$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa File: 1FAB60EE9EB111E99ED10D84C4F9AE02.roa (raw, json) Hash identifier: Ro2TBCoOvqNYKcY9yM3cP6moWqnC6oV3HDt4ZFiaByw= Subject key identifier: 4F:96:3B:91:2A:84:23:6D:99:AE:9B:CE:F1:91:68:AC:9A:5D:D7:27 Certificate issuer: /CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Certificate serial: 0D6F Authority key identifier: 94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa Signing time: Sat 02 Mar 2024 18:56:33 +0000 ROA not before: Sat 02 Mar 2024 18:56:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136277 IP address blocks: 103.85.214.0/24 maxlen: 24 103.85.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3439 (0xd6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA69/serialNumber=946AA2F34CFAF9E4BD6E345BA09A9DE9B9C2D14D Validity Not Before: Mar 2 18:56:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e37661-39f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:25:be:ba:c1:d4:93:2d:94:67:24:aa:4d:d5: b5:84:fc:9d:fa:68:f4:30:fa:3e:87:63:cc:6f:29: 77:05:3e:02:a8:ea:fd:b4:3e:7c:2f:a2:a2:f4:a1: 87:c0:98:b8:80:f2:c5:26:eb:cb:b4:a6:b2:e2:7c: 14:f0:7a:84:38:09:dd:05:d3:59:68:a3:1c:64:20: 30:5f:5d:16:0a:4b:fa:1f:53:21:36:13:7b:c0:41: 6d:66:76:e4:b9:20:12:6d:cb:98:97:73:a1:87:cd: 4c:dc:10:41:0c:f0:66:9a:3b:06:e0:c6:90:26:94: 62:c9:34:9c:ec:97:44:3b:6a:68:67:d5:bf:90:fb: 1e:46:6e:aa:00:fc:c3:72:09:65:8a:9a:db:40:89: f1:03:88:35:29:2a:b0:22:eb:cb:10:a3:2e:cd:2f: 8e:58:42:4d:cf:22:75:b9:a0:12:a0:68:5d:b3:19: ef:73:3b:97:c0:76:36:48:ca:bf:ef:2e:0d:c2:78: 82:5d:29:69:0b:dd:9a:15:87:bc:a9:12:f7:7e:84: a0:28:4c:78:c8:a1:b4:d8:a4:e1:0a:10:ff:46:82: 80:47:4e:b8:9c:9f:d6:05:07:01:c5:cc:a3:f4:11: 6a:0b:9c:fe:7b:39:16:93:a3:34:91:9d:8d:59:37: a1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:96:3B:91:2A:84:23:6D:99:AE:9B:CE:F1:91:68:AC:9A:5D:D7:27 X509v3 Authority Key Identifier: keyid:94:6A:A2:F3:4C:FA:F9:E4:BD:6E:34:5B:A0:9A:9D:E9:B9:C2:D1:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/lGqi80z6-eS9bjRboJqd6bnC0U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lGqi80z6-eS9bjRboJqd6bnC0U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA69/40E1FC9C9EB011E9B07E7A82C4F9AE02/1FAB60EE9EB111E99ED10D84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.214.0/23 Signature Algorithm: sha256WithRSAEncryption 41:93:e3:d2:60:e8:b2:55:df:66:38:c8:2b:68:81:9e:44:2a: 3f:5b:dc:bd:f8:68:e2:7d:60:4e:df:56:78:26:4f:c5:aa:42: 1c:2b:e9:bc:b6:6c:be:ff:b6:55:21:66:56:33:9a:d4:73:37: 7b:2d:2f:55:f2:b0:c4:d4:90:6e:c0:c7:90:81:d5:51:64:3c: 5a:3f:21:02:28:dd:0b:1f:21:55:cb:d9:bd:dc:2c:14:e5:bf: 9b:09:4d:d0:f4:d6:3c:9b:0c:b6:ca:e5:b6:a4:dd:76:cf:7f: 02:cd:67:61:ad:54:f2:76:57:7c:55:07:7a:27:4a:d1:fa:34: 96:c2:be:7e:42:d5:3e:30:7d:a4:cd:30:1f:34:90:f4:e1:05: b7:05:5d:5c:b7:21:ea:20:c1:55:de:14:dc:be:8a:d6:d2:40: 1b:b7:c9:6d:38:92:14:85:14:9a:d4:5b:15:18:2b:b1:b0:3d: 21:ea:ec:c4:8f:8d:e5:24:b4:6b:c3:24:2f:e9:e8:4c:f7:df: 25:62:84:32:92:23:fd:32:b4:b3:62:75:1b:cd:9d:b9:a2:ab: 5a:cd:a8:3c:ae:5f:05:89:69:cf:f5:22:a7:9f:bb:3e:88:7a: 50:a2:cc:1c:e8:df:ed:47:82:0a:be:33:28:20:6d:c3:32:25: cf:98:4b:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNjkxMTAvBgNVBAUTKDk0NkFBMkYzNENGQUY5RTRCRDZFMzQ1QkEwOUE5REU5 QjlDMkQxNEQwHhcNMjQwMzAyMTg1NjMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNzY2MS0zOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iW+usHUky2UZySqTdW1hPyd+mj0MPo+h2PMbyl3BT4CqOr9tD58L6Ki9KGH wJi4gPLFJuvLtKay4nwU8HqEOAndBdNZaKMcZCAwX10WCkv6H1MhNhN7wEFtZnbk uSASbcuYl3Ohh81M3BBBDPBmmjsG4MaQJpRiyTSc7JdEO2poZ9W/kPseRm6qAPzD cglliprbQInxA4g1KSqwIuvLEKMuzS+OWEJNzyJ1uaASoGhdsxnvczuXwHY2SMq/ 7y4NwniCXSlpC92aFYe8qRL3foSgKEx4yKG02KThChD/RoKAR064nJ/WBQcBxcyj 9BFqC5z+ezkWk6M0kZ2NWTehAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE+WO5Eq hCNtma6bzvGRaKyaXdcnMB8GA1UdIwQYMBaAFJRqovNM+vnkvW40W6Canem5wtFN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE2OS80MEUxRkM5QzlF QjAxMUU5QjA3RTdBODJDNEY5QUUwMi9sR3FpODB6Ni1lUzlialJib0pxZDZibkMw VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xHcWk4MHo2LWVTOWJqUmJvSnFkNmJuQzBVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNjkvNDBFMUZDOUM5RUIwMTFFOUIwN0U3QTgyQzRGOUFFMDIvMUZBQjYwRUU5 RUIxMTFFOTlFRDEwRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVdYwDQYJKoZIhvcNAQELBQADggEBAEGT49Jg6LJV32Y4 yCtogZ5EKj9b3L34aOJ9YE7fVngmT8WqQhwr6by2bL7/tlUhZlYzmtRzN3stL1Xy sMTUkG7Ax5CB1VFkPFo/IQIo3QsfIVXL2b3cLBTlv5sJTdD01jybDLbK5bak3XbP fwLNZ2GtVPJ2V3xVB3onStH6NJbCvn5C1T4wfaTNMB80kPThBbcFXVy3IeogwVXe FNy+itbSQBu3yW04khSFFJrUWxUYK7GwPSHq7MSPjeUktGvDJC/p6Ez33yVihDKS I/0ytLNidRvNnbmiq1rNqDyuXwWJac/1Iqefuz6IelCizBzo3+1Hggq+MyggbcMy Jc+YSyY= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org