXc1VGdmZOTTF6ZXRLMFlJdmZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYwMUMvRTVEOUU3MzRGQUNCMTFFREI4Rjk3RDg1QzRGOUFFMDIvMzQ3NEFENjRG QUQzMTFFRDlDRUUwRTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnzhAwDQQCAAIwBwMFACQBAWAwDQYJKoZIhvcNAQELBQAD ggEBAF/jkVLD4EEBdme1qeCPTsR4ZirEhY9nemBSW901nm/mduKDM1sSvxDrG8bz eoUdgL8Ys1JH8obJcQ68v8mW8UKbthDc1nIi5FYavXnc9fTUTh0WmWVckzPS3sLi h4/PAdkxcFhQ2Bb02oB3SaaGimIeeUfd+Ey7iuzPwl57FY7MKTQwL+yeJiz14JG8 us7nJCCuLKZZ3OVg62qZK+DhpgCe0HfpZ2ziKUk8jj3AWaGpyAxz7zGCKY8Kt6d+ WrcVnX+PvjmTLm4u3wNXr7AcltaSHodBTTLJOIGg8yyEgTR9ppmAl6VQsJ9f4fSX CvQQslWxN5+xV8n+xasj9PdZXdo= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org