$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/E21DEF607B5E11ED98247D60C4F9AE02.roa File: E21DEF607B5E11ED98247D60C4F9AE02.roa (raw, json) Hash identifier: ADnEMa2Brj1gfAu5du2mdudMmrXS7wa9cPzXrkNiEN4= Subject key identifier: 88:23:BF:56:2F:D4:49:C7:34:5C:28:2D:8C:60:EB:3A:B7:B8:95:02 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 0152 Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/E21DEF607B5E11ED98247D60C4F9AE02.roa Signing time: Fri 27 Sep 2024 03:27:05 +0000 ROA not before: Fri 27 Sep 2024 03:27:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138915 IP address blocks: 103.206.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Sep 27 03:27:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f62609-e107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:e6:55:fa:5b:3c:40:b8:60:0d:a8:29:bf: c9:03:92:68:31:60:85:9b:74:1b:ca:74:b9:20:ed: 44:79:03:84:98:fd:8c:ba:78:fe:db:8d:c0:0a:77: 22:2a:1a:5c:e0:9c:0d:60:7d:a3:50:b2:87:d3:6e: 54:1c:e5:7c:2b:a4:0a:ff:fa:2e:53:5e:2b:46:b4: 81:ba:02:28:59:01:8d:bc:a2:2b:b3:db:09:78:43: a0:e8:ae:24:73:02:cc:61:18:07:c1:a3:7f:89:d9: c8:a2:19:f4:b0:66:09:1d:49:c0:60:71:8d:ca:16: 5f:c9:0c:cc:3a:b1:1b:1b:bd:2d:00:2a:29:87:10: d0:3a:46:13:ad:15:80:a9:46:4b:d6:8c:be:51:96: d4:d9:67:4b:83:f3:c3:f4:58:eb:67:a2:b0:28:8f: 68:d6:7d:9b:31:e0:d5:a5:6d:ae:40:2e:36:02:a7: c1:2c:a8:20:e7:38:8a:18:2f:7a:91:51:4d:80:26: 5d:26:6e:d1:5f:a3:b8:28:72:fd:ef:0c:56:f6:62: df:b0:b7:ae:9b:f6:0c:24:f2:f9:16:45:14:04:5a: 8c:f4:0d:41:46:63:46:f3:ad:fd:11:fc:01:8c:f3: 7f:5e:38:c8:87:8f:e2:2d:27:da:bc:2a:33:f3:6e: 7d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:BF:56:2F:D4:49:C7:34:5C:28:2D:8C:60:EB:3A:B7:B8:95:02 X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/E21DEF607B5E11ED98247D60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.154.0/24 Signature Algorithm: sha256WithRSAEncryption 12:67:42:93:13:4c:13:d8:89:7d:54:ea:f8:fe:fb:20:cd:ec: 14:f1:3d:65:ca:c0:00:97:ac:84:4c:7f:31:cf:f6:78:5e:53: b9:4c:f7:2e:5f:ae:9d:e6:ce:b3:d2:1c:99:4e:7e:25:31:86: 0f:00:c2:ef:72:b9:28:ac:72:06:6e:24:ac:51:70:ba:8d:6c: 60:7b:87:f4:8b:44:0b:d2:e8:03:9b:6f:4b:90:aa:fa:18:dc: 86:02:d5:d7:f9:5c:54:9d:62:f5:98:6b:79:48:0c:85:30:de: 17:7d:81:7d:5d:40:2b:21:9a:78:1c:74:30:32:77:43:d1:8c: f0:82:9a:90:cf:5c:da:e6:6a:02:2d:63:4f:31:a5:9c:7e:8f: 79:b3:0e:5a:70:61:c1:0e:71:59:79:a0:18:c1:0d:b1:ab:e7: e1:3a:c0:bf:39:2b:a4:e7:ad:65:e7:d6:8e:cb:50:a8:ee:db: 02:43:d7:48:80:24:45:0b:a2:3a:28:bd:15:71:76:1c:47:d6: 2b:5d:ca:3e:a5:04:73:a3:3a:a9:57:46:13:9d:b0:c5:3c:4e: a6:bf:92:0e:62:38:23:e7:2b:b6:97:23:aa:f9:2f:fd:5d:37: 9e:a8:35:85:43:1e:e6:f8:9a:66:26:60:e3:0e:6b:e6:f6:01: d8:9b:ba:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjQwOTI3MDMyNzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MjYwOS1lMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPLmVfpbPEC4YA2oKb/JA5JoMWCFm3QbynS5IO1EeQOEmP2Munj+243ACnci Khpc4JwNYH2jULKH025UHOV8K6QK//ouU14rRrSBugIoWQGNvKIrs9sJeEOg6K4k cwLMYRgHwaN/idnIohn0sGYJHUnAYHGNyhZfyQzMOrEbG70tACophxDQOkYTrRWA qUZL1oy+UZbU2WdLg/PD9FjrZ6KwKI9o1n2bMeDVpW2uQC42AqfBLKgg5ziKGC96 kVFNgCZdJm7RX6O4KHL97wxW9mLfsLeum/YMJPL5FkUUBFqM9A1BRmNG8639EfwB jPN/XjjIh4/iLSfavCoz8259xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIgjv1Yv 1EnHNFwoLYxg6zq3uJUCMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlCMzkvQjYxNUQwQkM3QjVBMTFFREE1RTNDQTY2QzRGOUFFMDIvRTIxREVGNjA3 QjVFMTFFRDk4MjQ3RDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzpowDQYJKoZIhvcNAQELBQADggEBABJnQpMTTBPYiX1U 6vj++yDN7BTxPWXKwACXrIRMfzHP9nheU7lM9y5frp3mzrPSHJlOfiUxhg8Awu9y uSiscgZuJKxRcLqNbGB7h/SLRAvS6AObb0uQqvoY3IYC1df5XFSdYvWYa3lIDIUw 3hd9gX1dQCshmngcdDAyd0PRjPCCmpDPXNrmagItY08xpZx+j3mzDlpwYcEOcVl5 oBjBDbGr5+E6wL85K6TnrWXn1o7LUKju2wJD10iAJEULojoovRVxdhxH1itdyj6l BHOjOqlXRhOdsMU8Tqa/kg5iOCPnK7aXI6r5L/1dN56oNYVDHub4mmYmYOMOa+b2 Adibusk= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org