$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/745A41CC2FA311EFBCD3546DC4F9AE02.roa File: 745A41CC2FA311EFBCD3546DC4F9AE02.roa (raw, json) Hash identifier: s7o1AVwqwtRLydyEtYjNo04BCkqu6ThzcBNfODjnDVk= Subject key identifier: 40:75:B4:F2:AB:76:2E:D5:AD:82:25:12:3A:A8:1E:52:52:3B:73:B3 Certificate issuer: /CN=A91D7D87/serialNumber=A43183ECC650B8570D68F7D412A4F0014DA8B9C4 Certificate serial: 47 Authority key identifier: A4:31:83:EC:C6:50:B8:57:0D:68:F7:D4:12:A4:F0:01:4D:A8:B9:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDGD7MZQuFcNaPfUEqTwAU2oucQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/745A41CC2FA311EFBCD3546DC4F9AE02.roa Signing time: Thu 22 Aug 2024 04:09:23 +0000 ROA not before: Thu 22 Aug 2024 04:09:23 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.135.145.0/24 maxlen: 24 103.231.84.0/24 maxlen: 24 103.231.85.0/24 maxlen: 24 103.231.86.0/24 maxlen: 24 150.242.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/pDGD7MZQuFcNaPfUEqTwAU2oucQ.crl rsync://rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/pDGD7MZQuFcNaPfUEqTwAU2oucQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDGD7MZQuFcNaPfUEqTwAU2oucQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:05:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7D87/serialNumber=A43183ECC650B8570D68F7D412A4F0014DA8B9C4 Validity Not Before: Aug 22 04:09:23 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66c6b9f3-f5c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:91:fe:00:59:22:82:3b:7b:00:5d:55:6d: 09:e4:76:f7:1d:fc:1f:a8:20:48:33:6d:81:f8:f4: b4:37:b9:e0:99:98:51:01:af:0a:09:4a:a2:7e:de: 25:6e:7c:04:47:0d:1a:d4:92:8b:56:02:79:6a:78: 9f:97:ca:9d:05:ca:2c:74:b5:13:23:53:6f:53:bc: 4b:a4:2c:de:84:bd:52:de:91:f7:d6:99:1a:0c:69: e4:ca:be:48:3f:b9:64:0c:c8:f4:c0:fa:14:e0:3f: 00:32:69:b4:36:28:54:c6:47:2f:e0:d9:74:e1:e5: e6:70:45:ef:18:4b:ab:55:18:4d:bd:bc:c4:2b:f2: 09:44:72:5f:59:ea:8e:d5:23:71:30:bf:25:68:98: 83:e9:e3:85:39:ec:97:c0:34:11:7f:ec:08:bc:33: a4:ab:c1:f3:1e:3d:25:db:5f:ac:4d:70:ee:1e:a6: ee:0a:af:ca:9e:c6:07:d3:60:1e:74:72:f9:67:52: 3e:a0:48:74:ce:cf:16:2a:be:3a:04:fd:16:d7:60: 14:28:5e:c6:a6:8f:e1:75:9a:bd:f6:b7:29:b1:32: a6:36:3d:96:22:c2:87:c8:73:1d:ac:27:80:6d:97: 9b:26:76:8e:0d:d0:a2:7e:62:0c:c4:ec:f5:43:dc: 0e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:75:B4:F2:AB:76:2E:D5:AD:82:25:12:3A:A8:1E:52:52:3B:73:B3 X509v3 Authority Key Identifier: keyid:A4:31:83:EC:C6:50:B8:57:0D:68:F7:D4:12:A4:F0:01:4D:A8:B9:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/pDGD7MZQuFcNaPfUEqTwAU2oucQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pDGD7MZQuFcNaPfUEqTwAU2oucQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7D87/18F6373012D611EF84E3641EC4F9AE02/745A41CC2FA311EFBCD3546DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.145.0/24 103.231.84.0-103.231.86.255 150.242.37.0/24 Signature Algorithm: sha256WithRSAEncryption 18:98:81:d2:20:51:ad:3c:f4:55:f7:0a:7a:f6:34:d4:28:d8: 00:2e:c9:09:f7:69:92:5e:2b:a6:c1:dc:45:49:2a:df:c8:f4: 1a:a9:1a:4f:e5:fa:21:0a:36:fb:ac:c5:b2:92:ae:3b:1d:84: 43:de:6c:b0:42:54:19:f4:b7:8e:5c:f4:46:f2:21:77:aa:21: 62:31:a5:21:3e:bd:14:23:b1:db:72:67:fb:1a:8b:7c:22:f8: 41:9a:84:63:b0:02:4b:22:66:05:2b:50:bb:bf:b3:1a:1e:02: 48:00:76:77:24:ce:d9:93:e9:70:2b:09:f7:f5:0f:84:08:50: 2b:26:4a:31:31:c6:60:bf:57:5b:40:af:9f:6a:c7:0f:df:66: 9a:35:1b:32:75:7d:72:25:01:a1:31:22:31:ef:a7:3c:02:d7: 0f:0b:01:81:1f:1b:19:5c:27:c9:4f:64:77:45:e0:bb:10:9e: bb:9b:17:78:53:32:9a:f3:44:da:7e:e2:44:cd:b6:b3:15:2b: 83:c7:e0:81:6f:a1:db:5d:c6:50:76:21:00:ef:7c:bc:c0:33: 97:eb:fc:64:2b:c2:93:f6:09:1e:0b:49:5d:c4:f3:bb:69:c0: c8:f8:2a:82:07:fe:8c:6f:70:82:2c:12:dc:b9:74:ad:01:2a: ae:34:3d:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE N0Q4NzExMC8GA1UEBRMoQTQzMTgzRUNDNjUwQjg1NzBENjhGN0Q0MTJBNEYwMDE0 REE4QjlDNDAeFw0yNDA4MjIwNDA5MjNaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzZiOWYzLWY1YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoTZH+AFkigjt7AF1VbQnkdvcd/B+oIEgzbYH49LQ3ueCZmFEBrwoJSqJ+3iVu fARHDRrUkotWAnlqeJ+Xyp0Fyix0tRMjU29TvEukLN6EvVLekffWmRoMaeTKvkg/ uWQMyPTA+hTgPwAyabQ2KFTGRy/g2XTh5eZwRe8YS6tVGE29vMQr8glEcl9Z6o7V I3EwvyVomIPp44U57JfANBF/7Ai8M6SrwfMePSXbX6xNcO4epu4Kr8qexgfTYB50 cvlnUj6gSHTOzxYqvjoE/RbXYBQoXsamj+F1mr32tymxMqY2PZYiwofIcx2sJ4Bt l5smdo4N0KJ+YgzE7PVD3A4LAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUQHW08qt2 LtWtgiUSOqgeUlI7c7MwHwYDVR0jBBgwFoAUpDGD7MZQuFcNaPfUEqTwAU2oucQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3RDg3LzE4RjYzNzMwMTJE NjExRUY4NEUzNjQxRUM0RjlBRTAyL3BER0Q3TVpRdUZjTmFQZlVFcVR3QVUyb3Vj US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcERHRDdNWlF1RmNOYVBmVUVxVHdBVTJvdWNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0Q4Ny8xOEY2MzczMDEyRDYxMUVGODRFMzY0MUVDNEY5QUUwMi83NDVBNDFDQzJG QTMxMUVGQkNEMzU0NkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEAGeHkTAMAwQCZ+dUAwQAZ+dWAwQAlvIlMA0GCSqGSIb3DQEB CwUAA4IBAQAYmIHSIFGtPPRV9wp69jTUKNgALskJ92mSXiumwdxFSSrfyPQaqRpP 5fohCjb7rMWykq47HYRD3mywQlQZ9LeOXPRG8iF3qiFiMaUhPr0UI7Hbcmf7Got8 IvhBmoRjsAJLImYFK1C7v7MaHgJIAHZ3JM7Zk+lwKwn39Q+ECFArJkoxMcZgv1db QK+fascP32aaNRsydX1yJQGhMSIx76c8AtcPCwGBHxsZXCfJT2R3ReC7EJ67mxd4 UzKa80TafuJEzbazFSuDx+CBb6HbXcZQdiEA73y8wDOX6/xkK8KT9gkeC0ldxPO7 acDI+CqCB/6Mb3CCLBLcuXStASquND2R -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org