$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/C87A727C2F8411EBA83F6F6DC4F9AE02.roa File: C87A727C2F8411EBA83F6F6DC4F9AE02.roa (raw, json) Hash identifier: MsppnoKs5sY8vwtLpvFUKRCYQilabrALIyzrhW0Z5hw= Subject key identifier: 41:D4:A4:51:68:59:C9:B9:B4:DE:49:98:6C:C2:86:91:C6:2E:90:00 Certificate issuer: /CN=A91B5486/serialNumber=2E304A3D92499D9D7D338A3EA02F7C5348425B17 Certificate serial: 085D Authority key identifier: 2E:30:4A:3D:92:49:9D:9D:7D:33:8A:3E:A0:2F:7C:53:48:42:5B:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/C87A727C2F8411EBA83F6F6DC4F9AE02.roa Signing time: Tue 26 Mar 2024 21:40:35 +0000 ROA not before: Tue 26 Mar 2024 21:40:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140951 IP address blocks: 45.248.200.0/22 maxlen: 24 103.23.168.0/24 maxlen: 24 103.23.169.0/24 maxlen: 24 103.23.170.0/24 maxlen: 24 103.23.171.0/24 maxlen: 24 103.217.160.0/24 maxlen: 24 103.217.161.0/24 maxlen: 24 103.217.162.0/23 maxlen: 23 103.217.162.0/24 maxlen: 24 103.217.163.0/24 maxlen: 24 103.242.73.0/24 maxlen: 24 103.242.74.0/24 maxlen: 24 220.158.134.0/24 maxlen: 24 2401:47c0:1f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.crl rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5486/serialNumber=2E304A3D92499D9D7D338A3EA02F7C5348425B17 Validity Not Before: Mar 26 21:40:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660340d2-7765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1e:3c:b4:34:35:5c:e2:c5:50:8a:87:2f:0a: 2f:27:dc:54:18:f7:f4:8c:35:0f:97:33:9c:e2:83: 46:a0:20:6e:db:21:53:1e:56:d5:3d:90:b4:0a:b1: b7:34:b2:f3:50:df:3f:98:e1:d3:05:9b:5d:d3:26: 68:a2:d0:df:55:5f:13:7a:c7:04:be:61:99:f5:1d: 1a:0b:d4:d5:64:dc:1a:e7:a7:89:25:7e:b4:3a:4b: 3a:1e:31:dc:66:1e:86:8d:48:30:d6:dc:0c:12:33: 0e:9d:9f:48:37:e9:c3:5f:4c:14:ad:e7:8b:cb:af: 30:26:38:33:22:94:51:39:2a:5c:b2:e8:25:6b:9c: 17:e1:e6:71:c3:f3:3d:59:2e:e3:57:f0:c4:bc:7d: f3:e0:db:00:d6:75:b3:0f:c6:88:9a:4d:5b:be:f0: 9d:15:24:e7:55:79:5e:43:53:63:f9:24:31:86:3c: ba:dd:d0:ea:0b:eb:d1:da:53:93:23:97:f3:55:83: 01:7e:49:cb:81:57:2f:24:d3:ce:6c:09:f8:94:e8: ee:e3:eb:e1:f2:ab:80:52:e0:b7:8b:22:09:39:a8: 90:01:e4:59:dd:8a:f2:30:81:be:cb:2a:b8:95:d3: 91:3f:ac:a8:e0:c8:29:a5:49:c3:6f:88:31:5b:00: 28:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:D4:A4:51:68:59:C9:B9:B4:DE:49:98:6C:C2:86:91:C6:2E:90:00 X509v3 Authority Key Identifier: keyid:2E:30:4A:3D:92:49:9D:9D:7D:33:8A:3E:A0:2F:7C:53:48:42:5B:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/LjBKPZJJnZ19M4o-oC98U0hCWxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LjBKPZJJnZ19M4o-oC98U0hCWxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5486/856A249CA98211EA932DEC54C4F9AE02/C87A727C2F8411EBA83F6F6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.200.0/22 103.23.168.0/22 103.217.160.0/22 103.242.73.0-103.242.74.255 220.158.134.0/24 IPv6: 2401:47c0:1f00::/40 Signature Algorithm: sha256WithRSAEncryption 11:bf:34:da:53:a1:22:19:d9:e6:ac:71:f6:10:61:53:b2:4e: 5e:95:5b:11:73:dc:99:cf:9b:d9:ef:8e:0b:8e:b0:42:ad:19: 2f:42:b3:d8:fc:6d:50:3c:2c:32:3b:61:10:6b:2f:21:13:8c: e2:4c:08:b5:11:6a:63:16:b6:bc:37:d7:c2:3e:1e:43:4d:fe: 5d:b6:09:e0:2c:5d:68:ba:49:59:cf:b2:bb:4a:57:29:68:30: df:3d:7a:0a:e1:e1:e7:56:12:80:8e:6c:ab:09:d5:68:fc:da: e5:b4:f4:ed:a4:a8:8b:f0:1e:59:db:84:4d:14:dd:b5:f3:05: 11:ff:54:69:3d:80:d9:1c:f4:3b:4c:90:3c:c1:42:d5:70:0a: 14:aa:2b:f4:21:b7:41:f5:5d:93:87:99:a7:9b:53:07:5f:d4: 66:d0:23:f2:05:2c:55:95:c6:40:66:62:46:74:e8:4c:3b:d0: c7:8f:02:84:f4:58:68:8b:12:5d:e6:d1:58:ec:29:3c:70:c1: 83:11:59:50:81:ed:29:b6:64:83:96:a8:7f:c4:50:96:fc:b8: 12:c9:8b:83:9f:05:46:c4:5d:aa:57:46:b7:e7:cf:10:60:11: 27:e9:b0:65:a1:40:db:3e:e9:b5:d8:34:31:3f:11:36:ef:67: 96:f5:ff:ad -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU0ODYxMTAvBgNVBAUTKDJFMzA0QTNEOTI0OTlEOUQ3RDMzOEEzRUEwMkY3QzUz NDg0MjVCMTcwHhcNMjQwMzI2MjE0MDM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzNDBkMi03NzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzR48tDQ1XOLFUIqHLwovJ9xUGPf0jDUPlzOc4oNGoCBu2yFTHlbVPZC0CrG3 NLLzUN8/mOHTBZtd0yZootDfVV8TescEvmGZ9R0aC9TVZNwa56eJJX60Oks6HjHc Zh6GjUgw1twMEjMOnZ9IN+nDX0wUreeLy68wJjgzIpRROSpcsugla5wX4eZxw/M9 WS7jV/DEvH3z4NsA1nWzD8aImk1bvvCdFSTnVXleQ1Nj+SQxhjy63dDqC+vR2lOT I5fzVYMBfknLgVcvJNPObAn4lOju4+vh8quAUuC3iyIJOaiQAeRZ3YryMIG+yyq4 ldORP6yo4MgppUnDb4gxWwAoqQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFEHUpFFo Wcm5tN5JmGzChpHGLpAAMB8GA1UdIwQYMBaAFC4wSj2SSZ2dfTOKPqAvfFNIQlsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTQ4Ni84NTZBMjQ5Q0E5 ODIxMUVBOTMyREVDNTRDNEY5QUUwMi9MakJLUFpKSm5aMTlNNG8tb0M5OFUwaENX eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xqQktQWkpKbloxOU00by1vQzk4VTBoQ1d4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU0ODYvODU2QTI0OUNBOTgyMTFFQTkzMkRFQzU0QzRGOUFFMDIvQzg3QTcyN0My Rjg0MTFFQkE4M0Y2RjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MCwEAgABMCYDBAIt+MgDBAJnF6gDBAJn2aAwDAMEAGfySQMEAGfySgMEANye hjAOBAIAAjAIAwYAJAFHwB8wDQYJKoZIhvcNAQELBQADggEBABG/NNpToSIZ2eas cfYQYVOyTl6VWxFz3JnPm9nvjguOsEKtGS9Cs9j8bVA8LDI7YRBrLyETjOJMCLUR amMWtrw318I+HkNN/l22CeAsXWi6SVnPsrtKVyloMN89egrh4edWEoCObKsJ1Wj8 2uW09O2kqIvwHlnbhE0U3bXzBRH/VGk9gNkc9DtMkDzBQtVwChSqK/Qht0H1XZOH maebUwdf1GbQI/IFLFWVxkBmYkZ06Ew70MePAoT0WGiLEl3m0VjsKTxwwYMRWVCB 7Sm2ZIOWqH/EUJb8uBLJi4OfBUbEXapXRrfnzxBgESfpsGWhQNs+6bXYNDE/ETbv Z5b1/60= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:45 2024 by rpki-client on console-fra.rpki-client.org