$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/5CBBCAEA90B211EDB7A3471FC4F9AE02.roa File: 5CBBCAEA90B211EDB7A3471FC4F9AE02.roa (raw, json) Hash identifier: 3QVoPynRLM5/JWYrC/nr9ZnhrZhvaYNCtt2d4cwNET0= Subject key identifier: 64:F0:EE:B0:0D:9E:68:A5:65:53:2D:92:CD:94:8F:08:7F:D6:DC:73 Certificate issuer: /CN=A91BC91C/serialNumber=8E5F61F37FFB88C8436ED53C0343CEABB174EB08 Certificate serial: A8 Authority key identifier: 8E:5F:61:F3:7F:FB:88:C8:43:6E:D5:3C:03:43:CE:AB:B1:74:EB:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl9h83_7iMhDbtU8A0POq7F06wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/5CBBCAEA90B211EDB7A3471FC4F9AE02.roa Signing time: Fri 01 Dec 2023 05:36:37 +0000 ROA not before: Fri 01 Dec 2023 05:36:37 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141410 IP address blocks: 103.158.110.0/24 maxlen: 24 2001:df5:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/jl9h83_7iMhDbtU8A0POq7F06wg.crl rsync://rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/jl9h83_7iMhDbtU8A0POq7F06wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl9h83_7iMhDbtU8A0POq7F06wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 02:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC91C/serialNumber=8E5F61F37FFB88C8436ED53C0343CEABB174EB08 Validity Not Before: Dec 1 05:36:37 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656970e5-616d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:b2:eb:f9:15:43:b1:7e:b0:9c:92:95:e9: e5:8a:3a:31:6d:ba:c3:56:ec:26:56:3f:b5:2b:68: 71:d6:31:25:b5:b5:ea:2d:fb:5f:a3:17:91:ed:59: aa:f3:4d:f9:b9:3a:40:3a:be:4f:17:49:18:04:36: dd:f7:a9:e8:45:37:1d:d9:c4:08:98:e4:48:90:f7: be:02:81:8d:f3:19:7d:a5:2a:09:fb:c9:03:3a:fd: c5:c0:87:a6:e0:e6:7f:59:55:0b:b8:5c:05:5c:82: ca:ef:d7:33:d7:1e:ee:15:f1:27:c5:68:93:0d:03: e0:86:37:fc:95:a4:33:9a:a1:5c:99:46:b5:68:0b: e1:d8:a7:36:d9:b0:8a:6d:f2:f7:19:ab:6b:44:1c: 9e:38:d7:9c:d8:35:e5:7d:3e:12:40:e4:4c:c8:38: 24:7e:4e:58:83:45:d2:f1:23:6f:a2:36:6c:d1:bf: fd:0c:4a:d2:1b:ac:51:62:f6:37:ee:46:d5:2e:ad: be:ea:ee:5a:58:31:b0:77:c2:1b:e9:78:56:51:ce: be:0a:31:f9:bb:b2:f9:92:2f:da:f2:76:80:4a:44: dd:fa:cf:49:f9:db:bb:f9:ad:96:ce:58:dd:1a:ff: b5:d9:c6:d0:9b:10:ca:5e:ae:70:c9:53:73:92:83: 2b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F0:EE:B0:0D:9E:68:A5:65:53:2D:92:CD:94:8F:08:7F:D6:DC:73 X509v3 Authority Key Identifier: keyid:8E:5F:61:F3:7F:FB:88:C8:43:6E:D5:3C:03:43:CE:AB:B1:74:EB:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/jl9h83_7iMhDbtU8A0POq7F06wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jl9h83_7iMhDbtU8A0POq7F06wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC91C/3A5EAB4690AF11ED8739E31AC4F9AE02/5CBBCAEA90B211EDB7A3471FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.110.0/24 IPv6: 2001:df5:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 3b:5f:99:cd:72:16:fa:8e:6c:94:9e:92:e3:22:de:94:05:e0: 3d:66:19:ec:57:93:d0:38:a4:d5:4e:fa:40:d1:5a:9a:cd:5c: d7:da:60:65:da:88:e6:7e:48:2e:71:58:a8:7f:b9:83:8e:4b: 27:34:9e:89:01:ec:45:0e:74:b9:90:e8:a5:c7:9f:61:c1:5b: fe:e4:3a:6a:17:e1:3d:16:f7:69:92:93:cc:1c:25:5d:d3:10: e0:a6:71:4f:78:83:0d:90:32:3c:3c:00:4d:aa:32:1d:6f:87: 19:c3:79:07:87:8f:37:6e:78:12:d6:f2:3f:c1:c2:ea:59:f8: 63:00:af:81:ec:65:e4:3a:49:d2:02:34:83:ea:a2:3a:7a:7d: 00:a6:9c:07:d8:39:54:e0:5d:e1:52:9f:3e:64:f2:38:d4:36: 55:27:48:00:dd:94:cd:48:aa:47:ba:33:76:be:3f:f6:05:05: af:4d:c3:84:8e:d4:4f:64:fd:bf:2b:ca:ae:4f:cb:15:59:b5: 10:ef:a0:42:27:03:4a:44:1a:25:a0:1b:31:f4:eb:2e:c4:dc: e0:72:b0:a3:01:5d:85:0f:2c:45:6c:76:9a:c1:2f:29:12:2a: a4:8a:98:bc:8b:74:0a:19:72:90:75:f6:d2:3a:0d:29:95:ab: 04:1e:f8:c9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5MUMxMTAvBgNVBAUTKDhFNUY2MUYzN0ZGQjg4Qzg0MzZFRDUzQzAzNDNDRUFC QjE3NEVCMDgwHhcNMjMxMjAxMDUzNjM3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5NzBlNS02MTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5Ky6/kVQ7F+sJySlenlijoxbbrDVuwmVj+1K2hx1jEltbXqLftfoxeR7Vmq 8035uTpAOr5PF0kYBDbd96noRTcd2cQImORIkPe+AoGN8xl9pSoJ+8kDOv3FwIem 4OZ/WVULuFwFXILK79cz1x7uFfEnxWiTDQPghjf8laQzmqFcmUa1aAvh2Kc22bCK bfL3GatrRByeONec2DXlfT4SQORMyDgkfk5Yg0XS8SNvojZs0b/9DErSG6xRYvY3 7kbVLq2+6u5aWDGwd8Ib6XhWUc6+CjH5u7L5ki/a8naASkTd+s9J+du7+a2Wzljd Gv+12cbQmxDKXq5wyVNzkoMrzQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGTw7rAN nmilZVMtks2Ujwh/1txzMB8GA1UdIwQYMBaAFI5fYfN/+4jIQ27VPANDzquxdOsI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzkxQy8zQTVFQUI0Njkw QUYxMUVEODczOUUzMUFDNEY5QUUwMi9qbDloODNfN2lNaERidFU4QTBQT3E3RjA2 d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2psOWg4M183aU1oRGJ0VThBMFBPcTdGMDZ3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5MUMvM0E1RUFCNDY5MEFGMTFFRDg3MzlFMzFBQzRGOUFFMDIvNUNCQkNBRUE5 MEIyMTFFREI3QTM0NzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnnm4wDwQCAAIwCQMHACABDfVNgDANBgkqhkiG9w0BAQsF AAOCAQEAO1+ZzXIW+o5slJ6S4yLelAXgPWYZ7FeT0Dik1U76QNFams1c19pgZdqI 5n5ILnFYqH+5g45LJzSeiQHsRQ50uZDopcefYcFb/uQ6ahfhPRb3aZKTzBwlXdMQ 4KZxT3iDDZAyPDwATaoyHW+HGcN5B4ePN254EtbyP8HC6ln4YwCvgexl5DpJ0gI0 g+qiOnp9AKacB9g5VOBd4VKfPmTyONQ2VSdIAN2UzUiqR7ozdr4/9gUFr03DhI7U T2T9vyvKrk/LFVm1EO+gQicDSkQaJaAbMfTrLsTc4HKwowFdhQ8sRWx2msEvKRIq pIqYvIt0ChlykHX20joNKZWrBB74yQ== -----END CERTIFICATE-----Generated at Wed Nov 27 04:03:03 2024 by rpki-client on console-fra.rpki-client.org