$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa File: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY= Subject key identifier: E8:E6:CA:50:4C:CF:8C:40:0A:30:46:9E:0E:4D:CB:6B:6A:37:2E:B8 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0DFD Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa Signing time: Wed 04 Sep 2024 18:36:27 +0000 ROA not before: Wed 04 Sep 2024 18:36:27 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135366 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3581 (0xdfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 4 18:36:27 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8a8aa-5082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b6:47:d7:67:03:7d:b7:bf:ab:a5:dd:2e:87: d6:f0:cf:38:af:a1:de:86:b7:91:f7:65:12:bc:3e: af:09:36:31:a8:eb:d0:bd:46:ff:45:1d:7a:9c:30: b1:22:cc:f0:55:50:ea:4e:5f:62:31:70:d9:6f:b9: f6:d5:39:70:31:db:ab:34:ac:6f:0a:47:81:b0:6d: ce:06:72:d0:ca:5a:58:ef:f4:00:d8:c0:85:4a:90: 24:a1:be:cc:e6:54:b9:a2:41:5f:79:30:0f:4b:f9: 2e:16:b6:f4:32:bc:0a:5e:94:56:90:d3:f9:a0:5f: c1:64:bd:1a:85:8c:2d:06:73:12:f5:9a:71:85:b3: 2c:bb:9f:9d:1d:2e:2d:83:bb:94:e0:fd:d4:63:5c: 71:82:26:b4:c5:88:8e:58:2e:24:dd:58:8b:96:a7: a5:61:4d:7b:e7:a1:70:f6:40:1d:71:7b:3d:7b:f3: 12:33:f4:a2:8c:8d:e0:5f:a0:18:ae:cb:c0:2f:7d: a3:5c:ae:7e:b9:2b:06:7f:3e:29:46:41:a4:34:c8: 6a:c6:0c:04:70:49:66:03:f8:2e:7b:7e:08:fa:f0: aa:e4:69:24:68:fd:ef:0c:65:a6:96:c2:92:ba:c9: 10:49:cc:44:3c:a8:88:1e:07:bf:bd:98:1d:c2:4d: 95:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E6:CA:50:4C:CF:8C:40:0A:30:46:9E:0E:4D:CB:6B:6A:37:2E:B8 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption b3:3e:3d:8f:a0:bb:8e:c5:d1:db:30:e5:d1:d2:15:4c:0e:b1: 86:f7:8f:11:ba:18:d6:d2:6b:12:98:99:ad:63:ef:c4:c4:a5: 52:72:9e:fa:fc:2d:e4:c1:81:7f:f6:07:42:f7:ef:51:6e:1a: 63:18:55:c7:99:eb:5c:d0:a0:bd:da:42:55:5f:71:d3:f0:bc: 77:98:96:5c:5c:13:76:0b:ef:df:62:45:93:26:7c:7d:50:57: 6b:2d:60:0a:13:52:87:54:39:a3:8d:15:bd:77:cd:50:3c:15: c8:c7:4b:3d:71:0c:6e:c0:6c:27:1b:d3:39:59:de:ec:38:20: 5c:1a:d5:88:06:aa:7d:97:87:80:7e:b4:3e:62:7a:85:8f:d7: 00:09:b3:c3:3e:09:fc:9c:b1:60:ce:00:de:4b:cf:80:90:b0: 96:7b:9c:1a:37:be:f9:4d:7e:a1:0f:4b:99:54:f8:e8:ae:7c: 9d:20:ec:1f:7c:c2:ab:01:ef:8a:7d:fe:b4:a2:7d:15:a8:90: 3e:fa:86:b8:1f:25:b0:da:50:9f:5e:db:54:6e:ac:01:fc:b4: 78:17:2c:88:27:6d:41:a0:3e:99:4e:d1:df:f2:4d:65:57:fe: ac:47:2a:a3:55:a7:2b:49:84:39:0f:19:c0:92:32:74:7f:54: fb:c5:e5:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjQwOTA0MTgzNjI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YThhYS01MDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLZH12cDfbe/q6XdLofW8M84r6HehreR92USvD6vCTYxqOvQvUb/RR16nDCx IszwVVDqTl9iMXDZb7n21TlwMdurNKxvCkeBsG3OBnLQylpY7/QA2MCFSpAkob7M 5lS5okFfeTAPS/kuFrb0MrwKXpRWkNP5oF/BZL0ahYwtBnMS9ZpxhbMsu5+dHS4t g7uU4P3UY1xxgia0xYiOWC4k3ViLlqelYU1756Fw9kAdcXs9e/MSM/SijI3gX6AY rsvAL32jXK5+uSsGfz4pRkGkNMhqxgwEcElmA/gue34I+vCq5GkkaP3vDGWmlsKS uskQScxEPKiIHge/vZgdwk2VcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOjmylBM z4xACjBGng5Ny2tqNy64MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDBCQTNGNUMz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBALM+PY+gu47F0dsw 5dHSFUwOsYb3jxG6GNbSaxKYma1j78TEpVJynvr8LeTBgX/2B0L371FuGmMYVceZ 61zQoL3aQlVfcdPwvHeYllxcE3YL799iRZMmfH1QV2stYAoTUodUOaONFb13zVA8 FcjHSz1xDG7AbCcb0zlZ3uw4IFwa1YgGqn2Xh4B+tD5ieoWP1wAJs8M+CfycsWDO AN5Lz4CQsJZ7nBo3vvlNfqEPS5lU+OiufJ0g7B98wqsB74p9/rSifRWokD76hrgf JbDaUJ9e21RurAH8tHgXLIgnbUGgPplO0d/yTWVX/qxHKqNVpytJhDkPGcCSMnR/ VPvF5ds= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org