$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/D129428E25DF11E7AC03C03EC4F9AE02.roa File: D129428E25DF11E7AC03C03EC4F9AE02.roa (raw, json) Hash identifier: ynwGG0zQPee7d/WWj4UfcSNuuY3z6zRAMBpddvVXj/U= Subject key identifier: 74:C9:E9:79:DD:80:1D:0D:C2:6A:0B:96:80:73:8B:8F:0C:52:09:82 Certificate issuer: /CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Certificate serial: 1A8E Authority key identifier: DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/D129428E25DF11E7AC03C03EC4F9AE02.roa Signing time: Thu 02 May 2024 17:04:50 +0000 ROA not before: Thu 02 May 2024 17:04:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 43181 IP address blocks: 103.89.140.0/22 maxlen: 22 103.89.140.0/24 maxlen: 24 103.89.141.0/24 maxlen: 24 103.89.142.0/24 maxlen: 24 103.89.143.0/24 maxlen: 24 202.14.204.0/22 maxlen: 22 202.14.204.0/24 maxlen: 24 202.14.205.0/24 maxlen: 24 202.14.206.0/24 maxlen: 24 202.14.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6798 (0x1a8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC4E1/serialNumber=DC1B39B54F60891AC778A9316D71B0BE8006396E Validity Not Before: May 2 17:04:50 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6633c7b2-539e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ef:bf:35:8e:65:53:8a:ee:a6:ab:eb:a6:a3: 89:3b:1a:c6:8c:f7:0a:e9:4c:c6:b5:1b:5c:5f:f6: 16:72:83:3d:3c:8f:86:28:eb:9d:32:1d:60:8f:cf: 55:8f:95:d7:22:a0:63:e6:57:ba:d8:30:b1:e9:83: 5e:71:9c:09:03:52:ea:92:89:04:73:e8:b7:fe:8d: 82:f5:c1:4e:b4:0d:c2:07:40:79:8a:28:15:4c:21: 57:7e:10:c7:80:5c:58:46:f8:32:08:31:f9:bb:24: ee:af:3a:c4:3a:ad:0b:bf:c1:70:f4:bb:ee:ef:1b: 18:03:7a:d0:08:7a:60:ff:25:fb:2d:97:5a:56:7a: f9:c2:9b:1c:23:8c:28:b0:d8:0a:eb:74:4c:8c:83: 95:73:6c:ab:64:85:76:6b:c9:37:67:d7:89:40:c5: 17:ac:69:60:52:33:94:25:fc:ae:6a:44:82:32:e3: ba:f5:68:a0:4c:b1:2c:f8:d9:3c:72:ad:c3:73:35: 8e:85:da:71:b6:ed:03:4c:9f:7c:1c:e0:67:25:05: c0:46:02:1b:6e:07:75:a4:2f:68:d9:90:a1:80:c0: de:6d:12:2a:9b:61:27:ad:b4:0f:51:70:ce:27:4b: d2:f8:cb:27:b8:ca:55:28:35:7e:e6:b0:f7:3c:78: ad:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C9:E9:79:DD:80:1D:0D:C2:6A:0B:96:80:73:8B:8F:0C:52:09:82 X509v3 Authority Key Identifier: keyid:DC:1B:39:B5:4F:60:89:1A:C7:78:A9:31:6D:71:B0:BE:80:06:39:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/3Bs5tU9giRrHeKkxbXGwvoAGOW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bs5tU9giRrHeKkxbXGwvoAGOW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC4E1/2004F144160111E7A8AC225DC4F9AE02/D129428E25DF11E7AC03C03EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.140.0/22 202.14.204.0/22 Signature Algorithm: sha256WithRSAEncryption 13:61:2f:6f:ec:06:ea:c8:ef:88:28:8c:f5:f3:1b:39:35:0b: ad:03:14:74:86:80:b4:7e:75:07:41:5f:1c:0d:0b:f8:a6:0c: 34:02:0e:97:12:25:72:a0:ee:66:41:57:fd:78:b1:1e:e7:cc: c8:cc:29:32:9f:f4:9d:f5:43:9a:43:a7:5f:e0:65:8c:4d:a8: d1:86:6f:c6:f9:73:c9:39:62:4a:71:d8:5a:12:23:16:cb:52: 40:54:51:c8:fa:05:26:9f:2c:fb:19:b5:cb:af:71:45:c3:37: 13:26:bb:2d:8f:ec:ca:4d:ce:c9:12:ac:dd:4a:6a:63:29:fe: 38:4f:ac:4f:1c:57:56:3b:93:ba:cd:39:92:b6:8f:57:5b:e8: 97:e2:4a:84:3d:14:5f:8b:ed:db:e1:ee:d7:34:6b:85:9c:6e: e5:ac:e1:92:af:73:65:3d:44:e4:07:6b:44:4e:54:2b:fc:ac: e4:f8:94:e9:20:58:ca:8d:8d:89:64:09:a3:b4:13:59:cb:d9: 29:7f:ce:4e:51:e0:36:d7:8b:4b:77:92:45:4a:61:5c:74:77: e0:1e:6d:19:94:33:d9:6a:9f:49:ff:90:8e:4f:37:13:20:e4: f7:f0:f7:b8:d5:4f:52:b1:15:53:71:db:68:5b:b5:57:ba:fb: 15:dd:90:97 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0RTExMTAvBgNVBAUTKERDMUIzOUI1NEY2MDg5MUFDNzc4QTkzMTZENzFCMEJF ODAwNjM5NkUwHhcNMjQwNTAyMTcwNDUwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzYzdiMi01MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxu+/NY5lU4rupqvrpqOJOxrGjPcK6UzGtRtcX/YWcoM9PI+GKOudMh1gj89V j5XXIqBj5le62DCx6YNecZwJA1LqkokEc+i3/o2C9cFOtA3CB0B5iigVTCFXfhDH gFxYRvgyCDH5uyTurzrEOq0Lv8Fw9Lvu7xsYA3rQCHpg/yX7LZdaVnr5wpscI4wo sNgK63RMjIOVc2yrZIV2a8k3Z9eJQMUXrGlgUjOUJfyuakSCMuO69WigTLEs+Nk8 cq3DczWOhdpxtu0DTJ98HOBnJQXARgIbbgd1pC9o2ZChgMDebRIqm2EnrbQPUXDO J0vS+MsnuMpVKDV+5rD3PHitJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHTJ6Xnd gB0NwmoLloBzi48MUgmCMB8GA1UdIwQYMBaAFNwbObVPYIkax3ipMW1xsL6ABjlu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzRFMS8yMDA0RjE0NDE2 MDExMUU3QThBQzIyNURDNEY5QUUwMi8zQnM1dFU5Z2lSckhlS2t4YlhHd3ZvQUdP VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCczV0VTlnaVJySGVLa3hiWEd3dm9BR09XNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM0RTEvMjAwNEYxNDQxNjAxMTFFN0E4QUMyMjVEQzRGOUFFMDIvRDEyOTQyOEUy NURGMTFFN0FDMDNDMDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWYwDBALKDswwDQYJKoZIhvcNAQELBQADggEBABNhL2/s BurI74gojPXzGzk1C60DFHSGgLR+dQdBXxwNC/imDDQCDpcSJXKg7mZBV/14sR7n zMjMKTKf9J31Q5pDp1/gZYxNqNGGb8b5c8k5Ykpx2FoSIxbLUkBUUcj6BSafLPsZ tcuvcUXDNxMmuy2P7MpNzskSrN1KamMp/jhPrE8cV1Y7k7rNOZK2j1db6JfiSoQ9 FF+L7dvh7tc0a4WcbuWs4ZKvc2U9ROQHa0ROVCv8rOT4lOkgWMqNjYlkCaO0E1nL 2Sl/zk5R4DbXi0t3kkVKYVx0d+AebRmUM9lqn0n/kI5PNxMg5Pfw97jVT1KxFVNx 22hbtVe6+xXdkJc= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:52 2024 by rpki-client on console-fra.rpki-client.org