$ rpki-client -vvf rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/057FD54C797611EFAD5DCD6DC4F9AE02.roa File: 057FD54C797611EFAD5DCD6DC4F9AE02.roa (raw, json) Hash identifier: q2YXT2rHwXSRs9U5SdA8Y7YHYqPk1rC5fF8IPPMvaUc= Subject key identifier: 9A:C5:A9:ED:B2:40:55:A1:C9:02:F1:6E:52:86:37:C2:81:DB:9A:3E Certificate issuer: /CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Certificate serial: 37 Authority key identifier: F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/057FD54C797611EFAD5DCD6DC4F9AE02.roa Signing time: Mon 23 Sep 2024 06:35:28 +0000 ROA not before: Mon 23 Sep 2024 06:35:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135883 IP address blocks: 103.117.136.0/24 maxlen: 24 103.117.137.0/24 maxlen: 24 103.117.138.0/24 maxlen: 24 103.117.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Validity Not Before: Sep 23 06:35:28 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66f10c2f-8847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:e8:12:f5:a7:e6:07:5c:19:2a:a9:a0:d2: 54:13:d1:ef:7f:24:6e:3d:6c:da:2b:43:c3:51:37: 9e:c7:04:83:11:d0:cf:07:f6:ad:59:1c:df:ca:2c: c6:ec:bd:aa:07:31:7a:6f:c3:0d:f5:3d:cd:c0:6a: f1:3b:ed:36:ee:fd:1b:87:ef:14:5f:65:03:8d:e4: ba:67:52:93:3c:32:1f:bf:ef:2c:20:d4:5e:33:bd: d8:0c:f2:20:c1:3b:54:64:41:9b:a5:ab:9b:fd:a1: 0c:38:17:41:6f:4d:de:bc:a8:ff:f6:80:b8:93:c0: 9d:7d:4d:a5:fe:fc:0b:7e:d4:25:5b:99:17:6b:4a: 70:6f:14:ae:0e:09:e8:a2:ba:0a:4e:b1:77:d9:60: 23:ca:86:c0:46:40:c2:ed:bc:ef:7a:4d:86:bd:11: 07:50:e9:a2:72:55:3a:75:8d:9a:84:e6:99:25:39: a1:5e:36:3f:4a:93:37:31:a6:e4:02:bb:35:aa:7d: 58:0c:a0:38:02:68:44:3d:ba:71:67:7a:0c:8b:08: 7c:0a:a7:75:6b:ba:4a:1f:61:97:14:ee:f2:82:35: 53:e7:79:d1:c1:87:6d:be:98:45:33:de:e6:11:29: e9:d8:5b:13:11:1a:b3:74:79:10:f5:ba:e2:1f:41: 8f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:A9:ED:B2:40:55:A1:C9:02:F1:6E:52:86:37:C2:81:DB:9A:3E X509v3 Authority Key Identifier: keyid:F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/057FD54C797611EFAD5DCD6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 Signature Algorithm: sha256WithRSAEncryption 07:1d:d9:b1:36:74:6e:e5:03:9f:9b:7e:8c:56:85:5a:ec:1d: 03:53:7d:92:46:9c:5b:88:3e:ed:c1:c8:b6:ee:a5:92:a7:60: aa:e1:0e:51:7d:4b:ac:8e:f2:68:94:c1:1d:43:fb:95:30:61: be:4e:3f:98:f6:22:99:58:37:46:4a:e9:5f:aa:0f:8c:64:22: 62:5a:70:fd:57:ce:58:0e:a9:56:b8:58:b6:04:d9:61:24:67: d3:3f:f0:11:29:20:85:26:b3:c5:6e:73:52:1f:79:7d:15:d6: 92:5f:79:4d:c6:d8:de:d2:f7:08:50:c6:74:16:16:27:59:4f: 01:c7:65:65:63:cb:7d:1e:f2:c2:f8:df:d3:21:dc:a0:e4:6c: e0:13:94:2c:f0:b1:9d:d5:c3:4a:8e:25:96:97:85:60:61:aa: a8:5f:b7:e7:1a:db:23:7d:94:f4:f1:fd:0c:5f:cb:51:9f:97: bf:90:6d:51:8d:87:6b:32:4a:24:74:19:d4:0c:e1:80:eb:ed: a7:ba:99:e6:93:b9:35:ad:2d:e6:92:b1:02:8e:0a:23:83:c4: 6b:02:83:8b:02:6f:ed:10:ef:bf:29:05:a8:50:9d:c2:17:a4: 38:78:1f:32:2e:ba:fd:60:36:89:14:47:d3:12:13:d9:f3:03: 3d:75:9b:c2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODhDQTExMC8GA1UEBRMoRjYyNUU2Q0MwMzkwMjZGRjVCQzlENkJEQzQyRDhEMUMx OEFCRjMzQjAeFw0yNDA5MjMwNjM1MjhaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjEwYzJmLTg4NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDITegS9afmB1wZKqmg0lQT0e9/JG49bNorQ8NRN57HBIMR0M8H9q1ZHN/KLMbs vaoHMXpvww31Pc3AavE77Tbu/RuH7xRfZQON5LpnUpM8Mh+/7ywg1F4zvdgM8iDB O1RkQZulq5v9oQw4F0FvTd68qP/2gLiTwJ19TaX+/At+1CVbmRdrSnBvFK4OCeii ugpOsXfZYCPKhsBGQMLtvO96TYa9EQdQ6aJyVTp1jZqE5pklOaFeNj9KkzcxpuQC uzWqfVgMoDgCaEQ9unFnegyLCHwKp3VrukofYZcU7vKCNVPnedHBh22+mEUz3uYR KenYWxMRGrN0eRD1uuIfQY8VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmsWp7bJA VaHJAvFuUoY3woHbmj4wHwYDVR0jBBgwFoAU9iXmzAOQJv9byda9xC2NHBir8zsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4OENBLzU2OTZFNzQ2MzQ2 NTExRUZBRjZERUI0RUM0RjlBRTAyLzlpWG16QU9RSnY5YnlkYTl4QzJOSEJpcjh6 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWlYbXpBT1FKdjlieWRhOXhDMk5IQmlyOHpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODhDQS81Njk2RTc0NjM0NjUxMUVGQUY2REVCNEVDNEY5QUUwMi8wNTdGRDU0Qzc5 NzYxMUVGQUQ1RENENkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd1iDANBgkqhkiG9w0BAQsFAAOCAQEABx3ZsTZ0buUDn5t+ jFaFWuwdA1N9kkacW4g+7cHItu6lkqdgquEOUX1LrI7yaJTBHUP7lTBhvk4/mPYi mVg3RkrpX6oPjGQiYlpw/VfOWA6pVrhYtgTZYSRn0z/wESkghSazxW5zUh95fRXW kl95TcbY3tL3CFDGdBYWJ1lPAcdlZWPLfR7ywvjf0yHcoORs4BOULPCxndXDSo4l lpeFYGGqqF+35xrbI32U9PH9DF/LUZ+Xv5BtUY2HazJKJHQZ1AzhgOvtp7qZ5pO5 Na0t5pKxAo4KI4PEawKDiwJv7RDvvykFqFCdwhekOHgfMi66/WA2iRRH0xIT2fMD PXWbwg== -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:24 2024 by rpki-client on console-fra.rpki-client.org