$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa File: EB843B92329A11EE89CD8544C4F9AE02.roa (raw, json) Hash identifier: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U= Subject key identifier: EC:A7:0A:A5:65:F3:4B:4D:89:50:F1:FC:A2:E2:52:DF:4B:2E:E5:67 Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 14BF Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa Signing time: Fri 30 Aug 2024 17:24:58 +0000 ROA not before: Fri 30 Aug 2024 17:24:58 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151647 IP address blocks: 103.98.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5311 (0x14bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434 Validity Not Before: Aug 30 17:24:58 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d20069-19a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:32:47:3b:47:57:65:d4:9d:2f:66:11:ca:5d: ee:98:98:0c:4f:5a:9c:0e:e2:80:62:a9:f4:65:99: 51:ba:ca:8a:6c:c6:a0:4d:0c:16:60:16:89:27:a1: fb:6f:bf:f3:77:3b:85:1a:c4:79:9e:8a:cf:ab:7d: 39:68:4d:e5:d9:e4:8e:50:fd:e4:74:b4:61:b5:28: 0a:5d:96:d6:a8:5f:b6:d5:cb:11:73:fc:a9:d2:a4: 47:1d:ae:40:d7:b5:6c:53:75:51:d4:18:22:f1:89: bb:90:01:bf:e2:2b:9f:0b:46:b8:02:1c:a8:2e:28: 59:c0:fe:2c:9f:5f:ea:17:2d:a6:9b:42:af:5f:df: 58:4d:6c:b6:a5:0d:9c:37:34:5b:3e:42:4d:7a:8c: f3:c4:04:2a:03:06:c6:96:1d:c3:24:d5:a9:51:93: f5:ed:f1:56:92:7b:8d:2b:ac:d4:5e:74:12:13:88: 4d:12:0f:ff:89:66:ca:52:b6:96:24:97:86:eb:3a: a8:16:c4:15:b2:6b:68:08:e1:81:b9:7c:19:03:a6: 11:14:df:3d:c6:90:5c:c0:63:d8:67:41:b7:c1:39: 1f:d2:99:85:54:e0:57:83:48:ed:65:05:b8:14:ed: 5b:c1:2a:2e:df:25:d6:99:50:30:b2:00:31:dd:56: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A7:0A:A5:65:F3:4B:4D:89:50:F1:FC:A2:E2:52:DF:4B:2E:E5:67 X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/EB843B92329A11EE89CD8544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.52.0/24 Signature Algorithm: sha256WithRSAEncryption 26:01:a0:6c:5b:a8:e3:a2:0b:f5:ac:c8:22:cd:46:3b:3d:f3: 69:93:d5:99:c3:46:7e:c1:09:27:7c:17:87:b4:94:c5:46:30: 66:d4:44:4e:1e:f6:a3:c2:9c:99:90:6e:71:5d:eb:a8:dc:6a: 84:22:aa:73:2d:0b:bc:1f:bb:a3:ec:4c:19:e0:26:44:9a:a7: 9e:e8:5b:8d:4e:aa:e2:82:69:b6:37:d4:38:95:0b:b4:22:4b: d4:ad:d7:55:6e:b0:ef:f6:c6:14:38:e5:23:e7:39:c7:82:94: e4:6d:ad:fc:05:48:42:6a:8b:7b:29:a3:70:89:0e:06:7a:a5: ec:aa:bf:1b:e2:89:98:09:40:b9:fd:55:d1:55:22:93:d8:9e: f4:86:97:67:68:94:4f:dd:2c:4e:b8:f3:5d:fd:de:96:2d:62: 2b:0f:3f:3f:cf:88:40:f7:8e:e6:2e:3d:49:6e:35:c3:33:8a: 96:59:19:b8:18:95:35:6e:b5:24:04:96:67:b5:44:fc:2e:d1: 70:be:2c:5e:26:e2:aa:98:90:37:00:57:10:9a:80:da:7f:bf: a7:d9:a6:2e:f8:b6:28:6c:e4:87:14:c9:0a:b7:da:f9:ea:c1: 4f:12:fe:d2:83:ba:f1:5a:4c:34:66:ff:28:aa:24:49:7a:5b: 99:2a:dc:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjQwODMwMTcyNDU4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyMDA2OS0xOWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjJHO0dXZdSdL2YRyl3umJgMT1qcDuKAYqn0ZZlRusqKbMagTQwWYBaJJ6H7 b7/zdzuFGsR5norPq305aE3l2eSOUP3kdLRhtSgKXZbWqF+21csRc/yp0qRHHa5A 17VsU3VR1Bgi8Ym7kAG/4iufC0a4AhyoLihZwP4sn1/qFy2mm0KvX99YTWy2pQ2c NzRbPkJNeozzxAQqAwbGlh3DJNWpUZP17fFWknuNK6zUXnQSE4hNEg//iWbKUraW JJeG6zqoFsQVsmtoCOGBuXwZA6YRFN89xpBcwGPYZ0G3wTkf0pmFVOBXg0jtZQW4 FO1bwSou3yXWmVAwsgAx3VaaBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOynCqVl 80tNiVDx/KLiUt9LLuVnMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI0MzQvRTJDNjI2NzY0MkQzMTFFOEJCREMwOTQxQzRGOUFFMDIvRUI4NDNCOTIz MjlBMTFFRTg5Q0Q4NTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYjQwDQYJKoZIhvcNAQELBQADggEBACYBoGxbqOOiC/Ws yCLNRjs982mT1ZnDRn7BCSd8F4e0lMVGMGbURE4e9qPCnJmQbnFd66jcaoQiqnMt C7wfu6PsTBngJkSap57oW41OquKCabY31DiVC7QiS9St11VusO/2xhQ45SPnOceC lORtrfwFSEJqi3spo3CJDgZ6peyqvxviiZgJQLn9VdFVIpPYnvSGl2dolE/dLE64 81393pYtYisPPz/PiED3juYuPUluNcMzipZZGbgYlTVutSQElme1RPwu0XC+LF4m 4qqYkDcAVxCagNp/v6fZpi74tihs5IcUyQq32vnqwU8S/tKDuvFaTDRm/yiqJEl6 W5kq3Dk= -----END CERTIFICATE-----Generated at Mon Feb 17 07:57:15 2025 by rpki-client