$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/7973008A236511EF83D4A940C4F9AE02.roa File: 7973008A236511EF83D4A940C4F9AE02.roa (raw, json) Hash identifier: 9KQ/7a8fje8pzRxQ46TP2JAM/HqKmhraTzPB0vrCBLo= Subject key identifier: 36:32:BA:C9:28:8A:47:15:FE:6F:FB:70:7E:5C:D3:52:2C:C5:5A:6F Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 0300 Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/7973008A236511EF83D4A940C4F9AE02.roa Signing time: Wed 05 Jun 2024 18:00:21 +0000 ROA not before: Wed 05 Jun 2024 18:00:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149058 IP address blocks: 103.138.147.0/24 maxlen: 24 2407:3b40::/32 maxlen: 32 2407:3b40::/36 maxlen: 36 2407:3b40:1000::/36 maxlen: 36 2407:3b40:2000::/36 maxlen: 36 2407:3b40:3000::/36 maxlen: 36 2407:3b40:4000::/36 maxlen: 36 2407:3b40:5000::/36 maxlen: 36 2407:3b40:6000::/36 maxlen: 36 2407:3b40:7000::/36 maxlen: 36 2407:3b40:9000::/36 maxlen: 36 2407:3b40:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: Jun 5 18:00:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6660a7b5-809b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f3:5a:6a:7e:ef:17:10:39:6b:b2:6e:2a:7b: c9:0b:46:03:11:bb:63:f4:18:90:f2:9f:4a:0a:77: 50:52:c9:bf:c1:7e:ee:fa:98:f8:93:47:36:b7:58: 4a:82:b9:a4:84:65:11:1a:ac:cd:6a:19:47:c8:24: 09:fe:3a:91:b1:81:8b:d0:de:1d:98:af:66:54:71: a7:40:dd:b8:39:bd:3d:bb:17:da:08:67:34:3d:91: 8e:04:7f:19:fb:42:82:d4:41:e8:15:e0:43:44:54: 09:7e:28:39:00:76:e8:c8:3a:6c:30:d9:49:e9:e8: 8b:16:57:1a:5f:a8:af:e8:2d:33:9c:5f:d4:a1:a7: d2:ff:a6:be:13:ba:df:f5:46:0c:8a:ed:c3:9d:92: 0a:b8:1b:42:21:f6:ee:f5:ca:9b:47:41:28:73:c1: 33:2a:96:e5:89:09:28:79:6b:64:26:19:57:9d:a7: 40:59:d1:f7:79:8b:82:12:e6:f6:48:d3:75:7c:05: 9e:53:f7:09:bf:89:68:74:b7:3a:e5:d4:66:ae:a4: dc:52:2d:62:4e:53:ff:80:b9:e1:c5:89:cb:66:0c: 3d:02:f3:74:2f:11:6b:09:52:e6:ad:23:b3:73:d2: 54:c1:8c:ae:08:08:18:23:dc:e6:b3:8d:9e:fb:9b: 72:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:32:BA:C9:28:8A:47:15:FE:6F:FB:70:7E:5C:D3:52:2C:C5:5A:6F X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/7973008A236511EF83D4A940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.147.0/24 IPv6: 2407:3b40::/32 Signature Algorithm: sha256WithRSAEncryption 55:64:d0:46:a5:16:5b:6d:6b:27:1d:e6:bd:67:bf:15:aa:10: 49:6e:fa:a7:26:6f:96:43:26:c2:ab:76:0a:ce:5d:00:b7:46: f0:c8:c3:fe:26:2b:a0:86:4b:29:45:f9:2e:4a:9c:e0:ba:95: d3:51:1f:2d:4b:1f:06:9a:b7:4a:71:b9:bf:15:3b:e9:be:2c: 3a:25:11:74:02:5d:bb:a3:e8:d1:cc:f9:a3:0b:5f:59:6e:f7: 07:09:93:9b:ea:54:46:1a:8a:b3:b4:75:d7:c9:16:90:1f:38: 79:13:48:30:f5:ba:77:40:90:7f:61:cf:31:90:59:b9:cd:98: 90:0e:97:3d:87:de:19:87:52:70:8d:4e:d4:34:a2:f4:9f:0e: fe:e9:93:bb:97:21:df:f7:1f:eb:db:1a:78:f1:95:68:f9:74: dc:9a:ff:6c:1c:70:e2:d6:d2:cf:1e:8f:85:83:dd:ca:ff:04: bf:5b:39:3d:9a:ef:ea:64:59:0d:95:58:4f:a6:fb:69:63:62: 31:0b:06:bf:2d:c3:19:a1:c0:ef:cc:1c:e4:b2:68:46:0f:71: 56:44:98:33:e9:9b:93:26:3b:08:bb:55:88:8d:0c:36:84:c1: e4:07:f2:ba:83:b9:17:a0:a8:91:c6:c2:6e:41:48:ab:46:5d: 5c:25:c1:b0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjQwNjA1MTgwMDIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYwYTdiNS04MDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvNaan7vFxA5a7JuKnvJC0YDEbtj9BiQ8p9KCndQUsm/wX7u+pj4k0c2t1hK grmkhGURGqzNahlHyCQJ/jqRsYGL0N4dmK9mVHGnQN24Ob09uxfaCGc0PZGOBH8Z +0KC1EHoFeBDRFQJfig5AHboyDpsMNlJ6eiLFlcaX6iv6C0znF/UoafS/6a+E7rf 9UYMiu3DnZIKuBtCIfbu9cqbR0Eoc8EzKpbliQkoeWtkJhlXnadAWdH3eYuCEub2 SNN1fAWeU/cJv4lodLc65dRmrqTcUi1iTlP/gLnhxYnLZgw9AvN0LxFrCVLmrSOz c9JUwYyuCAgYI9zms42e+5ty7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDYyusko ikcV/m/7cH5c01IsxVpvMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3MjAvMjA5RjhCNzRBNzlCMTFFQzhERDJCMTU3QzRGOUFFMDIvNzk3MzAwOEEy MzY1MTFFRjgzRDRBOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnipMwDQQCAAIwBwMFACQHO0AwDQYJKoZIhvcNAQELBQAD ggEBAFVk0EalFlttaycd5r1nvxWqEElu+qcmb5ZDJsKrdgrOXQC3RvDIw/4mK6CG SylF+S5KnOC6ldNRHy1LHwaat0pxub8VO+m+LDolEXQCXbuj6NHM+aMLX1lu9wcJ k5vqVEYairO0ddfJFpAfOHkTSDD1undAkH9hzzGQWbnNmJAOlz2H3hmHUnCNTtQ0 ovSfDv7pk7uXId/3H+vbGnjxlWj5dNya/2wccOLW0s8ej4WD3cr/BL9bOT2a7+pk WQ2VWE+m+2ljYjELBr8twxmhwO/MHOSyaEYPcVZEmDPpm5MmOwi7VYiNDDaEweQH 8rqDuRegqJHGwm5BSKtGXVwlwbA= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org