$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa File: 52333EB4CFAE11EEB928CD25C4F9AE02.roa (raw, json) Hash identifier: Ed+WGj4YoSK8RoZY5/E6txkQiwmhNLhgRfvyu7U8cGA= Subject key identifier: AA:7D:E6:4F:57:98:75:B5:2D:18:F1:F5:58:A8:0A:F4:FF:69:51:9E Certificate issuer: /CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Certificate serial: 71 Authority key identifier: 8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa Signing time: Tue 17 Sep 2024 05:08:32 +0000 ROA not before: Tue 17 Sep 2024 05:08:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137846 IP address blocks: 103.191.110.0/23 maxlen: 23 103.191.110.0/24 maxlen: 24 103.191.111.0/24 maxlen: 24 2001:df0:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0EDF/serialNumber=8B64196869117B99B879B4DCBAF04290BC16810C Validity Not Before: Sep 17 05:08:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e90ed0-e143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:00:c3:b9:9c:86:dc:49:bb:30:05:3a:b8:e1: ff:0b:0e:75:a8:38:9e:1a:49:86:40:ce:67:38:cd: 26:74:30:f3:fe:29:9b:de:a9:f7:36:47:7d:54:7f: 62:ed:ef:55:66:bc:42:31:13:b9:e9:39:20:a6:17: 33:af:b4:cc:64:44:a0:f2:8d:cc:98:c7:01:20:f1: 54:7b:f9:4a:e7:86:78:a0:3f:eb:96:5c:1b:d8:4b: 8b:c0:fb:9f:a3:62:d6:ad:90:ab:2b:f4:14:bf:a6: 64:3a:ea:0f:6c:25:15:16:7e:a1:d2:70:14:29:61: 5a:4b:d6:54:03:81:66:d2:3f:a6:b8:2f:29:00:91: 5e:ab:01:3d:4c:7f:14:0a:52:3e:2e:1b:f9:47:5c: cd:b2:e3:62:22:b2:49:da:26:7a:58:f8:ab:3a:37: 8c:21:d2:62:2b:7f:be:bd:05:30:94:86:50:b8:52: 2c:9e:d6:de:5e:3f:d3:82:45:a3:0d:52:03:21:b1: 52:f4:0f:b9:68:1a:a6:51:2e:72:2d:1a:0b:b3:2a: 2a:7e:4f:dd:08:41:ef:84:d6:e0:92:4d:08:2f:d6: 3b:c6:7a:57:87:a8:05:c9:39:4e:b6:43:e9:ed:a6: 4a:e0:5d:b8:a7:ef:78:cf:ea:c3:15:cd:2f:da:f5: a6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7D:E6:4F:57:98:75:B5:2D:18:F1:F5:58:A8:0A:F4:FF:69:51:9E X509v3 Authority Key Identifier: keyid:8B:64:19:68:69:11:7B:99:B8:79:B4:DC:BA:F0:42:90:BC:16:81:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/i2QZaGkRe5m4ebTcuvBCkLwWgQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i2QZaGkRe5m4ebTcuvBCkLwWgQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0EDF/3DE39E82CFAD11EEACFA4268C4F9AE02/52333EB4CFAE11EEB928CD25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.110.0/23 IPv6: 2001:df0:fec0::/48 Signature Algorithm: sha256WithRSAEncryption 43:1f:57:91:d5:72:fe:d7:75:c4:8f:73:ef:04:cc:dd:22:f3: 10:86:91:15:bc:f0:a0:b2:a6:de:2d:e7:0b:1b:f1:46:e7:cb: 27:87:99:f7:c5:26:11:95:33:34:c3:db:6c:80:8a:ee:a3:d3: 2d:4a:63:c5:79:03:71:e9:8b:77:73:20:2a:bb:89:95:4b:b9: 4b:09:e5:f8:a0:91:f1:f4:ce:89:08:90:a8:ce:c3:87:56:70: c1:d5:22:47:4a:76:f1:b8:78:db:08:18:0b:0c:ea:32:2d:db: c7:a0:92:43:9e:7b:98:a6:4f:58:4e:cc:90:a9:2d:f6:1a:e3: 9c:9f:49:b6:80:1e:81:8a:46:5b:57:cc:be:64:69:50:be:42: 2c:ee:f6:e2:f7:0d:37:1c:82:e6:71:2c:4c:7d:21:91:69:18: d0:8c:20:0c:72:e6:f8:06:01:7f:23:79:ff:d7:ee:03:ef:3d: 7e:82:ae:ed:2b:dd:07:bb:71:3c:21:a1:b3:f4:76:4a:b7:3d: dc:9c:f6:61:fd:bb:f2:7b:38:3c:74:e9:c2:99:e3:ff:dc:3f: 72:e8:ab:ad:72:3a:33:71:28:dd:2e:8c:86:70:f3:3d:43:a9: 24:91:c9:2f:15:f2:2b:d6:55:ff:2c:3d:84:a3:37:34:2c:5b: 4e:79:52:fa -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MEVERjExMC8GA1UEBRMoOEI2NDE5Njg2OTExN0I5OUI4NzlCNERDQkFGMDQyOTBC QzE2ODEwQzAeFw0yNDA5MTcwNTA4MzJaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTkwZWQwLWUxNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4AMO5nIbcSbswBTq44f8LDnWoOJ4aSYZAzmc4zSZ0MPP+KZveqfc2R31Uf2Lt 71VmvEIxE7npOSCmFzOvtMxkRKDyjcyYxwEg8VR7+UrnhnigP+uWXBvYS4vA+5+j YtatkKsr9BS/pmQ66g9sJRUWfqHScBQpYVpL1lQDgWbSP6a4LykAkV6rAT1MfxQK Uj4uG/lHXM2y42IisknaJnpY+Ks6N4wh0mIrf769BTCUhlC4Uiye1t5eP9OCRaMN UgMhsVL0D7loGqZRLnItGguzKip+T90IQe+E1uCSTQgv1jvGeleHqAXJOU62Q+nt pkrgXbin73jP6sMVzS/a9abXAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUqn3mT1eY dbUtGPH1WKgK9P9pUZ4wHwYDVR0jBBgwFoAUi2QZaGkRe5m4ebTcuvBCkLwWgQww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwRURGLzNERTM5RTgyQ0ZB RDExRUVBQ0ZBNDI2OEM0RjlBRTAyL2kyUVphR2tSZTVtNGViVGN1dkJDa0x3V2dR dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaTJRWmFHa1JlNW00ZWJUY3V2QkNrTHdXZ1F3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEVERi8zREUzOUU4MkNGQUQxMUVFQUNGQTQyNjhDNEY5QUUwMi81MjMzM0VCNENG QUUxMUVFQjkyOENEMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWe/bjAPBAIAAjAJAwcAIAEN8P7AMA0GCSqGSIb3DQEBCwUA A4IBAQBDH1eR1XL+13XEj3PvBMzdIvMQhpEVvPCgsqbeLecLG/FG58snh5n3xSYR lTM0w9tsgIruo9MtSmPFeQNx6Yt3cyAqu4mVS7lLCeX4oJHx9M6JCJCozsOHVnDB 1SJHSnbxuHjbCBgLDOoyLdvHoJJDnnuYpk9YTsyQqS32GuOcn0m2gB6BikZbV8y+ ZGlQvkIs7vbi9w03HILmcSxMfSGRaRjQjCAMcub4BgF/I3n/1+4D7z1+gq7tK90H u3E8IaGz9HZKtz3cnPZh/bvyezg8dOnCmeP/3D9y6KutcjozcSjdLoyGcPM9Q6kk kckvFfIr1lX/LD2Eozc0LFtOeVL6 -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org