$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa File: 5B01916AD15911EE8B8BB151C4F9AE02.roa (raw, json) Hash identifier: exEpVAv7OmSBv6nfn1Ng6Vrt5eD/dXr6N+PdK8CnaV0= Subject key identifier: 0B:87:30:AF:08:07:51:A3:9D:40:3B:F7:34:6A:EA:09:8E:00:6E:D5 Certificate issuer: /CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Certificate serial: 0BFC Authority key identifier: EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa Signing time: Fri 02 Aug 2024 19:27:40 +0000 ROA not before: Fri 02 Aug 2024 19:27:40 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134204 IP address blocks: 103.58.72.0/22 maxlen: 24 203.76.220.0/22 maxlen: 24 2400:4d40::/32 maxlen: 32 2400:4d40::/36 maxlen: 36 2400:4d40:1000::/36 maxlen: 36 2400:4d40:2000::/36 maxlen: 36 2400:4d40:3000::/36 maxlen: 36 2400:4d40:4000::/36 maxlen: 36 2400:4d40:5000::/36 maxlen: 36 2400:4d40:6000::/36 maxlen: 36 2400:4d40:7000::/36 maxlen: 36 2400:4d40:8000::/36 maxlen: 36 2400:4d40:9000::/36 maxlen: 36 2400:4d40:a000::/36 maxlen: 36 2400:4d40:b000::/36 maxlen: 36 2400:4d40:c000::/36 maxlen: 36 2400:4d40:d000::/36 maxlen: 36 2400:4d40:e000::/36 maxlen: 36 2400:4d40:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3068 (0xbfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB87C/serialNumber=EAA96DCA7430DFA471CA29B843836C1C80E5439E Validity Not Before: Aug 2 19:27:40 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66ad332c-ab3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b6:86:b5:cd:4e:fb:87:9b:e4:e3:d1:e7:5c: 87:2c:f6:8d:21:f9:3b:27:e9:8b:f8:69:58:64:7d: ee:00:3a:59:18:b7:3a:d4:cf:d4:4d:f4:c8:07:0f: 61:2c:e2:58:b3:04:a6:68:d6:08:4b:15:bc:bb:72: ed:27:91:da:e2:da:65:43:07:e0:5a:eb:a8:66:c0: 4d:5a:c4:f2:11:15:7d:8e:9c:a4:da:5d:7e:a2:bb: 52:e3:e3:0e:6c:3f:29:43:b0:33:b8:29:6d:a6:8d: 59:12:31:74:a9:69:58:76:54:75:a5:64:61:4f:55: f4:b3:29:76:20:f6:aa:03:98:b7:60:26:48:6c:d4: e9:6d:d3:7e:ff:4f:f3:00:ec:7f:e7:ba:c0:b5:f4: 76:c7:09:05:f8:23:81:13:70:a2:39:2a:3c:89:a9: 1a:cc:27:74:1e:5e:37:ea:80:59:98:3f:56:02:ec: 2a:4f:1c:04:cd:f7:4a:ad:cd:af:44:1a:54:18:16: e9:ff:c9:02:d5:a8:86:f6:68:35:b4:63:34:86:87: 91:e5:fe:ef:a6:0f:54:a7:4d:ea:f8:d6:38:98:dd: 71:3a:a8:b3:9a:f9:9e:8e:a2:b1:a9:88:b1:3b:3a: a9:15:b1:2f:d7:ed:e7:d9:4d:45:3c:57:fe:94:56: cf:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:87:30:AF:08:07:51:A3:9D:40:3B:F7:34:6A:EA:09:8E:00:6E:D5 X509v3 Authority Key Identifier: keyid:EA:A9:6D:CA:74:30:DF:A4:71:CA:29:B8:43:83:6C:1C:80:E5:43:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/6qltynQw36Rxyim4Q4NsHIDlQ54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qltynQw36Rxyim4Q4NsHIDlQ54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB87C/63D90312FC0211E9A419F340C4F9AE02/5B01916AD15911EE8B8BB151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.72.0/22 203.76.220.0/22 IPv6: 2400:4d40::/32 Signature Algorithm: sha256WithRSAEncryption 5b:16:06:2b:64:93:4a:b2:eb:8d:75:d4:a0:ba:ff:d0:c7:9d: f2:2e:70:e3:97:16:89:09:ce:60:06:ca:4f:be:5f:64:fa:de: f0:fb:3f:57:65:28:e1:92:3d:6d:57:12:ba:8a:1b:29:3e:42: 30:78:ef:70:1c:79:40:1e:eb:20:5a:e8:c0:4e:1e:26:a3:5a: a3:0a:cf:e9:0c:90:1d:85:45:a1:b0:ff:10:d9:63:04:d0:c8: 64:d1:f6:ad:be:ad:da:cf:1b:a3:c1:58:bb:37:4d:2a:4c:e5: bd:43:2a:2f:c5:03:28:e4:2c:df:32:1c:c7:9c:39:c7:99:7a: 1e:86:17:91:c1:52:f3:30:28:9a:42:8a:fc:6b:39:ea:5b:bd: d3:65:22:f7:95:8b:6b:f1:e6:ac:2d:29:3d:18:53:ac:5a:9b: ce:94:15:56:fd:d6:f6:e1:c9:cf:25:cc:07:0d:9e:2c:a6:ee: 49:96:96:b9:a2:d8:69:1b:e4:d0:eb:dc:85:57:94:41:67:ff: 0b:ff:d4:1d:42:93:31:e7:b4:31:77:8c:a7:4f:a1:7a:06:11: 55:c2:29:af:97:5d:56:e7:4e:a8:2f:0c:dc:af:8e:80:3c:84: cc:21:c4:a5:03:0b:a7:2d:10:70:2d:08:f8:52:5b:85:71:e6: 1f:d9:4c:2c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI4N0MxMTAvBgNVBAUTKEVBQTk2RENBNzQzMERGQTQ3MUNBMjlCODQzODM2QzFD ODBFNTQzOUUwHhcNMjQwODAyMTkyNzQwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMzMyYy1hYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuraGtc1O+4eb5OPR51yHLPaNIfk7J+mL+GlYZH3uADpZGLc61M/UTfTIBw9h LOJYswSmaNYISxW8u3LtJ5Ha4tplQwfgWuuoZsBNWsTyERV9jpyk2l1+ortS4+MO bD8pQ7AzuCltpo1ZEjF0qWlYdlR1pWRhT1X0syl2IPaqA5i3YCZIbNTpbdN+/0/z AOx/57rAtfR2xwkF+COBE3CiOSo8iakazCd0Hl436oBZmD9WAuwqTxwEzfdKrc2v RBpUGBbp/8kC1aiG9mg1tGM0hoeR5f7vpg9Up03q+NY4mN1xOqizmvmejqKxqYix OzqpFbEv1+3n2U1FPFf+lFbPoQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAuHMK8I B1GjnUA79zRq6gmOAG7VMB8GA1UdIwQYMBaAFOqpbcp0MN+kccopuEODbByA5UOe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjg3Qy82M0Q5MDMxMkZD MDIxMUU5QTQxOUYzNDBDNEY5QUUwMi82cWx0eW5RdzM2Unh5aW00UTROc0hJRGxR NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxbHR5blF3MzZSeHlpbTRRNE5zSElEbFE1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI4N0MvNjNEOTAzMTJGQzAyMTFFOUE0MTlGMzQwQzRGOUFFMDIvNUIwMTkxNkFE MTU5MTFFRThCOEJCMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnOkgDBALLTNwwDQQCAAIwBwMFACQATUAwDQYJKoZIhvcN AQELBQADggEBAFsWBitkk0qy64111KC6/9DHnfIucOOXFokJzmAGyk++X2T63vD7 P1dlKOGSPW1XErqKGyk+QjB473AceUAe6yBa6MBOHiajWqMKz+kMkB2FRaGw/xDZ YwTQyGTR9q2+rdrPG6PBWLs3TSpM5b1DKi/FAyjkLN8yHMecOceZeh6GF5HBUvMw KJpCivxrOepbvdNlIveVi2vx5qwtKT0YU6xam86UFVb91vbhyc8lzAcNniym7kmW lrmi2Gkb5NDr3IVXlEFn/wv/1B1CkzHntDF3jKdPoXoGEVXCKa+XXVbnTqgvDNyv joA8hMwhxKUDC6ctEHAtCPhSW4Vx5h/ZTCw= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org