$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/29686394E82511EE9E51342EC4F9AE02.roa File: 29686394E82511EE9E51342EC4F9AE02.roa (raw, json) Hash identifier: oA8Wx4epliD0nx79Vzkz7YyyCt3NzUldrv8TpsAyH8A= Subject key identifier: F1:9A:91:AA:1A:09:29:AF:53:D4:CB:8B:4F:D0:39:84:27:95:F8:0A Certificate issuer: /CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Certificate serial: 22 Authority key identifier: ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/29686394E82511EE9E51342EC4F9AE02.roa Signing time: Thu 11 Apr 2024 07:36:59 +0000 ROA not before: Thu 11 Apr 2024 07:36:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139646 IP address blocks: 103.143.14.0/23 maxlen: 23 103.143.14.0/24 maxlen: 24 103.143.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 08:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Validity Not Before: Apr 11 07:36:59 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6617931a-0468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:0e:3f:d8:94:d8:28:d1:5a:77:84:5e:9c: 55:6b:bc:cf:32:b1:69:68:b5:6d:a6:f5:39:d3:50: 21:37:20:5c:bd:f8:8c:52:57:b0:09:80:cc:92:ce: 30:6e:11:bd:0d:29:a0:73:bd:23:be:88:29:a2:85: 87:64:87:8b:c4:12:62:3f:45:23:31:00:20:f5:3d: 23:fd:a9:7d:2c:e3:4c:15:e5:92:be:7e:78:75:f4: 16:5f:8e:fd:27:08:b1:73:d6:89:d9:55:33:83:8e: 19:4e:44:80:ab:28:d6:77:02:4b:1a:aa:73:73:56: bf:9b:1e:2d:49:1b:88:6b:27:01:ff:65:42:be:fe: 0d:42:0d:76:2d:02:bc:8b:28:e9:87:45:f7:15:2d: fc:25:c2:cb:fe:b1:ea:3d:c9:74:7f:63:15:ac:c7: 7b:06:aa:9c:ec:03:56:0a:9d:d1:bf:b8:ea:a5:f1: e1:ec:85:1e:16:28:3e:e5:84:0c:9b:bb:af:9d:9a: 74:a0:7d:7f:91:5e:dc:b2:fe:33:7e:cd:34:49:4a: 5b:8f:b6:48:89:46:c7:0f:73:86:4f:07:14:e6:d8: ac:ac:32:21:0f:5c:eb:4d:61:3e:0e:40:43:44:5d: 7a:51:79:76:b1:15:2a:91:39:e5:94:39:a9:bb:4e: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:9A:91:AA:1A:09:29:AF:53:D4:CB:8B:4F:D0:39:84:27:95:F8:0A X509v3 Authority Key Identifier: keyid:ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/29686394E82511EE9E51342EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.14.0/23 Signature Algorithm: sha256WithRSAEncryption 04:ee:45:f9:10:13:3c:de:21:9c:76:ba:5f:bd:c6:d3:de:f8: 33:c5:3f:cd:00:4d:8f:8f:ea:d1:ca:b4:ef:59:36:c7:4b:33: 7c:9d:0d:e9:66:c6:92:98:95:44:84:72:27:36:31:5a:d4:f9: 05:b6:cb:70:1c:98:96:a7:dd:c3:2e:7a:43:6f:fe:9f:a6:01: 42:2a:20:0d:e0:22:9f:a0:e4:21:fe:76:d7:b8:e0:ed:68:54: da:a3:e6:9e:a5:51:95:da:b6:70:5a:2f:13:79:fe:ba:93:c8: 0e:d1:6e:ea:d2:fe:2a:61:a7:a8:27:43:33:db:6f:79:9d:30: ed:8f:4a:45:9b:93:78:63:9e:66:8d:2f:f1:dd:06:7f:87:6d: b3:51:a4:ff:66:01:f2:3f:34:12:59:04:a4:4a:cd:73:a1:a3: 6e:c0:90:4c:51:d3:b7:12:b9:b8:a7:d1:97:de:45:82:43:a7: 6d:52:d7:fd:b6:f2:70:f3:24:64:5b:1e:30:e9:65:f5:e8:8d: 36:de:d9:bf:e1:b8:61:cb:f0:94:67:3f:b1:ac:da:aa:2a:57: 33:ef:25:19:49:be:0b:55:2a:54:31:e0:38:f2:b6:07:be:a2: 41:fd:0f:03:b3:39:59:16:13:ce:d0:a5:b6:03:d6:e5:4e:33: a5:a3:09:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OTZCQzExMC8GA1UEBRMoRUQxMUVCNEMzNDgwNDE5OUVBNzc1MDBFRERCQkVFRTEw Qjc1NDlBQjAeFw0yNDA0MTEwNzM2NTlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTc5MzFhLTA0NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9Iw4/2JTYKNFad4RenFVrvM8ysWlotW2m9TnTUCE3IFy9+IxSV7AJgMySzjBu Eb0NKaBzvSO+iCmihYdkh4vEEmI/RSMxACD1PSP9qX0s40wV5ZK+fnh19BZfjv0n CLFz1onZVTODjhlORICrKNZ3AksaqnNzVr+bHi1JG4hrJwH/ZUK+/g1CDXYtAryL KOmHRfcVLfwlwsv+seo9yXR/YxWsx3sGqpzsA1YKndG/uOql8eHshR4WKD7lhAyb u6+dmnSgfX+RXtyy/jN+zTRJSluPtkiJRscPc4ZPBxTm2KysMiEPXOtNYT4OQENE XXpReXaxFSqROeWUOam7TmSBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8ZqRqhoJ Ka9T1MuLT9A5hCeV+AowHwYDVR0jBBgwFoAU7RHrTDSAQZnqd1AO3bvu4Qt1Sasw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5NkJDLzY2ODdFRjIyRDE0 RDExRUU5REI0MTgwRkM0RjlBRTAyLzdSSHJURFNBUVpucWQxQU8zYnZ1NFF0MVNh cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1JIclREU0FRWm5xZDFBTzNidnU0UXQxU2FzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZCQy82Njg3RUYyMkQxNEQxMUVFOURCNDE4MEZDNEY5QUUwMi8yOTY4NjM5NEU4 MjUxMUVFOUU1MTM0MkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWePDjANBgkqhkiG9w0BAQsFAAOCAQEABO5F+RATPN4hnHa6 X73G0974M8U/zQBNj4/q0cq071k2x0szfJ0N6WbGkpiVRIRyJzYxWtT5BbbLcByY lqfdwy56Q2/+n6YBQiogDeAin6DkIf5217jg7WhU2qPmnqVRldq2cFovE3n+upPI DtFu6tL+KmGnqCdDM9tveZ0w7Y9KRZuTeGOeZo0v8d0Gf4dts1Gk/2YB8j80ElkE pErNc6GjbsCQTFHTtxK5uKfRl95FgkOnbVLX/bbycPMkZFseMOll9eiNNt7Zv+G4 YcvwlGc/sazaqipXM+8lGUm+C1UqVDHgOPK2B76iQf0PA7M5WRYTztCltgPW5U4z paMJvA== -----END CERTIFICATE-----Generated at Tue May 21 10:37:10 2024 by rpki-client on console-fra.rpki-client.org