$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/A1F46062A64611EAA24E1461C4F9AE02.roa File: A1F46062A64611EAA24E1461C4F9AE02.roa (raw, json) Hash identifier: 39k4BNBm3rB0SX8JoQ9K/8CWlJ/A9ku+Hc5oGt3yP94= Subject key identifier: 71:F0:D3:3C:67:EA:E1:99:D8:3C:27:FF:2A:3C:D9:80:B5:BE:5E:8B Certificate issuer: /CN=A91BD090/serialNumber=E55A5957385B6CF8CA0C0481D62DDFFDAB12C1F4 Certificate serial: 0888 Authority key identifier: E5:5A:59:57:38:5B:6C:F8:CA:0C:04:81:D6:2D:DF:FD:AB:12:C1:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VpZVzhbbPjKDASB1i3f_asSwfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/A1F46062A64611EAA24E1461C4F9AE02.roa Signing time: Thu 05 Sep 2024 16:43:34 +0000 ROA not before: Thu 05 Sep 2024 16:43:34 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 134074 IP address blocks: 103.51.60.0/24 maxlen: 24 103.142.243.0/24 maxlen: 24 2001:df3:9840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/5VpZVzhbbPjKDASB1i3f_asSwfQ.crl rsync://rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/5VpZVzhbbPjKDASB1i3f_asSwfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VpZVzhbbPjKDASB1i3f_asSwfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2184 (0x888) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD090/serialNumber=E55A5957385B6CF8CA0C0481D62DDFFDAB12C1F4 Validity Not Before: Sep 5 16:43:34 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66d9dfb6-251c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c1:17:31:94:9c:17:bd:d0:ac:02:63:00:18: b1:54:33:67:1a:b1:e8:dc:de:08:e1:ad:d9:bf:63: b7:9e:78:82:47:a0:54:48:53:01:33:c9:1a:65:bd: f1:72:a6:60:2a:f9:4f:2f:5c:21:00:a2:40:de:4e: 71:4d:4c:40:18:28:b0:ec:22:5f:3a:5c:1e:fb:31: ba:b2:4a:a8:d8:71:8e:01:41:aa:40:fa:94:4f:25: 8c:93:8e:ed:ec:9c:f2:d8:08:c2:8a:c9:5d:b3:f0: 4f:c6:ab:fb:7c:13:de:5d:44:e3:94:2c:dc:02:10: 17:11:73:4d:2e:23:0e:18:68:68:78:05:5c:5e:9a: be:40:54:ab:74:a2:d9:25:e6:fa:ce:99:be:ac:c6: c9:0a:57:f5:05:de:8a:0f:e1:13:2d:1f:06:6d:ca: 72:dd:6c:46:cb:7e:af:e3:ee:79:bb:30:55:1b:6f: 8c:7d:4f:29:90:63:87:1e:60:67:01:32:76:87:1c: 61:fd:6a:a0:4b:b0:54:8c:a5:fc:60:aa:de:b2:04: 55:2c:28:6f:47:fc:23:4a:9b:9a:cd:4b:f3:1d:e8: 0b:05:c9:7d:28:2f:5a:9c:51:1b:e7:bf:e4:e3:a9: 04:6c:93:c2:4c:82:bd:b9:fa:b1:31:8a:12:92:b2: 09:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F0:D3:3C:67:EA:E1:99:D8:3C:27:FF:2A:3C:D9:80:B5:BE:5E:8B X509v3 Authority Key Identifier: keyid:E5:5A:59:57:38:5B:6C:F8:CA:0C:04:81:D6:2D:DF:FD:AB:12:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/5VpZVzhbbPjKDASB1i3f_asSwfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VpZVzhbbPjKDASB1i3f_asSwfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD090/2DCE048CA64511EA861AD35EC4F9AE02/A1F46062A64611EAA24E1461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.60.0/24 103.142.243.0/24 IPv6: 2001:df3:9840::/48 Signature Algorithm: sha256WithRSAEncryption 36:32:28:4d:62:ab:22:d9:5f:da:4f:1e:68:26:98:26:94:0b: 0f:73:a8:22:cd:d7:cd:25:32:ad:94:2a:79:8e:ca:da:56:eb: 17:65:51:4b:f8:13:c2:ed:07:10:72:10:ba:ad:37:99:73:fa: 07:53:d1:7d:68:74:77:5b:87:b3:2e:fe:ac:e4:c5:30:e3:d6: 50:59:c6:d4:e3:21:1e:69:32:b9:3d:d6:9d:4a:8a:80:5c:aa: 1f:2c:3d:8f:f5:09:91:80:ca:af:d5:98:5c:f0:7f:8b:01:d6: 5c:e2:ac:d4:c1:8a:cb:3d:32:2a:6f:55:5e:ea:07:d8:31:12: af:4e:e5:2a:cb:8c:3c:6e:cc:85:b6:ff:91:5c:08:dd:9b:c1: ce:e9:14:d5:b3:c5:ab:83:a4:aa:43:18:d9:4d:17:a4:85:16: 9b:52:0e:39:43:32:a5:0f:78:e0:c4:8a:29:4d:45:ac:33:3f: dc:e9:35:79:6e:c3:83:2d:15:e7:34:aa:7b:8e:02:e3:84:50: 20:e6:a3:65:6f:5e:2c:50:f1:68:d8:df:f2:ca:85:4e:49:1d: be:74:d9:01:f4:dc:d1:20:88:af:86:5b:ac:e1:2f:6d:35:b7: 98:b1:01:60:50:6b:ba:5d:18:6d:be:6b:b2:ee:d9:8d:ae:db: d3:80:b5:0e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQwOTAxMTAvBgNVBAUTKEU1NUE1OTU3Mzg1QjZDRjhDQTBDMDQ4MUQ2MkRERkZE QUIxMkMxRjQwHhcNMjQwOTA1MTY0MzM0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5ZGZiNi0yNTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssEXMZScF73QrAJjABixVDNnGrHo3N4I4a3Zv2O3nniCR6BUSFMBM8kaZb3x cqZgKvlPL1whAKJA3k5xTUxAGCiw7CJfOlwe+zG6skqo2HGOAUGqQPqUTyWMk47t 7Jzy2AjCislds/BPxqv7fBPeXUTjlCzcAhAXEXNNLiMOGGhoeAVcXpq+QFSrdKLZ Jeb6zpm+rMbJClf1Bd6KD+ETLR8Gbcpy3WxGy36v4+55uzBVG2+MfU8pkGOHHmBn ATJ2hxxh/WqgS7BUjKX8YKresgRVLChvR/wjSpuazUvzHegLBcl9KC9anFEb57/k 46kEbJPCTIK9ufqxMYoSkrIJ5QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHHw0zxn 6uGZ2Dwn/yo82YC1vl6LMB8GA1UdIwQYMBaAFOVaWVc4W2z4ygwEgdYt3/2rEsH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDA5MC8yRENFMDQ4Q0E2 NDUxMUVBODYxQUQzNUVDNEY5QUUwMi81VnBaVnpoYmJQaktEQVNCMWkzZl9hc1N3 ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVWcFpWemhiYlBqS0RBU0IxaTNmX2FzU3dmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQwOTAvMkRDRTA0OENBNjQ1MTFFQTg2MUFEMzVFQzRGOUFFMDIvQTFGNDYwNjJB NjQ2MTFFQUEyNEUxNDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnMzwDBABnjvMwDwQCAAIwCQMHACABDfOYQDANBgkqhkiG 9w0BAQsFAAOCAQEANjIoTWKrItlf2k8eaCaYJpQLD3OoIs3XzSUyrZQqeY7K2lbr F2VRS/gTwu0HEHIQuq03mXP6B1PRfWh0d1uHsy7+rOTFMOPWUFnG1OMhHmkyuT3W nUqKgFyqHyw9j/UJkYDKr9WYXPB/iwHWXOKs1MGKyz0yKm9VXuoH2DESr07lKsuM PG7Mhbb/kVwI3ZvBzukU1bPFq4OkqkMY2U0XpIUWm1IOOUMypQ944MSKKU1FrDM/ 3Ok1eW7Dgy0V5zSqe44C44RQIOajZW9eLFDxaNjf8sqFTkkdvnTZAfTc0SCIr4Zb rOEvbTW3mLEBYFBrul0Ybb5rsu7Zja7b04C1Dg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org