$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa File: 1EC90968E1F211EEA360BE22C4F9AE02.roa (raw, json) Hash identifier: t0a6+ZrtHXGmxUqi5+aimNkuYhnbf00cWYtVmydfQ2I= Subject key identifier: 07:44:72:65:10:1E:ED:19:EE:FD:CF:3C:78:57:B6:9C:B3:82:46:38 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 05 Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa Signing time: Thu 14 Mar 2024 11:00:51 +0000 ROA not before: Thu 14 Mar 2024 11:00:51 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 6453 IP address blocks: 103.145.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Validity Not Before: Mar 14 11:00:51 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65f2d8e3-f42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:eb:29:72:63:8b:97:ab:45:22:bb:a1:14:34: 05:b1:fc:6c:a0:0e:eb:fa:29:a8:3c:b7:bc:3e:2b: db:2e:bc:90:1d:27:0c:8b:3d:05:04:07:d6:2c:44: 36:78:97:47:73:4e:d2:0f:5f:36:58:34:b3:aa:c8: 28:48:3d:4b:d2:a7:55:b6:52:bd:25:9b:16:35:c5: 7c:bc:da:75:41:48:88:5f:ee:ae:28:78:47:bf:ee: ff:da:7d:3a:d9:62:a0:e9:24:08:4d:00:7d:cd:93: d6:8e:88:80:3a:83:7f:08:9e:ef:6b:de:c5:31:e6: a3:16:9d:2a:d1:86:53:63:80:cd:be:eb:7f:d8:39: 6e:6b:41:24:a8:00:8f:86:da:a0:06:0f:84:1a:8d: 6c:3e:55:2c:c4:f2:73:18:cd:d2:84:5e:c6:32:ee: 9d:d3:d4:31:d4:03:a3:07:b2:f1:94:1a:4b:b6:44: 11:07:d6:d5:0a:6d:0c:ad:d0:6b:91:4d:6d:12:47: 64:15:d6:59:9f:10:c1:f7:9d:4f:1a:43:9c:4e:9f: 99:62:78:1a:9b:b2:4b:c2:c4:df:80:12:b3:b2:7e: 15:17:32:f9:40:e5:4c:69:0e:da:00:f0:fb:09:ac: 81:9e:04:f5:1a:ee:6f:ed:7f:ce:51:e9:e4:3d:ce: d6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:44:72:65:10:1E:ED:19:EE:FD:CF:3C:78:57:B6:9C:B3:82:46:38 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.88.0/24 Signature Algorithm: sha256WithRSAEncryption 26:7a:81:1d:09:72:86:0e:13:0b:8b:ae:ec:46:a7:81:77:61: 67:dc:ce:77:45:3b:f9:2e:f6:af:e2:c5:6c:1c:bc:67:9b:c5: 68:0b:d1:4e:05:c2:3f:cd:85:0a:01:de:9e:54:29:38:7b:5e: b0:76:31:b4:25:7a:bd:05:e3:fd:9a:9d:72:f8:31:6e:63:90: e7:a9:6a:35:f9:68:dc:e5:c8:ad:f7:42:f1:9d:88:1a:58:2d: 36:a4:0c:88:3e:db:25:81:01:11:01:ae:20:8c:93:cd:0e:d0: 84:ff:6a:c8:fb:d3:e7:f7:3a:9d:4f:e8:ff:28:5f:4f:27:06: 12:a9:d5:6b:26:af:0f:2a:b8:ef:9b:8c:3b:e5:e2:b7:44:e9: ae:91:94:66:de:8d:8e:cc:ec:bc:11:a9:06:d9:ea:ee:53:3a: 4b:17:2c:0e:ea:5c:fc:71:96:63:f3:35:28:47:f1:00:62:dd: cc:78:57:77:cf:b9:45:f0:61:bb:61:5f:00:9a:c0:7a:bf:fc: f6:c8:cd:f3:c4:f3:e8:02:53:03:85:de:4e:92:fd:5b:1e:3f: 63:21:55:71:67:08:36:fc:89:e1:da:b4:73:d7:91:19:d7:b0: 4e:58:54:f3:3f:ce:54:2f:05:2a:12:32:0f:bc:80:2a:96:7a: 2d:bf:8b:2e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OENBQTExMC8GA1UEBRMoMzc3ODU0NEUyNDY5NTQ4QkYwOUI1NERERDgwM0Q3RDdE OTBGN0U2MjAeFw0yNDAzMTQxMTAwNTFaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjJkOGUzLWY0MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF6ylyY4uXq0Uiu6EUNAWx/GygDuv6Kag8t7w+K9suvJAdJwyLPQUEB9YsRDZ4 l0dzTtIPXzZYNLOqyChIPUvSp1W2Ur0lmxY1xXy82nVBSIhf7q4oeEe/7v/afTrZ YqDpJAhNAH3Nk9aOiIA6g38Inu9r3sUx5qMWnSrRhlNjgM2+63/YOW5rQSSoAI+G 2qAGD4QajWw+VSzE8nMYzdKEXsYy7p3T1DHUA6MHsvGUGku2RBEH1tUKbQyt0GuR TW0SR2QV1lmfEMH3nU8aQ5xOn5lieBqbskvCxN+AErOyfhUXMvlA5UxpDtoA8PsJ rIGeBPUa7m/tf85R6eQ9ztZlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUB0RyZRAe 7Rnu/c88eFe2nLOCRjgwHwYDVR0jBBgwFoAUN3hUTiRpVIvwm1Td2APX19kPfmIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4Q0FBL0RDRDAyQTIwRTFF QTExRUU5OTlDNzAyQUM0RjlBRTAyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZt SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjNoVVRpUnBWSXZ3bTFUZDJBUFgxOWtQZm1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OENBQS9EQ0QwMkEyMEUxRUExMUVFOTk5QzcwMkFDNEY5QUUwMi8xRUM5MDk2OEUx RjIxMUVFQTM2MEJFMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeRWDANBgkqhkiG9w0BAQsFAAOCAQEAJnqBHQlyhg4TC4uu 7EangXdhZ9zOd0U7+S72r+LFbBy8Z5vFaAvRTgXCP82FCgHenlQpOHtesHYxtCV6 vQXj/ZqdcvgxbmOQ56lqNflo3OXIrfdC8Z2IGlgtNqQMiD7bJYEBEQGuIIyTzQ7Q hP9qyPvT5/c6nU/o/yhfTycGEqnVayavDyq475uMO+Xit0TprpGUZt6NjszsvBGp Btnq7lM6SxcsDupc/HGWY/M1KEfxAGLdzHhXd8+5RfBhu2FfAJrAer/89sjN88Tz 6AJTA4XeTpL9Wx4/YyFVcWcINvyJ4dq0c9eRGdewTlhU8z/OVC8FKhIyD7yAKpZ6 Lb+LLg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:53 2024 by rpki-client on console-fra.rpki-client.org