$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/CDEFCF14801F11EF99206C47C4F9AE02.roa File: CDEFCF14801F11EF99206C47C4F9AE02.roa (raw, json) Hash identifier: RMagxS9fF4MOIlqdvj1T37sYlt01e4qRdvTOPSHcQyU= Subject key identifier: 22:7C:ED:B0:0D:D0:D2:71:AE:7D:F2:49:35:9B:4A:96:09:27:37:25 Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0A7B Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/CDEFCF14801F11EF99206C47C4F9AE02.roa Signing time: Tue 01 Oct 2024 18:05:56 +0000 ROA not before: Tue 01 Oct 2024 18:05:56 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138556 IP address blocks: 103.132.224.0/24 maxlen: 24 103.132.225.0/24 maxlen: 24 103.132.226.0/24 maxlen: 24 2404:4140::/32 maxlen: 32 2404:4140::/36 maxlen: 36 2404:4140:1000::/36 maxlen: 36 2404:4140:2000::/36 maxlen: 36 2404:4140:3000::/36 maxlen: 36 2404:4140:4000::/36 maxlen: 36 2404:4140:5000::/36 maxlen: 36 2404:4140:6000::/36 maxlen: 36 2404:4140:7000::/36 maxlen: 36 2404:4140:8000::/36 maxlen: 36 2404:4140:9000::/36 maxlen: 36 2404:4140:a000::/36 maxlen: 36 2404:4140:b000::/36 maxlen: 36 2404:4140:c000::/36 maxlen: 36 2404:4140:d000::/36 maxlen: 36 2404:4140:e000::/36 maxlen: 36 2404:4140:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Oct 1 18:05:56 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66fc3a04-c8aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:b9:6d:2f:86:e1:da:40:24:00:35:b6:e9: 68:28:01:b5:d6:e8:1b:ac:38:5a:69:b4:c8:4e:c8: 3c:5d:89:cb:b9:e8:d7:8e:a7:3b:01:47:4e:7c:39: 8c:21:79:ff:d0:f0:7c:01:4f:ff:cc:a4:98:62:f5: c3:1a:3e:7b:ce:93:04:ff:67:d7:de:a4:ae:b0:6a: d4:94:c6:25:81:b0:20:e7:0f:54:a3:1d:df:97:7f: 12:91:f5:81:b9:09:49:c1:ff:ab:d1:58:a2:12:7e: f3:96:34:b8:26:dd:c1:b0:cd:82:37:cd:4e:77:95: de:6e:3c:a5:d3:cd:e1:12:36:ba:f2:5c:82:3e:0b: 43:6b:4e:9e:9d:a5:89:53:6f:88:2e:09:d8:be:3a: 98:21:ca:e1:a0:88:c4:db:d8:26:d3:6e:df:bd:a7: 49:85:6f:c0:5d:f6:f7:8d:c5:ae:1e:1e:6a:01:ac: 98:fb:02:ea:09:97:44:ba:f7:dd:8a:92:af:d9:0a: 88:24:68:5b:d6:43:cd:6d:08:52:cd:9b:56:b3:63: f6:7f:a9:d9:01:1e:23:af:ec:c8:e4:9d:f0:6b:aa: a0:cb:aa:37:78:40:c8:64:d4:0b:08:47:6f:62:44: ff:c6:7f:66:17:36:ee:4b:5e:35:23:c1:c6:85:09: 8a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7C:ED:B0:0D:D0:D2:71:AE:7D:F2:49:35:9B:4A:96:09:27:37:25 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/CDEFCF14801F11EF99206C47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.224.0-103.132.226.255 IPv6: 2404:4140::/32 Signature Algorithm: sha256WithRSAEncryption 4b:a9:56:62:c2:3e:24:aa:41:f2:70:bf:01:ce:ed:5f:38:15: 24:12:ca:6b:cc:22:33:95:9f:71:a3:28:25:f4:18:c8:5a:6d: f8:ee:5d:97:8d:bf:af:83:00:1e:9e:25:59:9f:eb:30:55:32: f7:f8:66:38:5f:33:a4:b4:03:8c:8d:cf:f7:c7:4d:6d:54:8e: c5:78:34:aa:60:14:71:a1:2e:d9:a4:f8:a7:a5:84:b3:16:1c: fb:9a:11:18:da:a2:ea:e3:12:1f:82:c1:23:4c:94:9d:b9:9e: ca:52:ff:49:ac:0a:c7:11:8d:a9:0c:74:86:ac:1e:84:35:90: 15:15:f6:91:fd:08:f9:bf:c8:ed:bb:bd:1b:9e:2d:4e:6d:32: 85:6f:ef:88:a4:73:6c:c1:41:2c:8c:6d:35:80:d5:d9:6b:84: fd:f6:26:d2:4d:59:9c:95:8c:4b:1e:d3:aa:59:f8:d7:5c:6c: 13:40:af:c6:f6:2c:3b:79:ba:36:58:dc:00:b7:15:5d:b9:42: 08:7c:11:7a:d8:19:40:8e:2e:73:ab:89:c4:27:d7:f5:be:2e: 5e:f4:f0:15:1c:c5:32:37:17:5d:0e:e7:59:fe:01:f2:f5:ff: cf:3f:9f:63:ad:b1:af:6a:e6:dc:96:06:62:f6:85:54:b7:14: 31:05:18:0e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjQxMDAxMTgwNTU2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZjM2EwNC1jOGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpy5bS+G4dpAJAA1tuloKAG11ugbrDhaabTITsg8XYnLuejXjqc7AUdOfDmM IXn/0PB8AU//zKSYYvXDGj57zpME/2fX3qSusGrUlMYlgbAg5w9Uox3fl38SkfWB uQlJwf+r0ViiEn7zljS4Jt3BsM2CN81Od5Xebjyl083hEja68lyCPgtDa06enaWJ U2+ILgnYvjqYIcrhoIjE29gm027fvadJhW/AXfb3jcWuHh5qAayY+wLqCZdEuvfd ipKv2QqIJGhb1kPNbQhSzZtWs2P2f6nZAR4jr+zI5J3wa6qgy6o3eEDIZNQLCEdv YkT/xn9mFzbuS141I8HGhQmK7wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCJ87bAN 0NJxrn3ySTWbSpYJJzclMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY5MDUvMUZBN0M0NkM0OEQzMTFFQThBQUU0NjY4QzRGOUFFMDIvQ0RFRkNGMTQ4 MDFGMTFFRjk5MjA2QzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEBWeE4AMEAGeE4jANBAIAAjAHAwUAJARBQDANBgkqhkiG 9w0BAQsFAAOCAQEAS6lWYsI+JKpB8nC/Ac7tXzgVJBLKa8wiM5WfcaMoJfQYyFpt +O5dl42/r4MAHp4lWZ/rMFUy9/hmOF8zpLQDjI3P98dNbVSOxXg0qmAUcaEu2aT4 p6WEsxYc+5oRGNqi6uMSH4LBI0yUnbmeylL/SawKxxGNqQx0hqwehDWQFRX2kf0I +b/I7bu9G54tTm0yhW/viKRzbMFBLIxtNYDV2WuE/fYm0k1ZnJWMSx7Tqln411xs E0CvxvYsO3m6NljcALcVXblCCHwRetgZQI4uc6uJxCfX9b4uXvTwFRzFMjcXXQ7n Wf4B8vX/zz+fY62xr2rm3JYGYvaFVLcUMQUYDg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org