$ rpki-client -vvf rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa File: 690390E80FAA11EB8B893F1EC4F9AE02.roa (raw, json) Hash identifier: 50X2YknGPNQ7f3oYcKge6hlv5pd3PV5tqtttq6Hz8zE= Subject key identifier: 60:13:55:F6:E7:78:3F:3C:03:EA:F5:D1:71:EF:96:33:FF:F2:BE:23 Certificate issuer: /CN=A91B624E/serialNumber=54244F645DEA0D509668580D138E825279FB5678 Certificate serial: 0C5D Authority key identifier: 54:24:4F:64:5D:EA:0D:50:96:68:58:0D:13:8E:82:52:79:FB:56:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa Signing time: Fri 28 Jun 2024 19:20:13 +0000 ROA not before: Fri 28 Jun 2024 19:20:13 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136480 IP address blocks: 103.116.56.0/22 maxlen: 22 103.116.56.0/23 maxlen: 23 103.116.56.0/24 maxlen: 24 103.116.57.0/24 maxlen: 24 103.116.58.0/23 maxlen: 23 103.116.58.0/24 maxlen: 24 103.116.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.crl rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B624E/serialNumber=54244F645DEA0D509668580D138E825279FB5678 Validity Not Before: Jun 28 19:20:13 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f0ced-766b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8a:fe:28:a3:12:c4:79:15:d9:ce:7b:76:b4: e4:e8:2f:f8:8f:5a:10:c8:4f:29:b3:57:17:15:33: d1:c8:48:0b:df:8b:45:88:7b:19:e3:d7:44:64:08: 9a:2b:e8:79:f7:45:14:da:2b:62:24:af:bc:12:d9: 21:19:5d:fd:b4:c1:84:df:5d:99:f4:08:7e:4d:84: 2e:95:3d:33:76:97:bd:5f:ce:6c:5e:7e:9e:4c:38: ce:21:fd:1f:6f:28:24:4a:c0:0a:92:df:c6:76:79: bc:ad:c2:7d:65:ec:b3:47:49:80:5f:ef:c7:b1:f6: 02:4a:04:87:85:8f:1e:5d:0f:35:9d:5c:f7:5c:de: e4:b2:e2:9e:f9:f6:48:09:be:03:98:2f:fb:d0:0d: 7f:42:eb:a3:3d:9e:03:53:81:18:ca:ef:f2:f6:d4: 3b:09:cc:9e:9b:fa:95:1e:44:66:65:78:80:e7:90: d5:eb:55:64:4d:e7:3f:6a:e1:90:0f:44:47:f8:2b: 13:cb:20:a9:b1:1d:a0:6b:01:69:4d:67:56:84:ea: 38:b6:e7:e2:1e:29:f6:52:7f:c9:d7:39:c3:46:29: ed:c0:4b:af:26:08:c1:06:85:19:95:b3:f1:3b:e9: 9a:52:83:c0:3b:67:d4:f5:20:07:43:13:7c:30:6f: e7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:13:55:F6:E7:78:3F:3C:03:EA:F5:D1:71:EF:96:33:FF:F2:BE:23 X509v3 Authority Key Identifier: keyid:54:24:4F:64:5D:EA:0D:50:96:68:58:0D:13:8E:82:52:79:FB:56:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/VCRPZF3qDVCWaFgNE46CUnn7Vng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCRPZF3qDVCWaFgNE46CUnn7Vng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B624E/BD95C38EE03E11E9B2B9DA11C4F9AE02/690390E80FAA11EB8B893F1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.56.0/22 Signature Algorithm: sha256WithRSAEncryption c9:7b:2b:81:00:7a:6b:fb:b3:d4:3d:35:ba:6a:1a:0e:2b:b2: 8f:7d:dc:a2:cc:b3:de:98:1b:97:ee:2b:d9:1e:33:c9:69:dd: f1:d6:94:aa:c2:ad:89:5f:67:21:02:1a:5c:5f:86:5e:9f:45: c2:b7:b7:e6:bb:f0:03:e9:8e:43:c3:ba:8f:32:b1:d0:50:b9: ee:bb:ba:ac:77:b0:a5:08:60:9b:fc:7e:4f:63:b9:6f:c0:16: 9b:94:9f:c0:cc:4b:fb:90:4a:95:dc:1a:6a:2d:c6:7b:2c:45: da:3d:b4:ba:ff:3d:0d:1b:f0:98:7d:ad:bc:35:f7:82:f4:64: 60:36:ac:8e:56:db:6a:bf:a6:1e:ef:ce:12:fa:fe:23:75:e0: 6f:6f:ac:e1:88:5e:a7:99:e7:f1:73:7b:64:03:ec:55:7f:f1: 19:19:76:e2:2e:14:53:ff:0c:a9:fa:26:59:ab:56:87:53:2b: f7:b7:d5:ab:c8:41:b0:65:cf:05:86:a7:3b:b9:ec:44:ea:55: 53:cf:f1:f0:aa:a6:0f:13:2a:ee:e0:10:47:81:2b:fa:e8:80: f6:c3:44:2c:7a:dc:6d:e4:60:0e:a2:00:fe:32:43:e9:ab:17: 6d:d4:9c:53:57:f8:a3:fa:e1:c8:6a:0b:a8:6b:a2:7e:21:da: be:85:56:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNEUxMTAvBgNVBAUTKDU0MjQ0RjY0NURFQTBENTA5NjY4NTgwRDEzOEU4MjUy NzlGQjU2NzgwHhcNMjQwNjI4MTkyMDEzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmMGNlZC03NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74r+KKMSxHkV2c57drTk6C/4j1oQyE8ps1cXFTPRyEgL34tFiHsZ49dEZAia K+h590UU2itiJK+8EtkhGV39tMGE312Z9Ah+TYQulT0zdpe9X85sXn6eTDjOIf0f bygkSsAKkt/Gdnm8rcJ9ZeyzR0mAX+/HsfYCSgSHhY8eXQ81nVz3XN7ksuKe+fZI Cb4DmC/70A1/QuujPZ4DU4EYyu/y9tQ7Ccyem/qVHkRmZXiA55DV61VkTec/auGQ D0RH+CsTyyCpsR2gawFpTWdWhOo4tufiHin2Un/J1znDRintwEuvJgjBBoUZlbPx O+maUoPAO2fU9SAHQxN8MG/nFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGATVfbn eD88A+r10XHvljP/8r4jMB8GA1UdIwQYMBaAFFQkT2Rd6g1QlmhYDROOglJ5+1Z4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI0RS9CRDk1QzM4RUUw M0UxMUU5QjJCOURBMTFDNEY5QUUwMi9WQ1JQWkYzcURWQ1dhRmdORTQ2Q1VubjdW bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDUlBaRjNxRFZDV2FGZ05FNDZDVW5uN1ZuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNEUvQkQ5NUMzOEVFMDNFMTFFOUIyQjlEQTExQzRGOUFFMDIvNjkwMzkwRTgw RkFBMTFFQjhCODkzRjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndDgwDQYJKoZIhvcNAQELBQADggEBAMl7K4EAemv7s9Q9 NbpqGg4rso993KLMs96YG5fuK9keM8lp3fHWlKrCrYlfZyECGlxfhl6fRcK3t+a7 8APpjkPDuo8ysdBQue67uqx3sKUIYJv8fk9juW/AFpuUn8DMS/uQSpXcGmotxnss Rdo9tLr/PQ0b8Jh9rbw194L0ZGA2rI5W22q/ph7vzhL6/iN14G9vrOGIXqeZ5/Fz e2QD7FV/8RkZduIuFFP/DKn6JlmrVodTK/e31avIQbBlzwWGpzu57ETqVVPP8fCq pg8TKu7gEEeBK/rogPbDRCx63G3kYA6iAP4yQ+mrF23UnFNX+KP64chqC6hron4h 2r6FVk8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org