$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/1E925A56BEE111ED83037109C4F9AE02.roa File: 1E925A56BEE111ED83037109C4F9AE02.roa (raw, json) Hash identifier: TBhcbssExgqFxRfQy6kh4THFtAGhrBLT/uB9I75u5Cc= Subject key identifier: 1B:DC:2D:C2:BA:3F:7C:71:61:FE:DC:CC:5C:6E:1E:B2:EF:54:63:F3 Certificate issuer: /CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Certificate serial: CF Authority key identifier: 0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/1E925A56BEE111ED83037109C4F9AE02.roa Signing time: Wed 03 Apr 2024 06:39:04 +0000 ROA not before: Wed 03 Apr 2024 06:39:04 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150797 IP address blocks: 103.109.8.0/23 maxlen: 24 2400:e8a0::/32 maxlen: 32 2400:e8a0::/36 maxlen: 36 2400:e8a0:1000::/36 maxlen: 36 2400:e8a0:2000::/36 maxlen: 36 2400:e8a0:3000::/36 maxlen: 36 2400:e8a0:4000::/36 maxlen: 36 2400:e8a0:5000::/36 maxlen: 36 2400:e8a0:6000::/36 maxlen: 36 2400:e8a0:7000::/36 maxlen: 36 2400:e8a0:8000::/36 maxlen: 36 2400:e8a0:9000::/36 maxlen: 36 2400:e8a0:a000::/36 maxlen: 36 2400:e8a0:b000::/36 maxlen: 36 2400:e8a0:c000::/36 maxlen: 36 2400:e8a0:d000::/36 maxlen: 36 2400:e8a0:e000::/36 maxlen: 36 2400:e8a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Validity Not Before: Apr 3 06:39:04 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660cf988-379d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6a:f5:1b:04:94:c6:6a:37:3c:1f:98:ec:6c: 92:29:45:99:29:37:3f:63:fb:6d:43:64:ca:cf:a4: 54:4c:51:27:cf:55:63:72:d0:1d:f4:b1:c3:4b:91: 14:24:59:2d:46:62:c7:17:2d:e0:01:a8:cc:85:a7: e8:f0:99:36:56:7c:b2:99:d7:de:dc:73:11:e9:a9: f3:77:14:4b:fc:a2:e6:88:8a:95:2d:e6:a8:46:f6: bb:f2:9e:9a:8c:d7:3d:4a:6b:58:20:16:54:53:53: 29:31:cf:ec:de:46:55:f6:4d:44:f5:6e:98:23:64: d0:de:bb:b3:5e:74:e8:24:5b:54:38:3d:c4:95:88: cd:c7:ec:01:c8:89:4c:5c:3c:4b:55:8c:39:79:e1: 2d:48:44:3f:ca:56:2b:83:59:6e:a7:9f:4a:35:27: 4c:eb:a7:cd:ab:ee:52:63:04:e1:bb:e5:7f:c3:78: 15:29:e6:73:01:97:60:fe:dc:cc:f3:80:40:79:5c: dc:46:85:5e:0e:82:48:46:33:fd:12:89:ee:e7:7e: c9:73:be:e9:58:84:c4:ab:aa:92:15:68:8e:23:4e: cb:27:f3:e6:a6:66:5c:af:54:1c:92:f6:01:40:2f: 33:e7:fb:44:d3:9b:89:c0:c0:5b:b2:66:29:e0:ec: c5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:DC:2D:C2:BA:3F:7C:71:61:FE:DC:CC:5C:6E:1E:B2:EF:54:63:F3 X509v3 Authority Key Identifier: keyid:0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/1E925A56BEE111ED83037109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.8.0/23 IPv6: 2400:e8a0::/32 Signature Algorithm: sha256WithRSAEncryption 96:ef:11:5d:51:bc:d5:ff:20:69:55:b8:a0:45:2e:42:24:51: e9:a4:df:c5:cd:a3:74:14:8b:f1:4a:e4:8d:3d:1c:6c:49:d0: 73:7b:0a:25:ff:99:58:08:55:1b:ce:98:3f:ff:1e:4c:ef:ef: 2b:e2:3d:32:90:3d:8e:65:66:4b:e6:d1:9d:5d:7e:20:3c:a0: 9f:c8:ed:af:9b:f6:0d:43:48:9f:2f:2c:38:d2:b9:38:c4:1b: d5:05:7e:75:12:f2:4d:2a:6a:91:63:15:6c:a9:64:8b:6a:6c: 47:5d:21:61:1f:c8:50:b0:21:9d:85:55:5a:e8:bf:74:9c:39: d3:11:1b:fb:eb:24:4c:4a:b2:a4:56:2c:23:57:cf:99:ac:a7: eb:40:49:c2:15:6f:e8:c2:00:4b:b7:cb:18:84:05:05:21:0f: 46:f5:53:23:29:4d:de:c6:22:48:29:08:ef:5d:72:41:9e:77: 29:95:8e:76:4c:cc:b2:42:89:29:11:4a:d2:77:24:71:66:43: 7b:2c:92:09:01:01:ea:99:f8:3e:52:94:a6:69:ae:09:3c:e9: 68:22:84:fb:54:f5:ce:c2:9d:53:d6:ae:6a:b6:ea:8e:be:77: 29:4a:07:9f:d5:85:28:35:b5:75:36:e2:f9:5a:a4:ff:73:f9: ca:64:cf:bc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2MTQxMTAvBgNVBAUTKDBBMUE2MDVGNzM3Qzk4MjBCMzMxMzNFNUEzNTc5QzE3 MEQyMjc0RUMwHhcNMjQwNDAzMDYzOTA0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZjk4OC0zNzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Wr1GwSUxmo3PB+Y7GySKUWZKTc/Y/ttQ2TKz6RUTFEnz1VjctAd9LHDS5EU JFktRmLHFy3gAajMhafo8Jk2Vnyymdfe3HMR6anzdxRL/KLmiIqVLeaoRva78p6a jNc9SmtYIBZUU1MpMc/s3kZV9k1E9W6YI2TQ3ruzXnToJFtUOD3ElYjNx+wByIlM XDxLVYw5eeEtSEQ/ylYrg1lup59KNSdM66fNq+5SYwThu+V/w3gVKeZzAZdg/tzM 84BAeVzcRoVeDoJIRjP9Eonu537Jc77pWITEq6qSFWiOI07LJ/PmpmZcr1QckvYB QC8z5/tE05uJwMBbsmYp4OzFLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBvcLcK6 P3xxYf7czFxuHrLvVGPzMB8GA1UdIwQYMBaAFAoaYF9zfJggszEz5aNXnBcNInTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDYxNC8xREYwNzVFMkJF REMxMUVEOEUwQUREODBDNEY5QUUwMi9DaHBnWDNOOG1DQ3pNVFBsbzFlY0Z3MGlk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NocGdYM044bUNDek1UUGxvMWVjRncwaWRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ2MTQvMURGMDc1RTJCRURDMTFFRDhFMEFERDgwQzRGOUFFMDIvMUU5MjVBNTZC RUUxMTFFRDgzMDM3MTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnbQgwDQQCAAIwBwMFACQA6KAwDQYJKoZIhvcNAQELBQAD ggEBAJbvEV1RvNX/IGlVuKBFLkIkUemk38XNo3QUi/FK5I09HGxJ0HN7CiX/mVgI VRvOmD//Hkzv7yviPTKQPY5lZkvm0Z1dfiA8oJ/I7a+b9g1DSJ8vLDjSuTjEG9UF fnUS8k0qapFjFWypZItqbEddIWEfyFCwIZ2FVVrov3ScOdMRG/vrJExKsqRWLCNX z5msp+tAScIVb+jCAEu3yxiEBQUhD0b1UyMpTd7GIkgpCO9dckGedymVjnZMzLJC iSkRStJ3JHFmQ3sskgkBAeqZ+D5SlKZprgk86WgihPtU9c7CnVPWrmq26o6+dylK B5/VhSg1tXU24vlapP9z+cpkz7w= -----END CERTIFICATE-----Generated at Fri May 17 08:13:53 2024 by rpki-client on console-fra.rpki-client.org