$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa File: 2A53DA54332011EF89CABD61C4F9AE02.roa (raw, json) Hash identifier: Abd49G7RtVTlPSdb6DqyRQ+OwPahZC8Bp+0hv7urT30= Subject key identifier: 62:D5:F5:68:38:46:6A:B2:09:D3:0A:EC:D9:1C:AA:88:17:1D:CD:D4 Certificate issuer: /CN=A91CE821/serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Certificate serial: 03F7 Authority key identifier: 06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa Signing time: Sat 28 Sep 2024 17:05:25 +0000 ROA not before: Sat 28 Sep 2024 17:05:25 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152605 IP address blocks: 103.115.196.0/24 maxlen: 24 103.115.197.0/24 maxlen: 24 103.115.198.0/24 maxlen: 24 103.115.199.0/24 maxlen: 24 2402:edc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821/serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Validity Not Before: Sep 28 17:05:25 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66f83755-07cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:50:08:40:f8:f5:02:6d:fc:3b:5c:d8:8f:3f: 75:71:56:9c:2e:d5:bb:a0:4e:b1:5d:16:90:ff:97: 8f:4d:99:9a:78:a0:17:2b:08:b4:ee:e5:a7:31:25: cf:a8:55:7a:93:e2:7d:1b:ff:b8:46:3f:62:4a:ff: 23:c2:cf:79:0c:f2:f1:46:d2:cb:88:35:63:06:7d: 95:ce:d5:b1:93:84:80:b5:46:6b:b5:2f:cc:91:15: 73:38:7b:58:1e:8a:c2:9c:ac:c3:8a:ed:ee:1f:b3: 1c:2d:fa:44:4f:9e:ce:c6:7e:26:d5:3a:ee:a6:cb: 5d:d9:7f:91:36:29:21:25:af:42:66:01:95:a5:43: 53:3c:c3:10:70:d4:c0:a1:70:fc:50:d0:94:ba:c6: 2b:5b:2a:af:8d:e4:b8:22:95:66:f6:16:fe:ad:25: 0f:73:6a:b9:ae:18:96:60:c4:15:a8:e1:03:92:10: 8e:6f:9e:68:93:50:37:b0:f1:da:68:99:1a:d9:10: 37:6e:10:19:10:86:78:83:26:06:9a:b4:5f:7f:9d: c0:3a:df:81:16:9a:3b:c3:fd:62:4a:b1:4c:9a:e1: df:1d:1c:65:96:b1:43:b5:bd:3a:54:47:be:f9:71: 0c:d5:b2:aa:02:79:9b:c0:7a:fd:37:71:26:e4:67: 5a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D5:F5:68:38:46:6A:B2:09:D3:0A:EC:D9:1C:AA:88:17:1D:CD:D4 X509v3 Authority Key Identifier: keyid:06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/2A53DA54332011EF89CABD61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.196.0/22 IPv6: 2402:edc0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:0e:c6:5d:c6:34:4e:1f:9e:1e:6b:68:1f:d8:c6:98:31:a1: cd:f9:c4:0d:be:56:37:5d:a3:80:fd:a2:b7:fe:55:50:8c:34: cf:99:33:6e:79:5e:d5:b0:76:b5:e0:b0:ae:80:2b:38:d8:46: d8:d7:bf:c4:b3:19:1c:17:d4:01:80:94:61:93:aa:86:0e:80: ce:8a:30:a0:18:3d:ee:8f:cb:0d:0a:ba:79:ec:38:a9:f0:e4: 4d:e9:c7:41:95:6e:26:3b:72:81:8d:ae:77:fc:2b:21:8a:0b: 58:c5:43:79:8d:a5:80:c5:a4:f9:d1:62:cd:6a:ff:e2:f4:aa: e0:48:a1:5a:8c:14:55:d3:a6:cc:e5:a5:df:7d:64:9d:e4:5f: fc:c5:35:44:49:58:36:2c:64:5f:b8:b6:77:71:c9:1c:82:ab: 79:5f:9c:ff:76:5a:89:ae:a2:ab:24:e5:30:4c:85:b2:d8:11: 01:4a:59:03:90:0f:5c:d5:26:a7:b8:8b:35:9a:ee:16:79:a4: c1:b2:2d:ef:a6:36:35:68:28:23:5b:9d:4f:60:34:26:0f:08: 7b:2f:be:b5:bc:43:61:4d:47:a1:d8:5b:5a:0a:9a:07:5f:fb: 68:69:02:6e:0e:d7:78:4d:27:d1:82:ef:4a:de:27:e2:cb:de: bd:ae:89:92 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKDA2MzdFNUIzOEM2MURGODNFQkIzMzAyMDkzQkI1NzZD QjMxRDlCMTAwHhcNMjQwOTI4MTcwNTI1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4Mzc1NS0wN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlAIQPj1Am38O1zYjz91cVacLtW7oE6xXRaQ/5ePTZmaeKAXKwi07uWnMSXP qFV6k+J9G/+4Rj9iSv8jws95DPLxRtLLiDVjBn2VztWxk4SAtUZrtS/MkRVzOHtY HorCnKzDiu3uH7McLfpET57Oxn4m1Trupstd2X+RNikhJa9CZgGVpUNTPMMQcNTA oXD8UNCUusYrWyqvjeS4IpVm9hb+rSUPc2q5rhiWYMQVqOEDkhCOb55ok1A3sPHa aJka2RA3bhAZEIZ4gyYGmrRff53AOt+BFpo7w/1iSrFMmuHfHRxllrFDtb06VEe+ +XEM1bKqAnmbwHr9N3Em5Gda8QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGLV9Wg4 RmqyCdMK7NkcqogXHc3UMB8GA1UdIwQYMBaAFAY35bOMYd+D67MwIJO7V2yzHZsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi9CamZsczR4aDM0UHJzekFnazd0WGJMTWRt eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JqZmxzNHhoMzRQcnN6QWdrN3RYYkxNZG14QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U4MjEvODExRkI1OTA2MDUxMTFFODhDRDhFQzQ3QzRGOUFFMDIvMkE1M0RBNTQz MzIwMTFFRjg5Q0FCRDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnc8QwDQQCAAIwBwMFACQC7cAwDQYJKoZIhvcNAQELBQAD ggEBAFoOxl3GNE4fnh5raB/Yxpgxoc35xA2+Vjddo4D9orf+VVCMNM+ZM255XtWw drXgsK6AKzjYRtjXv8SzGRwX1AGAlGGTqoYOgM6KMKAYPe6Pyw0KunnsOKnw5E3p x0GVbiY7coGNrnf8KyGKC1jFQ3mNpYDFpPnRYs1q/+L0quBIoVqMFFXTpszlpd99 ZJ3kX/zFNURJWDYsZF+4tndxyRyCq3lfnP92Womuoqsk5TBMhbLYEQFKWQOQD1zV Jqe4izWa7hZ5pMGyLe+mNjVoKCNbnU9gNCYPCHsvvrW8Q2FNR6HYW1oKmgdf+2hp Am4O13hNJ9GC70reJ+LL3r2uiZI= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org