$ rpki-client -vvf rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa File: 1BFCE1E0554F11E8A5C82D57C4F9AE02.roa (raw, json) Hash identifier: XC7zxbxHdlAL0s8scJjof6sYByPifHkXs75rsYmLs/g= Subject key identifier: 74:CF:E7:CC:E3:D1:29:E0:E2:84:02:E1:F3:36:64:7A:65:F2:48:EE Certificate issuer: /CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Certificate serial: 1425 Authority key identifier: FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa Signing time: Wed 22 May 2024 17:55:31 +0000 ROA not before: Wed 22 May 2024 17:55:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 2635 IP address blocks: 103.115.8.0/22 maxlen: 24 2402:dac0::/32 maxlen: 32 2402:dac0::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5157 (0x1425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D599B/serialNumber=FCB23C7BF5F19356275BACF57CDB55BFD60E04AC Validity Not Before: May 22 17:55:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664e3193-d5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:16:7d:3f:26:93:a1:19:5b:9d:2c:24:8a:5c: 5a:8e:53:67:24:af:67:2e:0b:58:72:c6:cc:b7:0d: e4:a0:1b:f6:dc:e3:73:5b:e8:34:65:82:4c:06:1e: cd:7f:0a:7b:12:d8:20:6e:2e:96:02:a2:5f:ad:84: 31:b9:ad:a1:e4:34:9e:f1:d7:ab:8a:5a:21:78:0f: aa:a9:4a:7a:d7:bc:df:90:51:89:71:07:a4:36:7d: fa:1e:7c:bf:58:c0:fb:ad:1a:e2:8e:7a:ec:58:a6: 29:93:a2:3b:dc:fa:da:15:14:dc:ce:71:2e:e8:22: 7a:c7:74:ca:c0:9e:b8:28:04:67:37:6f:c4:41:eb: ec:e4:87:89:1d:ab:e7:83:92:fc:48:9d:73:af:ad: c8:19:51:45:dd:eb:d5:c1:12:2f:24:f2:b2:09:2f: 4b:39:9f:21:48:f0:59:1d:33:ff:08:db:2e:8a:af: 8a:a5:f5:52:e4:8d:1c:15:f2:fb:e9:b6:9c:bd:fa: e8:4b:1e:ef:98:85:3f:85:9d:db:08:cc:5b:a5:de: 65:fa:b5:6e:af:74:84:68:1e:a7:07:81:fc:25:1b: 9c:a4:66:e0:00:ef:05:20:03:3a:8a:eb:f3:87:bd: 15:e6:bc:e9:0b:83:03:6c:54:9a:e9:82:2b:90:98: 45:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CF:E7:CC:E3:D1:29:E0:E2:84:02:E1:F3:36:64:7A:65:F2:48:EE X509v3 Authority Key Identifier: keyid:FC:B2:3C:7B:F5:F1:93:56:27:5B:AC:F5:7C:DB:55:BF:D6:0E:04:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_LI8e_Xxk1YnW6z1fNtVv9YOBKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D599B/D7224FF254B211E88E69E909C4F9AE02/1BFCE1E0554F11E8A5C82D57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.8.0/22 IPv6: 2402:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 24:6c:92:23:85:74:b1:c0:89:ca:99:d7:9c:5e:11:3a:e9:9a: 00:05:8e:b2:e9:68:f8:e0:af:2e:a3:db:5f:62:c7:5e:1d:e5: ad:62:6e:2a:65:86:e5:24:20:69:12:8f:7d:0b:36:e0:ae:f0: 35:23:8b:91:c4:a3:ec:c5:92:20:31:19:55:75:e3:0e:d6:fe: aa:46:66:f5:4d:db:96:df:65:84:a9:3c:56:17:0c:96:d3:f1: db:b7:e9:22:9a:84:9a:06:c2:89:dc:04:e3:03:2b:aa:77:29: 35:d0:d3:e5:3f:63:e5:23:32:69:4e:b1:b7:26:4b:9f:4b:80: 59:18:1f:db:eb:7e:35:48:bd:f8:a9:8f:17:d7:10:6b:ec:29: 1a:26:92:63:8c:cf:43:b0:da:84:64:46:18:ea:05:24:91:82: ff:25:3b:5b:89:4d:d0:fe:f6:6d:af:6e:94:5c:00:b7:be:c0: 88:aa:22:35:d9:2f:fb:e9:e6:df:8f:a8:53:76:51:af:7e:2e: 97:a5:6d:06:4f:55:87:7c:18:ed:18:c7:49:be:4e:ef:24:84: 9c:ef:41:65:e4:e3:03:58:97:72:14:cb:65:34:66:5c:4c:13: 7e:6e:45:6a:3c:00:32:6e:04:c5:fe:bc:20:fb:69:8c:9e:90: 54:2a:d2:e4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU5OUIxMTAvBgNVBAUTKEZDQjIzQzdCRjVGMTkzNTYyNzVCQUNGNTdDREI1NUJG RDYwRTA0QUMwHhcNMjQwNTIyMTc1NTMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlMzE5My1kNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xZ9PyaToRlbnSwkilxajlNnJK9nLgtYcsbMtw3koBv23ONzW+g0ZYJMBh7N fwp7Etggbi6WAqJfrYQxua2h5DSe8deriloheA+qqUp617zfkFGJcQekNn36Hny/ WMD7rRrijnrsWKYpk6I73PraFRTcznEu6CJ6x3TKwJ64KARnN2/EQevs5IeJHavn g5L8SJ1zr63IGVFF3evVwRIvJPKyCS9LOZ8hSPBZHTP/CNsuiq+KpfVS5I0cFfL7 6bacvfroSx7vmIU/hZ3bCMxbpd5l+rVur3SEaB6nB4H8JRucpGbgAO8FIAM6iuvz h70V5rzpC4MDbFSa6YIrkJhFFwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHTP58zj 0Sng4oQC4fM2ZHpl8kjuMB8GA1UdIwQYMBaAFPyyPHv18ZNWJ1us9XzbVb/WDgSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTk5Qi9ENzIyNEZGMjU0 QjIxMUU4OEU2OUU5MDlDNEY5QUUwMi9fTEk4ZV9YeGsxWW5XNnoxZk50VnY5WU9C S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19MSThlX1h4azFZblc2ejFmTnRWdjlZT0JLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU5OUIvRDcyMjRGRjI1NEIyMTFFODhFNjlFOTA5QzRGOUFFMDIvMUJGQ0UxRTA1 NTRGMTFFOEE1QzgyRDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncwgwDQQCAAIwBwMFACQC2sAwDQYJKoZIhvcNAQELBQAD ggEBACRskiOFdLHAicqZ15xeETrpmgAFjrLpaPjgry6j219ix14d5a1ibiplhuUk IGkSj30LNuCu8DUji5HEo+zFkiAxGVV14w7W/qpGZvVN25bfZYSpPFYXDJbT8du3 6SKahJoGwoncBOMDK6p3KTXQ0+U/Y+UjMmlOsbcmS59LgFkYH9vrfjVIvfipjxfX EGvsKRomkmOMz0Ow2oRkRhjqBSSRgv8lO1uJTdD+9m2vbpRcALe+wIiqIjXZL/vp 5t+PqFN2Ua9+LpelbQZPVYd8GO0Yx0m+Tu8khJzvQWXk4wNYl3IUy2U0ZlxME35u RWo8ADJuBMX+vCD7aYyekFQq0uQ= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:07 2024 by rpki-client on console-ams.rpki-client.org