$ rpki-client -vvf rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa File: CB5ED75AF62811EC9205771CC4F9AE02.roa (raw, json) Hash identifier: NW6HBZRtebEmp/7i48MrWPcyNaPh4Ushzt7ufQ/dX6A= Subject key identifier: 88:22:32:F1:42:B0:A8:79:2B:26:E2:B9:0E:BF:5E:53:C1:03:11:A1 Certificate issuer: /CN=A91C705E/serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Certificate serial: 0256 Authority key identifier: 83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa Signing time: Wed 13 Nov 2024 01:24:20 +0000 ROA not before: Wed 13 Nov 2024 01:24:20 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149987 IP address blocks: 103.190.44.0/23 maxlen: 23 103.190.44.0/24 maxlen: 24 103.190.45.0/24 maxlen: 24 2001:df0:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C705E/serialNumber=83ACB50F96F6443F4B83D391F857BE7CB57E34C1 Validity Not Before: Nov 13 01:24:20 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6733ffc4-271f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a8:5a:ac:98:ec:94:97:47:25:7c:69:dd:5d: bb:7e:98:d4:ee:c9:04:06:93:91:2e:b5:c9:73:e6: ae:70:fa:1e:ed:ae:2c:db:39:ec:5d:78:c9:8c:ae: 8f:0e:2b:c9:ba:96:05:75:2c:b1:0d:ef:75:97:be: d0:af:4f:01:1f:e9:23:a7:7b:0f:02:27:af:5a:59: b2:86:fb:c5:d7:9b:d1:f8:8b:d7:dc:e5:9a:27:92: fe:e4:c5:e6:88:d3:f4:31:d3:df:58:bf:18:f2:21: b6:49:3b:12:f0:18:c7:c2:35:fb:42:32:77:ec:0d: 78:d9:f9:99:da:87:86:d6:25:da:12:ba:8f:a0:d0: 09:eb:93:59:1c:13:01:f0:9a:6f:82:43:47:af:ba: a4:2f:56:21:73:3a:3e:08:fe:45:b5:70:4f:88:77: 47:68:22:2e:96:4a:6d:14:0c:f0:cf:9b:52:a1:a6: 60:2a:49:6b:fe:a0:ae:d0:7c:65:06:7a:a2:5a:fe: f4:a5:41:13:78:44:0d:d6:1b:a4:fb:0f:47:0d:7a: 35:17:67:87:02:c0:8a:df:ba:68:7b:a8:8c:a9:d4: 8e:e7:dd:74:3d:33:7e:9e:1b:0b:4b:93:57:f1:2f: 05:43:99:42:04:96:9d:c3:ec:07:96:4f:b0:6d:61: 4f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:22:32:F1:42:B0:A8:79:2B:26:E2:B9:0E:BF:5E:53:C1:03:11:A1 X509v3 Authority Key Identifier: keyid:83:AC:B5:0F:96:F6:44:3F:4B:83:D3:91:F8:57:BE:7C:B5:7E:34:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g6y1D5b2RD9Lg9OR-Fe-fLV-NME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C705E/34DD4EE6F62411EC97234814C4F9AE02/CB5ED75AF62811EC9205771CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.44.0/23 IPv6: 2001:df0:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption a8:ea:46:70:76:d1:06:48:58:95:a9:1c:80:8a:8b:c1:0a:1a: bf:92:d1:46:9d:0a:4f:60:48:33:12:af:26:bd:df:f5:f3:5c: 00:15:29:31:11:77:76:47:2f:cc:58:47:ff:46:4c:4f:52:ed: f5:e5:ce:aa:7d:8e:83:81:f9:97:1e:c9:b0:1e:76:ac:a8:2f: 9f:35:86:db:07:51:5a:b5:0e:e0:32:d5:57:39:19:b5:03:77: 08:25:ca:21:28:96:ff:27:ee:c1:92:8d:b1:d6:35:a3:58:12: ac:9e:9b:25:53:8a:42:6b:f3:07:3d:b9:58:db:2c:e3:58:45: 9d:a3:7b:97:d0:8c:48:9d:77:4b:97:14:c5:e2:41:59:87:c4: b9:68:38:fc:1d:de:ec:53:d9:ae:05:d2:85:15:03:c5:c0:cb: 5c:f8:b9:68:74:35:3f:43:eb:1e:12:99:8a:ce:17:95:32:ee: ae:77:02:8c:5f:a7:5b:69:26:1e:18:ab:1b:29:9e:f4:66:47: ab:97:da:00:ba:23:2e:38:47:14:e1:fd:9a:e5:6e:b8:d2:2b: e1:d0:3d:2a:64:d6:e6:fa:a7:b5:da:81:93:da:48:8a:17:8f: be:b8:8b:e1:6c:d7:5a:cc:90:77:f0:2d:06:ae:1f:3f:86:8a: d5:1b:47:95 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcwNUUxMTAvBgNVBAUTKDgzQUNCNTBGOTZGNjQ0M0Y0QjgzRDM5MUY4NTdCRTdD QjU3RTM0QzEwHhcNMjQxMTEzMDEyNDIwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZmZjNC0yNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKharJjslJdHJXxp3V27fpjU7skEBpORLrXJc+aucPoe7a4s2znsXXjJjK6P DivJupYFdSyxDe91l77Qr08BH+kjp3sPAievWlmyhvvF15vR+IvX3OWaJ5L+5MXm iNP0MdPfWL8Y8iG2STsS8BjHwjX7QjJ37A142fmZ2oeG1iXaErqPoNAJ65NZHBMB 8JpvgkNHr7qkL1Yhczo+CP5FtXBPiHdHaCIulkptFAzwz5tSoaZgKklr/qCu0Hxl BnqiWv70pUETeEQN1huk+w9HDXo1F2eHAsCK37poe6iMqdSO5910PTN+nhsLS5NX 8S8FQ5lCBJadw+wHlk+wbWFPCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIgiMvFC sKh5KybiuQ6/XlPBAxGhMB8GA1UdIwQYMBaAFIOstQ+W9kQ/S4PTkfhXvny1fjTB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzA1RS8zNERENEVFNkY2 MjQxMUVDOTcyMzQ4MTRDNEY5QUUwMi9nNnkxRDViMlJEOUxnOU9SLUZlLWZMVi1O TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c2eTFENWIyUkQ5TGc5T1ItRmUtZkxWLU5NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcwNUUvMzRERDRFRTZGNjI0MTFFQzk3MjM0ODE0QzRGOUFFMDIvQ0I1RUQ3NUFG NjI4MTFFQzkyMDU3NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnviwwDwQCAAIwCQMHACABDfDkwDANBgkqhkiG9w0BAQsF AAOCAQEAqOpGcHbRBkhYlakcgIqLwQoav5LRRp0KT2BIMxKvJr3f9fNcABUpMRF3 dkcvzFhH/0ZMT1Lt9eXOqn2Og4H5lx7JsB52rKgvnzWG2wdRWrUO4DLVVzkZtQN3 CCXKISiW/yfuwZKNsdY1o1gSrJ6bJVOKQmvzBz25WNss41hFnaN7l9CMSJ13S5cU xeJBWYfEuWg4/B3e7FPZrgXShRUDxcDLXPi5aHQ1P0PrHhKZis4XlTLurncCjF+n W2kmHhirGyme9GZHq5faALojLjhHFOH9muVuuNIr4dA9KmTW5vqntdqBk9pIiheP vriL4WzXWsyQd/AtBq4fP4aK1RtHlQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org