$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/9C53117E83FB11EBB159507AC4F9AE02.roa File: 9C53117E83FB11EBB159507AC4F9AE02.roa (raw, json) Hash identifier: OfUesfXUMR3a7DJ3hJw2td4vk6wNH0IY4SKhrpALFIM= Subject key identifier: 81:9C:FE:C5:BB:B6:F6:97:DA:9C:B9:78:89:10:14:ED:20:8F:47:3F Certificate issuer: /CN=A91F33D6/serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Certificate serial: 058D Authority key identifier: 82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/9C53117E83FB11EBB159507AC4F9AE02.roa Signing time: Mon 01 Apr 2024 01:03:13 +0000 ROA not before: Mon 01 Apr 2024 01:03:13 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139879 IP address blocks: 103.164.48.0/23 maxlen: 23 103.164.48.0/24 maxlen: 24 103.164.49.0/24 maxlen: 24 2001:df6:3c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33D6/serialNumber=82A3E4E02185FFB71AC6C698C067548D9CC18710 Validity Not Before: Apr 1 01:03:13 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660a07d1-a7ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:dc:b4:a6:bc:2c:16:63:60:e2:50:b7:a1: 1e:a0:08:6e:e2:64:93:a3:27:9d:96:c6:30:35:94: 53:2e:91:16:0c:6e:f1:d6:d2:50:75:1b:0f:2a:8b: fb:5b:0b:ee:5c:0a:64:51:a9:88:7c:87:03:40:ef: be:17:f9:d2:b4:19:bc:a9:97:85:b4:c3:51:3d:85: 1c:9b:35:f1:40:53:a1:73:c0:ea:b0:5c:5a:cd:e1: 96:bc:6f:1b:c8:56:cd:0e:23:12:06:4a:22:b5:ff: bf:f3:1b:c8:79:db:b1:34:ba:5c:74:77:26:9d:2e: e1:38:d9:3a:3d:6e:cc:49:dc:cb:ec:bf:4c:62:d5: ef:09:ba:26:51:83:71:32:ea:5d:b5:33:80:26:10: 9d:47:ee:c2:97:fb:f6:1b:24:52:0e:38:da:9a:c6: 20:72:0c:9f:9a:65:11:62:b6:6a:47:16:41:5b:43: 99:5f:44:15:4a:ef:8d:e0:4c:4c:c2:cc:fa:53:f8: b1:15:c8:2f:53:0d:e4:5c:50:c2:42:08:60:8b:3f: 8f:2d:32:25:6b:cb:01:c3:d0:a9:9d:07:17:da:84: b0:a1:90:e9:6c:95:fb:9a:15:d9:ce:4e:5a:e9:bc: d9:f7:14:db:e4:ef:59:ec:f8:c7:69:56:41:4a:ea: d4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9C:FE:C5:BB:B6:F6:97:DA:9C:B9:78:89:10:14:ED:20:8F:47:3F X509v3 Authority Key Identifier: keyid:82:A3:E4:E0:21:85:FF:B7:1A:C6:C6:98:C0:67:54:8D:9C:C1:87:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/gqPk4CGF_7caxsaYwGdUjZzBhxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqPk4CGF_7caxsaYwGdUjZzBhxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33D6/83B6519683F911EBA7157777C4F9AE02/9C53117E83FB11EBB159507AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.48.0/23 IPv6: 2001:df6:3c80::/48 Signature Algorithm: sha256WithRSAEncryption 5a:71:83:d1:73:0b:87:38:ec:c7:6a:90:05:1a:51:e0:34:b3: 85:56:38:c4:d4:5f:b3:d9:96:16:55:81:34:86:24:c2:3e:53: 2e:04:74:ea:0c:83:44:71:eb:43:36:d5:b4:3c:63:48:15:c7: 1d:1b:97:6e:0a:5f:2b:39:ee:98:38:c4:44:62:39:25:a8:14: d8:16:b3:3e:89:80:87:b0:57:6c:46:03:ff:74:24:85:8b:fd: d8:19:f8:1b:d3:e5:05:7c:e8:64:42:9e:81:35:be:87:95:63: 52:a8:97:50:0e:18:0f:a9:9a:ea:ef:ce:a6:6f:84:0e:ab:8d: 26:cb:5c:1d:b8:1f:2d:ad:bd:3c:6d:23:43:f4:fd:ad:5e:3d: b7:b8:0f:b7:45:dd:b3:26:ba:f9:c0:27:01:2c:2b:f7:7e:0c: 9f:13:9e:74:d1:e3:e4:d2:ea:ba:e2:38:a9:b1:0b:a2:9c:36: 74:c0:d9:6f:f7:32:fb:71:30:8d:cf:3e:e2:ba:d6:03:df:35: 22:5b:c3:d5:e1:cd:24:b3:1d:32:67:f8:55:77:03:c6:d3:db: 66:92:e8:29:47:aa:57:5f:55:5a:05:67:62:a4:cd:e5:0e:24: 3c:0e:d5:a3:c7:17:dc:0e:61:f4:73:60:da:cd:06:bf:c0:82: e2:ff:7d:aa -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzRDYxMTAvBgNVBAUTKDgyQTNFNEUwMjE4NUZGQjcxQUM2QzY5OEMwNjc1NDhE OUNDMTg3MTAwHhcNMjQwNDAxMDEwMzEzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBhMDdkMS1hN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iPctKa8LBZjYOJQt6EeoAhu4mSToyedlsYwNZRTLpEWDG7x1tJQdRsPKov7 WwvuXApkUamIfIcDQO++F/nStBm8qZeFtMNRPYUcmzXxQFOhc8DqsFxazeGWvG8b yFbNDiMSBkoitf+/8xvIeduxNLpcdHcmnS7hONk6PW7MSdzL7L9MYtXvCbomUYNx MupdtTOAJhCdR+7Cl/v2GyRSDjjamsYgcgyfmmURYrZqRxZBW0OZX0QVSu+N4ExM wsz6U/ixFcgvUw3kXFDCQghgiz+PLTIla8sBw9CpnQcX2oSwoZDpbJX7mhXZzk5a 6bzZ9xTb5O9Z7PjHaVZBSurUHQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIGc/sW7 tvaX2py5eIkQFO0gj0c/MB8GA1UdIwQYMBaAFIKj5OAhhf+3GsbGmMBnVI2cwYcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNENi84M0I2NTE5Njgz RjkxMUVCQTcxNTc3NzdDNEY5QUUwMi9ncVBrNENHRl83Y2F4c2FZd0dkVWpaekJo eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxUGs0Q0dGXzdjYXhzYVl3R2RValp6Qmh4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMzRDYvODNCNjUxOTY4M0Y5MTFFQkE3MTU3Nzc3QzRGOUFFMDIvOUM1MzExN0U4 M0ZCMTFFQkIxNTk1MDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpDAwDwQCAAIwCQMHACABDfY8gDANBgkqhkiG9w0BAQsF AAOCAQEAWnGD0XMLhzjsx2qQBRpR4DSzhVY4xNRfs9mWFlWBNIYkwj5TLgR06gyD RHHrQzbVtDxjSBXHHRuXbgpfKznumDjERGI5JagU2BazPomAh7BXbEYD/3QkhYv9 2Bn4G9PlBXzoZEKegTW+h5VjUqiXUA4YD6ma6u/Opm+EDquNJstcHbgfLa29PG0j Q/T9rV49t7gPt0Xdsya6+cAnASwr934MnxOedNHj5NLquuI4qbELopw2dMDZb/cy +3Ewjc8+4rrWA981IlvD1eHNJLMdMmf4VXcDxtPbZpLoKUeqV19VWgVnYqTN5Q4k PA7Vo8cX3A5h9HNg2s0Gv8CC4v99qg== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org