$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa File: F690CAECF87D11E9A746D05BC4F9AE02.roa (raw, json) Hash identifier: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg= Subject key identifier: 3A:24:65:23:AB:ED:14:3D:4C:A4:4F:86:7C:90:13:97:3B:95:8C:2C Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0BED Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa Signing time: Fri 02 Aug 2024 19:27:33 +0000 ROA not before: Fri 02 Aug 2024 19:27:33 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136759 IP address blocks: 103.95.96.0/22 maxlen: 24 2401:5a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3053 (0xbed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Aug 2 19:27:33 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ad3325-1810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:0a:7f:f4:e1:00:ce:99:47:ae:40:2f:20: 45:de:3d:5a:13:b0:f2:a6:70:cc:e3:0e:8c:55:48: 16:13:9e:4b:cd:17:82:9a:c8:70:cf:65:53:2a:61: d1:29:66:a1:8e:eb:3d:af:2d:33:06:d0:a9:10:78: a6:35:e7:eb:bb:51:50:eb:d6:cb:17:af:04:7a:e6: f4:fc:91:96:1f:03:85:5d:f8:ae:ed:72:69:cf:e2: 61:f3:31:a4:ff:6b:49:dd:0c:3a:21:0e:1a:05:ed: ec:d7:0a:29:8e:96:54:6e:b7:d4:fd:75:f7:bf:66: 8d:3a:dc:8d:3c:32:29:4d:a1:09:88:2c:d5:17:a7: b1:c5:e8:1e:9b:99:f0:ac:12:3c:62:5e:03:70:2d: 18:6c:f9:ac:0c:5f:8f:56:70:1f:dc:b1:65:c2:0d: 4b:f1:53:f1:91:b2:f7:d3:1d:d4:8b:61:d7:5d:89: df:a6:62:a5:75:47:a0:76:20:6b:2b:93:fe:2a:40: 34:8e:83:29:a4:76:b6:0a:cf:15:fe:77:31:c8:50: 28:03:69:46:35:b5:0e:5d:39:71:4c:46:37:d2:c7: 31:49:bc:a0:bd:d3:fd:58:b8:5e:23:14:a0:98:e3: 76:f1:cd:11:93:da:c4:1a:a2:59:0d:34:c8:d6:2c: 23:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:24:65:23:AB:ED:14:3D:4C:A4:4F:86:7C:90:13:97:3B:95:8C:2C X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.96.0/22 IPv6: 2401:5a40::/32 Signature Algorithm: sha256WithRSAEncryption 96:6b:73:76:b7:85:2c:94:ff:c7:b2:31:e7:99:f0:ce:02:5e: 4b:bf:04:7d:87:16:6e:ec:22:f5:ec:42:f2:97:4d:db:16:5c: eb:c0:1f:8c:38:95:76:02:da:b0:a5:19:3b:07:d2:6a:2a:9f: 5f:1e:58:f4:95:2f:d9:9a:54:cf:d2:57:57:ea:8e:35:f2:82: 89:78:a5:c0:ca:90:8a:6f:4b:0e:b9:6c:11:aa:a5:52:96:c4: 72:a9:3a:b6:82:ec:d9:1d:47:5c:3a:36:7e:df:51:f1:67:16: 06:a2:1c:09:4b:fa:f7:49:4a:cf:7f:60:58:5d:48:9a:f2:65: 8f:8a:c3:42:f0:22:e6:24:ee:7f:09:b7:8c:57:68:67:b7:a7: 90:08:03:2d:c7:73:65:6a:29:05:56:99:6b:7a:53:e5:97:3f: e8:eb:cb:47:32:8c:6b:b9:30:6f:26:f6:4a:d1:7e:e9:8f:61: f8:4b:b1:5f:b5:48:ad:64:af:0a:21:c1:d1:9b:f6:ec:30:2e: 35:fc:ef:f0:b4:62:8f:bb:c8:20:85:2d:5c:45:e5:74:f5:87: cd:bd:da:29:e2:29:99:cc:6b:2e:04:c3:c9:38:eb:d7:1c:cd: ad:a0:c9:4a:f7:ab:97:89:91:b3:d5:91:0d:7d:d1:9a:80:be: 6a:da:5a:45 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjQwODAyMTkyNzMzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMzMyNS0xODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqcKf/ThAM6ZR65ALyBF3j1aE7DypnDM4w6MVUgWE55LzReCmshwz2VTKmHR KWahjus9ry0zBtCpEHimNefru1FQ69bLF68Eeub0/JGWHwOFXfiu7XJpz+Jh8zGk /2tJ3Qw6IQ4aBe3s1wopjpZUbrfU/XX3v2aNOtyNPDIpTaEJiCzVF6exxegem5nw rBI8Yl4DcC0YbPmsDF+PVnAf3LFlwg1L8VPxkbL30x3Ui2HXXYnfpmKldUegdiBr K5P+KkA0joMppHa2Cs8V/ncxyFAoA2lGNbUOXTlxTEY30scxSbygvdP9WLheIxSg mON28c0Rk9rEGqJZDTTI1iwjrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDokZSOr 7RQ9TKRPhnyQE5c7lYwsMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJGQjAvQTNBQjQzQjJGODdDMTFFOUFBMkNGMTU4QzRGOUFFMDIvRjY5MENBRUNG ODdEMTFFOUE3NDZEMDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnX2AwDQQCAAIwBwMFACQBWkAwDQYJKoZIhvcNAQELBQAD ggEBAJZrc3a3hSyU/8eyMeeZ8M4CXku/BH2HFm7sIvXsQvKXTdsWXOvAH4w4lXYC 2rClGTsH0moqn18eWPSVL9maVM/SV1fqjjXygol4pcDKkIpvSw65bBGqpVKWxHKp OraC7NkdR1w6Nn7fUfFnFgaiHAlL+vdJSs9/YFhdSJryZY+Kw0LwIuYk7n8Jt4xX aGe3p5AIAy3Hc2VqKQVWmWt6U+WXP+jry0cyjGu5MG8m9krRfumPYfhLsV+1SK1k rwohwdGb9uwwLjX87/C0Yo+7yCCFLVxF5XT1h8292iniKZnMay4Ew8k469ccza2g yUr3q5eJkbPVkQ190ZqAvmraWkU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org