$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/A697738410FA11EF9A068536C4F9AE02.roa File: A697738410FA11EF9A068536C4F9AE02.roa (raw, json) Hash identifier: Zv0ZFs3ilUsRHmjHi746Q/P+ClsZujQ8kkuNmYui824= Subject key identifier: BF:F0:3A:A8:CD:14:F6:74:1C:3E:18:F0:21:E3:FA:24:EC:16:21:1D Certificate issuer: /CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Certificate serial: 04 Authority key identifier: 80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/A697738410FA11EF9A068536C4F9AE02.roa Signing time: Mon 13 May 2024 07:30:20 +0000 ROA not before: Mon 13 May 2024 07:30:20 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135658 IP address blocks: 103.155.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC3F1/serialNumber=807C040FA901E5D8695A6534DE66C3D6A0BFBCC5 Validity Not Before: May 13 07:30:20 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6641c18b-fa86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:97:ac:49:65:a7:e0:c3:ca:69:6a:f4:d8:11: be:de:33:1b:04:96:97:e2:0b:13:c3:43:82:53:e2: 9c:1a:b7:b3:1b:6e:09:b5:15:b5:f3:e8:0b:f7:4b: 72:cd:f2:0e:1c:ca:a8:99:2f:fd:53:40:d2:e1:84: 0b:e7:57:13:0a:46:93:0b:32:99:86:98:c2:5f:7e: 78:f6:d9:c1:56:97:a7:98:9b:d7:dc:30:8f:52:45: d6:a2:8f:cd:8b:6c:a0:bc:c3:f0:9c:e8:86:9b:76: 4e:fe:bc:67:cf:53:58:2c:7d:c5:e7:d5:2c:d2:b0: da:0a:eb:a0:4f:9a:c6:7a:e3:00:53:be:59:03:d1: 2d:8a:c2:14:90:b4:1a:73:8b:85:c9:2b:50:b7:8e: 23:67:f1:0a:3c:e4:88:70:84:64:ed:19:1e:c3:23: 57:42:7e:49:09:e9:67:23:2d:a6:2a:45:71:0a:7b: f3:82:48:18:f6:b1:04:b1:cb:f0:72:ef:82:75:02: 5b:8f:37:76:42:d5:5d:20:1e:ae:95:5e:41:fe:f4: 9c:f7:12:a6:13:e9:cb:82:69:43:24:26:75:94:9a: d2:4f:70:54:5f:e6:94:ca:9d:20:25:8f:86:1b:58: 0e:00:95:18:02:a8:56:23:b4:a4:05:41:55:f9:47: 30:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F0:3A:A8:CD:14:F6:74:1C:3E:18:F0:21:E3:FA:24:EC:16:21:1D X509v3 Authority Key Identifier: keyid:80:7C:04:0F:A9:01:E5:D8:69:5A:65:34:DE:66:C3:D6:A0:BF:BC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/gHwED6kB5dhpWmU03mbD1qC_vMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gHwED6kB5dhpWmU03mbD1qC_vMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC3F1/95B711C410F911EF888C522FC4F9AE02/A697738410FA11EF9A068536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.59.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:06:dd:ba:d2:47:d3:a0:5d:a0:47:23:55:74:d6:6d:86:af: 47:71:b5:f2:0a:3b:e5:d8:1e:23:6c:c5:5c:18:7a:69:c8:5a: 2b:71:08:60:61:66:a2:f7:8e:79:c4:05:68:4e:86:2d:d6:d9: 1e:65:62:1f:de:d3:33:2b:d7:17:bd:c5:d4:2c:f1:92:dd:f2: 8f:fd:7b:f5:66:77:1f:00:9b:80:3a:2c:d8:93:eb:6a:63:bd: e9:ce:5d:c9:c0:44:2d:fd:d2:98:80:b5:db:70:28:03:53:0f: 2b:51:28:6f:1e:f6:35:e1:41:01:c4:8a:d4:a5:44:a6:50:59: 6d:4c:c4:1d:f1:cc:40:9d:bd:3e:65:b7:2e:17:06:42:9e:ac: 83:5d:e3:5e:08:5d:ad:62:b7:65:ff:6f:42:d5:7b:36:45:d2: b9:14:f9:d5:5e:69:fd:6d:54:94:29:91:c7:35:d3:4a:60:bb: f4:d5:95:5d:97:83:06:76:10:bb:28:47:af:fa:97:73:88:c0: 9e:d9:c8:5b:b9:48:9b:d1:26:f8:84:c6:32:ed:dd:73:15:f0: 3c:59:c7:8e:e2:34:66:19:a6:9f:9e:7f:47:f7:00:b2:24:58: a8:87:45:aa:b9:85:c5:f2:30:ce:fd:72:64:61:3c:c0:ec:90: c4:0c:8b:e7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzNGMTExMC8GA1UEBRMoODA3QzA0MEZBOTAxRTVEODY5NUE2NTM0REU2NkMzRDZB MEJGQkNDNTAeFw0yNDA1MTMwNzMwMjBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDFjMThiLWZhODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3l6xJZafgw8ppavTYEb7eMxsElpfiCxPDQ4JT4pwat7Mbbgm1FbXz6Av3S3LN 8g4cyqiZL/1TQNLhhAvnVxMKRpMLMpmGmMJffnj22cFWl6eYm9fcMI9SRdaij82L bKC8w/Cc6Iabdk7+vGfPU1gsfcXn1SzSsNoK66BPmsZ64wBTvlkD0S2KwhSQtBpz i4XJK1C3jiNn8Qo85IhwhGTtGR7DI1dCfkkJ6WcjLaYqRXEKe/OCSBj2sQSxy/By 74J1AluPN3ZC1V0gHq6VXkH+9Jz3EqYT6cuCaUMkJnWUmtJPcFRf5pTKnSAlj4Yb WA4AlRgCqFYjtKQFQVX5RzCFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUv/A6qM0U 9nQcPhjwIeP6JOwWIR0wHwYDVR0jBBgwFoAUgHwED6kB5dhpWmU03mbD1qC/vMUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDM0YxLzk1QjcxMUM0MTBG OTExRUY4ODhDNTIyRkM0RjlBRTAyL2dId0VENmtCNWRocFdtVTAzbWJEMXFDX3ZN VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ0h3RUQ2a0I1ZGhwV21VMDNtYkQxcUNfdk1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzNGMS85NUI3MTFDNDEwRjkxMUVGODg4QzUyMkZDNEY5QUUwMi9BNjk3NzM4NDEw RkExMUVGOUEwNjg1MzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGebOzANBgkqhkiG9w0BAQsFAAOCAQEAbwbdutJH06BdoEcj VXTWbYavR3G18go75dgeI2zFXBh6achaK3EIYGFmoveOecQFaE6GLdbZHmViH97T MyvXF73F1Czxkt3yj/179WZ3HwCbgDos2JPramO96c5dycBELf3SmIC123AoA1MP K1Eobx72NeFBAcSK1KVEplBZbUzEHfHMQJ29PmW3LhcGQp6sg13jXghdrWK3Zf9v QtV7NkXSuRT51V5p/W1UlCmRxzXTSmC79NWVXZeDBnYQuyhHr/qXc4jAntnIW7lI m9Em+ITGMu3dcxXwPFnHjuI0Zhmmn55/R/cAsiRYqIdFqrmFxfIwzv1yZGE8wOyQ xAyL5w== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org