$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa File: B3F0AAB8587211EAA4D4870FC4F9AE02.roa (raw, json) Hash identifier: TCYPp0B7wELGdVmkmZ/2o9IhPqXAxvWxV7x+iOfRhsI= Subject key identifier: 58:D3:9C:15:65:45:1B:A0:01:B0:3D:19:D9:D6:1F:9E:1B:4C:29:0B Certificate issuer: /CN=A91D6210/serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Certificate serial: 09E5 Authority key identifier: 8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa Signing time: Sun 02 Jun 2024 21:06:49 +0000 ROA not before: Sun 02 Jun 2024 21:06:49 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136515 IP address blocks: 103.91.140.0/22 maxlen: 22 103.91.140.0/24 maxlen: 24 103.91.141.0/24 maxlen: 24 103.91.142.0/24 maxlen: 24 103.91.143.0/24 maxlen: 24 123.253.48.0/22 maxlen: 22 123.253.48.0/24 maxlen: 24 123.253.49.0/24 maxlen: 24 123.253.50.0/24 maxlen: 24 123.253.51.0/24 maxlen: 24 2401:740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:31:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2533 (0x9e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6210/serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Validity Not Before: Jun 2 21:06:49 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665cdee9-0288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:4b:f6:e5:ad:68:a4:c3:e9:56:36:2d:17: ff:44:c5:1e:b1:b5:d8:5d:0d:b3:07:a6:bd:92:af: 19:b0:df:85:0b:88:0e:5a:ce:f9:27:13:ab:d9:f8: 40:91:10:66:5c:8e:33:b6:dc:1b:17:8e:0c:0c:f8: 3b:29:d8:7f:ea:37:7a:34:1f:ab:14:2d:2a:dc:a7: 57:c4:0e:ac:d9:20:2d:a8:08:69:17:f0:21:b1:65: 0b:5e:3a:11:3c:10:ca:3d:a8:5d:5b:2a:3f:61:a3: 45:44:60:80:77:c7:ec:2a:ba:ff:3c:0d:dd:fd:6f: c6:d7:45:63:dc:c0:02:da:35:36:9e:0c:23:59:e8: 04:79:a4:09:da:b1:a1:92:16:71:c2:1a:a1:35:58: b2:ba:52:81:c4:f5:8b:38:85:0d:bb:66:2e:67:7c: 63:98:e4:52:44:f4:cc:48:19:eb:1d:47:bc:be:fe: e1:22:1a:74:f1:06:47:be:28:57:1e:b4:d8:ad:13: 66:84:69:26:ff:18:09:e8:c5:f2:ad:e9:a4:dd:fb: 80:52:8d:e4:e0:a1:8a:9e:48:cc:23:11:d6:66:72: 35:4a:02:e5:56:ef:e0:1c:6f:9e:6b:e6:71:8e:2b: 94:44:bb:3a:08:63:08:f4:88:27:03:cb:9c:33:a3: 67:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D3:9C:15:65:45:1B:A0:01:B0:3D:19:D9:D6:1F:9E:1B:4C:29:0B X509v3 Authority Key Identifier: keyid:8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.140.0/22 123.253.48.0/22 IPv6: 2401:740::/32 Signature Algorithm: sha256WithRSAEncryption 90:c7:77:54:d3:1d:32:77:21:18:47:c5:16:c2:9e:8a:81:b3: 7a:02:c3:44:a7:fb:22:e8:61:73:51:ce:50:42:e9:f6:67:51: 88:8e:1f:a8:f5:0b:23:d5:77:34:e8:03:80:84:72:1c:87:b0: 2e:1b:ab:1b:27:ff:e1:1d:82:97:63:d0:78:9a:93:2d:42:4a: 39:d9:4c:4c:fb:01:a3:fd:45:0f:0d:ae:0b:c2:11:d0:4e:61: 25:e1:c6:25:cb:42:d2:cc:0f:92:05:78:b7:b6:b5:89:bd:09: bb:8a:5c:04:6e:cb:36:96:88:0a:f3:b3:58:57:18:5c:26:75: 81:b4:52:a2:5f:38:27:33:99:7e:75:ad:18:ad:85:a7:85:02: 70:dc:6f:e1:76:7e:7a:3b:c7:4c:87:c6:73:09:8f:da:d0:10: b0:70:ce:92:2e:56:71:18:ec:97:05:24:c7:15:a2:26:bb:00: 1c:35:08:92:d6:ac:1c:47:ca:8d:34:fc:a4:41:b4:55:f0:73: 85:e8:d9:d7:32:fa:68:8a:22:08:cc:8e:e1:0d:50:27:27:b4: 00:79:ee:d5:9d:72:bd:ef:58:b6:13:13:76:3e:5d:70:f3:83: be:aa:bd:75:20:69:96:c8:e9:fe:63:4a:1d:7f:78:1d:d9:5d: c5:b0:f8:10 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYyMTAxMTAvBgNVBAUTKDhENDhBMEVFNTdFNjY0NzA5MEMyNEIzRDI1RkU1RkNB NkZBODA0RTEwHhcNMjQwNjAyMjEwNjQ5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjZGVlOS0wMjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztdL9uWtaKTD6VY2LRf/RMUesbXYXQ2zB6a9kq8ZsN+FC4gOWs75JxOr2fhA kRBmXI4zttwbF44MDPg7Kdh/6jd6NB+rFC0q3KdXxA6s2SAtqAhpF/AhsWULXjoR PBDKPahdWyo/YaNFRGCAd8fsKrr/PA3d/W/G10Vj3MAC2jU2ngwjWegEeaQJ2rGh khZxwhqhNViyulKBxPWLOIUNu2YuZ3xjmORSRPTMSBnrHUe8vv7hIhp08QZHvihX HrTYrRNmhGkm/xgJ6MXyremk3fuAUo3k4KGKnkjMIxHWZnI1SgLlVu/gHG+ea+Zx jiuURLs6CGMI9IgnA8ucM6Nn2wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFjTnBVl RRugAbA9GdnWH54bTCkLMB8GA1UdIwQYMBaAFI1IoO5X5mRwkMJLPSX+X8pvqATh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjIxMC84OTA5MEY0NDU4 NzExMUVBQjM3RTA5MERDNEY5QUUwMi9qVWlnN2xmbVpIQ1F3a3M5SmY1ZnltLW9C T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVaWc3bGZtWkhDUXdrczlKZjVmeW0tb0JPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYyMTAvODkwOTBGNDQ1ODcxMTFFQUIzN0UwOTBEQzRGOUFFMDIvQjNGMEFBQjg1 ODcyMTFFQUE0RDQ4NzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnW4wDBAJ7/TAwDQQCAAIwBwMFACQBB0AwDQYJKoZIhvcN AQELBQADggEBAJDHd1TTHTJ3IRhHxRbCnoqBs3oCw0Sn+yLoYXNRzlBC6fZnUYiO H6j1CyPVdzToA4CEchyHsC4bqxsn/+Edgpdj0Hiaky1CSjnZTEz7AaP9RQ8NrgvC EdBOYSXhxiXLQtLMD5IFeLe2tYm9CbuKXARuyzaWiArzs1hXGFwmdYG0UqJfOCcz mX51rRithaeFAnDcb+F2fno7x0yHxnMJj9rQELBwzpIuVnEY7JcFJMcVoia7ABw1 CJLWrBxHyo00/KRBtFXwc4Xo2dcy+miKIgjMjuENUCcntAB57tWdcr3vWLYTE3Y+ XXDzg76qvXUgaZbI6f5jSh1/eB3ZXcWw+BA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org