$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/4A81F344C34111EB855D7C84C4F9AE02.roa File: 4A81F344C34111EB855D7C84C4F9AE02.roa (raw, json) Hash identifier: cm5FFI1og7YjMZfdAhw+hJ+S9AdxrNduOS+XXipWxWM= Subject key identifier: 54:E2:2D:D9:EE:A0:CF:86:B7:4A:E8:CF:9E:F7:66:EF:48:C6:07:25 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 1612 Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/4A81F344C34111EB855D7C84C4F9AE02.roa Signing time: Tue 02 Jan 2024 17:14:42 +0000 ROA not before: Tue 02 Jan 2024 17:14:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137226 IP address blocks: 103.105.88.0/22 maxlen: 22 103.105.88.0/24 maxlen: 24 103.105.89.0/24 maxlen: 24 103.105.90.0/24 maxlen: 24 103.105.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5650 (0x1612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Jan 2 17:14:41 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65944481-a987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:04:9c:f6:a3:d0:13:02:4f:a2:ce:40:8a:f3: a2:6d:cd:fb:5a:ed:45:a9:56:90:7e:bd:32:7c:4d: c9:6d:1c:9d:f9:16:15:a5:f8:0a:57:0a:21:82:15: 61:3f:ba:e3:d2:51:98:17:a4:e0:fa:84:ad:ee:c5: 45:95:c3:43:21:29:51:b9:cb:9f:6d:a8:b2:00:49: 00:ea:37:15:4f:39:ad:39:cc:4e:8b:14:4f:fc:d5: b0:00:ad:c1:9b:96:20:3e:4f:0f:22:e9:85:e8:68: a4:c1:ce:8c:34:b7:ad:35:2f:02:2e:4a:39:0a:d9: bb:dc:d8:ab:53:6a:52:0a:03:b1:1a:db:63:7c:cf: 07:98:f7:1f:14:9f:44:da:c0:e6:96:11:76:6c:ce: a3:95:2f:c6:38:40:c2:5a:c9:bd:e7:a1:eb:39:bd: 74:1d:71:ee:2f:b3:b2:fb:91:06:1f:79:68:0d:e0: 49:4c:b4:00:0e:6d:be:d7:b0:d2:db:4c:ff:a2:67: 74:d4:8a:cb:cf:00:7d:6d:f7:43:d4:29:be:ee:e8: 8c:0c:d6:af:30:68:f4:07:63:09:06:0c:3e:fe:97: 96:7c:80:0b:33:9c:0b:5f:d4:62:78:00:be:34:ad: d8:d6:1b:1b:95:a1:97:7d:6b:67:66:2a:c3:b2:3f: 87:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:E2:2D:D9:EE:A0:CF:86:B7:4A:E8:CF:9E:F7:66:EF:48:C6:07:25 X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/4A81F344C34111EB855D7C84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.88.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:e0:75:14:dc:25:e2:19:a7:69:a7:e1:1d:18:c3:35:b8:ca: 87:f6:bd:ce:c0:34:d4:89:ec:91:b7:06:5d:56:8c:50:05:9a: c9:25:45:b7:76:96:64:99:41:11:05:0a:0a:1b:d0:02:f0:51: cb:d2:f2:35:e0:8a:85:a6:41:b6:17:58:f0:dc:28:14:36:a2: 6e:5d:a4:78:e2:da:a2:c2:5b:9f:c2:95:64:da:ef:38:41:8b: a1:c2:92:f1:bf:2d:93:be:52:91:3d:14:0a:e7:67:db:cf:a3: 90:0a:3f:97:d6:0b:cc:6d:02:9f:1a:b4:b3:02:53:4b:06:e6: c5:66:1d:76:4e:1b:6d:71:0b:63:bc:ae:67:ca:61:7e:be:e6: da:c8:ad:2d:49:01:53:98:23:db:9d:35:63:36:36:f6:05:4f: c4:90:88:cf:67:f0:20:cb:fb:de:ea:10:f0:7e:71:40:70:06: 3f:f0:bb:27:93:cc:e7:85:86:eb:fb:f2:b1:9e:3a:3d:47:5d: 6e:27:0e:af:39:e9:03:1e:be:da:16:a1:e0:2c:f5:24:1b:bc: d8:e0:b6:89:a1:db:42:c2:38:c1:f1:fb:dc:75:e3:56:7b:c0: b5:ac:af:63:96:97:2f:da:4b:75:7f:e8:a6:ce:ca:8d:63:8e: 39:7b:cb:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjQwMTAyMTcxNDQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0NDQ4MS1hOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoASc9qPQEwJPos5AivOibc37Wu1FqVaQfr0yfE3JbRyd+RYVpfgKVwohghVh P7rj0lGYF6Tg+oSt7sVFlcNDISlRucufbaiyAEkA6jcVTzmtOcxOixRP/NWwAK3B m5YgPk8PIumF6Gikwc6MNLetNS8CLko5Ctm73NirU2pSCgOxGttjfM8HmPcfFJ9E 2sDmlhF2bM6jlS/GOEDCWsm956HrOb10HXHuL7Oy+5EGH3loDeBJTLQADm2+17DS 20z/omd01IrLzwB9bfdD1Cm+7uiMDNavMGj0B2MJBgw+/peWfIALM5wLX9RieAC+ NK3Y1hsblaGXfWtnZirDsj+HtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFTiLdnu oM+Gt0roz573Zu9IxgclMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE3MjkvMjhCOUQwMUNFNUY4MTFFNzlBN0Q4NDMzQzRGOUFFMDIvNEE4MUYzNDRD MzQxMTFFQjg1NUQ3Qzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnaVgwDQYJKoZIhvcNAQELBQADggEBABrgdRTcJeIZp2mn 4R0YwzW4yof2vc7ANNSJ7JG3Bl1WjFAFmsklRbd2lmSZQREFCgob0ALwUcvS8jXg ioWmQbYXWPDcKBQ2om5dpHji2qLCW5/ClWTa7zhBi6HCkvG/LZO+UpE9FArnZ9vP o5AKP5fWC8xtAp8atLMCU0sG5sVmHXZOG21xC2O8rmfKYX6+5trIrS1JAVOYI9ud NWM2NvYFT8SQiM9n8CDL+97qEPB+cUBwBj/wuyeTzOeFhuv78rGeOj1HXW4nDq85 6QMevtoWoeAs9SQbvNjgtomh20LCOMHx+9x141Z7wLWsr2OWly/aS3V/6KbOyo1j jjl7y3U= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org