$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa File: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (raw, json) Hash identifier: rd1Y32xkoeiGOMGm6/GALVzy5u2L42RHVTq0ym4rGxc= Subject key identifier: 9C:7B:81:AC:47:AE:59:27:DF:66:3F:7E:FE:6A:36:35:15:29:81:76 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2C4D Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa Signing time: Mon 23 Sep 2024 09:56:09 +0000 ROA not before: Mon 23 Sep 2024 09:56:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138650 IP address blocks: 103.102.43.0/24 maxlen: 24 2405:1500:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11341 (0x2c4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Sep 23 09:56:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f13b39-97fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7e:e0:93:6c:a4:fc:88:d4:ad:40:bf:76:25: 65:4d:64:b1:c8:73:92:84:c5:5c:9e:c0:9d:09:b2: 33:19:d1:e0:14:77:37:37:8a:fb:bf:1c:5c:78:36: 15:c0:b8:ce:c1:fa:24:d6:66:78:7e:26:c5:9f:22: fb:a7:56:3d:78:39:0e:a8:2c:17:14:4f:79:d6:27: 2f:82:c3:67:2a:ad:57:9a:80:d9:4f:50:94:c9:4a: 34:cd:6c:76:a4:b9:01:7f:74:43:9e:16:40:2e:49: 98:84:83:1b:e7:bc:31:03:fd:d9:6f:05:5b:cf:d6: 22:ba:16:f8:65:b9:5c:1b:7a:01:33:b1:2b:8c:59: 20:ff:db:45:27:66:97:89:59:a3:3d:f5:33:90:1d: 47:e3:d9:8b:6a:df:ea:0d:53:3b:82:be:08:7f:23: 99:b3:f8:8c:e5:fc:b0:68:09:c5:1c:bc:b2:c2:d2: 1f:2d:51:16:4d:25:60:3c:10:f9:04:04:e1:8a:02: eb:0f:29:45:28:f6:ef:ff:75:25:7f:af:fc:40:14: 2c:cb:16:d4:49:10:40:0a:4d:4f:ae:48:c6:9a:12: cd:bb:ce:da:b5:ef:44:04:7e:32:a6:c8:f0:c2:51: eb:64:e3:89:7c:80:03:38:1c:3f:f1:5a:dc:26:7f: 85:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:7B:81:AC:47:AE:59:27:DF:66:3F:7E:FE:6A:36:35:15:29:81:76 X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/5728551C6E9611EF8FEC9C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.43.0/24 IPv6: 2405:1500:300::/48 Signature Algorithm: sha256WithRSAEncryption 23:1c:f0:bc:89:7f:c6:2e:42:e4:2f:a5:23:38:55:29:d1:78: f8:a7:80:3e:46:07:50:5e:e6:7c:75:fb:40:59:13:dc:50:4c: 11:c9:cf:3b:30:b3:aa:9a:e7:4d:fb:d2:52:ef:a9:e5:c2:ea: 9a:38:bd:42:a7:bb:43:1e:74:66:8b:30:9f:54:37:5d:f5:40: 2e:f7:3e:8c:e7:c8:a9:7a:4b:a1:56:aa:2f:11:9f:cd:48:11: e8:4c:8d:99:82:8b:32:a6:1e:dd:57:e3:9d:b4:3f:ca:da:62: 4a:59:4a:bc:75:a0:55:fc:a8:1c:6e:45:d5:db:14:60:fd:f2: b6:96:fb:42:e0:41:9c:59:d0:17:fa:8d:58:e4:e7:8c:02:43: d6:e0:e5:41:f0:46:28:eb:2a:12:a6:13:c2:74:b0:62:a8:5f: e3:d5:0d:fa:a0:59:93:29:6a:e2:1f:b7:70:00:ed:c1:9a:6b: 08:31:6c:da:90:ec:cb:ed:8e:4f:d0:e4:d5:38:11:6c:f7:81: 56:d9:fa:1b:37:2b:75:46:7b:c2:2f:54:3b:33:64:b1:0d:a7: 18:4a:5c:fb:7b:b2:34:ac:fb:11:82:23:e5:8a:5b:6f:7e:8d: 9c:1a:f2:3b:10:2c:45:e9:29:cf:19:63:c9:d6:48:83:92:85: e2:99:88:02 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICLE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjQwOTIzMDk1NjA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYxM2IzOS05N2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5X7gk2yk/IjUrUC/diVlTWSxyHOShMVcnsCdCbIzGdHgFHc3N4r7vxxceDYV wLjOwfok1mZ4fibFnyL7p1Y9eDkOqCwXFE951icvgsNnKq1XmoDZT1CUyUo0zWx2 pLkBf3RDnhZALkmYhIMb57wxA/3ZbwVbz9Yiuhb4ZblcG3oBM7ErjFkg/9tFJ2aX iVmjPfUzkB1H49mLat/qDVM7gr4IfyOZs/iM5fywaAnFHLyywtIfLVEWTSVgPBD5 BAThigLrDylFKPbv/3Ulf6/8QBQsyxbUSRBACk1PrkjGmhLNu87ate9EBH4ypsjw wlHrZOOJfIADOBw/8VrcJn+FMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJx7gaxH rlkn32Y/fv5qNjUVKYF2MB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEyRDUvNUY4NjFFRTZCODlBMTFFM0I0QUM3RTc4NTkxMUVBMzIvNTcyODU1MUM2 RTk2MTFFRjhGRUM5QzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZiswDwQCAAIwCQMHACQFFQADADANBgkqhkiG9w0BAQsF AAOCAQEAIxzwvIl/xi5C5C+lIzhVKdF4+KeAPkYHUF7mfHX7QFkT3FBMEcnPOzCz qprnTfvSUu+p5cLqmji9Qqe7Qx50Zoswn1Q3XfVALvc+jOfIqXpLoVaqLxGfzUgR 6EyNmYKLMqYe3VfjnbQ/ytpiSllKvHWgVfyoHG5F1dsUYP3ytpb7QuBBnFnQF/qN WOTnjAJD1uDlQfBGKOsqEqYTwnSwYqhf49UN+qBZkylq4h+3cADtwZprCDFs2pDs y+2OT9Dk1TgRbPeBVtn6GzcrdUZ7wi9UOzNksQ2nGEpc+3uyNKz7EYIj5Ypbb36N nBryOxAsRekpzxljydZIg5KF4pmIAg== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:21 2024 by rpki-client on console-fra.rpki-client.org