$ rpki-client -vvf rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/542CA96A0B1911EB92F1EB12C4F9AE02.roa File: 542CA96A0B1911EB92F1EB12C4F9AE02.roa (raw, json) Hash identifier: cHN96rakiLMMTmY831Imo1GOZfeLTYfA5J/r8htgxsk= Subject key identifier: 16:F9:D2:2D:15:AD:E5:3E:9F:0B:41:BE:A2:0E:CF:38:D4:B5:3B:ED Certificate issuer: /CN=A91E00FC/serialNumber=1256018FE6E538C400F63FC7E121C3A701F2DEA9 Certificate serial: 091C Authority key identifier: 12:56:01:8F:E6:E5:38:C4:00:F6:3F:C7:E1:21:C3:A7:01:F2:DE:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ElYBj-blOMQA9j_H4SHDpwHy3qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/542CA96A0B1911EB92F1EB12C4F9AE02.roa Signing time: Fri 10 May 2024 21:30:38 +0000 ROA not before: Fri 10 May 2024 21:30:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139006 IP address blocks: 103.138.128.0/23 maxlen: 24 2400:5a20::/45 maxlen: 48 2400:5a20:8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/ElYBj-blOMQA9j_H4SHDpwHy3qk.crl rsync://rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/ElYBj-blOMQA9j_H4SHDpwHy3qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ElYBj-blOMQA9j_H4SHDpwHy3qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:53:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2332 (0x91c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E00FC/serialNumber=1256018FE6E538C400F63FC7E121C3A701F2DEA9 Validity Not Before: May 10 21:30:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663e91fe-3a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:08:bb:cc:5f:4f:8e:70:15:f4:cb:e8:41: 1b:b9:71:e5:4b:aa:c0:0a:bd:bd:56:b9:6f:62:67: a4:88:81:80:b3:61:1f:8e:95:a3:45:0b:e6:c8:ab: 28:d9:c9:d5:f5:67:2f:11:4a:13:0b:3f:c9:ab:af: 7b:7a:da:21:a2:1f:f4:30:a7:c6:4d:e1:8a:e0:f0: 32:a7:bd:54:cd:39:79:ba:77:05:c2:04:dd:10:70: ac:cc:cb:8b:6a:be:39:f4:eb:ac:11:2f:0c:d3:c5: e3:2c:d7:40:5c:69:51:60:89:e7:02:17:04:d1:d7: b8:12:ac:f4:94:12:f4:12:b1:aa:f9:33:6d:c1:86: 6d:6e:98:db:26:90:0d:ac:1e:8b:e0:b8:a4:cd:fe: ec:a1:09:9a:75:27:7b:ff:fc:21:43:bf:65:5f:bb: 18:50:78:38:a1:dd:ee:b1:97:38:6b:d3:e4:ed:33: 32:58:69:7b:28:dc:4e:cc:82:a1:59:d5:cd:1c:93: 85:7a:69:fa:7a:24:b5:e2:79:6e:bb:c0:fd:ed:92: b7:b7:6f:b7:0d:0d:89:9d:c1:f8:ce:dd:2d:28:9d: 74:2e:6b:cd:4a:c2:4a:c7:61:2d:64:bb:d0:c2:d0: bf:d6:14:00:b2:f5:4a:12:1d:b7:fd:50:bf:7b:e0: 9a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F9:D2:2D:15:AD:E5:3E:9F:0B:41:BE:A2:0E:CF:38:D4:B5:3B:ED X509v3 Authority Key Identifier: keyid:12:56:01:8F:E6:E5:38:C4:00:F6:3F:C7:E1:21:C3:A7:01:F2:DE:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/ElYBj-blOMQA9j_H4SHDpwHy3qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ElYBj-blOMQA9j_H4SHDpwHy3qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E00FC/5C8CB4D67F2F11EAADF4BF6AC4F9AE02/542CA96A0B1911EB92F1EB12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.128.0/23 IPv6: 2400:5a20::/44 Signature Algorithm: sha256WithRSAEncryption 2d:4b:72:4f:2c:3e:51:69:d6:82:63:fa:05:f8:df:cc:c8:d2: ac:69:59:b2:51:0e:62:eb:a4:aa:17:0b:03:de:cb:2a:8e:fa: 0b:7e:08:19:7b:9d:93:01:07:14:bc:2e:32:7f:50:a0:e6:00: 75:a1:4c:b4:f2:c9:8a:86:95:00:af:c1:43:a8:93:5b:71:e3: 3c:97:9d:54:ae:e7:1c:b0:e6:c8:de:8a:92:85:ea:ea:8c:3c: 2d:57:3a:91:05:9d:f3:bb:f8:ac:20:d6:62:93:2b:12:2d:c8: de:0e:bc:ae:49:c4:5b:ae:50:88:67:97:78:b9:51:ca:c3:45: 29:f6:62:f8:2c:d9:8d:ff:fe:dd:13:40:11:45:88:4f:14:ab: ea:78:a5:1d:75:03:a0:df:10:a9:91:60:af:ab:86:bf:c5:7a: 0d:53:96:c0:52:56:fb:d1:58:47:50:39:17:ff:33:80:41:03: 67:e8:09:f0:29:1c:ef:3b:7b:ec:cc:92:c0:b3:11:2f:2a:7e: 37:6f:4a:71:38:54:09:b3:63:03:93:d0:86:c9:0b:62:34:18: 68:b9:1b:58:39:75:dd:40:e4:09:14:01:2a:36:82:2c:16:25: 46:a4:f2:6d:1d:64:0d:1c:35:b8:91:d1:af:ff:17:77:a2:f7: 49:74:9a:ca -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAwRkMxMTAvBgNVBAUTKDEyNTYwMThGRTZFNTM4QzQwMEY2M0ZDN0UxMjFDM0E3 MDFGMkRFQTkwHhcNMjQwNTEwMjEzMDM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlOTFmZS0zYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCsIu8xfT45wFfTL6EEbuXHlS6rACr29VrlvYmekiIGAs2EfjpWjRQvmyKso 2cnV9WcvEUoTCz/Jq697etohoh/0MKfGTeGK4PAyp71UzTl5uncFwgTdEHCszMuL ar459OusES8M08XjLNdAXGlRYInnAhcE0de4Eqz0lBL0ErGq+TNtwYZtbpjbJpAN rB6L4Likzf7soQmadSd7//whQ79lX7sYUHg4od3usZc4a9Pk7TMyWGl7KNxOzIKh WdXNHJOFemn6eiS14nluu8D97ZK3t2+3DQ2JncH4zt0tKJ10LmvNSsJKx2EtZLvQ wtC/1hQAsvVKEh23/VC/e+CaFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBb50i0V reU+nwtBvqIOzzjUtTvtMB8GA1UdIwQYMBaAFBJWAY/m5TjEAPY/x+Ehw6cB8t6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDBGQy81QzhDQjRENjdG MkYxMUVBQURGNEJGNkFDNEY5QUUwMi9FbFlCai1ibE9NUUE5al9INFNIRHB3SHkz cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VsWUJqLWJsT01RQTlqX0g0U0hEcHdIeTNxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAwRkMvNUM4Q0I0RDY3RjJGMTFFQUFERjRCRjZBQzRGOUFFMDIvNTQyQ0E5NkEw QjE5MTFFQjkyRjFFQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnioAwDwQCAAIwCQMHBCQAWiAAADANBgkqhkiG9w0BAQsF AAOCAQEALUtyTyw+UWnWgmP6BfjfzMjSrGlZslEOYuukqhcLA97LKo76C34IGXud kwEHFLwuMn9QoOYAdaFMtPLJioaVAK/BQ6iTW3HjPJedVK7nHLDmyN6KkoXq6ow8 LVc6kQWd87v4rCDWYpMrEi3I3g68rknEW65QiGeXeLlRysNFKfZi+CzZjf/+3RNA EUWITxSr6nilHXUDoN8QqZFgr6uGv8V6DVOWwFJW+9FYR1A5F/8zgEEDZ+gJ8Ckc 7zt77MySwLMRLyp+N29KcThUCbNjA5PQhskLYjQYaLkbWDl13UDkCRQBKjaCLBYl RqTybR1kDRw1uJHRr/8Xd6L3SXSayg== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org