$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/E19CEE7A295311EF9F79E84BC4F9AE02.roa File: E19CEE7A295311EF9F79E84BC4F9AE02.roa (raw, json) Hash identifier: GnCSJ7mjUasqjwzTnUKsQLJvcd9rEBrSDkGtfyZR9pE= Subject key identifier: 82:83:49:80:89:5A:31:A6:13:CF:BB:6B:11:51:3C:A3:4E:51:5D:16 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 56 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/E19CEE7A295311EF9F79E84BC4F9AE02.roa Signing time: Wed 16 Oct 2024 12:45:41 +0000 ROA not before: Wed 16 Oct 2024 12:45:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 140077 IP address blocks: 103.148.50.0/24 maxlen: 24 103.148.51.0/24 maxlen: 24 2405:cbc0::/32 maxlen: 32 2405:cbc0::/48 maxlen: 48 2405:cbc0:1::/48 maxlen: 48 2405:cbc0:2::/48 maxlen: 48 2405:cbc0:3::/48 maxlen: 48 2405:cbc0:4::/48 maxlen: 48 2405:cbc0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Oct 2024 01:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Oct 16 12:45:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=670fb575-14b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:0a:30:fd:11:7a:47:9e:4e:52:20:52:32: a7:11:67:d8:77:61:42:86:29:b5:1c:2d:50:97:65: 06:17:8f:50:c1:11:d0:eb:a1:47:c2:2f:9e:a3:dc: 38:25:ae:d3:47:e2:f9:a1:4e:cf:c2:3f:75:94:be: c2:12:36:ae:cc:a0:8c:89:6f:dd:d7:e6:c9:bf:44: 20:2a:d4:08:ea:86:e8:ce:f9:7a:8a:b6:b5:f4:f9: 53:dc:3e:58:1e:2c:22:1f:39:9b:e7:89:93:25:78: 3b:47:df:85:b4:ad:64:14:3c:85:f3:e7:57:53:25: ba:87:64:03:c8:4b:c2:1e:38:03:cd:81:59:22:0d: c2:91:9f:64:b7:3d:cb:ad:91:08:be:9c:f0:c0:bb: 65:d6:a5:0e:9a:b7:c6:5b:99:74:28:85:67:f4:15: 8b:ae:4b:fd:80:11:a0:44:2b:bd:33:53:06:85:de: b9:2c:21:25:d3:23:39:bf:4e:c3:4d:2e:54:b6:93: fb:30:d3:8a:bc:48:76:c4:03:6a:99:d6:33:a4:20: 1f:19:6a:52:cd:61:9c:20:aa:6d:58:fe:97:d9:c3: fd:f0:8b:79:2d:07:23:46:5f:4b:8d:d5:03:c2:c5: 32:ad:bd:88:46:26:52:b7:0e:e5:55:5d:73:02:25: 65:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:83:49:80:89:5A:31:A6:13:CF:BB:6B:11:51:3C:A3:4E:51:5D:16 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/E19CEE7A295311EF9F79E84BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.50.0/23 IPv6: 2405:cbc0::/32 Signature Algorithm: sha256WithRSAEncryption b9:32:2d:b5:64:67:f1:1c:4c:db:20:e8:0e:2f:c6:0b:69:cb: 28:82:dd:1c:34:7f:0a:ac:ae:2e:f4:80:08:8b:52:de:6f:7b: 75:f4:23:4e:c0:04:7a:a0:38:08:37:ee:61:61:95:37:52:2f: 57:76:ee:1e:cf:db:05:13:c8:90:15:af:af:bf:42:2e:db:d2: 3e:44:64:4c:9a:56:3d:78:eb:84:42:f2:a8:97:22:c1:c8:de: bb:e1:44:09:81:b3:de:e1:17:f7:f8:b5:bb:d8:9b:1e:66:7e: 92:65:27:c2:f4:7a:4b:ec:bb:3c:28:3e:fb:14:49:c1:84:2a: 74:5a:ee:1b:29:64:df:11:72:b5:11:de:9b:46:74:b5:16:22: 99:0f:5b:5a:fc:d0:c8:6b:81:70:db:57:3c:65:34:58:82:59: b7:37:f2:5a:45:54:36:f6:97:d5:e7:07:6b:42:f5:ab:9f:99: 08:de:62:eb:42:97:a0:ea:d9:1d:85:80:d4:3c:d7:68:0a:0a: c4:d4:cd:b3:52:86:07:bf:a1:35:84:a7:cf:d5:14:65:1a:43: e4:bc:bf:9a:ec:ee:d7:eb:c7:4c:b3:cb:11:ec:b9:31:09:d3: fa:63:83:95:af:0b:8f:74:f5:bc:9d:b7:e6:2a:58:04:2f:2b: f8:ac:6a:34 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUY0QjExMC8GA1UEBRMoQUQ3MURFQzEzODlCMTRBMDEyMDAxMDc2OTkxRjU5QUJF MkNBQjFFNjAeFw0yNDEwMTYxMjQ1NDFaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGZiNTc1LTE0YjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwjQow/RF6R55OUiBSMqcRZ9h3YUKGKbUcLVCXZQYXj1DBEdDroUfCL56j3Dgl rtNH4vmhTs/CP3WUvsISNq7MoIyJb93X5sm/RCAq1AjqhujO+XqKtrX0+VPcPlge LCIfOZvniZMleDtH34W0rWQUPIXz51dTJbqHZAPIS8IeOAPNgVkiDcKRn2S3Pcut kQi+nPDAu2XWpQ6at8ZbmXQohWf0FYuuS/2AEaBEK70zUwaF3rksISXTIzm/TsNN LlS2k/sw04q8SHbEA2qZ1jOkIB8ZalLNYZwgqm1Y/pfZw/3wi3ktByNGX0uN1QPC xTKtvYhGJlK3DuVVXXMCJWUPAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUgoNJgIla MaYTz7trEVE8o05RXRYwHwYDVR0jBBgwFoAUrXHewTibFKASABB2mR9Zq+LKseYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRjRCLzg0ODU4RjZBNDcx OTExRUE5MDg2MzA3MkM0RjlBRTAyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3Nl WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclhIZXdUaWJGS0FTQUJCMm1SOVpxLUxLc2VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9FMTlDRUU3QTI5 NTMxMUVGOUY3OUU4NEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeUMjANBAIAAjAHAwUAJAXLwDANBgkqhkiG9w0BAQsFAAOC AQEAuTIttWRn8RxM2yDoDi/GC2nLKILdHDR/CqyuLvSACItS3m97dfQjTsAEeqA4 CDfuYWGVN1IvV3buHs/bBRPIkBWvr79CLtvSPkRkTJpWPXjrhELyqJciwcjeu+FE CYGz3uEX9/i1u9ibHmZ+kmUnwvR6S+y7PCg++xRJwYQqdFruGylk3xFytRHem0Z0 tRYimQ9bWvzQyGuBcNtXPGU0WIJZtzfyWkVUNvaX1ecHa0L1q5+ZCN5i60KXoOrZ HYWA1DzXaAoKxNTNs1KGB7+hNYSnz9UUZRpD5Ly/muzu1+vHTLPLEey5MQnT+mOD la8Lj3T1vJ235ipYBC8r+KxqNA==Generated at Fri Oct 18 03:49:26 2024 by rpki-client on console-fra.rpki-client.org