$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa File: 49CB8044609511E8BF4FB410C4F9AE02.roa (raw, json) Hash identifier: l3UfwENOL7ee8Yc6k4lA7+v8EPlvnjmfOhmD+k8SMQc= Subject key identifier: 7E:64:23:7E:81:EA:2C:0D:07:2E:4C:0D:D3:50:33:F8:50:83:63:5D Certificate issuer: /CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Certificate serial: 13E6 Authority key identifier: 01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa Signing time: Tue 14 May 2024 17:55:46 +0000 ROA not before: Tue 14 May 2024 17:55:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38203 IP address blocks: 103.219.160.0/22 maxlen: 22 103.219.160.0/24 maxlen: 24 103.219.161.0/24 maxlen: 24 103.219.162.0/24 maxlen: 24 103.219.163.0/24 maxlen: 24 123.253.144.0/22 maxlen: 22 123.253.144.0/24 maxlen: 24 123.253.145.0/24 maxlen: 24 123.253.146.0/24 maxlen: 24 123.253.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5094 (0x13e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Validity Not Before: May 14 17:55:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6643a5a2-bdf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:d9:c8:07:d4:26:3c:32:bb:cb:eb:5a:28: 13:47:4d:01:cc:9a:b8:fb:8f:3d:57:06:bd:ad:ba: 11:23:cd:35:02:a7:de:6a:f8:7e:e7:13:72:3b:0d: 5b:e0:5b:07:3d:a4:8c:86:37:20:8e:64:33:bc:5e: 2c:fd:1e:77:46:10:2b:89:64:a0:0e:c1:52:90:58: 94:b1:55:4e:30:9b:2b:e7:46:6b:70:e0:97:f5:dd: 98:f5:33:8c:31:28:e3:cf:9c:cd:36:e2:57:8f:de: b4:e7:51:b2:09:be:98:e4:88:35:be:93:31:3f:90: cd:01:fd:47:0e:87:5b:a1:87:93:03:49:1b:3e:4a: 68:42:5f:53:c6:e0:f0:d8:5b:04:b3:00:9b:81:1b: 63:63:1a:61:2e:be:68:69:ff:b8:5c:67:6b:84:e2: 51:d3:63:bf:06:93:03:2c:da:f0:39:52:6e:e2:2f: 51:24:07:20:2f:77:f7:e3:73:a6:6d:1f:e7:34:45: 31:ef:c9:be:c5:29:24:8e:95:b8:7d:46:ac:35:b1: 21:2b:d8:49:82:bb:d6:47:70:92:65:9d:e7:9b:2f: 37:49:61:98:d1:ae:ad:5c:36:25:6c:25:6e:bb:db: de:09:13:e1:5e:25:1c:c2:c9:fb:66:f0:d2:82:58: 58:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:64:23:7E:81:EA:2C:0D:07:2E:4C:0D:D3:50:33:F8:50:83:63:5D X509v3 Authority Key Identifier: keyid:01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.160.0/22 123.253.144.0/22 Signature Algorithm: sha256WithRSAEncryption 88:ab:42:1d:b4:17:da:1e:ea:d7:13:29:ef:54:ea:dd:f9:26: 2f:08:23:7f:d0:b1:69:6f:ba:9f:e4:cb:3a:a9:7c:fa:62:4d: c7:c1:2d:38:93:2b:d2:9f:7f:b7:d9:20:68:80:30:23:88:e2: cf:10:f9:12:9f:c2:36:ad:db:78:1f:b1:50:ec:0b:cf:68:49: 1a:e3:e9:2e:c6:16:6e:7b:70:1a:8b:f1:99:56:dd:5b:ad:bc: 9b:c9:b6:dd:37:8d:b6:c4:32:00:51:40:71:b4:e5:67:de:cc: 37:de:73:78:50:b2:1f:96:70:5a:31:7e:a9:37:06:28:9d:59: b6:49:5a:16:4c:03:2c:2e:bd:4e:b9:bc:45:37:8b:44:1a:a0: 4c:04:9c:f9:c3:6f:70:25:aa:25:70:ed:32:b0:30:8d:2b:8e: 1b:51:14:54:b0:a6:41:e0:6b:0c:fa:5a:a7:84:eb:6e:50:37: 08:d7:56:62:56:b4:cb:fc:3c:8a:eb:4d:95:92:34:91:d7:bd: f8:8a:39:59:36:9c:71:aa:d5:15:81:8b:56:4a:0c:c4:f6:51: 94:57:84:bb:34:fe:e1:ac:2f:5c:74:e5:93:0f:73:7d:6a:cf: 55:04:84:67:7d:db:31:a1:12:5b:c3:11:de:2e:e2:f3:36:19: 88:d7:44:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICE+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBMzExMTAvBgNVBAUTKDAxNDAyMjUzRjMxQkNBQ0ZGQjczRDY4NUQ3MDBDOUI2 Qjc0MTA0M0MwHhcNMjQwNTE0MTc1NTQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzYTVhMi1iZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0x7ZyAfUJjwyu8vrWigTR00BzJq4+489Vwa9rboRI801Aqfeavh+5xNyOw1b 4FsHPaSMhjcgjmQzvF4s/R53RhAriWSgDsFSkFiUsVVOMJsr50ZrcOCX9d2Y9TOM MSjjz5zNNuJXj96051GyCb6Y5Ig1vpMxP5DNAf1HDodboYeTA0kbPkpoQl9TxuDw 2FsEswCbgRtjYxphLr5oaf+4XGdrhOJR02O/BpMDLNrwOVJu4i9RJAcgL3f343Om bR/nNEUx78m+xSkkjpW4fUasNbEhK9hJgrvWR3CSZZ3nmy83SWGY0a6tXDYlbCVu u9veCRPhXiUcwsn7ZvDSglhYtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH5kI36B 6iwNBy5MDdNQM/hQg2NdMB8GA1UdIwQYMBaAFAFAIlPzG8rP+3PWhdcAyba3QQQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUEzMS9ERDY0NDg3ODYw OTQxMUU4QjU2QzE4MTBDNEY5QUUwMi9BVUFpVV9NYnlzXzdjOWFGMXdESnRyZEJC RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FVQWlVX01ieXNfN2M5YUYxd0RKdHJkQkJEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBMzEvREQ2NDQ4Nzg2MDk0MTFFOEI1NkMxODEwQzRGOUFFMDIvNDlDQjgwNDQ2 MDk1MTFFOEJGNEZCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn26ADBAJ7/ZAwDQYJKoZIhvcNAQELBQADggEBAIirQh20 F9oe6tcTKe9U6t35Ji8II3/QsWlvup/kyzqpfPpiTcfBLTiTK9Kff7fZIGiAMCOI 4s8Q+RKfwjat23gfsVDsC89oSRrj6S7GFm57cBqL8ZlW3VutvJvJtt03jbbEMgBR QHG05WfezDfec3hQsh+WcFoxfqk3BiidWbZJWhZMAywuvU65vEU3i0QaoEwEnPnD b3AlqiVw7TKwMI0rjhtRFFSwpkHgawz6WqeE625QNwjXVmJWtMv8PIrrTZWSNJHX vfiKOVk2nHGq1RWBi1ZKDMT2UZRXhLs0/uGsL1x05ZMPc31qz1UEhGd92zGhElvD Ed4u4vM2GYjXRMc= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org