$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa File: 90C5BDF013F011EBA31BF948C4F9AE02.roa (raw, json) Hash identifier: Kj36KmNfFdkRcV28mvAKtxE5L96/nJfLHFIFp5dBrXQ= Subject key identifier: 86:E9:2B:C2:E2:80:09:36:5C:7F:C4:F7:66:55:A7:CB:C0:29:58:92 Certificate issuer: /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Certificate serial: 06B7 Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa Signing time: Sat 06 Apr 2024 23:31:59 +0000 ROA not before: Sat 06 Apr 2024 23:31:59 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.85.108.0/24 maxlen: 24 103.85.109.0/24 maxlen: 24 103.85.110.0/24 maxlen: 24 103.85.111.0/24 maxlen: 24 119.160.232.0/24 maxlen: 24 119.160.233.0/24 maxlen: 24 119.160.234.0/24 maxlen: 24 119.160.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Validity Not Before: Apr 6 23:31:59 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6611db6f-101e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:60:bd:93:3d:fc:c7:75:4a:ef:75:42:f2:4e: 97:69:96:66:99:a9:d9:cd:7b:b9:64:ff:72:4e:9a: aa:a4:62:a7:34:7a:14:42:6a:ca:72:a8:d8:b4:cf: b5:8c:69:98:cf:8c:c7:be:b0:81:ca:3b:c8:b3:f6: fc:b9:f4:42:c4:9e:74:76:6a:ed:b1:8d:bc:60:3f: 54:fa:44:b6:55:ee:84:2e:4a:99:4d:b3:ae:c3:d5: a7:78:dd:d2:85:23:b4:17:ad:1e:fa:bc:13:7f:72: 8d:9e:5c:57:0d:57:8b:5f:50:75:ef:ec:89:79:a0: 8d:ce:9b:de:ad:89:f9:5d:ea:9c:bb:74:4d:54:2d: 4f:5b:d8:a7:8f:da:48:18:f1:fe:ab:43:1d:17:c6: 41:c7:ed:60:8b:c6:2d:cb:08:5d:02:4f:ed:14:cb: 0e:39:39:10:80:42:a1:82:48:2e:94:6c:3d:d0:38: 2b:4e:25:58:5a:47:6f:26:d9:b8:b2:9a:b2:d6:3f: 58:81:35:f8:c2:45:49:28:b0:9c:5c:44:bb:f4:ba: e3:cc:2b:07:bc:a0:55:6a:18:2f:81:24:2d:28:27: 31:0f:3b:5c:f8:4b:32:d9:11:6e:04:4f:ea:1a:fc: f2:43:67:f1:86:23:ca:ca:ed:9b:83:e8:04:f9:26: ee:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E9:2B:C2:E2:80:09:36:5C:7F:C4:F7:66:55:A7:CB:C0:29:58:92 X509v3 Authority Key Identifier: keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.108.0/22 119.160.232.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:83:06:d8:42:c8:77:13:51:5a:5c:51:90:d7:4e:13:a0:12: 49:47:bd:7f:9b:79:c5:2a:7b:02:1a:83:68:12:6b:0e:5a:b0: f7:15:a0:0b:ff:8e:12:be:01:7c:07:2a:b0:db:7d:dc:66:d9: dd:c8:f0:f8:b5:6f:3f:92:81:e5:4c:a2:d6:8c:85:45:38:42: ff:6f:11:45:d8:5a:5b:84:13:15:ba:92:bc:31:25:a4:3e:0a: f6:68:59:66:ab:dc:22:aa:c3:33:d4:13:e5:f0:cd:f1:35:61: 7c:d0:59:a7:31:f7:8d:ae:97:d9:13:1b:8e:ec:a4:1b:29:18: ad:6c:9e:b9:9d:51:e5:ae:6c:7f:de:1b:a0:61:32:9a:1f:b8: a3:6a:01:c3:95:80:64:b4:47:cc:3f:61:b4:07:6d:aa:31:f3: 43:1e:bb:27:5d:97:19:67:57:f6:de:db:28:08:ab:4d:cc:e4: ec:1a:e5:3b:0d:29:fa:95:1b:4c:04:6a:26:6d:e4:ef:96:33: 9c:7d:16:17:80:fc:57:6a:c2:27:89:1e:66:10:03:64:12:b5: fb:fc:a6:4c:9e:f4:11:f6:03:b3:8f:20:10:8f:64:05:1d:2c: 61:dd:ad:5c:a6:f6:39:2d:13:06:5e:54:f9:e6:5b:fd:42:93: 56:dc:71:d1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1 QUE0NjA5OUYwHhcNMjQwNDA2MjMzMTU5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjExZGI2Zi0xMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWC9kz38x3VK73VC8k6XaZZmmanZzXu5ZP9yTpqqpGKnNHoUQmrKcqjYtM+1 jGmYz4zHvrCByjvIs/b8ufRCxJ50dmrtsY28YD9U+kS2Ve6ELkqZTbOuw9WneN3S hSO0F60e+rwTf3KNnlxXDVeLX1B17+yJeaCNzpverYn5Xeqcu3RNVC1PW9inj9pI GPH+q0MdF8ZBx+1gi8YtywhdAk/tFMsOOTkQgEKhgkgulGw90DgrTiVYWkdvJtm4 spqy1j9YgTX4wkVJKLCcXES79LrjzCsHvKBVahgvgSQtKCcxDztc+Esy2RFuBE/q GvzyQ2fxhiPKyu2bg+gE+SbuJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIbpK8Li gAk2XH/E92ZVp8vAKViSMB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzczMUEvQzlGODNBRUUwRUMzMTFFQkFDOTc5MTE4QzRGOUFFMDIvOTBDNUJERjAx M0YwMTFFQkEzMUJGOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnVWwDBAJ3oOgwDQYJKoZIhvcNAQELBQADggEBAIqDBthC yHcTUVpcUZDXThOgEklHvX+becUqewIag2gSaw5asPcVoAv/jhK+AXwHKrDbfdxm 2d3I8Pi1bz+SgeVMotaMhUU4Qv9vEUXYWluEExW6krwxJaQ+CvZoWWar3CKqwzPU E+XwzfE1YXzQWacx942ul9kTG47spBspGK1snrmdUeWubH/eG6BhMpofuKNqAcOV gGS0R8w/YbQHbaox80MeuyddlxlnV/be2ygIq03M5Owa5TsNKfqVG0wEaiZt5O+W M5x9FheA/FdqwieJHmYQA2QStfv8pkye9BH2A7OPIBCPZAUdLGHdrVym9jktEwZe VPnmW/1Ck1bccdE= -----END CERTIFICATE-----Generated at Sun Nov 24 22:12:01 2024 by rpki-client on console-fra.rpki-client.org