$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa File: EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa (raw, json) Hash identifier: aGeMGoHE+otk2qfV2+P5uSwazM3gbyh0A6bh1lLxHf4= Subject key identifier: 0F:3F:87:7B:55:E4:23:FB:B4:7B:4C:CC:EE:D1:9D:33:F7:86:50:2F Certificate issuer: /CN=A91CBA26/serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E Certificate serial: 183F Authority key identifier: 1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa Signing time: Thu 22 Feb 2024 17:24:21 +0000 ROA not before: Thu 22 Feb 2024 17:24:21 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136230 IP address blocks: 103.84.96.0/24 maxlen: 24 103.101.172.0/24 maxlen: 24 103.101.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.crl rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6207 (0x183f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBA26/serialNumber=1AFD4265E63D0CBF75236ED9686AE4F00155FF7E Validity Not Before: Feb 22 17:24:21 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d78345-cb46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:14:e5:0a:67:15:81:be:53:d6:d3:01:72:f6: 04:58:ad:dc:c6:81:d0:8f:6b:c3:cf:c1:4e:84:e7: 71:76:4c:af:a5:f3:33:2f:95:96:64:01:06:df:dc: 33:c6:28:d0:30:5c:43:1d:0a:1b:9c:d6:fb:6c:bf: 91:86:d3:d9:95:64:df:ce:b2:10:3d:e1:ee:79:21: bb:f5:ee:56:61:d1:6c:59:67:03:04:36:61:21:fb: 12:2b:88:1c:49:78:59:23:56:4a:7f:18:32:a8:7a: cd:a2:b1:54:39:b9:aa:6c:6e:22:c1:c9:14:75:60: a5:91:0c:34:a4:81:e6:55:3c:fb:7c:f4:10:d6:00: 0f:bb:8a:f5:2e:a3:72:88:1d:9b:ae:f4:12:99:a6: 33:7b:95:61:a2:24:be:23:c3:df:d6:05:7f:cf:58: 40:2d:6b:c2:57:24:81:01:4f:d4:e3:54:f9:6f:c3: 59:74:e8:0b:34:0d:e3:11:d0:00:7b:9f:9d:a0:df: b2:e6:80:7d:9b:61:7d:a1:20:76:f7:72:b5:d8:21: 4e:b9:94:7e:92:3d:bb:09:29:af:bb:b8:1c:7f:a6: 36:c0:14:f8:4b:0a:af:a2:1e:7b:e1:c8:d8:12:37: 71:2c:73:c9:b4:84:f4:03:1b:ec:f4:7d:fe:ee:7b: d6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3F:87:7B:55:E4:23:FB:B4:7B:4C:CC:EE:D1:9D:33:F7:86:50:2F X509v3 Authority Key Identifier: keyid:1A:FD:42:65:E6:3D:0C:BF:75:23:6E:D9:68:6A:E4:F0:01:55:FF:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/Gv1CZeY9DL91I27ZaGrk8AFV_34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gv1CZeY9DL91I27ZaGrk8AFV_34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBA26/CA64CBFA825D11E79132091DC4F9AE02/EFD9938E2FAF11EDBE0A8C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.96.0/24 103.101.172.0/24 103.101.174.0/24 Signature Algorithm: sha256WithRSAEncryption c0:7e:f1:66:c2:55:df:1e:f2:2e:a9:e7:6e:ad:99:f0:78:ad: 86:53:68:02:d1:7c:2a:c3:4d:19:95:05:ab:7c:76:5e:4c:71: 6c:2c:a9:e6:e6:88:a5:d9:79:85:ac:74:87:48:e2:ff:73:45: cd:9a:b2:08:42:d1:f6:e3:e3:e7:0f:ee:cf:26:f8:be:c7:4e: d8:31:c1:7e:91:f2:54:f3:4d:50:44:42:b1:d7:6b:57:1e:1c: 44:b3:86:bd:fd:61:db:34:73:47:cb:a1:be:87:51:0a:1c:f7: 7e:ee:56:03:78:85:af:4c:72:50:f7:5c:5c:5c:93:21:91:2e: 96:57:39:dc:fa:df:32:05:e6:4d:82:2d:54:92:6d:55:b5:96: c6:31:9b:18:37:81:2d:bc:9a:26:ca:2b:74:50:91:9c:a2:d3: 29:31:50:95:b5:c9:a3:81:6a:cf:98:9b:6e:fd:fd:3d:19:38: 1b:87:26:f6:fa:5b:d6:23:de:07:6e:49:6c:ec:76:a5:7b:d1: 87:c1:ad:c4:6b:30:33:b7:23:cb:96:b2:f1:c5:bc:0b:8f:a0: c9:11:71:18:36:f1:71:79:a9:92:11:04:f5:92:d0:f2:ea:db: cd:33:d9:99:a9:da:50:88:a2:d9:96:b0:df:4b:00:4f:bf:00: aa:11:b0:7b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JBMjYxMTAvBgNVBAUTKDFBRkQ0MjY1RTYzRDBDQkY3NTIzNkVEOTY4NkFFNEYw MDE1NUZGN0UwHhcNMjQwMjIyMTcyNDIxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3ODM0NS1jYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmhTlCmcVgb5T1tMBcvYEWK3cxoHQj2vDz8FOhOdxdkyvpfMzL5WWZAEG39wz xijQMFxDHQobnNb7bL+RhtPZlWTfzrIQPeHueSG79e5WYdFsWWcDBDZhIfsSK4gc SXhZI1ZKfxgyqHrNorFUObmqbG4iwckUdWClkQw0pIHmVTz7fPQQ1gAPu4r1LqNy iB2brvQSmaYze5VhoiS+I8Pf1gV/z1hALWvCVySBAU/U41T5b8NZdOgLNA3jEdAA e5+doN+y5oB9m2F9oSB293K12CFOuZR+kj27CSmvu7gcf6Y2wBT4Swqvoh574cjY EjdxLHPJtIT0Axvs9H3+7nvWRQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFA8/h3tV 5CP7tHtMzO7RnTP3hlAvMB8GA1UdIwQYMBaAFBr9QmXmPQy/dSNu2Whq5PABVf9+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkEyNi9DQTY0Q0JGQTgy NUQxMUU3OTEzMjA5MURDNEY5QUUwMi9HdjFDWmVZOURMOTFJMjdaYUdyazhBRlZf MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d2MUNaZVk5REw5MUkyN1phR3JrOEFGVl8zNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JBMjYvQ0E2NENCRkE4MjVEMTFFNzkxMzIwOTFEQzRGOUFFMDIvRUZEOTkzOEUy RkFGMTFFREJFMEE4QzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnVGADBABnZawDBABnZa4wDQYJKoZIhvcNAQELBQADggEB AMB+8WbCVd8e8i6p526tmfB4rYZTaALRfCrDTRmVBat8dl5McWwsqebmiKXZeYWs dIdI4v9zRc2asghC0fbj4+cP7s8m+L7HTtgxwX6R8lTzTVBEQrHXa1ceHESzhr39 Yds0c0fLob6HUQoc937uVgN4ha9MclD3XFxckyGRLpZXOdz63zIF5k2CLVSSbVW1 lsYxmxg3gS28mibKK3RQkZyi0ykxUJW1yaOBas+Ym279/T0ZOBuHJvb6W9Yj3gdu SWzsdqV70YfBrcRrMDO3I8uWsvHFvAuPoMkRcRg28XF5qZIRBPWS0PLq280z2Zmp 2lCIotmWsN9LAE+/AKoRsHs= -----END CERTIFICATE-----Generated at Thu May 16 18:26:09 2024 by rpki-client on console-fra.rpki-client.org