$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa File: 5D432F98177711EEAB396D1CC4F9AE02.roa (raw, json) Hash identifier: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28= Subject key identifier: D4:CB:E7:14:5C:E5:A0:81:EE:D2:9A:86:E8:CF:2C:E5:92:9B:16:B8 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: C5 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa Signing time: Thu 11 Jul 2024 05:36:44 +0000 ROA not before: Thu 11 Jul 2024 05:36:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Jul 11 05:36:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668f6f6c-4f10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:e7:fd:7e:a9:0d:3d:2c:da:7d:5d:79:69: 44:e9:e4:38:4c:9d:6a:26:70:ce:e9:9b:f1:d7:8f: 9f:94:94:4d:19:a3:78:76:7c:7a:46:2f:38:af:3c: 31:12:82:66:c5:f5:06:8b:71:1e:7c:84:46:a5:1b: be:a7:4e:d4:ef:15:91:c1:25:cf:50:3e:a4:40:cd: 17:61:23:4b:fc:08:0b:4c:4d:27:df:29:85:da:a0: c5:3b:e2:5c:1a:e3:87:84:59:ca:b1:5a:e0:d0:52: 38:8f:12:eb:30:92:88:df:35:6b:54:f2:51:a2:f3: e5:16:51:ac:90:8f:80:8f:3c:d6:e1:aa:af:bc:0f: 4d:11:c1:98:fc:5f:f6:93:ad:2d:db:64:95:08:19: 8e:1b:1e:5b:df:14:3a:a0:63:a7:02:40:8a:04:0a: 5f:98:9d:b1:b4:84:8b:0c:08:35:73:17:f8:d3:09: e5:c8:00:67:ba:75:e5:6c:cf:b0:01:46:c3:49:94: 25:69:26:0f:b3:e4:c2:a1:f7:e9:be:33:bf:69:06: 9f:97:80:bf:fc:bc:ab:7c:12:dd:69:35:48:05:e1: 6b:6f:b3:e0:1a:ef:12:10:e0:88:47:52:43:4b:7e: a3:ed:1b:01:7a:4d:09:09:ff:c2:6b:bf:ab:cf:de: 0b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CB:E7:14:5C:E5:A0:81:EE:D2:9A:86:E8:CF:2C:E5:92:9B:16:B8 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/5D432F98177711EEAB396D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.233.0/24 Signature Algorithm: sha256WithRSAEncryption 99:cd:b6:ad:bb:7c:05:76:ea:1a:19:78:4b:d1:cb:81:50:3e: 9a:da:77:a7:c4:df:63:4e:10:04:60:eb:ce:5e:d4:6c:a7:2a: 51:45:a8:19:7f:e6:c5:c2:0f:78:ee:ac:98:fc:72:4d:be:6d: 6e:14:af:a0:ac:86:e7:c4:3b:3a:77:82:a1:6f:eb:71:e9:09: fe:69:9e:cf:5e:a1:d3:5f:a2:e0:ea:3e:42:fa:ea:64:0b:2b: 1f:f1:0c:04:0d:43:12:cd:29:d9:82:3b:df:95:bc:61:1d:c8: 3f:01:b3:ef:9d:f6:27:93:fc:55:99:ff:46:df:9d:1a:23:81: dd:2c:3f:3a:2f:16:ab:24:d6:79:f7:a3:c1:71:bb:dc:b9:cd: 37:4a:3b:f2:e5:99:cb:e6:fb:00:1b:51:e0:ef:b8:7d:68:0b: 2b:9a:03:47:60:69:87:85:db:26:4c:f5:ce:1d:42:e0:e0:dc: 74:3a:8b:02:60:dc:1e:f9:54:52:80:80:85:d1:89:db:e7:a7: 32:50:78:cb:91:41:7f:bd:91:ae:1f:e0:62:98:4d:ce:ed:5b: c3:0d:23:b4:d7:1b:2c:96:f4:82:78:e1:d2:44:60:8f:f9:10: af:68:2b:26:09:dc:93:0d:c1:00:59:fe:2b:4d:7e:66:b2:10: 7b:39:67:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjQwNzExMDUzNjQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNmY2Yy00ZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2Xn/X6pDT0s2n1deWlE6eQ4TJ1qJnDO6Zvx14+flJRNGaN4dnx6Ri84rzwx EoJmxfUGi3EefIRGpRu+p07U7xWRwSXPUD6kQM0XYSNL/AgLTE0n3ymF2qDFO+Jc GuOHhFnKsVrg0FI4jxLrMJKI3zVrVPJRovPlFlGskI+AjzzW4aqvvA9NEcGY/F/2 k60t22SVCBmOGx5b3xQ6oGOnAkCKBApfmJ2xtISLDAg1cxf40wnlyABnunXlbM+w AUbDSZQlaSYPs+TCoffpvjO/aQafl4C//LyrfBLdaTVIBeFrb7PgGu8SEOCIR1JD S36j7RsBek0JCf/Ca7+rz94L9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNTL5xRc 5aCB7tKahujPLOWSmxa4MB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2NDEvN0QwMjg3RUExNzcwMTFFRTk0NUNEODU5QzRGOUFFMDIvNUQ0MzJGOTgx Nzc3MTFFRUFCMzk2RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5ekwDQYJKoZIhvcNAQELBQADggEBAJnNtq27fAV26hoZ eEvRy4FQPprad6fE32NOEARg685e1GynKlFFqBl/5sXCD3jurJj8ck2+bW4Ur6Cs hufEOzp3gqFv63HpCf5pns9eodNfouDqPkL66mQLKx/xDAQNQxLNKdmCO9+VvGEd yD8Bs++d9ieT/FWZ/0bfnRojgd0sPzovFqsk1nn3o8Fxu9y5zTdKO/Llmcvm+wAb UeDvuH1oCyuaA0dgaYeF2yZM9c4dQuDg3HQ6iwJg3B75VFKAgIXRidvnpzJQeMuR QX+9ka4f4GKYTc7tW8MNI7TXGyyW9IJ44dJEYI/5EK9oKyYJ3JMNwQBZ/itNfmay EHs5Z6c= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org