$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa File: 5D98833C77EC11EEA06F373BC4F9AE02.roa (raw, json) Hash identifier: PTNlCaFqxgAXX8dh1a7LSvNmOXF/4erL00o7/e/JlJk= Subject key identifier: E8:38:DC:4D:56:54:B3:91:DF:78:07:49:53:AA:4C:2A:E6:C4:89:23 Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: 9E Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa Signing time: Sat 31 Aug 2024 07:08:14 +0000 ROA not before: Sat 31 Aug 2024 07:08:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.190.124.0/24 maxlen: 24 103.190.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Aug 31 07:08:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d2c15e-a75b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f6:ac:32:ac:9c:e6:c6:df:c8:66:96:40:0d: 20:53:86:de:bf:64:dc:fb:bd:a3:21:68:37:d6:c9: 78:01:74:6c:d7:ad:9d:14:13:b3:be:58:c5:0d:a3: 89:34:1b:11:8b:1d:36:f3:a8:c9:04:94:7a:9a:f7: cf:8c:43:c2:14:d4:3e:4b:fd:2d:14:8d:f8:46:6f: 0b:2c:30:ba:02:a7:7b:be:d3:af:df:fd:1a:11:f9: b7:0f:af:a7:0a:d9:49:c8:f6:08:d0:ad:e0:1a:34: e2:eb:f5:af:04:72:23:3f:4b:95:94:92:96:8f:b8: f2:61:aa:2b:ed:36:d8:67:bd:ae:de:53:31:4a:a8: 57:f4:82:7a:fc:22:01:fd:a4:51:ac:a5:d6:8f:88: 96:ba:e3:f4:0b:b8:82:2b:2a:7d:16:52:6e:d3:dc: 66:ce:16:b5:c5:a2:80:7e:4c:17:5a:97:b3:3e:51: c1:ed:97:1c:22:15:f8:b7:f8:8d:d5:32:36:34:57: 40:78:01:23:72:ba:f5:0d:62:b3:df:38:97:cb:78: 36:26:6a:e4:ea:5c:6b:7b:e3:d7:4c:be:ce:9f:e0: 5a:ac:1d:fd:ff:9a:29:64:18:e5:21:1d:3f:c6:87: 02:bc:8e:6f:58:17:7f:59:f3:40:f9:07:11:c3:6a: bf:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:38:DC:4D:56:54:B3:91:DF:78:07:49:53:AA:4C:2A:E6:C4:89:23 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/5D98833C77EC11EEA06F373BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.124.0/23 Signature Algorithm: sha256WithRSAEncryption 95:29:82:45:6b:a0:8a:1a:03:e0:a1:77:05:33:95:48:a5:4a: c5:f9:2e:67:29:8f:2d:d6:a2:52:5b:91:e8:18:db:03:49:4d: 41:35:20:10:79:17:fa:d7:2e:05:0f:89:5f:79:06:20:8e:29: 05:57:52:0e:72:1c:e3:f3:f8:9c:7b:a4:04:f1:16:9f:00:54: 6f:f6:81:0f:7a:cc:d6:54:91:0e:b6:07:de:bc:40:18:a3:6b: e1:03:fe:b1:a3:29:f9:46:75:a1:52:29:31:92:20:a8:27:42: fa:00:7c:ed:49:b9:c6:a2:0c:98:29:39:2c:75:eb:63:0f:a2: 14:ce:56:e4:fd:f4:cc:f9:cf:49:55:9d:62:9f:65:4e:0e:96: a3:42:3c:1c:85:e7:c8:26:41:0c:54:b7:71:ad:3d:ca:97:7f: a4:61:f4:11:0c:d6:c6:0d:45:75:03:bb:01:dc:a5:47:a1:53: ea:e1:7d:44:15:f1:60:af:98:95:f1:b9:e0:ea:d4:7d:17:a2: 37:30:9e:b9:38:a7:23:e2:7c:34:0a:79:07:c1:39:73:f0:4f: cc:65:e6:9c:76:1f:1e:10:a2:9f:c8:58:15:6d:0c:aa:0e:e0: dd:db:6d:0d:25:30:af:51:2e:6d:b0:c4:fb:b8:ce:88:d6:0f: a4:d1:e4:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjQwODMxMDcwODE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyYzE1ZS1hNzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/asMqyc5sbfyGaWQA0gU4bev2Tc+72jIWg31sl4AXRs162dFBOzvljFDaOJ NBsRix0286jJBJR6mvfPjEPCFNQ+S/0tFI34Rm8LLDC6Aqd7vtOv3/0aEfm3D6+n CtlJyPYI0K3gGjTi6/WvBHIjP0uVlJKWj7jyYaor7TbYZ72u3lMxSqhX9IJ6/CIB /aRRrKXWj4iWuuP0C7iCKyp9FlJu09xmzha1xaKAfkwXWpezPlHB7ZccIhX4t/iN 1TI2NFdAeAEjcrr1DWKz3ziXy3g2Jmrk6lxre+PXTL7On+BarB39/5opZBjlIR0/ xocCvI5vWBd/WfNA+QcRw2q/cQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOg43E1W VLOR33gHSVOqTCrmxIkjMB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAyQTIvRUZEMjE1ODQ3N0VCMTFFRTkzQjY4QjNBQzRGOUFFMDIvNUQ5ODgzM0M3 N0VDMTFFRUEwNkYzNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvnwwDQYJKoZIhvcNAQELBQADggEBAJUpgkVroIoaA+Ch dwUzlUilSsX5Lmcpjy3WolJbkegY2wNJTUE1IBB5F/rXLgUPiV95BiCOKQVXUg5y HOPz+Jx7pATxFp8AVG/2gQ96zNZUkQ62B968QBija+ED/rGjKflGdaFSKTGSIKgn QvoAfO1JucaiDJgpOSx162MPohTOVuT99Mz5z0lVnWKfZU4OlqNCPByF58gmQQxU t3GtPcqXf6Rh9BEM1sYNRXUDuwHcpUehU+rhfUQV8WCvmJXxueDq1H0Xojcwnrk4 pyPifDQKeQfBOXPwT8xl5px2Hx4Qop/IWBVtDKoO4N3bbQ0lMK9RLm2wxPu4zojW D6TR5Ic= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:03 2024 by rpki-client on console-fra.rpki-client.org