$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa File: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM= Subject key identifier: 0E:10:24:E8:59:30:39:D3:AB:82:ED:6C:7D:0E:FF:91:C4:53:40:C3 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0DFE Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa Signing time: Wed 04 Sep 2024 18:36:28 +0000 ROA not before: Wed 04 Sep 2024 18:36:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137818 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3582 (0xdfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 4 18:36:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8a8ab-3ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:49:b2:88:96:13:a0:f7:db:73:a9:66:e6:c2: 98:e1:0c:12:53:1c:5e:c8:c4:33:83:6c:21:a9:ee: 0b:29:2c:92:4b:45:de:4f:26:86:80:05:45:86:e8: cf:d1:16:07:f8:7b:b8:ce:01:f2:35:17:1b:1f:b1: 95:f5:d4:0d:c6:b1:ef:92:d6:af:2f:d0:31:74:f7: d2:0e:46:13:98:29:64:f1:9e:9a:c5:8a:77:9b:8c: 2f:40:ea:dc:fd:5a:3c:80:12:1e:03:3a:6a:53:bf: 0a:9d:76:8c:84:83:64:77:22:30:b3:11:1b:25:2d: 8f:11:57:f3:b9:01:92:60:9b:0f:ed:ac:d6:52:b7: c9:8b:a4:2d:58:7a:43:89:c8:86:37:71:ae:7b:02: f0:f5:ec:fa:2b:46:71:13:4b:ec:17:e0:72:83:cf: 6a:e9:b8:fe:9b:b2:73:aa:a0:f7:52:84:d9:75:7c: b1:ae:b6:82:f8:40:92:6a:50:41:db:b0:e5:1c:f6: 1c:79:ee:a3:3e:9b:25:d2:30:cf:4c:5c:47:1b:0b: 97:36:ff:81:f5:1e:4b:e5:23:a0:68:fd:39:11:e3: 4d:26:75:44:23:5d:05:1e:25:8b:d2:b3:70:75:b4: 06:eb:b2:3d:4a:3e:dd:11:e6:9e:ef:db:62:81:7a: dc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:10:24:E8:59:30:39:D3:AB:82:ED:6C:7D:0E:FF:91:C4:53:40:C3 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption 90:6e:9d:50:5c:ee:be:50:d8:f5:80:40:cb:6d:c0:98:bf:dc: 5e:9a:91:f1:97:1d:56:09:19:1f:69:28:01:bc:2a:4e:b2:40: 4d:27:b7:1e:8c:29:f3:d5:6f:7d:fc:60:e6:d1:cc:51:b2:60: d9:a5:b5:f5:39:be:04:1b:94:0c:0f:90:41:f0:2c:c8:8c:a4: 34:e3:97:76:89:53:63:5f:a9:05:5e:25:96:3b:ae:15:a4:5a: 1a:10:3f:be:a2:94:71:8f:f7:2d:a6:d0:ee:07:ba:df:84:ae: 4d:5b:ab:ad:e4:ad:0d:df:d4:e8:08:49:6e:2f:8f:6a:2a:39: 22:93:b6:5e:d0:df:2a:80:17:e7:f5:12:59:c0:f2:05:83:02: e5:42:50:56:0d:a0:e9:64:fb:ee:7f:53:c9:54:f9:64:2d:82: 81:0d:74:8b:72:96:a6:2a:7d:b1:10:51:83:93:27:0d:27:f5: ca:c8:ae:1e:54:ff:ab:3d:5b:70:7a:97:ff:c5:65:aa:7f:3b: 36:a6:ed:1e:7c:22:1b:ad:15:0c:9d:e3:5e:28:26:02:fe:ea: 42:14:62:40:b4:bc:e3:a2:d8:3b:10:25:cd:f3:3a:ae:2b:fb: 86:97:42:86:1b:57:5f:93:28:d0:b6:79:23:6d:6e:bd:d3:a6: cb:49:21:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjQwOTA0MTgzNjI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YThhYi0zZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukmyiJYToPfbc6lm5sKY4QwSUxxeyMQzg2whqe4LKSySS0XeTyaGgAVFhujP 0RYH+Hu4zgHyNRcbH7GV9dQNxrHvktavL9AxdPfSDkYTmClk8Z6axYp3m4wvQOrc /Vo8gBIeAzpqU78KnXaMhINkdyIwsxEbJS2PEVfzuQGSYJsP7azWUrfJi6QtWHpD iciGN3GuewLw9ez6K0ZxE0vsF+Byg89q6bj+m7JzqqD3UoTZdXyxrraC+ECSalBB 27DlHPYcee6jPpsl0jDPTFxHGwuXNv+B9R5L5SOgaP05EeNNJnVEI10FHiWL0rNw dbQG67I9Sj7dEeae79tigXrcFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA4QJOhZ MDnTq4LtbH0O/5HEU0DDMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDFBMDlDNjgz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBAJBunVBc7r5Q2PWA QMttwJi/3F6akfGXHVYJGR9pKAG8Kk6yQE0ntx6MKfPVb338YObRzFGyYNmltfU5 vgQblAwPkEHwLMiMpDTjl3aJU2NfqQVeJZY7rhWkWhoQP76ilHGP9y2m0O4Hut+E rk1bq63krQ3f1OgISW4vj2oqOSKTtl7Q3yqAF+f1ElnA8gWDAuVCUFYNoOlk++5/ U8lU+WQtgoENdItylqYqfbEQUYOTJw0n9crIrh5U/6s9W3B6l//FZap/Ozam7R58 IhutFQyd414oJgL+6kIUYkC0vOOi2DsQJc3zOq4r+4aXQoYbV1+TKNC2eSNtbr3T pstJIZU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org