$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/427DCF0C3D8211EEA0E4DD46C4F9AE02.roa File: 427DCF0C3D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: EXUVL2zA/J8QBofGrTImrqh06PPMbUwS8kq7MDyN79I= Subject key identifier: F6:3A:1F:7E:69:9A:17:BB:99:06:7E:AC:15:CB:37:33:EC:09:01:35 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0DFF Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/427DCF0C3D8211EEA0E4DD46C4F9AE02.roa Signing time: Wed 04 Sep 2024 18:36:29 +0000 ROA not before: Wed 04 Sep 2024 18:36:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138970 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3583 (0xdff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 4 18:36:29 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8a8ad-b8c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:04:6d:cf:18:76:66:fd:cb:40:17:a8:1a: 10:7e:68:31:bb:64:fa:22:ec:63:39:cb:fb:6b:57: 06:bd:86:2c:d7:ba:eb:b8:8e:e4:2a:4d:bc:9d:f7: 20:04:e4:7d:5b:0f:95:f0:ba:42:19:d2:0c:3f:0d: 8c:b1:8f:4a:21:74:7d:e7:c6:7f:87:64:94:8f:b3: 41:ee:4c:f3:9c:85:4b:67:b0:7a:65:6e:4a:3c:d6: 61:5e:a9:74:d5:78:67:f9:7e:5c:94:bc:dd:9c:37: 9b:01:15:2c:67:5f:e2:7e:12:12:6e:8b:c6:40:7b: 54:88:99:ac:04:bf:0e:a6:62:57:91:d3:47:30:42: 1d:97:d7:24:11:a7:0a:07:c9:a0:3f:7f:c0:42:60: e8:dc:03:78:b3:dd:15:f0:79:e8:ac:56:2f:59:12: 54:50:ab:50:f4:7e:30:d0:0a:d9:11:88:b5:7e:06: 78:e0:12:48:a4:fb:77:83:bf:50:ed:c0:fa:ca:6a: b3:91:63:33:ab:f4:5e:a2:88:52:9a:da:d7:76:c1: ee:2b:b6:04:69:25:84:de:c7:ce:62:0f:06:7d:f6: 36:0a:05:84:e4:c0:c4:8c:f9:21:16:51:24:bd:20: ca:d1:38:4f:74:64:34:df:ba:80:61:5f:6d:f1:b0: b9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:3A:1F:7E:69:9A:17:BB:99:06:7E:AC:15:CB:37:33:EC:09:01:35 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/427DCF0C3D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption 89:bc:d0:69:2a:48:bc:20:05:91:01:10:d2:7c:c1:4c:3a:07: 8c:92:a1:7f:73:85:05:ba:69:83:d7:5f:c2:0c:1d:69:6b:c4: 79:e5:97:75:ff:98:d7:9c:a0:f8:eb:ff:e5:62:0b:83:b0:a9: 61:64:fd:b2:8d:38:fa:fa:48:e2:90:f6:4e:12:a7:cc:58:e4: c8:12:d7:a2:a2:29:15:bf:89:39:ad:13:09:73:39:fb:c1:62: 93:43:cf:cb:4b:56:29:0c:42:f6:11:b4:6a:7a:78:3c:69:c5: fb:03:f9:16:9f:68:6d:d1:5a:d8:02:cb:eb:bd:41:16:65:7b: 5e:b9:6a:ef:e2:18:e9:23:44:b7:70:bc:c3:68:ae:d7:8c:45: 89:09:38:90:64:2b:3d:cd:39:c8:84:f3:76:df:ad:16:c3:30: 4a:00:09:d8:db:a7:1f:e6:fc:d6:58:c8:ab:5e:04:91:0e:a5: 56:39:12:4d:0a:4b:0a:bd:56:0c:2a:f4:ac:56:3c:80:21:2c: d0:bb:8f:d9:8d:f0:7c:db:a4:f6:55:9f:af:de:b7:bf:8d:87: 3e:57:56:cb:05:1a:f5:5a:dc:37:18:e4:70:69:e0:2c:14:0d: 28:d6:98:c9:1c:58:8f:bb:18:94:43:86:ed:de:f1:c6:2b:76: 75:9a:57:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjQwOTA0MTgzNjI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YThhZC1iOGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVQEbc8Ydmb9y0AXqBoQfmgxu2T6IuxjOcv7a1cGvYYs17rruI7kKk28nfcg BOR9Ww+V8LpCGdIMPw2MsY9KIXR958Z/h2SUj7NB7kzznIVLZ7B6ZW5KPNZhXql0 1Xhn+X5clLzdnDebARUsZ1/ifhISbovGQHtUiJmsBL8OpmJXkdNHMEIdl9ckEacK B8mgP3/AQmDo3AN4s90V8HnorFYvWRJUUKtQ9H4w0ArZEYi1fgZ44BJIpPt3g79Q 7cD6ymqzkWMzq/ReoohSmtrXdsHuK7YEaSWE3sfOYg8GffY2CgWE5MDEjPkhFlEk vSDK0ThPdGQ037qAYV9t8bC56QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPY6H35p mhe7mQZ+rBXLNzPsCQE1MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDI3RENGMEMz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBAIm80GkqSLwgBZEB ENJ8wUw6B4ySoX9zhQW6aYPXX8IMHWlrxHnll3X/mNecoPjr/+ViC4OwqWFk/bKN OPr6SOKQ9k4Sp8xY5MgS16KiKRW/iTmtEwlzOfvBYpNDz8tLVikMQvYRtGp6eDxp xfsD+RafaG3RWtgCy+u9QRZle165au/iGOkjRLdwvMNorteMRYkJOJBkKz3NOciE 83bfrRbDMEoACdjbpx/m/NZYyKteBJEOpVY5Ek0KSwq9Vgwq9KxWPIAhLNC7j9mN 8HzbpPZVn6/et7+Nhz5XVssFGvVa3DcY5HBp4CwUDSjWmMkcWI+7GJRDhu3e8cYr dnWaV3Y= -----END CERTIFICATE-----Generated at Tue Nov 26 19:07:17 2024 by rpki-client on console-fra.rpki-client.org