$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/DBE8B4205F0F11ECA6315D2AC4F9AE02.roa File: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (raw, json) Hash identifier: OW/XCSh5TYjNDBgsA8OLP9m+aqheZPb2wuOkKfbFjeo= Subject key identifier: CE:A2:FC:0E:90:60:B7:51:BE:5E:18:CD:AF:29:5B:D8:86:EC:F2:89 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0332 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/DBE8B4205F0F11ECA6315D2AC4F9AE02.roa Signing time: Fri 05 Jan 2024 02:24:27 +0000 ROA not before: Fri 05 Jan 2024 02:24:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149168 IP address blocks: 103.177.186.0/23 maxlen: 24 2001:df0:28c0::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Jan 5 02:24:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6597685a-5b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9d:74:17:a4:98:ad:6c:5f:58:49:62:76:43: c6:1a:5a:1c:5c:e4:c7:6d:43:b6:7e:f6:76:4b:65: 61:c2:bf:86:60:43:4f:fd:bb:77:bf:92:d2:1e:30: 58:26:70:1f:29:4c:90:c4:81:6b:66:00:0f:85:26: e8:cc:80:2e:0d:0e:a7:a4:7c:d7:0a:75:18:f7:0e: 38:7c:c7:9d:9f:4c:89:e6:dc:56:a9:24:ab:af:d9: 19:5d:39:e0:f4:39:d2:8b:fd:4f:24:be:ad:28:f3: 50:a4:7c:51:39:30:18:98:89:f0:58:80:84:48:4c: 82:84:17:33:ef:50:21:14:1f:16:f4:c9:72:8c:ca: 89:25:94:d1:ce:8f:41:74:4e:71:06:d8:87:8e:b7: ce:4b:67:d2:f7:e9:d1:8e:2e:6d:71:e5:e5:bf:1b: 17:bc:bf:99:0d:d0:aa:4f:cf:97:bf:ae:aa:55:22: aa:30:59:82:95:bb:76:94:a7:c4:fd:83:a4:b3:a8: 1e:2c:c5:78:17:c1:a7:38:a5:46:92:1e:08:aa:62: 57:99:84:08:74:df:86:8b:2f:06:84:7e:59:fc:5a: 5d:75:72:02:1f:0c:61:5e:51:af:c6:e6:b0:ad:2d: 3b:26:ab:9d:14:06:9a:2f:a3:07:27:75:36:a7:01: d5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A2:FC:0E:90:60:B7:51:BE:5E:18:CD:AF:29:5B:D8:86:EC:F2:89 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/DBE8B4205F0F11ECA6315D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.186.0/23 IPv6: 2001:df0:28c0::/48 Signature Algorithm: sha256WithRSAEncryption 92:3b:ba:f0:e0:1f:ba:13:ba:a6:5c:ac:98:05:a3:14:27:29: 9a:59:7c:28:58:e6:0c:51:de:93:96:60:32:35:7e:39:a2:59: 50:ac:c7:65:c1:a2:e1:bd:5e:1e:e0:14:b3:72:9b:7d:ad:ba: c2:eb:d7:ef:5c:67:fd:9f:15:74:d4:f5:f3:88:64:82:b9:6e: b2:2c:fe:83:36:7a:f7:8c:99:65:5c:89:ad:5a:cf:4a:5f:31: 38:11:07:e5:90:ca:6f:4c:b3:4c:26:78:7a:08:a1:d8:2b:de: cd:d8:8b:be:33:b6:8e:60:b8:73:21:43:6c:aa:51:58:20:2b: 38:9f:6b:d9:03:91:18:00:c7:48:a0:f8:4f:14:2b:56:0a:ea: 93:9f:59:bb:bb:9b:5f:d2:d5:e2:89:67:7f:64:50:51:72:9a: f2:bd:1e:5b:fd:2e:6e:c7:27:9f:11:16:0d:fb:b2:af:02:f2: 2c:99:84:44:1a:c7:74:eb:8c:ad:59:99:c5:fc:71:74:49:0d: fb:c9:5e:06:8e:89:7e:53:f6:bc:22:68:99:2d:0b:5f:af:64: 47:59:e5:c1:ba:62:0e:34:35:2b:33:bf:39:b2:00:50:a0:74: d7:67:66:16:49:4e:bc:d9:18:ea:55:54:0e:0c:f2:ea:95:78: ea:5c:f4:ab -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjQwMTA1MDIyNDI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3Njg1YS01YjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5p10F6SYrWxfWElidkPGGlocXOTHbUO2fvZ2S2Vhwr+GYENP/bt3v5LSHjBY JnAfKUyQxIFrZgAPhSbozIAuDQ6npHzXCnUY9w44fMedn0yJ5txWqSSrr9kZXTng 9DnSi/1PJL6tKPNQpHxROTAYmInwWICESEyChBcz71AhFB8W9MlyjMqJJZTRzo9B dE5xBtiHjrfOS2fS9+nRji5tceXlvxsXvL+ZDdCqT8+Xv66qVSKqMFmClbt2lKfE /YOks6geLMV4F8GnOKVGkh4IqmJXmYQIdN+Giy8GhH5Z/FpddXICHwxhXlGvxuaw rS07JqudFAaaL6MHJ3U2pwHVXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM6i/A6Q YLdRvl4Yza8pW9iG7PKJMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTMzMUQvRTc2MTBDQ0U1RjBDMTFFQ0E5MTQ0NDI2QzRGOUFFMDIvREJFOEI0MjA1 RjBGMTFFQ0E2MzE1RDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsbowDwQCAAIwCQMHACABDfAowDANBgkqhkiG9w0BAQsF AAOCAQEAkju68OAfuhO6plysmAWjFCcpmll8KFjmDFHek5ZgMjV+OaJZUKzHZcGi 4b1eHuAUs3Kbfa26wuvX71xn/Z8VdNT184hkgrlusiz+gzZ694yZZVyJrVrPSl8x OBEH5ZDKb0yzTCZ4egih2CvezdiLvjO2jmC4cyFDbKpRWCArOJ9r2QORGADHSKD4 TxQrVgrqk59Zu7ubX9LV4olnf2RQUXKa8r0eW/0ubscnnxEWDfuyrwLyLJmERBrH dOuMrVmZxfxxdEkN+8leBo6JflP2vCJomS0LX69kR1nlwbpiDjQ1KzO/ObIAUKB0 12dmFklOvNkY6lVUDgzy6pV46lz0qw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org