$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/8670D60E096611EF99F30750C4F9AE02.roa File: 8670D60E096611EF99F30750C4F9AE02.roa (raw, json) Hash identifier: iuWtuyJfTt35leUhlOLk+Ja/aEErWGzoAPeuFPCgOUo= Subject key identifier: B7:E3:3C:98:BB:E1:47:B9:3E:87:FC:3D:D9:45:06:9A:17:BB:97:32 Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: 07 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/8670D60E096611EF99F30750C4F9AE02.roa Signing time: Sun 05 May 2024 05:17:16 +0000 ROA not before: Sun 05 May 2024 05:17:16 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152732 IP address blocks: 103.136.212.0/23 maxlen: 23 103.136.212.0/24 maxlen: 24 103.136.213.0/24 maxlen: 24 2401:9960::/32 maxlen: 32 2401:9960::/48 maxlen: 48 2401:9960:1::/48 maxlen: 48 2401:9960:2::/48 maxlen: 48 2401:9960:3::/48 maxlen: 48 2401:9960:4::/48 maxlen: 48 2401:9960:5::/48 maxlen: 48 2401:9960:6::/48 maxlen: 48 2401:9960:7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: May 5 05:17:16 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6637165c-08a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d3:ce:c4:8e:3a:2c:6d:9b:d0:5f:9c:76:96: 5e:b1:48:e9:58:b6:da:a6:e6:ac:d1:92:11:3a:9a: 2a:45:a3:b9:d0:4e:a0:f2:b3:22:2d:98:98:c8:a3: 6c:0c:17:c5:6a:3a:0a:83:dc:b8:9b:98:7c:da:e4: d8:83:2a:72:c6:c6:21:1b:2f:70:3a:86:47:a2:6e: 14:cb:c5:57:ef:a4:16:69:10:80:2e:fc:54:7f:4b: a1:a9:92:9f:a6:a9:98:5d:14:5c:4f:62:08:4d:1a: 2a:17:a5:ce:e6:ab:12:b7:48:6d:1f:6c:f4:fb:74: 6f:50:66:dd:5a:1b:0a:f2:61:cf:f8:62:e5:68:93: b0:3c:c3:23:22:f4:36:3e:32:53:82:f6:49:ff:13: b0:d6:74:be:26:df:c3:bd:6a:9b:08:e4:d0:96:1a: d0:8d:e0:0e:f6:43:5e:0a:0d:8a:38:b2:ec:c2:f8: ac:d9:02:ea:36:bf:9d:8d:34:5a:8a:de:f3:8f:82: 8c:28:6a:16:87:29:3c:78:bd:7a:79:45:c5:b0:d7: de:9a:5e:de:f3:1f:e0:a9:91:d6:e0:10:42:e6:0c: ca:4e:af:e1:4e:51:00:fd:89:e2:89:66:c1:1e:47: 76:5c:db:cf:95:e4:13:9c:2e:d8:44:4f:20:59:07: 3b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E3:3C:98:BB:E1:47:B9:3E:87:FC:3D:D9:45:06:9A:17:BB:97:32 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/8670D60E096611EF99F30750C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.212.0/23 IPv6: 2401:9960::/32 Signature Algorithm: sha256WithRSAEncryption 8f:b0:4c:bf:62:95:f7:85:b6:d1:bc:9c:56:ea:9b:9b:fd:57: fe:91:87:7d:07:50:87:20:70:61:ee:f3:99:e1:d7:5d:3e:91: fc:e1:b0:34:1c:17:6b:58:be:b3:1f:e8:f1:4f:88:83:56:89: 5d:ff:12:d1:4e:04:ed:fb:ca:33:88:77:6e:b7:91:52:b3:da: 4c:ae:cd:4a:e4:6a:47:73:2a:54:1e:2d:b1:3d:01:ce:4c:67: 12:8f:63:36:d1:07:f5:75:41:00:06:70:90:01:0b:62:68:79: b1:62:0b:e5:ea:4d:d4:af:90:2c:3f:3f:99:c3:d8:8d:df:14: 09:06:69:db:96:30:38:a5:2c:7d:48:f3:a2:05:f6:18:68:4a: 85:47:f1:62:34:36:dc:c4:81:9a:70:f0:8e:f9:f8:35:8d:5b: cc:03:4c:3e:bd:1f:96:72:b5:83:11:60:73:0f:98:6d:9d:b5: 7c:f5:4f:74:69:f8:17:4f:fd:4f:fc:53:04:5a:51:3b:f8:eb: e2:de:9a:86:c7:35:02:39:5c:47:8b:60:c0:b0:48:5b:bf:fc: e2:d2:51:31:dc:57:ce:06:e9:68:d8:32:e4:bd:a8:f0:8a:d1: 22:e8:6d:81:89:fe:27:61:86:c0:77:35:70:0d:f1:11:9d:19: ee:47:9b:e3 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzdERDExMC8GA1UEBRMoM0ZFM0FFMzU1QTkyNzdCOTFENzNFMkFDNTJGNTM4N0Yw OTVGMTg5QTAeFw0yNDA1MDUwNTE3MTZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzcxNjVjLTA4YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCV087EjjosbZvQX5x2ll6xSOlYttqm5qzRkhE6mipFo7nQTqDysyItmJjIo2wM F8VqOgqD3LibmHza5NiDKnLGxiEbL3A6hkeibhTLxVfvpBZpEIAu/FR/S6Gpkp+m qZhdFFxPYghNGioXpc7mqxK3SG0fbPT7dG9QZt1aGwryYc/4YuVok7A8wyMi9DY+ MlOC9kn/E7DWdL4m38O9apsI5NCWGtCN4A72Q14KDYo4suzC+KzZAuo2v52NNFqK 3vOPgowoahaHKTx4vXp5RcWw196aXt7zH+CpkdbgEELmDMpOr+FOUQD9ieKJZsEe R3Zc28+V5BOcLthETyBZBzt7AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUt+M8mLvh R7k+h/w92UUGmhe7lzIwHwYDVR0jBBgwFoAUP+OuNVqSd7kdc+KsUvU4fwlfGJow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzN0RELzI0ODU1RDgwMDk2 NTExRUZBNEJDRTg3QUM0RjlBRTAyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdK by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUC1PdU5WcVNkN2tkYy1Lc1V2VTRmd2xmR0pvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi84NjcwRDYwRTA5 NjYxMUVGOTlGMzA3NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeI1DANBAIAAjAHAwUAJAGZYDANBgkqhkiG9w0BAQsFAAOC AQEAj7BMv2KV94W20bycVuqbm/1X/pGHfQdQhyBwYe7zmeHXXT6R/OGwNBwXa1i+ sx/o8U+Ig1aJXf8S0U4E7fvKM4h3breRUrPaTK7NSuRqR3MqVB4tsT0BzkxnEo9j NtEH9XVBAAZwkAELYmh5sWIL5epN1K+QLD8/mcPYjd8UCQZp25YwOKUsfUjzogX2 GGhKhUfxYjQ23MSBmnDwjvn4NY1bzANMPr0flnK1gxFgcw+YbZ21fPVPdGn4F0/9 T/xTBFpRO/jr4t6ahsc1AjlcR4tgwLBIW7/84tJRMdxXzgbpaNgy5L2o8IrRIuht gYn+J2GGwHc1cA3xEZ0Z7keb4w== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org