$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa File: 5705E30EFC7A11E8BFCC760AC4F9AE02.roa (raw, json) Hash identifier: dkIdUkxS0d2PbrqHHzMK0XKv4nvJXGsXU3jrSo/hWKk= Subject key identifier: 3D:A5:37:2C:88:5A:13:2C:3E:7B:E2:A4:CF:8D:04:E9:11:3B:0A:63 Certificate issuer: /CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Certificate serial: 1852 Authority key identifier: 93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa Signing time: Tue 24 Sep 2024 16:54:45 +0000 ROA not before: Tue 24 Sep 2024 16:54:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137962 IP address blocks: 103.99.50.0/24 maxlen: 24 103.99.51.0/24 maxlen: 24 103.118.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:28:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6226 (0x1852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDEB3/serialNumber=939DB8A786000C26BAE4837B6ECDAE0F8ABAD1B0 Validity Not Before: Sep 24 16:54:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2eed5-3715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:10:8d:7f:5c:87:c5:c4:7d:17:d0:37:b9:67: 33:ff:a5:6c:5b:34:23:2c:22:4e:5a:23:d6:60:c9: 47:8c:ef:0e:19:9e:d6:4b:cc:bb:8b:b6:5e:bc:b3: ea:a5:ca:92:5b:c7:b1:10:35:a8:9f:87:18:26:16: dd:0d:8a:85:28:7c:1d:ec:cb:5a:e6:d9:f1:dc:70: ce:56:8b:8b:46:bc:0d:0b:92:64:d2:4c:c2:c8:99: e2:4c:b4:60:0a:e0:6b:05:ff:52:a6:d1:7f:15:e6: 16:17:02:b9:7a:cb:b6:c0:4d:df:0b:f1:0a:a6:ef: 5c:69:2b:da:2f:fc:6a:f4:de:26:4a:96:45:55:1f: 82:41:57:30:65:00:9d:9d:5b:b8:58:c7:da:20:5d: 35:b1:54:6b:74:99:36:77:bc:6d:39:8d:ab:78:c7: ab:5f:db:55:56:9b:f6:ca:ec:5e:43:68:a5:8a:01: 56:b9:59:b8:60:9e:dd:46:0b:72:7a:0a:38:50:30: ce:74:bb:64:ed:b0:4c:cf:b7:71:c3:9a:06:69:6a: e9:54:06:b0:1d:6e:21:30:74:10:94:1b:10:69:8e: c8:9c:cb:6b:b8:da:8e:bb:1a:c7:7b:6d:c4:ed:7a: 19:74:07:69:bf:0e:69:26:86:e0:bc:84:5b:46:88: af:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A5:37:2C:88:5A:13:2C:3E:7B:E2:A4:CF:8D:04:E9:11:3B:0A:63 X509v3 Authority Key Identifier: keyid:93:9D:B8:A7:86:00:0C:26:BA:E4:83:7B:6E:CD:AE:0F:8A:BA:D1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/k524p4YADCa65IN7bs2uD4q60bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k524p4YADCa65IN7bs2uD4q60bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDEB3/5D735D4696DE11E7BA7D2A77C4F9AE02/5705E30EFC7A11E8BFCC760AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.50.0/23 103.118.81.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:30:45:e4:1e:c8:6b:11:0b:a0:bd:32:cc:79:10:ee:cd:d5: 59:a0:e9:9e:47:2d:d1:00:4f:92:c3:31:49:6b:cc:e4:de:0b: 7f:03:7f:57:ae:48:88:a5:2f:da:3b:22:87:e9:5f:50:46:ce: 1b:af:e5:6f:8c:9b:b7:db:33:08:b3:e0:91:11:cb:72:de:c0: f7:33:6a:46:3c:ef:3e:14:60:ae:6c:3a:9e:a3:91:99:0c:9f: 38:a2:12:db:47:67:d3:ad:07:2e:72:ab:d5:38:d3:dc:60:64: f7:74:e3:06:33:dc:18:4e:2c:25:14:8b:19:63:8a:ac:dc:91: ee:56:fd:8d:c4:b3:19:31:82:57:bd:8d:80:f8:81:54:8a:86: 97:48:1d:f0:47:44:1e:09:85:6a:4e:2e:9e:d1:5f:01:0c:2f: 7d:ec:ed:0b:14:ae:73:0f:f9:6d:7b:53:3c:50:eb:39:62:fb: 94:e6:44:ee:9f:3d:56:90:66:6c:e8:37:31:95:8f:11:6a:f2: 79:1d:3c:e8:8f:f3:5d:63:c4:2a:87:ef:77:c4:89:66:d9:c3: 43:8a:2c:e7:43:53:13:a8:05:00:2e:be:e7:1e:2c:d9:f5:38: 91:78:e7:63:c6:22:2b:bc:75:f4:70:c5:86:b5:3d:19:0e:a4: a2:4b:1e:ec -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RFQjMxMTAvBgNVBAUTKDkzOURCOEE3ODYwMDBDMjZCQUU0ODM3QjZFQ0RBRTBG OEFCQUQxQjAwHhcNMjQwOTI0MTY1NDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZWVkNS0zNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hCNf1yHxcR9F9A3uWcz/6VsWzQjLCJOWiPWYMlHjO8OGZ7WS8y7i7ZevLPq pcqSW8exEDWon4cYJhbdDYqFKHwd7Mta5tnx3HDOVouLRrwNC5Jk0kzCyJniTLRg CuBrBf9SptF/FeYWFwK5esu2wE3fC/EKpu9caSvaL/xq9N4mSpZFVR+CQVcwZQCd nVu4WMfaIF01sVRrdJk2d7xtOY2reMerX9tVVpv2yuxeQ2iligFWuVm4YJ7dRgty ego4UDDOdLtk7bBMz7dxw5oGaWrpVAawHW4hMHQQlBsQaY7InMtruNqOuxrHe23E 7XoZdAdpvw5pJobgvIRbRoivQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFD2lNyyI WhMsPnvipM+NBOkROwpjMB8GA1UdIwQYMBaAFJOduKeGAAwmuuSDe27Nrg+KutGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREVCMy81RDczNUQ0Njk2 REUxMUU3QkE3RDJBNzdDNEY5QUUwMi9rNTI0cDRZQURDYTY1SU43YnMydUQ0cTYw YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s1MjRwNFlBRENhNjVJTjdiczJ1RDRxNjBiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RFQjMvNUQ3MzVENDY5NkRFMTFFN0JBN0QyQTc3QzRGOUFFMDIvNTcwNUUzMEVG QzdBMTFFOEJGQ0M3NjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYzIDBABndlEwDQYJKoZIhvcNAQELBQADggEBAH0wReQe yGsRC6C9Msx5EO7N1Vmg6Z5HLdEAT5LDMUlrzOTeC38Df1euSIilL9o7IofpX1BG zhuv5W+Mm7fbMwiz4JERy3LewPczakY87z4UYK5sOp6jkZkMnziiEttHZ9OtBy5y q9U409xgZPd04wYz3BhOLCUUixljiqzcke5W/Y3Esxkxgle9jYD4gVSKhpdIHfBH RB4JhWpOLp7RXwEML33s7QsUrnMP+W17UzxQ6zli+5TmRO6fPVaQZmzoNzGVjxFq 8nkdPOiP811jxCqH73fEiWbZw0OKLOdDUxOoBQAuvuceLNn1OJF452PGIiu8dfRw xYa1PRkOpKJLHuw= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org