$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa File: 5AA3FD0868D111ED99477B87C4F9AE02.roa (raw, json) Hash identifier: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA= Subject key identifier: 42:79:34:2E:B4:F1:33:01:26:83:90:F6:C0:80:88:B1:31:B2:0A:85 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0BA7 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa Signing time: Fri 16 Aug 2024 19:37:16 +0000 ROA not before: Fri 16 Aug 2024 19:37:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137961 IP address blocks: 103.118.84.0/24 maxlen: 24 103.118.85.0/24 maxlen: 24 103.118.86.0/24 maxlen: 24 2403:2ec0::/32 maxlen: 40 2403:2ec0:2000::/48 maxlen: 48 2403:2ec0:20ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Aug 16 19:37:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfaa6c-134a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:60:5c:fc:58:4a:dd:3a:e2:8c:6b:72:65:9e: 13:73:a2:0a:d1:23:6e:50:99:5f:f6:9e:80:17:db: e5:5d:68:98:b7:56:f6:31:41:1e:33:e0:24:ef:da: b8:4e:aa:8b:3e:1b:be:34:d6:98:86:8e:7c:6d:59: 91:62:d1:b2:4e:e1:0c:14:1a:50:1c:e8:d6:53:6d: 59:a1:7c:e9:17:05:06:d7:cf:31:17:12:09:d3:9c: c8:f3:f5:48:dd:6c:87:00:c4:32:65:7b:c4:a0:ae: 7c:f4:19:7a:ed:b3:cd:12:88:97:fa:50:f6:6a:db: e9:3d:e3:e4:15:73:a7:eb:f5:94:03:01:16:89:5c: 76:03:10:56:08:ac:fd:17:8a:e0:d0:46:61:ee:d7: 49:f0:58:24:ca:0c:bc:42:a2:30:1e:0e:a4:4c:2f: fc:0a:48:10:30:80:f6:18:44:d6:4b:2b:01:41:5e: 9e:ee:3c:7d:7b:50:af:01:7d:14:4d:12:de:3b:a4: bc:ea:46:04:3e:91:a6:46:5c:a6:7c:e2:b3:f1:d8: ab:cb:41:d5:fc:64:61:0d:fd:5c:82:1f:77:81:59: 90:e7:8c:59:02:ff:c0:32:e9:2b:96:ed:3e:cd:cc: 93:48:99:17:ec:a7:35:c8:89:22:8f:ef:88:da:ca: 34:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:79:34:2E:B4:F1:33:01:26:83:90:F6:C0:80:88:B1:31:B2:0A:85 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/5AA3FD0868D111ED99477B87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.84.0-103.118.86.255 IPv6: 2403:2ec0::/32 Signature Algorithm: sha256WithRSAEncryption a2:b2:1a:10:9b:a6:27:22:c6:f0:a7:30:ec:9e:1f:42:c5:ab: 49:27:65:ad:a0:18:9c:c0:50:a3:ce:2f:80:e3:3f:a7:5c:08: c1:57:cb:4e:92:ea:d3:44:6c:3d:81:4e:7b:f9:2f:b9:21:5e: 43:17:e7:7a:37:84:e4:8d:27:49:0d:ff:cb:32:27:8c:92:1f: e5:55:51:bd:21:b9:2d:58:e0:39:c8:3e:67:f3:b4:a4:39:31: 25:49:28:bf:37:2b:de:b3:f3:45:85:a4:7d:c6:85:f9:38:ba: 8a:d0:9b:ac:a3:05:f3:5a:22:9b:fa:69:48:7e:f0:37:5e:98: a0:21:0a:e5:d2:28:dc:c1:16:8a:72:20:c6:cf:fc:7c:9b:2f: 2d:a0:52:1a:1f:5b:89:bd:f8:a9:25:9a:7b:c0:6e:38:23:63: 66:9f:5f:dd:97:a4:af:e5:6e:00:6e:d1:e1:46:bd:52:1a:45: 41:7a:f8:e4:fa:7d:30:c7:2a:f4:2c:0e:f0:bc:32:9b:0e:ba: ba:7f:70:4e:60:08:e4:73:13:31:b9:b8:0d:aa:cb:ae:d7:45: 8d:21:5c:40:aa:c7:1b:f3:f8:b4:b2:68:0b:14:53:7f:af:03: a3:d2:8c:b6:80:e2:17:1a:ea:fd:ab:97:86:5c:87:79:0b:92: 79:53:05:9e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjQwODE2MTkzNzE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYWE2Yy0xMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmBc/FhK3TrijGtyZZ4Tc6IK0SNuUJlf9p6AF9vlXWiYt1b2MUEeM+Ak79q4 TqqLPhu+NNaYho58bVmRYtGyTuEMFBpQHOjWU21ZoXzpFwUG188xFxIJ05zI8/VI 3WyHAMQyZXvEoK589Bl67bPNEoiX+lD2atvpPePkFXOn6/WUAwEWiVx2AxBWCKz9 F4rg0EZh7tdJ8Fgkygy8QqIwHg6kTC/8CkgQMID2GETWSysBQV6e7jx9e1CvAX0U TRLeO6S86kYEPpGmRlymfOKz8diry0HV/GRhDf1cgh93gVmQ54xZAv/AMukrlu0+ zcyTSJkX7Kc1yIkij++I2so0CQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEJ5NC60 8TMBJoOQ9sCAiLExsgqFMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzREMvMDY2MzlGODYwQTkzMTFFQTg1QUQ4ODZBQzRGOUFFMDIvNUFBM0ZEMDg2 OEQxMTFFRDk5NDc3Qjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmd2VAMEAGd2VjANBAIAAjAHAwUAJAMuwDANBgkqhkiG 9w0BAQsFAAOCAQEAorIaEJumJyLG8Kcw7J4fQsWrSSdlraAYnMBQo84vgOM/p1wI wVfLTpLq00RsPYFOe/kvuSFeQxfnejeE5I0nSQ3/yzInjJIf5VVRvSG5LVjgOcg+ Z/O0pDkxJUkovzcr3rPzRYWkfcaF+Ti6itCbrKMF81oim/ppSH7wN16YoCEK5dIo 3MEWinIgxs/8fJsvLaBSGh9bib34qSWae8BuOCNjZp9f3Zekr+VuAG7R4Ua9UhpF QXr45Pp9MMcq9CwO8Lwymw66un9wTmAI5HMTMbm4DarLrtdFjSFcQKrHG/P4tLJo CxRTf68Do9KMtoDiFxrq/auXhlyHeQuSeVMFng== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org