$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa File: 5B213DB20F8D11EBACF1BE19C4F9AE02.roa (raw, json) Hash identifier: /CO3yu+8isjuDc/p5etccwYJHfw/FsP334mLJY5Rh+I= Subject key identifier: 7B:AD:B4:E5:66:36:7B:C3:60:11:A2:E4:62:D4:00:78:72:4D:84:04 Certificate issuer: /CN=A91CB3A5/serialNumber=C1E90B5D11D901B0D04A34260800D4E29F1C62AC Certificate serial: 0708 Authority key identifier: C1:E9:0B:5D:11:D9:01:B0:D0:4A:34:26:08:00:D4:E2:9F:1C:62:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa Signing time: Mon 02 Sep 2024 22:50:43 +0000 ROA not before: Mon 02 Sep 2024 22:50:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139603 IP address blocks: 103.142.74.0/23 maxlen: 23 103.142.74.0/24 maxlen: 24 103.142.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.crl rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1800 (0x708) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB3A5/serialNumber=C1E90B5D11D901B0D04A34260800D4E29F1C62AC Validity Not Before: Sep 2 22:50:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d64143-8b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:f9:49:70:80:f4:99:29:1e:96:24:f2:a3: e1:3a:52:76:70:32:6d:d0:c2:bf:f0:4c:d3:1e:31: 20:15:27:55:da:4d:fe:52:77:b2:38:68:35:13:2e: a2:38:ed:7d:6c:97:ea:ab:27:a4:b9:de:bd:80:20: 8a:be:69:52:b5:bd:2f:2b:cb:08:2b:76:95:e7:4f: 6a:df:81:f6:fd:2d:c1:3d:3d:0e:03:fb:cf:9d:cf: 90:dc:77:44:21:48:25:e7:f7:79:46:4a:f0:ec:be: 2c:62:c2:6b:99:aa:8a:8c:45:33:13:ce:4f:ea:ca: 5a:9c:73:e1:83:a4:04:c3:3a:a3:7c:e6:ae:ef:b6: 7a:cc:1b:9e:65:e0:26:ce:f4:e6:f6:6b:69:91:0e: 3c:e1:dc:60:51:ab:3a:11:24:90:66:57:76:f1:3b: 91:fc:f0:4a:1c:d4:4d:f8:4b:8c:4c:15:57:d9:99: 35:31:58:9d:7d:86:44:6d:58:bd:89:85:96:22:95: c9:b8:70:52:bf:d2:3c:fc:a9:ba:4a:96:2e:4e:41: 67:0e:c8:79:80:ab:9a:cc:8f:15:50:d2:c9:49:b2: b7:0f:45:52:05:00:21:13:a0:cf:58:17:e3:4b:65: 23:ef:e1:1d:e8:f1:ba:6e:a1:58:af:97:78:e1:78: 2e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AD:B4:E5:66:36:7B:C3:60:11:A2:E4:62:D4:00:78:72:4D:84:04 X509v3 Authority Key Identifier: keyid:C1:E9:0B:5D:11:D9:01:B0:D0:4A:34:26:08:00:D4:E2:9F:1C:62:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/wekLXRHZAbDQSjQmCADU4p8cYqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wekLXRHZAbDQSjQmCADU4p8cYqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB3A5/445984380C6B11EBB32D8418C4F9AE02/5B213DB20F8D11EBACF1BE19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.74.0/23 Signature Algorithm: sha256WithRSAEncryption 26:74:31:c7:44:45:9b:54:6d:42:d9:4b:fd:2d:5e:b1:20:c4: 5b:62:18:86:13:d2:63:d3:46:af:dd:83:fc:94:45:2f:9b:66: d1:c8:87:c4:9a:3f:f1:9a:9b:26:59:8a:e1:3b:d8:ce:3e:18: 06:64:13:d9:02:a1:34:b7:cf:6d:f7:82:39:0a:4d:8d:6d:82: 4c:7a:09:f7:a2:8d:e7:a0:7a:d5:6e:7e:70:17:41:1f:39:f3: 85:ee:69:92:bf:63:60:b3:e2:99:11:63:70:7e:3c:54:5e:fe: fe:aa:9e:7f:16:c5:04:e8:f3:ed:73:46:5c:63:ae:c9:46:cb: c0:0e:3d:17:67:3b:97:a0:a9:f2:27:13:82:fc:a9:2e:e1:c8: 62:3a:0b:b3:8d:1e:1d:e9:79:38:ca:c5:ab:21:c3:f0:ea:6d: c8:2f:7e:b9:b6:0d:05:93:cd:69:25:cf:f7:2a:77:68:d1:b9: 00:d0:f8:9e:ae:65:0d:fb:46:20:30:4c:60:51:62:63:8b:e6: 81:56:ff:1e:b7:7d:ac:0e:35:93:75:2e:8d:85:c6:fc:3f:5d: c5:6d:2f:f7:f9:3b:c3:8d:b3:63:3c:db:21:bf:1f:e7:e6:07: 1f:c5:93:d7:4d:65:09:41:bc:02:4d:ce:51:1f:8b:40:2c:51: 8e:fa:87:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IzQTUxMTAvBgNVBAUTKEMxRTkwQjVEMTFEOTAxQjBEMDRBMzQyNjA4MDBENEUy OUYxQzYyQUMwHhcNMjQwOTAyMjI1MDQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NDE0My04YjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3b5SXCA9JkpHpYk8qPhOlJ2cDJt0MK/8EzTHjEgFSdV2k3+UneyOGg1Ey6i OO19bJfqqyekud69gCCKvmlStb0vK8sIK3aV509q34H2/S3BPT0OA/vPnc+Q3HdE IUgl5/d5Rkrw7L4sYsJrmaqKjEUzE85P6spanHPhg6QEwzqjfOau77Z6zBueZeAm zvTm9mtpkQ484dxgUas6ESSQZld28TuR/PBKHNRN+EuMTBVX2Zk1MVidfYZEbVi9 iYWWIpXJuHBSv9I8/Km6SpYuTkFnDsh5gKuazI8VUNLJSbK3D0VSBQAhE6DPWBfj S2Uj7+Ed6PG6bqFYr5d44XguHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHuttOVm NnvDYBGi5GLUAHhyTYQEMB8GA1UdIwQYMBaAFMHpC10R2QGw0Eo0JggA1OKfHGKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjNBNS80NDU5ODQzODBD NkIxMUVCQjMyRDg0MThDNEY5QUUwMi93ZWtMWFJIWkFiRFFTalFtQ0FEVTRwOGNZ cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dla0xYUkhaQWJEUVNqUW1DQURVNHA4Y1lxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IzQTUvNDQ1OTg0MzgwQzZCMTFFQkIzMkQ4NDE4QzRGOUFFMDIvNUIyMTNEQjIw RjhEMTFFQkFDRjFCRTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjkowDQYJKoZIhvcNAQELBQADggEBACZ0McdERZtUbULZ S/0tXrEgxFtiGIYT0mPTRq/dg/yURS+bZtHIh8SaP/GamyZZiuE72M4+GAZkE9kC oTS3z233gjkKTY1tgkx6CfeijeegetVufnAXQR8584XuaZK/Y2Cz4pkRY3B+PFRe /v6qnn8WxQTo8+1zRlxjrslGy8AOPRdnO5egqfInE4L8qS7hyGI6C7ONHh3peTjK xashw/Dqbcgvfrm2DQWTzWklz/cqd2jRuQDQ+J6uZQ37RiAwTGBRYmOL5oFW/x63 fawONZN1Lo2Fxvw/XcVtL/f5O8ONs2M82yG/H+fmBx/Fk9dNZQlBvAJNzlEfi0As UY76h4o= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org