$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa File: 656CB24EC9F611ED9853C583C4F9AE02.roa (raw, json) Hash identifier: dWOEO8pwtx9hi9faa2fgwj2lHG7eHOgZT5KAz1c3Ctk= Subject key identifier: E8:30:F5:4B:C7:90:66:54:D4:7A:5C:41:64:AC:0B:34:95:3D:EB:67 Certificate issuer: /CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Certificate serial: 0E29 Authority key identifier: D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa Signing time: Thu 30 May 2024 18:52:52 +0000 ROA not before: Thu 30 May 2024 18:52:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149855 IP address blocks: 103.138.252.0/24 maxlen: 24 2001:df0:5f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:42:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3625 (0xe29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBF7F/serialNumber=D5F6DD63C0381060AFFBC9D20ED30F07FBDE88EA Validity Not Before: May 30 18:52:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658cb03-fd78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:03:5b:a6:3c:a7:58:e8:51:2b:23:79:3a: 5f:df:de:af:ef:61:a1:05:d9:f9:b1:da:44:a8:0e: 84:f1:a8:1d:f6:39:26:fc:ee:0f:ac:0b:7e:0e:1b: 26:3c:8f:12:41:56:ac:0c:ea:af:a5:bd:3d:0d:eb: df:e3:da:24:02:b4:ec:0b:01:1f:2d:1c:0c:e7:bb: 10:f1:8a:7c:1c:ee:05:8b:c7:5e:bd:ab:36:cd:ce: db:49:34:0e:90:52:1b:55:0b:40:19:5c:9d:f8:b7: 35:b0:64:6d:d3:5f:13:5e:a2:2a:ca:46:20:71:19: 06:47:d2:70:8a:ec:d0:69:09:a3:df:dd:f6:c7:83: 38:4c:2a:a5:1b:a7:04:13:57:47:cf:da:ec:f8:f7: d4:06:14:e3:0a:b4:22:1f:fd:c6:91:e7:71:9f:5c: 79:db:58:69:39:ad:3e:1c:29:e9:7a:46:61:81:a6: 69:22:ef:d8:ec:ed:b0:77:d8:97:b3:a6:a8:89:58: de:59:9b:9b:5c:9a:96:02:82:14:78:9e:9b:b3:7a: c9:93:f4:a9:4a:85:31:cb:c3:f3:e0:bf:4f:1d:58: 99:89:60:ac:07:67:0f:7d:e9:ef:ad:47:ea:1c:93: 38:70:18:8c:a0:4d:3d:61:d8:72:ed:ed:82:e2:fe: e5:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:30:F5:4B:C7:90:66:54:D4:7A:5C:41:64:AC:0B:34:95:3D:EB:67 X509v3 Authority Key Identifier: keyid:D5:F6:DD:63:C0:38:10:60:AF:FB:C9:D2:0E:D3:0F:07:FB:DE:88:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/1fbdY8A4EGCv-8nSDtMPB_veiOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fbdY8A4EGCv-8nSDtMPB_veiOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBF7F/453EB6F4874511E9BF86445CC4F9AE02/656CB24EC9F611ED9853C583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.252.0/24 IPv6: 2001:df0:5f80::/48 Signature Algorithm: sha256WithRSAEncryption 0b:b2:e0:3d:58:ce:79:56:84:ae:9a:d0:a5:ee:ae:77:20:eb: 6f:b0:de:e6:0b:84:ef:59:57:71:26:be:de:43:67:70:52:6e: b9:b5:d9:8b:f9:03:38:a2:fb:f8:68:49:dd:38:08:8f:09:c1: d1:f8:14:f4:a6:22:8a:55:b4:7b:27:d4:72:49:40:b4:95:e7: 11:a7:f1:46:27:b3:07:d8:6b:d3:24:20:f6:45:43:2c:f4:f3: 4c:d5:8c:4e:18:92:d4:06:9e:8d:4f:be:2e:b9:53:cc:6b:f8: 58:64:f9:b6:22:fe:ec:ff:3c:24:74:43:38:54:0b:8b:cd:73: e6:ca:9d:bd:b0:55:08:ca:9a:5c:8e:76:1a:ff:db:ef:61:40: 12:58:97:f4:30:00:50:9e:a5:b4:e8:cf:44:22:56:cf:b4:fe: 5c:3e:34:ce:4d:e2:b9:8c:f1:1c:96:d1:2c:d8:5f:8d:7b:58: a4:53:bd:f6:27:65:30:b0:ee:e6:94:e3:ca:ec:69:5e:f9:e9: 1d:7e:0c:bd:4f:6f:24:39:47:8f:83:50:8d:4d:6f:84:b5:2e: cd:38:53:8c:08:c1:7e:3f:dd:e2:6e:f7:df:cb:6e:54:5b:b0: a2:a6:eb:0c:31:8d:27:b4:fc:1f:da:7c:e8:62:c5:77:d6:74: f3:4d:14:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJGN0YxMTAvBgNVBAUTKEQ1RjZERDYzQzAzODEwNjBBRkZCQzlEMjBFRDMwRjA3 RkJERTg4RUEwHhcNMjQwNTMwMTg1MjUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4Y2IwMy1mZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcQDW6Y8p1joUSsjeTpf396v72GhBdn5sdpEqA6E8agd9jkm/O4PrAt+Dhsm PI8SQVasDOqvpb09Devf49okArTsCwEfLRwM57sQ8Yp8HO4Fi8devas2zc7bSTQO kFIbVQtAGVyd+Lc1sGRt018TXqIqykYgcRkGR9JwiuzQaQmj3932x4M4TCqlG6cE E1dHz9rs+PfUBhTjCrQiH/3Gkedxn1x521hpOa0+HCnpekZhgaZpIu/Y7O2wd9iX s6aoiVjeWZubXJqWAoIUeJ6bs3rJk/SpSoUxy8Pz4L9PHViZiWCsB2cPfenvrUfq HJM4cBiMoE09Ydhy7e2C4v7lDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOgw9UvH kGZU1HpcQWSsCzSVPetnMB8GA1UdIwQYMBaAFNX23WPAOBBgr/vJ0g7TDwf73ojq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkY3Ri80NTNFQjZGNDg3 NDUxMUU5QkY4NjQ0NUNDNEY5QUUwMi8xZmJkWThBNEVHQ3YtOG5TRHRNUEJfdmVp T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmYmRZOEE0RUdDdi04blNEdE1QQl92ZWlPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJGN0YvNDUzRUI2RjQ4NzQ1MTFFOUJGODY0NDVDQzRGOUFFMDIvNjU2Q0IyNEVD OUY2MTFFRDk4NTNDNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnivwwDwQCAAIwCQMHACABDfBfgDANBgkqhkiG9w0BAQsF AAOCAQEAC7LgPVjOeVaErprQpe6udyDrb7De5guE71lXcSa+3kNncFJuubXZi/kD OKL7+GhJ3TgIjwnB0fgU9KYiilW0eyfUcklAtJXnEafxRiezB9hr0yQg9kVDLPTz TNWMThiS1AaejU++LrlTzGv4WGT5tiL+7P88JHRDOFQLi81z5sqdvbBVCMqaXI52 Gv/b72FAEliX9DAAUJ6ltOjPRCJWz7T+XD40zk3iuYzxHJbRLNhfjXtYpFO99idl MLDu5pTjyuxpXvnpHX4MvU9vJDlHj4NQjU1vhLUuzThTjAjBfj/d4m7338tuVFuw oqbrDDGNJ7T8H9p86GLFd9Z0800UTQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org