$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa File: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (raw, json) Hash identifier: YxGxJeshNnV3Vuuq1mbiFcEZbIJHwrpzAcTYwU5uciY= Subject key identifier: 5D:A9:EB:0D:27:9F:FD:14:73:3C:88:0F:75:AB:D5:A2:33:13:4E:53 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 90 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa Signing time: Thu 11 Jul 2024 06:18:22 +0000 ROA not before: Thu 11 Jul 2024 06:18:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 56229 IP address blocks: 103.189.136.0/24 maxlen: 24 103.189.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Jul 11 06:18:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668f792e-30ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:49:26:0f:45:fe:0e:8e:c6:ab:ae:f3:b5:ae: ae:0e:ae:38:26:ae:75:f9:70:36:7d:87:4a:37:78: 38:c1:40:1e:56:e2:89:a8:4b:b7:08:b5:3a:37:3c: 85:c7:ef:09:3a:89:d9:84:e5:59:ce:47:72:2b:8c: b3:71:74:4d:7f:1d:f7:a8:9b:76:a3:9f:c6:3b:ec: 11:6b:e1:c8:87:49:46:12:ff:fd:14:f4:b5:8c:e8: b9:1c:c2:a9:f9:c9:b3:4a:64:2e:ae:87:c4:cc:1d: 0b:f7:d0:96:b4:e4:4d:f7:06:2c:26:3c:85:91:0f: bc:49:db:89:3c:3a:1d:38:f3:3f:ec:67:03:82:87: 9b:c4:87:3c:e8:ef:e8:a0:a5:14:63:ea:a2:4a:17: d8:4e:12:c1:ae:78:02:86:27:8e:1d:58:41:1e:60: a3:01:1d:37:d9:8a:d1:3a:5f:09:cc:12:37:fa:29: a8:a7:d2:25:10:96:48:92:32:7d:86:8f:09:58:15: 2c:3f:7e:a2:37:83:93:bf:cb:6e:8b:e9:06:b3:0d: b1:9e:51:85:ff:b4:f5:0d:ef:b6:29:e4:16:09:4d: 6f:2b:a4:b2:18:a2:3a:a2:d0:9a:7f:fb:8d:d2:33: 0a:1f:4b:31:33:36:8c:57:e7:f7:ec:23:15:e4:de: 51:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A9:EB:0D:27:9F:FD:14:73:3C:88:0F:75:AB:D5:A2:33:13:4E:53 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.136.0/23 Signature Algorithm: sha256WithRSAEncryption c1:b2:4b:cc:76:5b:5a:9c:4f:a4:a3:c2:75:7a:01:90:c6:00: f3:46:72:5b:68:7a:a6:68:3b:44:ca:bd:94:23:93:5e:b6:1e: f5:cb:cc:e1:b9:cd:06:56:5c:db:05:48:46:d0:19:39:94:8b: 47:16:0e:47:4c:4f:6c:a0:2d:d5:ae:d5:90:28:e5:e7:4c:3a: 98:ae:39:0d:ff:87:29:2e:e6:b9:2b:49:b5:d9:8a:92:f7:44: f3:42:9d:27:be:db:b4:17:e3:a7:5d:e6:db:c3:54:e4:c7:8d: ec:a1:b5:b9:12:ac:e1:44:6c:7c:bd:c9:4c:91:c4:1c:06:62: e6:53:90:f7:d9:0f:81:f2:87:e8:2e:4c:4d:5e:97:da:a0:cd: 56:20:8a:74:bc:b5:ec:7f:d1:d3:d6:a7:79:c1:f0:d6:6c:b1: db:87:e5:a4:e2:de:a6:ea:fe:8d:82:4f:b3:76:f8:32:61:ee: f5:aa:9f:54:64:a4:2c:16:bc:65:ce:f4:a4:ef:b6:d4:52:88: 4c:aa:9d:e7:b2:3a:cb:8f:7b:a3:7e:f7:32:d7:92:70:f8:75: 02:18:f0:8f:a7:20:fb:67:43:86:16:bf:ee:37:e9:a3:f4:20: 3a:87:54:c5:7a:17:be:a8:39:5e:5d:ea:dc:f8:a5:ff:fc:74: 11:14:6f:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjQwNzExMDYxODIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNzkyZS0zMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0kmD0X+Do7Gq67zta6uDq44Jq51+XA2fYdKN3g4wUAeVuKJqEu3CLU6NzyF x+8JOonZhOVZzkdyK4yzcXRNfx33qJt2o5/GO+wRa+HIh0lGEv/9FPS1jOi5HMKp +cmzSmQurofEzB0L99CWtORN9wYsJjyFkQ+8SduJPDodOPM/7GcDgoebxIc86O/o oKUUY+qiShfYThLBrngChieOHVhBHmCjAR032YrROl8JzBI3+imop9IlEJZIkjJ9 ho8JWBUsP36iN4OTv8tui+kGsw2xnlGF/7T1De+2KeQWCU1vK6SyGKI6otCaf/uN 0jMKH0sxMzaMV+f37CMV5N5RyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF2p6w0n n/0UczyID3Wr1aIzE05TMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY4ODQvMkE5NTAyNTY2OTc1MTFFRUI3MEE1NTBFQzRGOUFFMDIvNUNGNEMwRDRG QUREMTFFRTgwODNENTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvYgwDQYJKoZIhvcNAQELBQADggEBAMGyS8x2W1qcT6Sj wnV6AZDGAPNGcltoeqZoO0TKvZQjk162HvXLzOG5zQZWXNsFSEbQGTmUi0cWDkdM T2ygLdWu1ZAo5edMOpiuOQ3/hyku5rkrSbXZipL3RPNCnSe+27QX46dd5tvDVOTH jeyhtbkSrOFEbHy9yUyRxBwGYuZTkPfZD4Hyh+guTE1el9qgzVYginS8tex/0dPW p3nB8NZssduH5aTi3qbq/o2CT7N2+DJh7vWqn1RkpCwWvGXO9KTvttRSiEyqneey OsuPe6N+9zLXknD4dQIY8I+nIPtnQ4YWv+436aP0IDqHVMV6F76oOV5d6tz4pf/8 dBEUb2w= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:58 2024 by rpki-client on console-fra.rpki-client.org