$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa File: A8A44B84F13511ECB096F867C4F9AE02.roa (raw, json) Hash identifier: lNppuM2/IdxAAhctCe7rRBT4xZtGXRvN8aRrKBnWfmE= Subject key identifier: 3E:11:A6:2A:DF:37:3F:F1:0A:CD:1A:03:0E:C3:AC:E8:DF:B1:D1:9E Certificate issuer: /CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Certificate serial: 020A Authority key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa Signing time: Tue 21 May 2024 04:38:16 +0000 ROA not before: Tue 21 May 2024 04:38:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133012 IP address blocks: 103.187.10.0/24 maxlen: 24 103.187.11.0/24 maxlen: 24 2400:7860:100::/40 maxlen: 40 2400:7860:200::/40 maxlen: 40 2400:7860:200::/48 maxlen: 48 2400:7860:200:1::/64 maxlen: 64 2400:7860:300::/40 maxlen: 40 2400:7860:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Validity Not Before: May 21 04:38:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664c2538-704a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8c:e0:ed:d8:6a:ea:f1:65:21:ba:c7:2d:35: 20:ac:8a:49:73:38:91:e7:7a:5f:d7:8e:0b:11:d3: a8:93:44:d0:91:68:72:66:fa:a0:cd:be:e4:a1:27: 45:e5:68:5f:ca:5b:47:6f:36:0a:56:33:77:ae:7b: 3c:97:cf:71:d5:cd:98:0e:e1:38:f8:af:80:21:89: 8d:ff:21:77:1f:e7:f6:07:6d:0b:5d:8d:97:a5:f8: 9d:d3:bb:bb:5b:67:78:a8:fd:a5:27:84:3f:15:d1: aa:e8:a1:5d:41:28:e9:84:d9:d5:e9:60:ba:a6:b6: 57:b1:8f:a6:9a:00:44:3a:db:73:27:e7:72:06:02: f0:6f:c0:31:02:98:d9:aa:33:0d:c8:7e:8d:0b:1c: 3b:82:79:c1:98:12:4f:88:ec:70:3c:05:8b:6f:5a: 3f:32:66:26:54:0b:fb:6c:93:cc:43:14:9b:33:a2: a3:28:82:7d:aa:4a:44:67:f8:78:ce:06:c6:87:97: 00:c4:fd:00:48:5b:b3:6a:34:ae:4f:e8:f5:13:e6: 81:59:73:b7:93:0c:64:2e:e4:aa:b7:f2:e8:8c:4b: 1c:79:8a:02:37:ef:0a:1a:b8:a6:2e:ac:5c:38:33: 7d:e4:b4:7f:c0:cd:b4:9b:25:3c:4e:98:47:5f:66: 47:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:11:A6:2A:DF:37:3F:F1:0A:CD:1A:03:0E:C3:AC:E8:DF:B1:D1:9E X509v3 Authority Key Identifier: keyid:2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/A8A44B84F13511ECB096F867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.10.0/23 IPv6: 2400:7860:100::-2400:7860:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 48:bc:b8:fd:71:70:85:91:51:d2:34:03:69:78:9c:ef:3f:9b: 78:d8:d1:4f:0b:a2:19:7a:db:64:fa:9d:5a:ff:be:22:da:b0: 23:cb:15:0d:09:a2:0f:60:bf:73:9e:3a:af:35:b6:68:a6:21: fc:64:4b:73:38:4e:fb:86:54:fb:2d:fb:b1:fe:a4:47:90:d3: 62:91:84:36:36:03:a7:8e:2e:0b:53:b9:fc:3a:7d:4f:38:8a: a9:24:2e:34:fb:23:83:cb:1e:1d:ac:e8:47:74:d2:03:98:d8: a0:b7:0e:3d:7c:62:ca:9b:ec:3a:4d:a6:e3:75:7a:73:c0:ef: c8:00:12:a3:09:62:42:df:fa:9f:91:0c:f9:3a:7e:63:fa:56: b3:87:e3:ff:87:25:02:21:f1:26:7a:2e:b8:7a:a5:1f:6c:bc: ab:95:06:3e:0d:2b:a3:70:ab:c0:ab:6f:33:85:58:85:9d:fd: e9:d1:23:38:af:9f:82:a9:c9:70:b5:95:1d:d9:bb:20:bc:47: 6e:43:e3:f7:c8:4a:4b:61:b9:26:74:60:ab:e5:22:e4:3c:db: 98:13:d3:06:8a:28:2d:2f:59:66:ed:a4:b3:64:35:2e:14:27: c9:05:c5:44:d3:20:cd:ae:d5:df:e0:fe:ac:be:6b:da:12:4a: c5:ba:2d:03 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGODMxMTAvBgNVBAUTKDJFRjg3NkE2NjRFNUQ4QjZDREUwMUNGMDg0MTBEQkFE OTZCQzQ5OTgwHhcNMjQwNTIxMDQzODE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRjMjUzOC03MDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnIzg7dhq6vFlIbrHLTUgrIpJcziR53pf144LEdOok0TQkWhyZvqgzb7koSdF 5WhfyltHbzYKVjN3rns8l89x1c2YDuE4+K+AIYmN/yF3H+f2B20LXY2Xpfid07u7 W2d4qP2lJ4Q/FdGq6KFdQSjphNnV6WC6prZXsY+mmgBEOttzJ+dyBgLwb8AxApjZ qjMNyH6NCxw7gnnBmBJPiOxwPAWLb1o/MmYmVAv7bJPMQxSbM6KjKIJ9qkpEZ/h4 zgbGh5cAxP0ASFuzajSuT+j1E+aBWXO3kwxkLuSqt/LojEsceYoCN+8KGrimLqxc ODN95LR/wM20myU8TphHX2ZHwQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFD4Rpirf Nz/xCs0aAw7DrOjfsdGeMB8GA1UdIwQYMBaAFC74dqZk5di2zeAc8IQQ262WvEmY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREY4My9FMkFFM0IwQUYx MzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJMYk40Qnp3aEJEYnJaYThT WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x2aDJwbVRsMkxiTjRCendoQkRiclphOFNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RGODMvRTJBRTNCMEFGMTMwMTFFQzg2REU3RDYzQzRGOUFFMDIvQThBNDRCODRG MTM1MTFFQ0IwOTZGODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnuwowGAQCAAIwEjAQAwYAJAB4YAEDBgAkAHhgBDANBgkq hkiG9w0BAQsFAAOCAQEASLy4/XFwhZFR0jQDaXic7z+beNjRTwuiGXrbZPqdWv++ ItqwI8sVDQmiD2C/c546rzW2aKYh/GRLczhO+4ZU+y37sf6kR5DTYpGENjYDp44u C1O5/Dp9TziKqSQuNPsjg8seHazoR3TSA5jYoLcOPXxiypvsOk2m43V6c8DvyAAS owliQt/6n5EM+Tp+Y/pWs4fj/4clAiHxJnouuHqlH2y8q5UGPg0ro3CrwKtvM4VY hZ396dEjOK+fgqnJcLWVHdm7ILxHbkPj98hKS2G5JnRgq+Ui5DzbmBPTBoooLS9Z Zu2ks2Q1LhQnyQXFRNMgza7V3+D+rL5r2hJKxbotAw== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:05 2024 by rpki-client on console-fra.rpki-client.org