$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa File: 5FB07B1421CF11EBA0C85857C4F9AE02.roa (raw, json) Hash identifier: Wlp7VJ4S/0DHPTZqsCcIenAV+N4iB3x2c/KGZJRvjlg= Subject key identifier: 1E:FD:64:26:89:B5:A6:AE:FF:5E:5A:41:0C:09:90:43:63:98:F4:0A Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0F1F Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa Signing time: Tue 24 Sep 2024 17:55:45 +0000 ROA not before: Tue 24 Sep 2024 17:55:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3871 (0xf1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 24 17:55:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2fd21-645d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:68:cb:ba:37:ef:33:fa:50:2a:b2:0e:c1: 5a:8b:8b:36:8a:8c:53:8e:18:79:29:66:51:e1:75: dc:0d:c1:ba:58:36:6b:40:c4:80:2c:fb:47:1b:4f: 29:e2:74:0a:75:25:7a:7a:ba:1c:97:fc:da:6c:52: 02:0d:fc:ee:73:93:3e:0a:fc:a2:3b:f9:4d:2b:af: f2:49:b0:95:4e:77:f3:d3:65:64:9e:3e:3d:8c:17: c9:fe:19:98:07:bf:d7:0d:b9:a0:40:c2:c1:91:17: 38:28:48:5c:b6:da:32:c6:f2:bf:48:ad:bb:03:6a: e0:fb:7e:39:56:b6:63:a3:92:be:ad:60:54:58:6c: 66:0d:0a:d6:1e:bb:90:15:30:2c:f1:ff:44:58:3e: 7e:45:09:9d:56:a4:15:30:5a:76:19:67:14:f2:ac: 5a:03:cf:7d:fd:9e:ee:4d:d0:84:92:62:c3:98:ec: 8c:bf:85:ce:08:61:06:91:8b:fd:bb:27:61:ca:5c: dc:7c:84:cc:6b:00:ef:2c:92:04:c0:85:9a:38:fb: 7b:39:42:de:bd:9d:62:39:09:a0:0a:a3:88:56:c7: 0e:2d:e5:e1:8b:33:08:4f:04:3e:94:e0:e6:ed:9e: dc:aa:bf:c6:16:27:17:84:2f:6c:27:59:86:87:03: a3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FD:64:26:89:B5:A6:AE:FF:5E:5A:41:0C:09:90:43:63:98:F4:0A X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 51:b6:ae:93:4a:7f:53:33:0d:e5:62:e4:ab:02:99:17:3e:58: 25:b6:a7:c8:44:d5:6b:a2:39:4b:38:3c:e6:93:85:87:4d:d0: 7a:67:07:bd:43:14:ab:84:ee:26:5d:69:57:01:2b:46:9d:cb: c8:90:9d:7e:48:06:c1:43:af:ee:10:b5:c4:7b:aa:ba:1b:df: 9e:29:83:b6:37:e0:d3:77:2c:7e:59:4a:16:3a:fa:bb:bc:52: 51:05:4e:06:e1:11:88:a9:25:a5:07:1f:8d:80:c1:10:f6:64: b1:41:85:6d:ff:66:da:23:cf:29:cd:33:8d:f9:f2:21:cb:78: bb:13:b3:fd:4f:61:42:75:35:06:7a:f6:bb:65:28:ad:0e:ef: 50:08:11:08:f4:87:e5:c9:b8:bd:50:47:06:11:09:38:79:1d: 24:80:1e:da:98:56:f6:1e:e9:2a:09:46:02:b2:35:32:98:f1: f4:57:f8:2f:27:ab:ac:16:c1:29:03:03:fa:27:d8:6b:98:3e: f5:85:3a:ac:7a:7b:cc:5f:c2:1c:62:a7:1d:09:3d:9c:a3:95: a0:84:b7:91:eb:17:ca:00:ac:d2:9c:10:38:01:e1:70:70:f1: c6:a6:ee:c9:0b:5d:d2:a8:57:48:69:07:9c:3f:5f:34:75:f7: 8a:bf:32:e4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjQwOTI0MTc1NTQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZmQyMS02NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFZoy7o37zP6UCqyDsFai4s2ioxTjhh5KWZR4XXcDcG6WDZrQMSALPtHG08p 4nQKdSV6erocl/zabFICDfzuc5M+CvyiO/lNK6/ySbCVTnfz02Vknj49jBfJ/hmY B7/XDbmgQMLBkRc4KEhcttoyxvK/SK27A2rg+345VrZjo5K+rWBUWGxmDQrWHruQ FTAs8f9EWD5+RQmdVqQVMFp2GWcU8qxaA899/Z7uTdCEkmLDmOyMv4XOCGEGkYv9 uydhylzcfITMawDvLJIEwIWaOPt7OULevZ1iOQmgCqOIVscOLeXhizMITwQ+lODm 7Z7cqr/GFicXhC9sJ1mGhwOj0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB79ZCaJ taau/15aQQwJkENjmPQKMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvNUZCMDdCMTQy MUNGMTFFQkEwQzg1ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAFG2rpNK f1MzDeVi5KsCmRc+WCW2p8hE1WuiOUs4POaThYdN0HpnB71DFKuE7iZdaVcBK0ad y8iQnX5IBsFDr+4QtcR7qrob354pg7Y34NN3LH5ZShY6+ru8UlEFTgbhEYipJaUH H42AwRD2ZLFBhW3/ZtojzynNM4358iHLeLsTs/1PYUJ1NQZ69rtlKK0O71AIEQj0 h+XJuL1QRwYRCTh5HSSAHtqYVvYe6SoJRgKyNTKY8fRX+C8nq6wWwSkDA/on2GuY PvWFOqx6e8xfwhxipx0JPZyjlaCEt5HrF8oArNKcEDgB4XBw8cam7skLXdKoV0hp B5w/XzR194q/MuQ= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org