$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/F5121FB090CF11EE8036815AC4F9AE02.roa File: F5121FB090CF11EE8036815AC4F9AE02.roa (raw, json) Hash identifier: acmm68uBDagq25oNDAk3Sfa5aVrunt/qZpCPMnp6KYo= Subject key identifier: AE:43:01:CD:70:3C:1D:95:E3:7E:26:67:6D:44:DD:15:51:C2:C8:45 Certificate issuer: /CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Certificate serial: 2A Authority key identifier: 35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/F5121FB090CF11EE8036815AC4F9AE02.roa Signing time: Mon 05 Feb 2024 07:09:38 +0000 ROA not before: Mon 05 Feb 2024 07:09:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138625 IP address blocks: 103.162.90.0/24 maxlen: 24 103.162.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA3CD/serialNumber=35CB421C5577177581CE24B36A2F6CC931846052 Validity Not Before: Feb 5 07:09:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c089b1-05f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e6:b2:c1:74:d4:70:99:7d:6e:db:d5:e4:5e: 1c:5c:58:9f:4a:73:ad:24:9d:8b:72:b4:74:96:ea: e7:72:6c:42:bd:93:86:cd:1d:ae:f3:3a:5a:07:9b: e1:3b:e2:0b:2d:41:4c:54:69:cf:db:1a:3c:63:44: d1:2a:2e:70:c2:71:43:33:34:a2:20:df:12:1c:31: 1f:60:fb:0f:01:16:9c:35:88:67:40:6e:4e:fe:5c: fa:f0:9a:81:10:b0:c7:0f:1d:16:12:85:8f:46:6b: 2e:dc:7b:90:32:80:f7:27:27:4c:ff:a6:01:3a:14: 2b:9a:6b:bd:43:42:37:0b:d3:9b:f6:33:fd:73:a7: e2:56:c3:a6:a5:ae:3a:ca:28:96:36:db:77:77:43: bf:7f:89:47:f7:7e:80:7d:b6:44:fd:90:46:b6:ce: e5:56:80:97:ae:0d:7d:f4:3f:30:b6:58:fc:09:ed: b2:66:75:cd:ff:9a:d8:77:21:96:9d:c4:bf:c0:c1: 73:53:8e:d5:40:63:6e:d0:76:4d:15:0a:f6:58:00: be:13:94:e2:ed:59:c6:ef:d4:f7:ba:7d:39:d9:75: 80:fc:30:4c:20:25:c6:71:fb:c7:8e:c2:df:52:01: 37:75:ef:00:9d:50:f3:72:5a:d8:87:ac:74:38:87: 82:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:43:01:CD:70:3C:1D:95:E3:7E:26:67:6D:44:DD:15:51:C2:C8:45 X509v3 Authority Key Identifier: keyid:35:CB:42:1C:55:77:17:75:81:CE:24:B3:6A:2F:6C:C9:31:84:60:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/NctCHFV3F3WBziSzai9syTGEYFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NctCHFV3F3WBziSzai9syTGEYFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA3CD/26453FA0905711EE86493613C4F9AE02/F5121FB090CF11EE8036815AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.90.0/23 Signature Algorithm: sha256WithRSAEncryption 06:f5:05:c2:17:5a:c8:19:45:21:70:4c:37:f8:3b:8f:8c:19: 31:17:42:57:a2:f2:b4:cf:45:d5:50:51:21:ef:96:a0:59:2a: 67:44:c1:b4:13:ce:00:42:ce:12:2f:ab:25:07:4e:86:1b:bb: 63:ce:3d:76:0a:80:4d:35:cf:95:6e:92:3a:01:15:70:cb:48: 51:3d:22:12:47:57:22:9c:f9:2e:aa:cc:a3:91:59:99:a9:7f: 48:d6:d2:68:69:6d:0f:d4:de:9f:69:d4:c7:78:a5:c9:dc:81: 8a:1f:4b:a5:13:60:1e:98:bf:4e:55:af:50:1d:a5:93:56:c0: f6:e2:98:19:9a:49:62:80:48:ea:1f:54:e3:14:f2:a8:fa:53: 94:9c:da:3c:6f:87:6f:59:05:69:76:ac:b1:c3:71:95:c5:77: b3:a7:2d:b1:66:48:cd:70:4d:84:aa:47:30:84:bb:42:06:fc: 90:40:cf:da:0c:e6:32:0e:9c:75:d3:10:be:04:36:a8:43:4e: 34:28:0a:2e:da:3f:3c:36:67:ad:5a:e5:08:cc:c7:07:f8:11: 15:26:ab:dd:0c:ed:a2:fd:47:5c:c5:74:68:43:95:76:37:1e: 32:62:6b:60:f7:9c:bc:5d:fe:df:7c:8b:0b:f3:ae:24:7e:27: ad:3c:b2:1f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTNDRDExMC8GA1UEBRMoMzVDQjQyMUM1NTc3MTc3NTgxQ0UyNEIzNkEyRjZDQzkz MTg0NjA1MjAeFw0yNDAyMDUwNzA5MzhaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzA4OWIxLTA1ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCi5rLBdNRwmX1u29XkXhxcWJ9Kc60knYtytHSW6udybEK9k4bNHa7zOloHm+E7 4gstQUxUac/bGjxjRNEqLnDCcUMzNKIg3xIcMR9g+w8BFpw1iGdAbk7+XPrwmoEQ sMcPHRYShY9Gay7ce5AygPcnJ0z/pgE6FCuaa71DQjcL05v2M/1zp+JWw6alrjrK KJY223d3Q79/iUf3foB9tkT9kEa2zuVWgJeuDX30PzC2WPwJ7bJmdc3/mth3IZad xL/AwXNTjtVAY27Qdk0VCvZYAL4TlOLtWcbv1Pe6fTnZdYD8MEwgJcZx+8eOwt9S ATd17wCdUPNyWtiHrHQ4h4LtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrkMBzXA8 HZXjfiZnbUTdFVHCyEUwHwYDVR0jBBgwFoAUNctCHFV3F3WBziSzai9syTGEYFIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBM0NELzI2NDUzRkEwOTA1 NzExRUU4NjQ5MzYxM0M0RjlBRTAyL05jdENIRlYzRjNXQnppU3phaTlzeVRHRVlG SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTmN0Q0hGVjNGM1dCemlTemFpOXN5VEdFWUZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTNDRC8yNjQ1M0ZBMDkwNTcxMUVFODY0OTM2MTNDNEY5QUUwMi9GNTEyMUZCMDkw Q0YxMUVFODAzNjgxNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeiWjANBgkqhkiG9w0BAQsFAAOCAQEABvUFwhdayBlFIXBM N/g7j4wZMRdCV6LytM9F1VBRIe+WoFkqZ0TBtBPOAELOEi+rJQdOhhu7Y849dgqA TTXPlW6SOgEVcMtIUT0iEkdXIpz5LqrMo5FZmal/SNbSaGltD9Ten2nUx3ilydyB ih9LpRNgHpi/TlWvUB2lk1bA9uKYGZpJYoBI6h9U4xTyqPpTlJzaPG+Hb1kFaXas scNxlcV3s6ctsWZIzXBNhKpHMIS7Qgb8kEDP2gzmMg6cddMQvgQ2qENONCgKLto/ PDZnrVrlCMzHB/gRFSar3Qztov1HXMV0aEOVdjceMmJrYPecvF3+33yLC/OuJH4n rTyyHw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org