$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa File: 720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa (raw, json) Hash identifier: xZDUc0WXMGb3zzRRcf41Z8+TBxtXNqxHLCOZ0h8MoWY= Subject key identifier: 1A:2B:CC:57:D2:F0:B9:07:12:4E:8D:D4:E3:6E:B1:F7:98:44:3C:A7 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 046A Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa Signing time: Wed 17 Jul 2024 01:02:48 +0000 ROA not before: Wed 17 Jul 2024 01:02:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.138.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Jul 17 01:02:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66971837-b140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cc:cf:1c:6a:a5:44:6e:d5:eb:9b:00:34:f4: c2:f4:13:09:ec:74:3e:b3:db:db:df:2b:bd:a8:4f: 29:b4:d5:0a:3f:56:be:17:ef:04:62:23:15:06:50: 7c:08:fa:67:1d:93:f4:2c:e7:bb:21:73:7f:d2:c8: a1:c7:16:58:71:20:4e:5a:fc:4c:7a:dd:8a:a9:12: 81:01:07:ba:91:ff:1f:c0:72:2c:bb:85:d9:89:8a: 4f:7d:40:4d:63:b0:ce:96:a2:b5:d6:c5:78:6f:fb: ba:cc:ea:6c:df:bd:6d:44:d4:e1:d2:2a:73:72:28: 56:c0:d3:b6:64:8e:fb:26:94:ea:01:12:14:25:04: 3f:25:24:19:1b:f9:27:3f:bd:72:b9:62:5c:55:07: 2e:25:e0:c2:0e:63:c3:2c:bc:74:46:1b:ad:55:26: f9:04:d0:0a:7c:76:41:4e:4d:3e:a7:f2:7a:94:41: 35:2c:78:00:a3:2f:5e:c0:32:b2:d8:8d:d9:11:8a: 15:64:73:4c:a5:40:f6:17:6e:90:26:fd:7a:b0:46: df:20:46:ca:17:9f:cf:e7:25:8c:2f:ee:bf:ba:cc: 85:c9:22:de:50:9b:1c:51:3c:dc:4c:8e:7c:80:c5: 15:f1:fa:c3:09:15:0a:53:08:f9:f9:69:e2:91:7a: a7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2B:CC:57:D2:F0:B9:07:12:4E:8D:D4:E3:6E:B1:F7:98:44:3C:A7 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.231.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:57:0e:fa:65:27:0a:ab:40:ee:ce:76:82:20:88:1e:8c:17: ef:e2:ec:fb:eb:25:fb:85:b0:5e:dd:8c:bd:63:79:f8:af:ea: d4:90:a5:31:0c:61:60:96:b9:ef:15:ee:fe:12:ec:41:f9:01: ba:4d:53:a5:39:65:94:d4:c9:62:9f:a6:2e:20:30:98:37:3c: 30:11:a0:ca:01:90:68:a9:ff:8c:1d:a1:28:43:81:b2:4e:90: 69:27:94:7a:6c:48:72:e5:79:58:94:72:fc:4d:1d:a5:c0:e0: e5:14:da:10:73:dc:99:d3:da:34:fb:15:c4:10:4a:30:23:9a: 3d:b3:7b:f0:6b:21:27:24:28:52:46:8e:f6:a2:b7:09:88:ae: c9:9f:c2:42:bf:c7:71:1b:64:04:e0:5b:26:31:bd:bf:17:8a: 74:3f:c4:f9:a7:ca:68:c1:71:84:e0:fb:c5:e7:6d:89:ab:21: 4c:ad:27:dc:b2:a4:6f:c7:a7:12:54:7c:74:84:ac:8c:4c:fa: 3c:9b:1b:fc:bc:98:19:8a:03:f1:5c:a8:0b:f5:9d:93:b4:8a: 6a:00:21:0e:2a:57:9e:72:33:24:4e:bf:51:71:af:e0:63:6d: 29:60:f2:59:29:7e:e8:ec:1d:43:00:31:13:a7:49:44:70:f0: 7b:3d:7b:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjQwNzE3MDEwMjQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MTgzNy1iMTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMzPHGqlRG7V65sANPTC9BMJ7HQ+s9vb3yu9qE8ptNUKP1a+F+8EYiMVBlB8 CPpnHZP0LOe7IXN/0sihxxZYcSBOWvxMet2KqRKBAQe6kf8fwHIsu4XZiYpPfUBN Y7DOlqK11sV4b/u6zOps371tRNTh0ipzcihWwNO2ZI77JpTqARIUJQQ/JSQZG/kn P71yuWJcVQcuJeDCDmPDLLx0RhutVSb5BNAKfHZBTk0+p/J6lEE1LHgAoy9ewDKy 2I3ZEYoVZHNMpUD2F26QJv16sEbfIEbKF5/P5yWML+6/usyFySLeUJscUTzcTI58 gMUV8frDCRUKUwj5+WnikXqnHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBorzFfS 8LkHEk6N1ONusfeYRDynMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVGMzMvMkY2QUMxM0MwQkVDMTFFQzkyMTMwRDVBQzRGOUFFMDIvNzIwRkFGOUEw QkVGMTFFQ0FFRjNFQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniucwDQYJKoZIhvcNAQELBQADggEBAIxXDvplJwqrQO7O doIgiB6MF+/i7PvrJfuFsF7djL1jefiv6tSQpTEMYWCWue8V7v4S7EH5AbpNU6U5 ZZTUyWKfpi4gMJg3PDARoMoBkGip/4wdoShDgbJOkGknlHpsSHLleViUcvxNHaXA 4OUU2hBz3JnT2jT7FcQQSjAjmj2ze/BrISckKFJGjvaitwmIrsmfwkK/x3EbZATg WyYxvb8XinQ/xPmnymjBcYTg+8XnbYmrIUytJ9yypG/HpxJUfHSErIxM+jybG/y8 mBmKA/FcqAv1nZO0imoAIQ4qV55yMyROv1Fxr+BjbSlg8lkpfujsHUMAMROnSURw 8Hs9e+g= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org