$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/D442A7A0BE2E11EEAFAF1934C4F9AE02.roa File: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (raw, json) Hash identifier: R6HAfsFQJCAwt/SBaezXmyue3jhCEJ5CX2/BB8RcTXs= Subject key identifier: CC:B7:69:23:76:AD:E4:AA:1B:45:C6:AE:A3:F4:5E:3E:62:A9:9F:0D Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: 0B Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/D442A7A0BE2E11EEAFAF1934C4F9AE02.roa Signing time: Sun 28 Jan 2024 23:26:59 +0000 ROA not before: Sun 28 Jan 2024 23:26:59 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 58460 IP address blocks: 103.9.226.0/24 maxlen: 24 103.209.54.0/24 maxlen: 24 2404:f440::/32 maxlen: 32 2404:f440:1012::/48 maxlen: 48 2404:f440:2012::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 07:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Validity Not Before: Jan 28 23:26:59 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b6e2c2-5a37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:f6:2c:d2:1c:d6:c1:72:a9:ac:31:1f:96: 25:e0:3e:46:b2:51:28:0b:bb:c7:a5:f7:e0:a4:cb: 80:4f:dc:f1:b3:0d:96:66:f5:9a:1a:4e:27:9f:20: f8:73:a4:43:f2:c6:5a:da:12:50:bf:eb:3c:51:eb: 91:3e:78:a8:99:76:1c:ef:87:ee:03:d5:32:72:57: fa:9f:6d:e2:8a:de:b1:0d:e0:1a:73:89:55:f7:cc: c0:d6:07:ea:5c:23:21:df:ea:32:88:6d:58:17:58: de:ea:7a:c3:66:f3:6f:81:92:0a:1a:64:4b:eb:06: d6:01:19:a1:ee:bb:8f:a0:c7:fe:29:b2:c2:66:93: 8f:09:ab:c6:7e:ec:bd:37:07:67:d1:f9:2d:43:00: ac:50:d3:ef:30:f5:89:c3:d8:f5:d8:34:67:92:66: 3c:a6:ff:60:1f:5a:a3:9b:92:c2:fd:39:da:bc:eb: e5:03:8c:24:f8:8b:10:f6:4e:ec:f5:72:5b:2a:b5: 16:55:2c:64:8e:a0:ef:ed:f2:f6:51:09:83:d8:25: b9:83:b0:9b:b5:6b:f2:10:49:cf:6c:41:24:b5:c4: f5:82:8b:f2:52:91:20:1a:15:eb:54:45:9b:6e:24: 3f:eb:d5:50:14:bc:1b:d0:d3:20:67:63:16:e2:21: 55:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B7:69:23:76:AD:E4:AA:1B:45:C6:AE:A3:F4:5E:3E:62:A9:9F:0D X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/D442A7A0BE2E11EEAFAF1934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.226.0/24 103.209.54.0/24 IPv6: 2404:f440::/32 Signature Algorithm: sha256WithRSAEncryption 22:bd:78:40:80:d4:26:06:b7:f0:ec:ff:9e:ce:47:37:18:2e: 8e:7a:1b:2e:e7:1f:ab:4f:46:cd:36:f9:10:a1:59:e1:18:33: ba:d7:ea:9c:ce:77:1a:41:c0:4e:d3:d8:24:e8:6f:31:72:74: 59:8d:be:e6:c1:e3:5a:44:6b:12:94:ef:ff:76:4b:75:e4:b9: e3:89:71:7d:a8:d2:1a:c9:69:b9:1b:ae:bc:71:67:f0:bd:37: b0:ba:d5:f5:a0:7e:df:df:a8:12:4e:cf:b3:a6:e6:64:a4:c6: 9b:e9:04:b4:68:07:c4:29:7d:26:87:d4:a5:67:0c:db:a1:c0: 35:92:e4:48:b5:7e:83:ed:0d:b3:00:f1:67:3c:ac:5a:f2:1c: d7:34:f3:fa:53:82:e0:f2:07:68:40:bb:0e:d0:45:0e:79:75: 19:24:88:a3:51:2f:c1:10:de:a9:0c:59:10:a9:a5:16:ed:8f: 1a:a7:6c:26:8b:44:a9:82:e5:83:47:ee:dc:c6:96:4d:f1:16: 96:ea:c1:c2:8b:64:c8:89:39:58:f9:94:9b:58:ec:d2:db:ba: 7d:e4:f5:9a:19:e6:90:66:53:9f:bb:2a:40:2a:d4:90:67:31: 86:66:a9:fc:c9:5d:40:82:1f:2d:bb:22:3d:91:01:e2:8d:48: 83:40:56:0b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODExNzExMC8GA1UEBRMoODk3REJBRDY0NzAyMzc4QTZFRTE4NjMwRTE4QkY3NUEx NzI5ODI2OTAeFw0yNDAxMjgyMzI2NTlaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjZlMmMyLTVhMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtqPYs0hzWwXKprDEfliXgPkayUSgLu8el9+Cky4BP3PGzDZZm9ZoaTiefIPhz pEPyxlraElC/6zxR65E+eKiZdhzvh+4D1TJyV/qfbeKK3rEN4BpziVX3zMDWB+pc IyHf6jKIbVgXWN7qesNm82+BkgoaZEvrBtYBGaHuu4+gx/4pssJmk48Jq8Z+7L03 B2fR+S1DAKxQ0+8w9YnD2PXYNGeSZjym/2AfWqObksL9Odq86+UDjCT4ixD2Tuz1 clsqtRZVLGSOoO/t8vZRCYPYJbmDsJu1a/IQSc9sQSS1xPWCi/JSkSAaFetURZtu JD/r1VAUvBvQ0yBnYxbiIVVNAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUzLdpI3at 5KobRcauo/RePmKpnw0wHwYDVR0jBBgwFoAUiX261kcCN4pu4YYw4Yv3Whcpgmkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MTE3LzhFMjhFNzk0QkUy RDExRUU4NTM2RDAzMEM0RjlBRTAyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVgyNjFrY0NONHB1NFlZdzRZdjNXaGNwZ21rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODExNy84RTI4RTc5NEJFMkQxMUVFODUzNkQwMzBDNEY5QUUwMi9ENDQyQTdBMEJF MkUxMUVFQUZBRjE5MzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAGcJ4gMEAGfRNjANBAIAAjAHAwUAJAT0QDANBgkqhkiG9w0B AQsFAAOCAQEAIr14QIDUJga38Oz/ns5HNxgujnobLucfq09GzTb5EKFZ4Rgzutfq nM53GkHATtPYJOhvMXJ0WY2+5sHjWkRrEpTv/3ZLdeS544lxfajSGslpuRuuvHFn 8L03sLrV9aB+39+oEk7Ps6bmZKTGm+kEtGgHxCl9JofUpWcM26HANZLkSLV+g+0N swDxZzysWvIc1zTz+lOC4PIHaEC7DtBFDnl1GSSIo1EvwRDeqQxZEKmlFu2PGqds JotEqYLlg0fu3MaWTfEWlurBwotkyIk5WPmUm1js0tu6feT1mhnmkGZTn7sqQCrU kGcxhmap/MldQIIfLbsiPZEB4o1Ig0BWCw== -----END CERTIFICATE-----Generated at Fri May 3 09:09:34 2024 by rpki-client on console-fra.rpki-client.org