$ rpki-client -vvf rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/DA7E3CA6E19811E8822B8E5CC4F9AE02.roa File: DA7E3CA6E19811E8822B8E5CC4F9AE02.roa (raw, json) Hash identifier: nEHygU0iQ55kYxCvR5kzgzTy6GI2Ua1TfbgvO9Q4FhE= Subject key identifier: BC:56:FB:DC:0B:1B:8D:9C:CB:E4:83:8C:A6:20:EC:5C:FF:8C:C3:DE Certificate issuer: /CN=A91E84A9/serialNumber=30993870E912CD191D80ACEF30357A54FF34F82E Certificate serial: 1168 Authority key identifier: 30:99:38:70:E9:12:CD:19:1D:80:AC:EF:30:35:7A:54:FF:34:F8:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJk4cOkSzRkdgKzvMDV6VP80-C4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/DA7E3CA6E19811E8822B8E5CC4F9AE02.roa Signing time: Thu 04 Jul 2024 17:54:51 +0000 ROA not before: Thu 04 Jul 2024 17:54:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137947 IP address blocks: 103.118.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/MJk4cOkSzRkdgKzvMDV6VP80-C4.crl rsync://rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/MJk4cOkSzRkdgKzvMDV6VP80-C4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJk4cOkSzRkdgKzvMDV6VP80-C4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4456 (0x1168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E84A9/serialNumber=30993870E912CD191D80ACEF30357A54FF34F82E Validity Not Before: Jul 4 17:54:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6686e1eb-1a90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:92:01:d4:21:a8:06:fc:ae:3b:c8:62:71:c5: 08:1b:37:61:70:cc:bc:5a:00:59:e9:73:d0:c3:8b: d1:b1:54:8f:dc:45:38:e9:7b:f9:f2:48:7b:c5:b8: 11:b5:4a:2b:cc:1c:36:89:5c:08:b6:f2:78:40:cd: 5d:30:f5:f4:97:82:f8:cd:e1:2d:15:c8:d0:90:9d: 01:fd:5b:78:f2:1f:54:e5:d5:9c:5d:3d:7a:94:18: 19:26:e9:81:a8:4c:dd:0c:8a:86:64:e4:7d:5b:d9: 07:4e:bb:d9:fd:8b:47:41:d8:db:e4:98:6b:aa:1b: 55:be:d1:b4:01:13:3d:75:c3:2c:45:fb:d0:24:0f: a2:28:d9:14:8c:0e:09:95:b3:f6:b6:c4:b5:9d:38: d1:52:1a:ea:b4:7a:ed:15:e0:26:98:c1:47:a9:da: 74:25:23:8d:30:f9:b8:bd:5b:b3:4d:14:76:0c:c6: ef:c6:4a:34:18:a7:d4:5d:45:d5:b8:0c:45:56:74: 2d:df:38:a6:e0:3a:df:16:aa:59:de:61:0d:5e:9b: be:8d:39:ed:8b:e8:c1:36:2b:c7:22:78:a4:e8:9f: 95:cf:b8:1a:3d:fa:5e:49:70:21:2f:16:a8:56:f2: 82:2c:2f:2e:c4:e8:23:69:42:24:96:9d:0e:da:de: bc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:56:FB:DC:0B:1B:8D:9C:CB:E4:83:8C:A6:20:EC:5C:FF:8C:C3:DE X509v3 Authority Key Identifier: keyid:30:99:38:70:E9:12:CD:19:1D:80:AC:EF:30:35:7A:54:FF:34:F8:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/MJk4cOkSzRkdgKzvMDV6VP80-C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJk4cOkSzRkdgKzvMDV6VP80-C4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E84A9/6A90A9C0E19711E8B94C0558C4F9AE02/DA7E3CA6E19811E8822B8E5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.0.0/23 Signature Algorithm: sha256WithRSAEncryption 20:1a:a1:d6:23:53:5d:32:70:47:5e:a7:36:59:c4:d4:21:f6: 74:c4:48:23:84:e6:1e:5e:cb:c9:7e:f7:90:fb:6c:7d:e0:07: 33:8d:45:31:d4:c6:af:4e:f9:ec:a8:29:8b:c3:27:6b:06:14: 6f:18:66:94:fd:ce:23:22:84:53:43:b3:60:52:d7:d1:84:01: 07:e7:b5:86:bb:6e:ac:98:f6:c7:82:ec:30:c2:00:dc:16:5e: 7d:b1:57:2f:3c:12:5e:7a:56:7a:08:b5:cb:d4:89:40:2c:2f: fc:c7:08:c0:2d:df:ab:8e:c5:31:95:ce:4a:26:ff:c0:88:8d: a9:37:f1:76:25:6d:73:99:d5:11:ec:01:c4:5f:cb:d7:01:64: a5:94:a5:ac:fc:9f:19:33:67:a0:8b:d1:ab:37:09:f3:49:1f: e1:36:6b:56:9c:6f:57:65:db:da:31:91:dc:d1:7b:cc:7e:b5: f9:ac:c1:04:58:7a:ea:9e:4a:22:2d:ca:62:a5:4f:24:5c:fc: c4:f1:aa:33:c2:d0:a5:e0:1f:89:a1:f8:c8:d9:54:ae:b5:43: d7:31:e0:8c:f3:ca:27:34:be:48:32:a9:02:8c:e6:6e:c6:e2: 64:d2:cc:74:5b:1d:5a:03:a9:47:a0:b2:61:d5:27:78:ed:8c: 51:e2:b1:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0QTkxMTAvBgNVBAUTKDMwOTkzODcwRTkxMkNEMTkxRDgwQUNFRjMwMzU3QTU0 RkYzNEY4MkUwHhcNMjQwNzA0MTc1NDUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg2ZTFlYi0xYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pIB1CGoBvyuO8hiccUIGzdhcMy8WgBZ6XPQw4vRsVSP3EU46Xv58kh7xbgR tUorzBw2iVwItvJ4QM1dMPX0l4L4zeEtFcjQkJ0B/Vt48h9U5dWcXT16lBgZJumB qEzdDIqGZOR9W9kHTrvZ/YtHQdjb5JhrqhtVvtG0ARM9dcMsRfvQJA+iKNkUjA4J lbP2tsS1nTjRUhrqtHrtFeAmmMFHqdp0JSONMPm4vVuzTRR2DMbvxko0GKfUXUXV uAxFVnQt3zim4DrfFqpZ3mENXpu+jTnti+jBNivHInik6J+Vz7gaPfpeSXAhLxao VvKCLC8uxOgjaUIklp0O2t68GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLxW+9wL G42cy+SDjKYg7Fz/jMPeMB8GA1UdIwQYMBaAFDCZOHDpEs0ZHYCs7zA1elT/NPgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODRBOS82QTkwQTlDMEUx OTcxMUU4Qjk0QzA1NThDNEY5QUUwMi9NSms0Y09rU3pSa2RnS3p2TURWNlZQODAt QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KazRjT2tTelJrZGdLenZNRFY2VlA4MC1DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg0QTkvNkE5MEE5QzBFMTk3MTFFOEI5NEMwNTU4QzRGOUFFMDIvREE3RTNDQTZF MTk4MTFFODgyMkI4RTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndgAwDQYJKoZIhvcNAQELBQADggEBACAaodYjU10ycEde pzZZxNQh9nTESCOE5h5ey8l+95D7bH3gBzONRTHUxq9O+eyoKYvDJ2sGFG8YZpT9 ziMihFNDs2BS19GEAQfntYa7bqyY9seC7DDCANwWXn2xVy88El56VnoItcvUiUAs L/zHCMAt36uOxTGVzkom/8CIjak38XYlbXOZ1RHsAcRfy9cBZKWUpaz8nxkzZ6CL 0as3CfNJH+E2a1acb1dl29oxkdzRe8x+tfmswQRYeuqeSiItymKlTyRc/MTxqjPC 0KXgH4mh+MjZVK61Q9cx4Izzyic0vkgyqQKM5m7G4mTSzHRbHVoDqUegsmHVJ3jt jFHisRA= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org