$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa File: B0B897E62F4F11ED8B8A7165C4F9AE02.roa (raw, json) Hash identifier: /O3qBAlIlKd7T2L1TISirBQILii08m9IgYjrq/KKrdc= Subject key identifier: C0:39:22:D2:EF:42:08:19:B2:FD:C0:FB:D2:12:9C:F1:5F:CF:69:D1 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 01BD Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa Signing time: Mon 15 Jul 2024 08:38:53 +0000 ROA not before: Mon 15 Jul 2024 08:38:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149981 IP address blocks: 103.189.255.0/24 maxlen: 24 2407:2440:21::/48 maxlen: 48 2407:2440:24::/48 maxlen: 48 2407:2440:26::/48 maxlen: 48 2407:2440:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jul 15 08:38:53 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6694e01c-784e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:b9:18:71:19:a5:cd:fd:e1:8b:29:c1:0a: e5:7f:0d:c0:6b:06:f1:20:62:57:56:74:33:76:d5: d5:77:8b:0b:1e:b2:2b:f8:66:e1:b6:a1:84:e8:5b: 28:8b:35:e0:3a:a3:53:9b:40:f6:14:42:32:31:5e: 04:3e:de:bb:4a:d9:c7:93:2f:bc:43:f6:cc:c0:1b: 5b:3c:6a:03:61:5d:31:d1:c2:89:59:eb:79:61:89: 0a:79:d6:e5:8e:3f:15:04:69:e6:b1:37:0d:e2:b3: 25:0e:15:75:8f:48:04:a5:f0:67:76:27:5e:18:da: 79:55:7d:42:a7:9b:2c:af:8f:81:4e:be:2c:1d:25: b8:e3:94:f6:0b:5b:cc:41:8a:ea:8c:b8:86:1f:f7: c5:58:ed:b8:bc:9f:b8:cb:fc:7f:35:91:32:55:7f: b4:5d:5b:5f:1e:30:b7:43:ae:5a:4d:b4:fb:09:41: a7:75:05:23:16:54:18:d1:9c:dd:df:84:9c:93:95: b7:5e:84:28:f0:93:0d:21:04:3a:2e:1a:b4:58:6c: 49:64:1c:c1:ea:5f:81:47:01:b3:57:cb:5f:56:81: ea:ea:d9:28:69:49:98:3a:87:2c:4c:1d:71:f1:ab: 67:fd:2a:16:36:b7:a4:91:0a:16:15:43:99:82:af: 3f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:39:22:D2:EF:42:08:19:B2:FD:C0:FB:D2:12:9C:F1:5F:CF:69:D1 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/B0B897E62F4F11ED8B8A7165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.255.0/24 IPv6: 2407:2440:21::/48 2407:2440:24::/48 2407:2440:26::/48 2407:2440:29::/48 Signature Algorithm: sha256WithRSAEncryption b2:4b:89:31:4b:f7:8f:9a:be:3c:53:04:a3:8b:e4:52:50:2a: 76:c2:bc:c2:e0:af:b9:04:0e:1c:42:3d:99:82:8c:1c:3d:49: 64:26:ba:d8:2c:d3:b7:a2:f1:b6:23:d1:30:df:8a:9a:82:da: a4:e1:29:9b:08:c8:39:1d:fc:71:cd:d4:df:b3:2e:00:1b:ac: d2:c0:af:45:8e:54:65:2f:0e:3b:4f:10:07:fd:b0:ae:d6:ea: fd:1a:45:59:27:c0:89:22:7f:2b:f1:47:8c:43:4c:cd:59:d4: a6:9d:1b:54:23:43:37:f2:61:0d:fe:34:8c:58:3b:22:8b:05: b1:cb:27:46:3f:5c:d5:b7:dc:f5:f7:86:8a:ca:25:d3:c4:83: 91:67:37:e7:9e:bf:1d:51:8f:2c:11:0c:f7:15:b7:e0:ba:28: 68:06:a0:f7:a2:da:5c:c4:7f:70:6a:c4:f8:f1:f0:2f:e9:52: 35:f6:f2:75:f3:0c:67:02:31:93:5d:af:06:b9:67:bf:41:48: 33:f2:52:fb:7e:c5:c5:2f:69:5c:1d:33:60:ab:79:6c:1e:02: 23:7a:6e:3c:7f:ce:bc:02:e2:c3:18:fa:cc:97:d5:fe:7e:2f: 45:12:53:c6:92:6b:5c:98:23:47:32:d0:1e:17:36:4b:a2:c9: 0e:32:b2:75 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjQwNzE1MDgzODUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk0ZTAxYy03ODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNu5GHEZpc394YspwQrlfw3AawbxIGJXVnQzdtXVd4sLHrIr+GbhtqGE6Fso izXgOqNTm0D2FEIyMV4EPt67StnHky+8Q/bMwBtbPGoDYV0x0cKJWet5YYkKedbl jj8VBGnmsTcN4rMlDhV1j0gEpfBndideGNp5VX1Cp5ssr4+BTr4sHSW445T2C1vM QYrqjLiGH/fFWO24vJ+4y/x/NZEyVX+0XVtfHjC3Q65aTbT7CUGndQUjFlQY0Zzd 34Sck5W3XoQo8JMNIQQ6Lhq0WGxJZBzB6l+BRwGzV8tfVoHq6tkoaUmYOocsTB1x 8atn/SoWNrekkQoWFUOZgq8/PwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFMA5ItLv QggZsv3A+9ISnPFfz2nRMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQjBCODk3RTYy RjRGMTFFRDhCOEE3MTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MAwEAgABMAYDBABnvf8wKgQCAAIwJAMHACQHJEAAIQMHACQHJEAAJAMHACQH JEAAJgMHACQHJEAAKTANBgkqhkiG9w0BAQsFAAOCAQEAskuJMUv3j5q+PFMEo4vk UlAqdsK8wuCvuQQOHEI9mYKMHD1JZCa62CzTt6LxtiPRMN+KmoLapOEpmwjIOR38 cc3U37MuABus0sCvRY5UZS8OO08QB/2wrtbq/RpFWSfAiSJ/K/FHjENMzVnUpp0b VCNDN/JhDf40jFg7IosFscsnRj9c1bfc9feGisol08SDkWc3556/HVGPLBEM9xW3 4LooaAag96LaXMR/cGrE+PHwL+lSNfbydfMMZwIxk12vBrlnv0FIM/JS+37FxS9p XB0zYKt5bB4CI3puPH/OvALiwxj6zJfV/n4vRRJTxpJrXJgjRzLQHhc2S6LJDjKy dQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:49 2024 by rpki-client on console-fra.rpki-client.org