$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/CF037FBE8CEE11EF908A4465C4F9AE02.roa File: CF037FBE8CEE11EF908A4465C4F9AE02.roa (raw, json) Hash identifier: SVAZzCXRJbp2RkVEtcn1wY+bL9njVNQ9Xc6FjZMY0zs= Subject key identifier: 27:6D:8C:AF:CD:14:36:2F:2B:25:6E:D8:08:F7:68:3F:7F:0B:BF:E7 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 72 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/CF037FBE8CEE11EF908A4465C4F9AE02.roa Signing time: Sun 20 Oct 2024 15:44:15 +0000 ROA not before: Sun 20 Oct 2024 15:44:15 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140077 IP address blocks: 103.148.50.0/24 maxlen: 24 103.148.51.0/24 maxlen: 24 2405:cbc0::/32 maxlen: 32 2405:cbc0::/48 maxlen: 48 2405:cbc0:1::/48 maxlen: 48 2405:cbc0:2::/48 maxlen: 48 2405:cbc0:3::/48 maxlen: 48 2405:cbc0:4::/48 maxlen: 48 2405:cbc0:5::/48 maxlen: 48 2405:cbc0:20::/48 maxlen: 48 2405:cbc0:21::/48 maxlen: 48 2405:cbc0:22::/48 maxlen: 48 2405:cbc0:23::/48 maxlen: 48 2405:cbc0:24::/48 maxlen: 48 2405:cbc0:25::/48 maxlen: 48 2405:cbc0:26::/48 maxlen: 48 2405:cbc0:27::/48 maxlen: 48 2405:cbc0:28::/48 maxlen: 48 2405:cbc0:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Oct 2024 17:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Oct 20 15:44:15 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6715254f-c159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:d7:64:02:dd:2a:ba:40:14:bc:47:32:10: 0e:26:01:86:5f:53:cf:b2:8d:ac:96:e7:90:1d:fb: 79:02:ec:78:83:3e:ea:c5:b9:c4:a4:02:52:4e:08: a9:74:9b:b4:90:8f:85:e1:ae:70:fa:c5:42:bb:5e: 92:0a:01:00:77:54:8b:82:64:0e:a7:59:17:66:35: 60:70:af:01:7d:02:f8:9e:41:a0:79:09:a6:17:24: 4d:d8:46:9b:48:51:4b:36:16:51:32:6c:48:a9:17: 9b:6e:d2:ad:e2:f6:45:6e:ff:91:c3:fc:81:ab:3b: 65:cc:53:8b:9e:b5:97:f1:87:05:f2:59:34:bd:4c: 36:47:bc:60:81:37:a5:2c:1a:58:a7:16:40:9e:bf: a0:cc:98:a1:56:88:55:ae:a0:d9:b9:26:26:db:b3: 89:15:dd:05:c8:82:23:fb:30:2d:f6:02:3f:64:4f: 10:53:3a:1d:f5:5a:94:47:5c:49:56:ae:c9:79:fb: 36:6f:68:b2:33:64:a0:1f:8e:e8:77:bf:5a:98:53: df:60:23:7b:78:58:62:31:ec:ea:a5:9a:43:c8:90: 73:4f:96:9b:b0:bb:5a:d7:da:e2:6b:24:8b:6e:36: 7b:7a:dd:13:2f:ef:8b:15:69:37:1a:5a:e4:0f:c0: 1c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:6D:8C:AF:CD:14:36:2F:2B:25:6E:D8:08:F7:68:3F:7F:0B:BF:E7 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/CF037FBE8CEE11EF908A4465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.50.0/23 IPv6: 2405:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption a4:ee:d8:33:95:7c:2a:2e:b0:d5:0d:71:d2:5d:67:e0:68:2f: 03:59:8e:94:34:a9:cc:04:f5:2a:90:3d:1d:7b:07:e0:54:a6: cc:f7:af:2a:38:88:0c:24:23:34:7d:d9:26:c1:a7:d3:95:65: 48:02:13:aa:c8:eb:ef:84:ab:cb:ce:15:1d:a6:48:82:b6:41: 1f:f8:5a:1f:43:f5:12:16:d6:1e:ec:e0:4a:43:b6:be:51:89: 94:e4:34:78:bf:ae:ad:b5:ed:82:c8:42:98:c6:be:57:1b:54: d0:ad:9d:21:2e:e4:bf:47:d2:76:3f:c4:46:64:0e:88:f8:94: c2:5f:91:65:56:cb:01:59:c3:8c:28:4d:66:51:c5:8f:1f:e7: 4d:e8:93:20:ef:b9:66:a9:68:b7:7c:ae:40:17:b5:4e:64:8b: 2f:12:7d:9d:57:14:09:20:bd:70:b0:5f:54:ac:ac:92:49:6f: 84:df:98:24:77:ec:d7:14:b7:a3:77:d4:e0:e3:21:7f:af:32: bc:94:27:65:d3:f1:16:6e:01:9b:46:79:98:8d:eb:ec:c4:09: 3c:f8:83:20:96:fd:98:81:cd:15:af:3c:57:e9:94:a3:52:37: a4:87:ec:ca:f6:59:23:23:94:f0:7c:c7:be:8e:1d:9b:ca:e1: 40:be:70:fd -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUY0QjExMC8GA1UEBRMoQUQ3MURFQzEzODlCMTRBMDEyMDAxMDc2OTkxRjU5QUJF MkNBQjFFNjAeFw0yNDEwMjAxNTQ0MTVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MTUyNTRmLWMxNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVX9dkAt0qukAUvEcyEA4mAYZfU8+yjayW55Ad+3kC7HiDPurFucSkAlJOCKl0 m7SQj4XhrnD6xUK7XpIKAQB3VIuCZA6nWRdmNWBwrwF9AvieQaB5CaYXJE3YRptI UUs2FlEybEipF5tu0q3i9kVu/5HD/IGrO2XMU4uetZfxhwXyWTS9TDZHvGCBN6Us GlinFkCev6DMmKFWiFWuoNm5Jibbs4kV3QXIgiP7MC32Aj9kTxBTOh31WpRHXElW rsl5+zZvaLIzZKAfjuh3v1qYU99gI3t4WGIx7OqlmkPIkHNPlpuwu1rX2uJrJItu Nnt63RMv74sVaTcaWuQPwBwlAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUJ22Mr80U Ni8rJW7YCPdoP38Lv+cwHwYDVR0jBBgwFoAUrXHewTibFKASABB2mR9Zq+LKseYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRjRCLzg0ODU4RjZBNDcx OTExRUE5MDg2MzA3MkM0RjlBRTAyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3Nl WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclhIZXdUaWJGS0FTQUJCMm1SOVpxLUxLc2VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9DRjAzN0ZCRThD RUUxMUVGOTA4QTQ0NjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeUMjANBAIAAjAHAwUAJAXLwDANBgkqhkiG9w0BAQsFAAOC AQEApO7YM5V8Ki6w1Q1x0l1n4GgvA1mOlDSpzAT1KpA9HXsH4FSmzPevKjiIDCQj NH3ZJsGn05VlSAITqsjr74Sry84VHaZIgrZBH/haH0P1EhbWHuzgSkO2vlGJlOQ0 eL+urbXtgshCmMa+VxtU0K2dIS7kv0fSdj/ERmQOiPiUwl+RZVbLAVnDjChNZlHF jx/nTeiTIO+5Zqlot3yuQBe1TmSLLxJ9nVcUCSC9cLBfVKyskklvhN+YJHfs1xS3 o3fU4OMhf68yvJQnZdPxFm4Bm0Z5mI3r7MQJPPiDIJb9mIHNFa88V+mUo1I3pIfs yvZZIyOU8HzHvo4dm8rhQL5w/Q== -----END CERTIFICATE-----Generated at Mon Oct 21 01:37:40 2024 by rpki-client on console-fra.rpki-client.org