$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa File: 97BB54A2070E11EA80718B7BC4F9AE02.roa (raw, json) Hash identifier: d2AEQk5w3NurRVGhpZSG1nxkoC612NCAz7ZDhZGIagU= Subject key identifier: AD:7A:18:9E:5A:07:F5:5C:B2:44:48:30:04:FF:8B:28:79:CB:DA:91 Certificate issuer: /CN=A91D50FB/serialNumber=D4CF5F096736F24EA2410792A603CDBADD827DCD Certificate serial: 0B12 Authority key identifier: D4:CF:5F:09:67:36:F2:4E:A2:41:07:92:A6:03:CD:BA:DD:82:7D:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa Signing time: Thu 12 Oct 2023 19:27:19 +0000 ROA not before: Thu 12 Oct 2023 19:27:19 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138382 IP address blocks: 103.124.32.0/22 maxlen: 24 2403:d8c0::/32 maxlen: 40 2403:d8c0::/48 maxlen: 48 2403:d8c0:1::/48 maxlen: 48 2403:d8c0:2::/48 maxlen: 48 2403:d8c0:3::/48 maxlen: 48 2403:d8c0:4::/48 maxlen: 48 2403:d8c0:5::/48 maxlen: 48 2403:d8c0:6::/48 maxlen: 48 2403:d8c0:7::/48 maxlen: 48 2403:d8c0:8::/48 maxlen: 48 2403:d8c0:9::/48 maxlen: 48 2403:d8c0:a::/48 maxlen: 48 2403:d8c0:b::/48 maxlen: 48 2403:d8c0:c::/48 maxlen: 48 2403:d8c0:d::/48 maxlen: 48 2403:d8c0:e::/48 maxlen: 48 2403:d8c0:f::/48 maxlen: 48 2403:d8c0:10::/48 maxlen: 48 2403:d8c0:11::/48 maxlen: 48 2403:d8c0:12::/48 maxlen: 48 2403:d8c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.crl rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2834 (0xb12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50FB/serialNumber=D4CF5F096736F24EA2410792A603CDBADD827DCD Validity Not Before: Oct 12 19:27:19 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65284897-039f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1f:54:59:dd:6b:25:a5:a0:d6:91:de:bc:ee: 14:18:ff:e7:8b:4b:c8:36:2d:5e:99:c1:ba:57:44: 75:3f:22:66:9f:89:ef:7b:a8:e5:25:48:30:d7:9e: 16:bc:e2:87:8c:38:d8:c1:6e:22:0b:59:23:39:fe: c9:43:ed:ec:3d:70:84:63:0d:3e:26:9e:9b:be:dc: 88:8b:66:48:6e:7e:e5:29:9d:ab:6a:d8:67:63:2b: 79:dd:31:6f:dc:79:28:7f:2d:76:73:ae:ce:4f:6f: 20:4a:83:73:1e:d1:65:cf:9e:50:50:b9:b3:73:50: eb:3d:3f:f1:3c:fd:57:49:80:62:1a:a9:0d:7e:be: 53:01:06:e2:d7:c9:0b:64:ca:3b:f6:81:7d:0f:31: 6a:e2:82:7f:c4:08:15:96:9a:f6:b5:0c:bb:25:55: 2a:96:da:2e:f5:30:e5:eb:e1:0b:6b:d6:80:aa:59: e9:24:39:08:de:4b:3a:51:ee:bf:f2:ac:88:37:72: 28:2b:59:68:e5:86:41:48:68:38:82:71:c0:3e:9f: ff:aa:87:5b:59:03:1f:9d:8d:c2:81:75:69:50:26: 31:04:e2:7a:48:90:e3:65:ac:3c:b9:6c:cd:ce:3c: 3f:6d:cf:81:3b:72:54:48:b8:c0:6f:6a:d4:0b:5b: af:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7A:18:9E:5A:07:F5:5C:B2:44:48:30:04:FF:8B:28:79:CB:DA:91 X509v3 Authority Key Identifier: keyid:D4:CF:5F:09:67:36:F2:4E:A2:41:07:92:A6:03:CD:BA:DD:82:7D:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/1M9fCWc28k6iQQeSpgPNut2Cfc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1M9fCWc28k6iQQeSpgPNut2Cfc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50FB/257BB2C4070E11EAA613727BC4F9AE02/97BB54A2070E11EA80718B7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.32.0/22 IPv6: 2403:d8c0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:9b:95:eb:34:cd:e2:19:16:4a:9c:88:e5:cc:9d:13:3b:30: 1c:1b:a4:c3:0a:08:5b:37:fb:58:dc:2f:ea:f7:dc:f5:53:aa: 25:98:e7:84:c2:ef:a1:c6:04:e1:c4:ee:fd:f4:dc:26:5f:bf: 3f:16:e8:47:82:b0:48:bc:b8:45:65:0a:14:b7:d0:aa:dc:bb: fe:67:e4:1e:c4:d3:e3:91:84:6a:52:cc:f4:3e:98:a7:c5:0a: 11:8b:ab:df:3e:53:0d:40:8d:14:a3:cb:48:ca:4c:1a:4e:c1: 24:cf:6f:96:8e:eb:f5:b4:44:ab:84:af:f1:ff:05:1e:4f:50: 1a:c5:8f:e6:2f:bc:e1:b4:73:8e:e3:43:58:41:2b:5b:19:83: d4:4c:0e:59:11:77:6f:6f:09:e9:64:4a:98:3e:62:b6:d3:26: 4f:29:db:0b:9b:98:1a:4a:d9:89:e4:e1:a5:32:ba:5b:72:cc: 88:63:01:67:6c:12:7e:1a:72:42:51:0a:8a:f1:c2:50:47:7d: 61:b6:1a:40:c3:f2:17:25:97:c6:d0:0d:a9:67:8e:9b:af:47: e1:0c:7d:77:49:59:d1:ea:1d:5b:f4:ca:07:e1:f9:35:6e:3c: 34:f7:5e:58:40:9a:66:bc:08:1a:de:79:4d:7f:ba:dc:6b:05: 45:09:38:33 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwRkIxMTAvBgNVBAUTKEQ0Q0Y1RjA5NjczNkYyNEVBMjQxMDc5MkE2MDNDREJB REQ4MjdEQ0QwHhcNMjMxMDEyMTkyNzE5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4NDg5Ny0wMzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx9UWd1rJaWg1pHevO4UGP/ni0vINi1emcG6V0R1PyJmn4nve6jlJUgw154W vOKHjDjYwW4iC1kjOf7JQ+3sPXCEYw0+Jp6bvtyIi2ZIbn7lKZ2rathnYyt53TFv 3Hkofy12c67OT28gSoNzHtFlz55QULmzc1DrPT/xPP1XSYBiGqkNfr5TAQbi18kL ZMo79oF9DzFq4oJ/xAgVlpr2tQy7JVUqltou9TDl6+ELa9aAqlnpJDkI3ks6Ue6/ 8qyIN3IoK1lo5YZBSGg4gnHAPp//qodbWQMfnY3CgXVpUCYxBOJ6SJDjZaw8uWzN zjw/bc+BO3JUSLjAb2rUC1uvAwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK16GJ5a B/VcskRIMAT/iyh5y9qRMB8GA1UdIwQYMBaAFNTPXwlnNvJOokEHkqYDzbrdgn3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBGQi8yNTdCQjJDNDA3 MEUxMUVBQTYxMzcyN0JDNEY5QUUwMi8xTTlmQ1djMjhrNmlRUWVTcGdQTnV0MkNm YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFNOWZDV2MyOGs2aVFRZVNwZ1BOdXQyQ2ZjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUwRkIvMjU3QkIyQzQwNzBFMTFFQUE2MTM3MjdCQzRGOUFFMDIvOTdCQjU0QTIw NzBFMTFFQTgwNzE4QjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfCAwDQQCAAIwBwMFACQD2MAwDQYJKoZIhvcNAQELBQAD ggEBAB6bles0zeIZFkqciOXMnRM7MBwbpMMKCFs3+1jcL+r33PVTqiWY54TC76HG BOHE7v303CZfvz8W6EeCsEi8uEVlChS30Krcu/5n5B7E0+ORhGpSzPQ+mKfFChGL q98+Uw1AjRSjy0jKTBpOwSTPb5aO6/W0RKuEr/H/BR5PUBrFj+YvvOG0c47jQ1hB K1sZg9RMDlkRd29vCelkSpg+YrbTJk8p2wubmBpK2Ynk4aUyultyzIhjAWdsEn4a ckJRCorxwlBHfWG2GkDD8hcll8bQDalnjpuvR+EMfXdJWdHqHVv0ygfh+TVuPDT3 XlhAmma8CBreeU1/utxrBUUJODM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org