$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa File: 64554290C9F611ED9853C583C4F9AE02.roa (raw, json) Hash identifier: TcpjWImJ/6OMJ2cd8RP+FJqzHMIXrQ0AmNStUKst97g= Subject key identifier: 11:6E:A5:43:54:DB:26:C7:5B:F7:BE:95:89:F0:98:99:12:48:0E:5A Certificate issuer: /CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Certificate serial: 0E28 Authority key identifier: D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa Signing time: Thu 30 May 2024 18:52:51 +0000 ROA not before: Thu 30 May 2024 18:52:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134739 IP address blocks: 103.138.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3624 (0xe28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Validity Not Before: May 30 18:52:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658cb02-dfef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:60:f3:56:9d:e8:e7:df:1d:2a:85:a7:07:2f: a3:ab:d9:0c:25:02:de:dd:11:40:42:3c:c7:8c:85: a4:a2:07:f2:7a:18:90:56:c7:18:36:5c:e0:6e:52: 80:8d:8d:5f:5d:b5:ab:ab:3b:af:0e:fa:61:05:ac: 64:dc:9b:ff:77:1e:aa:97:67:1d:12:9c:56:7f:4f: a3:a6:34:91:bf:7c:ca:1f:c7:ee:0b:ea:81:91:7b: 09:d3:69:a3:3f:e4:fc:13:b4:c6:e1:22:ef:ab:e9: 8c:f5:f1:e4:65:85:ca:d8:97:09:1a:20:fa:12:97: 8b:54:ea:ff:7e:45:7d:d4:60:c1:47:f1:dc:a2:a4: 7b:21:72:e2:0b:91:54:d1:47:83:46:5f:3a:55:48: 22:dd:b9:96:61:66:0d:86:40:0a:e8:54:5c:ee:d6: 74:2c:d7:e5:14:c9:a3:ad:bd:42:fd:4d:66:6c:cb: 19:92:4a:dc:13:ac:6f:4d:d6:d3:e1:f9:c4:fe:c1: 64:5c:2f:23:7c:dc:10:62:46:23:ee:3e:ec:ce:10: 73:ef:ea:97:39:ca:1c:bb:c6:92:a5:d1:86:e0:33: cd:b1:28:2b:33:c9:13:1c:7e:62:01:b9:a8:42:fc: 75:7c:f2:cd:b2:c7:fa:55:31:86:c9:d4:21:86:c2: 68:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:6E:A5:43:54:DB:26:C7:5B:F7:BE:95:89:F0:98:99:12:48:0E:5A X509v3 Authority Key Identifier: keyid:D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/64554290C9F611ED9853C583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.253.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:94:d7:49:84:b8:18:70:f5:32:9b:71:db:37:78:6a:db:1c: b3:f4:59:43:e7:e8:c5:a4:3b:0d:74:a9:7c:49:54:8f:c1:5f: cb:f9:4c:3c:01:b8:b1:43:12:ce:76:93:36:b7:06:16:66:80: bf:74:a0:88:98:8b:6f:06:33:7a:ed:11:87:f0:cd:f8:5e:d9: 5e:7d:00:66:b4:00:65:03:d2:ef:13:e6:8a:f0:7c:ea:59:fb: 73:ab:dd:37:50:c6:a4:7c:9d:7d:87:dc:41:8b:ef:9f:b7:bb: 05:24:26:fa:94:85:29:bf:df:9a:1e:df:a9:8a:5a:61:d2:85: e2:7d:18:d4:a6:b7:85:51:6b:60:30:1f:54:6b:fa:85:f5:60: bd:f6:f2:ed:ef:a7:80:d7:df:d1:f1:0c:68:d4:09:d9:e8:95: 4f:1c:36:b3:08:30:d0:89:4b:b2:81:9d:3b:0d:11:79:a5:e5: 24:dd:2b:8a:f0:43:89:4d:55:05:2c:08:5a:d8:33:29:26:24: ac:ce:31:cb:ab:20:61:f5:f0:41:c7:8d:ff:51:00:d4:76:db: 1d:99:2d:47:4b:58:d8:89:12:48:db:44:78:b5:67:11:09:3e: 53:12:ad:52:40:0c:17:66:ed:70:d9:cf:6e:53:37:d4:c5:31: 7c:6b:9b:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJGN0YxMTAvBgNVBAUTKEQ1RjZERDYzQzAzODEwNjBBRkZCQzlEMjBFRDMwRjA3 RkJERTg4RUEwHhcNMjQwNTMwMTg1MjUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2IwMi1kZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymDzVp3o598dKoWnBy+jq9kMJQLe3RFAQjzHjIWkogfyehiQVscYNlzgblKA jY1fXbWrqzuvDvphBaxk3Jv/dx6ql2cdEpxWf0+jpjSRv3zKH8fuC+qBkXsJ02mj P+T8E7TG4SLvq+mM9fHkZYXK2JcJGiD6EpeLVOr/fkV91GDBR/HcoqR7IXLiC5FU 0UeDRl86VUgi3bmWYWYNhkAK6FRc7tZ0LNflFMmjrb1C/U1mbMsZkkrcE6xvTdbT 4fnE/sFkXC8jfNwQYkYj7j7szhBz7+qXOcocu8aSpdGG4DPNsSgrM8kTHH5iAbmo Qvx1fPLNssf6VTGGydQhhsJogwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBFupUNU 2ybHW/e+lYnwmJkSSA5aMB8GA1UdIwQYMBaAFNX23WPAOBBgr/vJ0g7TDwf73ojq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkY3Ri80NTNFQjZGNDg3 NDUxMUU5QkY4NjQ0NUNDNEY5QUUwMi8xZmJkWThBNEVHQ3YtOG5TRHRNUEJfdmVp T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmYmRZOEE0RUdDdi04blNEdE1QQl92ZWlPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJGN0YvNDUzRUI2RjQ4NzQ1MTFFOUJGODY0NDVDQzRGOUFFMDIvNjQ1NTQyOTBD OUY2MTFFRDk4NTNDNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniv0wDQYJKoZIhvcNAQELBQADggEBAEyU10mEuBhw9TKb cds3eGrbHLP0WUPn6MWkOw10qXxJVI/BX8v5TDwBuLFDEs52kza3BhZmgL90oIiY i28GM3rtEYfwzfhe2V59AGa0AGUD0u8T5orwfOpZ+3Or3TdQxqR8nX2H3EGL75+3 uwUkJvqUhSm/35oe36mKWmHSheJ9GNSmt4VRa2AwH1Rr+oX1YL328u3vp4DX39Hx DGjUCdnolU8cNrMIMNCJS7KBnTsNEXml5STdK4rwQ4lNVQUsCFrYMykmJKzOMcur IGH18EHHjf9RANR22x2ZLUdLWNiJEkjbRHi1ZxEJPlMSrVJADBdm7XDZz25TN9TF MXxrmxI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org