$ rpki-client -vvf rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/AD797FA2F17E11EAA3CC597BC4F9AE02.roa File: AD797FA2F17E11EAA3CC597BC4F9AE02.roa (raw, json) Hash identifier: h5ITx5pXE/9NCEhkkWyRU4Y7R0J0MFf0GXuloXcx21g= Subject key identifier: 36:09:10:9E:F9:47:C6:AB:7F:6E:9D:AD:C1:5B:90:15:D5:1B:74:47 Certificate issuer: /CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Certificate serial: 073F Authority key identifier: 95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/AD797FA2F17E11EAA3CC597BC4F9AE02.roa Signing time: Tue 30 Jul 2024 21:59:31 +0000 ROA not before: Tue 30 Jul 2024 21:59:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134528 IP address blocks: 103.155.10.0/23 maxlen: 23 103.155.10.0/24 maxlen: 24 103.155.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D01AF/serialNumber=955AA334D6077C17C02D6D7CADD21599121E4EFA Validity Not Before: Jul 30 21:59:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66a96243-4e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:94:29:dd:1b:32:bb:9b:39:33:cb:f6:79:48: 14:11:e6:f3:c3:03:f2:62:74:36:dd:ea:53:b5:7c: ca:3e:1c:f0:4b:06:08:b1:09:be:7f:ce:a1:1d:f1: ee:be:dc:7a:60:89:dd:16:e5:c6:51:a9:08:d7:b4: 19:9f:83:ba:77:b7:28:c6:90:bf:b0:23:cd:62:91: d4:0a:18:c4:9c:d4:67:9b:86:e0:ab:8a:9d:66:5b: 47:aa:43:d7:61:5b:9d:9a:0e:c5:ed:d2:b1:0b:ed: aa:30:4f:e5:58:51:ca:8a:ce:3c:de:4a:97:19:ed: cf:e8:dc:9f:46:e2:df:a0:4a:17:e1:95:a3:95:31: 32:3d:fd:3e:dc:7f:ed:4a:a7:6b:d2:6f:2d:39:a1: b2:ae:67:cb:6f:43:6c:e7:9b:ac:0a:2c:db:83:21: 92:51:81:63:35:75:b6:d6:12:53:23:56:ee:e8:87: 56:60:92:17:a0:d3:f8:2e:68:5e:1b:57:d0:44:bd: 01:b2:14:09:5f:a2:71:f0:9f:76:49:19:37:bb:3f: f3:43:24:8e:1a:9c:4c:cc:5d:31:f7:fe:d0:20:ed: 25:37:b5:37:a1:a8:91:91:5a:96:f0:89:d3:38:28: dd:e9:5d:3b:0a:04:0c:2a:f2:a9:77:28:9b:a9:9e: cc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:09:10:9E:F9:47:C6:AB:7F:6E:9D:AD:C1:5B:90:15:D5:1B:74:47 X509v3 Authority Key Identifier: keyid:95:5A:A3:34:D6:07:7C:17:C0:2D:6D:7C:AD:D2:15:99:12:1E:4E:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/lVqjNNYHfBfALW18rdIVmRIeTvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lVqjNNYHfBfALW18rdIVmRIeTvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D01AF/CD7E70D8F17D11EAAB392578C4F9AE02/AD797FA2F17E11EAA3CC597BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.10.0/23 Signature Algorithm: sha256WithRSAEncryption 74:05:b3:3a:5c:1b:f0:86:59:79:dc:4e:5f:53:40:d9:f5:1d: 45:ad:6c:7d:ee:7a:37:d8:ea:22:7e:ac:51:27:3d:da:23:01: a3:80:02:81:c4:f0:0e:c0:10:c2:6e:19:9d:73:10:cc:1c:e6: 35:c9:05:4e:2e:75:ba:d5:bb:af:c7:31:3d:27:70:37:f1:26: 4b:a4:3a:16:3d:eb:42:9e:4d:6e:d5:19:45:6e:41:50:a7:52: 7c:10:5d:e2:58:f8:13:c8:74:be:1d:d4:f3:2b:47:39:ab:9b: c3:1b:45:17:9a:7b:1d:e1:89:16:f0:a4:61:e2:14:7a:a1:05: 6d:4d:6e:0c:a2:e8:e7:f1:48:f6:18:f6:13:0b:e1:73:63:fe: 75:e3:d6:b6:d9:e8:d9:b6:f6:98:a8:3d:35:c6:0b:2f:d6:49: 66:7f:43:74:a2:ae:85:24:5a:c5:6b:da:58:3f:e3:0c:7d:64: 99:09:c7:ce:b4:c4:72:48:8b:07:56:9f:8b:8f:c9:28:5a:c8: ae:18:eb:9e:f5:51:ff:3e:d8:24:b7:a3:7d:db:75:ea:c4:f1: df:f7:0b:3f:c8:1c:b3:ad:7f:65:f4:25:6d:06:d8:9a:0b:97: a5:de:ee:c9:a8:57:9f:7c:a6:b5:18:59:bd:6d:c9:7d:9c:db: 91:e2:3d:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAxQUYxMTAvBgNVBAUTKDk1NUFBMzM0RDYwNzdDMTdDMDJENkQ3Q0FERDIxNTk5 MTIxRTRFRkEwHhcNMjQwNzMwMjE1OTMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NjI0My00ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpQp3Rsyu5s5M8v2eUgUEebzwwPyYnQ23epTtXzKPhzwSwYIsQm+f86hHfHu vtx6YIndFuXGUakI17QZn4O6d7coxpC/sCPNYpHUChjEnNRnm4bgq4qdZltHqkPX YVudmg7F7dKxC+2qME/lWFHKis483kqXGe3P6NyfRuLfoEoX4ZWjlTEyPf0+3H/t Sqdr0m8tOaGyrmfLb0Ns55usCizbgyGSUYFjNXW21hJTI1bu6IdWYJIXoNP4Lmhe G1fQRL0BshQJX6Jx8J92SRk3uz/zQySOGpxMzF0x9/7QIO0lN7U3oaiRkVqW8InT OCjd6V07CgQMKvKpdyibqZ7MVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDYJEJ75 R8arf26drcFbkBXVG3RHMB8GA1UdIwQYMBaAFJVaozTWB3wXwC1tfK3SFZkSHk76 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDFBRi9DRDdFNzBEOEYx N0QxMUVBQUIzOTI1NzhDNEY5QUUwMi9sVnFqTk5ZSGZCZkFMVzE4cmRJVm1SSWVU dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xWcWpOTllIZkJmQUxXMThyZElWbVJJZVR2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAxQUYvQ0Q3RTcwRDhGMTdEMTFFQUFCMzkyNTc4QzRGOUFFMDIvQUQ3OTdGQTJG MTdFMTFFQUEzQ0M1OTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmwowDQYJKoZIhvcNAQELBQADggEBAHQFszpcG/CGWXnc Tl9TQNn1HUWtbH3uejfY6iJ+rFEnPdojAaOAAoHE8A7AEMJuGZ1zEMwc5jXJBU4u dbrVu6/HMT0ncDfxJkukOhY960KeTW7VGUVuQVCnUnwQXeJY+BPIdL4d1PMrRzmr m8MbRReaex3hiRbwpGHiFHqhBW1Nbgyi6OfxSPYY9hML4XNj/nXj1rbZ6Nm29pio PTXGCy/WSWZ/Q3SiroUkWsVr2lg/4wx9ZJkJx860xHJIiwdWn4uPyShayK4Y6571 Uf8+2CS3o33bderE8d/3Cz/IHLOtf2X0JW0G2JoLl6Xe7smoV598prUYWb1tyX2c 25HiPQs= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org