$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/B264EB66A30911ED99A82087C4F9AE02.roa File: B264EB66A30911ED99A82087C4F9AE02.roa (raw, json) Hash identifier: 0JShJtXPx5anPlJ0U5m0+jdnqUtjwG3u5Wm74IlFu78= Subject key identifier: 4E:E1:5A:BC:DB:EE:48:18:63:9F:18:24:52:76:37:9F:5A:5E:40:BE Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: C6 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/B264EB66A30911ED99A82087C4F9AE02.roa Signing time: Sat 17 Feb 2024 05:26:50 +0000 ROA not before: Sat 17 Feb 2024 05:26:50 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17539 IP address blocks: 103.84.148.0/24 maxlen: 24 103.84.149.0/24 maxlen: 24 103.84.150.0/24 maxlen: 24 103.84.151.0/24 maxlen: 24 139.5.116.0/24 maxlen: 24 139.5.117.0/24 maxlen: 24 139.5.118.0/24 maxlen: 24 139.5.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Feb 17 05:26:50 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d0439a-ff5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:99:89:e0:92:c3:24:7c:1b:1f:4a:c0:8f:64: 6d:c0:3b:c2:0c:0d:95:ba:42:74:6a:69:ef:e8:dc: a0:4e:2e:22:3e:59:11:46:9c:86:73:03:fd:3e:31: 11:d9:48:ee:bd:fb:86:b9:03:f6:b6:6c:9f:57:fa: d5:5f:1a:4d:b6:56:d8:34:84:c9:35:c8:1e:e4:20: 00:6d:6c:7c:a6:04:2b:32:5d:9e:ee:d0:76:cb:aa: 5d:f0:47:be:be:a0:df:91:e8:ae:bc:46:b8:08:de: f4:01:a7:15:cf:5d:dc:9b:80:98:92:6d:b9:26:3d: 57:69:a1:c5:f9:e0:16:c6:fa:dd:ee:55:38:7d:10: 26:2b:00:6e:1a:a8:71:aa:26:11:46:f1:e6:fa:a7: a2:82:cd:a4:1f:b1:9c:d0:f0:ff:4f:74:a2:21:68: 6b:cc:78:70:c2:49:fe:99:79:c0:11:84:e8:0d:93: 26:8f:4a:79:26:5d:89:76:5b:3a:0c:c0:e4:5d:33: c9:e5:fe:1b:c7:eb:fb:d6:8a:44:2f:16:7a:cf:fb: 63:82:19:c4:95:32:e9:ed:c3:99:06:e8:e9:e2:9c: 11:dd:49:d3:67:c0:05:57:97:58:34:31:63:a2:14: d1:79:c8:91:5d:bb:e4:cc:d0:0b:53:59:6b:2c:d3: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E1:5A:BC:DB:EE:48:18:63:9F:18:24:52:76:37:9F:5A:5E:40:BE X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/B264EB66A30911ED99A82087C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.148.0/22 139.5.116.0/22 Signature Algorithm: sha256WithRSAEncryption 72:03:39:5d:d6:88:dc:99:7b:bb:10:6a:3c:8f:8d:4e:ef:16: c9:95:2d:0f:d3:d0:2f:97:30:61:1c:26:4b:71:51:c8:2a:b8: 04:26:2d:5f:99:f3:46:58:2e:16:e3:5c:6d:47:fb:04:ab:b1: c7:4c:aa:df:3e:5d:a8:45:5f:88:7a:39:18:aa:c1:a5:73:24: 7f:2f:78:ba:75:9d:56:a9:05:2c:6b:89:7d:52:85:be:79:39: 18:ec:05:21:54:70:80:82:e3:15:5a:18:a4:50:0c:9d:03:12: 84:d3:36:79:66:ed:a8:15:49:0a:59:8b:94:49:0b:c4:78:d2: 3e:ea:8b:10:95:c8:0c:5c:1c:de:b6:ac:03:e7:9e:ba:74:b9: 06:7e:62:b1:8c:07:90:7f:54:55:67:eb:e1:78:f0:a7:f9:df: ee:83:78:f4:cc:8f:04:de:05:02:e3:b6:2b:28:6e:30:2f:dd: 21:72:7f:e7:35:a7:05:6f:9a:a8:a2:db:58:e9:81:a7:0e:3e: e7:10:7e:34:56:86:66:2d:0e:ef:42:b4:5a:bd:99:84:49:3e: 00:4c:c9:81:36:06:58:22:00:a9:e0:d2:51:bb:2c:7e:01:54: 25:b5:d5:91:41:75:03:e6:67:6e:5e:78:54:90:b3:99:db:03: 42:3a:76:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjQwMjE3MDUyNjUwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQwNDM5YS1mZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pmJ4JLDJHwbH0rAj2RtwDvCDA2VukJ0amnv6NygTi4iPlkRRpyGcwP9PjER 2UjuvfuGuQP2tmyfV/rVXxpNtlbYNITJNcge5CAAbWx8pgQrMl2e7tB2y6pd8Ee+ vqDfkeiuvEa4CN70AacVz13cm4CYkm25Jj1XaaHF+eAWxvrd7lU4fRAmKwBuGqhx qiYRRvHm+qeigs2kH7Gc0PD/T3SiIWhrzHhwwkn+mXnAEYToDZMmj0p5Jl2Jdls6 DMDkXTPJ5f4bx+v71opELxZ6z/tjghnElTLp7cOZBujp4pwR3UnTZ8AFV5dYNDFj ohTReciRXbvkzNALU1lrLNMIcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE7hWrzb 7kgYY58YJFJ2N59aXkC+MB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1RTgvRTlFMUJGMjhBMzA1MTFFREFDMTRFRTZDQzRGOUFFMDIvQjI2NEVCNjZB MzA5MTFFRDk5QTgyMDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnVJQDBAKLBXQwDQYJKoZIhvcNAQELBQADggEBAHIDOV3W iNyZe7sQajyPjU7vFsmVLQ/T0C+XMGEcJktxUcgquAQmLV+Z80ZYLhbjXG1H+wSr scdMqt8+XahFX4h6ORiqwaVzJH8veLp1nVapBSxriX1Shb55ORjsBSFUcICC4xVa GKRQDJ0DEoTTNnlm7agVSQpZi5RJC8R40j7qixCVyAxcHN62rAPnnrp0uQZ+YrGM B5B/VFVn6+F48Kf53+6DePTMjwTeBQLjtisobjAv3SFyf+c1pwVvmqii21jpgacO PucQfjRWhmYtDu9CtFq9mYRJPgBMyYE2BlgiAKng0lG7LH4BVCW11ZFBdQPmZ25e eFSQs5nbA0I6dlA= -----END CERTIFICATE-----Generated at Tue May 21 06:39:48 2024 by rpki-client on console-fra.rpki-client.org