$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/97EFA28EE5A911ED80EF757BC4F9AE02.roa File: 97EFA28EE5A911ED80EF757BC4F9AE02.roa (raw, json) Hash identifier: AWrudQQgzJLS7MSlB50m43MehkidwQ5Ce89Ne/Grvwo= Subject key identifier: 1B:94:F4:B2:2C:5C:F9:7F:48:0A:63:88:F7:C5:AF:D9:1C:1C:7D:BF Certificate issuer: /CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Certificate serial: EF Authority key identifier: 2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/97EFA28EE5A911ED80EF757BC4F9AE02.roa Signing time: Sat 13 Jul 2024 05:46:06 +0000 ROA not before: Sat 13 Jul 2024 05:46:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 34985 IP address blocks: 103.96.0.0/24 maxlen: 24 103.96.2.0/24 maxlen: 24 103.96.3.0/24 maxlen: 24 113.212.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5114/serialNumber=2C88BC60A38479793B55470C377ED23EA02D0722 Validity Not Before: Jul 13 05:46:06 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6692149e-dce1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:1d:e7:ea:b8:a9:3c:b2:f7:1b:8a:e6:e3: c8:26:a1:91:5b:75:0b:db:49:72:50:94:42:24:e3: 76:9d:8f:c1:8c:8b:ad:e1:56:f3:8e:3d:97:2a:3b: 37:1f:f6:99:b0:b6:14:83:35:a0:9b:7e:d2:89:12: b7:67:da:8e:20:1e:bf:d2:5b:4e:a1:67:a6:7a:60: 57:86:59:8e:2b:f8:1d:f5:0e:6a:85:11:e5:ca:44: 55:f3:a6:68:4a:e1:e4:38:0e:b6:f4:47:d3:fd:74: e0:6c:2d:35:8e:34:c4:16:ab:5f:f8:76:f7:f5:de: 46:e4:71:17:f6:2c:a9:9b:af:3d:fb:fa:1d:a7:24: 22:e0:03:69:b1:32:a7:bf:25:8a:93:d9:42:18:df: 1c:ab:6d:cc:ef:96:5a:18:c4:11:d5:6e:ba:e6:cf: 93:d5:81:d1:0d:46:17:d5:48:37:8c:75:27:cf:e6: f5:b7:b5:a4:f3:f9:93:78:f4:09:c1:46:1d:e1:b1: d1:5a:17:2c:0b:b7:75:78:01:59:35:cf:91:5c:f1: df:44:d8:f0:dd:85:87:46:7b:4f:c5:0a:91:df:23: 9f:76:27:1b:29:45:f1:5e:c8:f7:2a:80:6d:b0:69: b8:53:e6:34:3e:5d:85:51:d3:92:fd:6e:9c:19:fa: 7d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:94:F4:B2:2C:5C:F9:7F:48:0A:63:88:F7:C5:AF:D9:1C:1C:7D:BF X509v3 Authority Key Identifier: keyid:2C:88:BC:60:A3:84:79:79:3B:55:47:0C:37:7E:D2:3E:A0:2D:07:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/LIi8YKOEeXk7VUcMN37SPqAtByI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIi8YKOEeXk7VUcMN37SPqAtByI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5114/34E19E88E5A211ED808CF377C4F9AE02/97EFA28EE5A911ED80EF757BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.0.0/24 103.96.2.0/23 113.212.88.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:28:22:ab:72:3a:75:6b:a9:45:55:e5:d9:6f:d3:5b:3b:ae: 10:93:69:57:b7:45:b5:84:e7:2b:c6:62:85:b1:b0:7e:23:24: c4:09:64:d9:29:53:8f:72:bb:c5:d5:18:08:97:f3:dd:99:77: 4f:0e:32:a6:09:7a:fd:03:2a:76:7b:5a:be:e4:b2:f3:9d:bd: 1b:7a:42:9a:ae:43:f8:cf:0a:5a:eb:6c:89:ed:2f:e7:19:88: f3:90:b3:44:0a:e7:01:3e:5d:19:36:a6:6b:3e:09:b7:b9:a4: e4:ea:30:2e:bd:3f:82:2a:a1:59:a6:93:ff:c3:7a:6a:60:ba: a8:37:73:02:f1:50:af:70:79:3a:00:6b:76:26:29:4d:f3:3b: b5:e7:b0:04:cf:bf:a1:3a:66:03:39:68:cc:60:26:f0:4d:8b: f9:eb:3c:a8:91:4e:2b:22:fb:38:30:dc:38:a5:eb:a9:b5:fd: b7:80:ca:7b:59:92:09:1e:36:39:df:32:77:e3:16:c1:94:2b: 2a:43:97:a2:60:ce:0d:c3:1e:10:76:fe:d4:86:e4:5e:05:7e: 76:24:2b:d2:a8:36:67:1e:00:28:ca:70:6d:65:a9:33:97:b3: 3b:f8:47:ba:ed:60:f0:29:ff:91:61:ba:8f:de:ed:0f:c0:cd: 51:67:08:7f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxMTQxMTAvBgNVBAUTKDJDODhCQzYwQTM4NDc5NzkzQjU1NDcwQzM3N0VEMjNF QTAyRDA3MjIwHhcNMjQwNzEzMDU0NjA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkyMTQ5ZS1kY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pkd5+q4qTyy9xuK5uPIJqGRW3UL20lyUJRCJON2nY/BjIut4Vbzjj2XKjs3 H/aZsLYUgzWgm37SiRK3Z9qOIB6/0ltOoWememBXhlmOK/gd9Q5qhRHlykRV86Zo SuHkOA629EfT/XTgbC01jjTEFqtf+Hb39d5G5HEX9iypm689+/odpyQi4ANpsTKn vyWKk9lCGN8cq23M75ZaGMQR1W665s+T1YHRDUYX1Ug3jHUnz+b1t7Wk8/mTePQJ wUYd4bHRWhcsC7d1eAFZNc+RXPHfRNjw3YWHRntPxQqR3yOfdicbKUXxXsj3KoBt sGm4U+Y0Pl2FUdOS/W6cGfp9/QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBuU9LIs XPl/SApjiPfFr9kcHH2/MB8GA1UdIwQYMBaAFCyIvGCjhHl5O1VHDDd+0j6gLQci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTExNC8zNEUxOUU4OEU1 QTIxMUVEODA4Q0YzNzdDNEY5QUUwMi9MSWk4WUtPRWVYazdWVWNNTjM3U1BxQXRC eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJaThZS09FZVhrN1ZVY01OMzdTUHFBdEJ5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxMTQvMzRFMTlFODhFNUEyMTFFRDgwOENGMzc3QzRGOUFFMDIvOTdFRkEyOEVF NUE5MTFFRDgwRUY3NTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnYAADBAFnYAIDBABx1FgwDQYJKoZIhvcNAQELBQADggEB AI8oIqtyOnVrqUVV5dlv01s7rhCTaVe3RbWE5yvGYoWxsH4jJMQJZNkpU49yu8XV GAiX892Zd08OMqYJev0DKnZ7Wr7ksvOdvRt6QpquQ/jPClrrbIntL+cZiPOQs0QK 5wE+XRk2pms+Cbe5pOTqMC69P4IqoVmmk//Dempguqg3cwLxUK9weToAa3YmKU3z O7XnsATPv6E6ZgM5aMxgJvBNi/nrPKiRTisi+zgw3Dil66m1/beAyntZkgkeNjnf MnfjFsGUKypDl6Jgzg3DHhB2/tSG5F4FfnYkK9KoNmceACjKcG1lqTOXszv4R7rt YPAp/5Fhuo/e7Q/AzVFnCH8= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:38 2024 by rpki-client on console-fra.rpki-client.org