$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa File: 37B81F7AF64511ED8C736D76C4F9AE02.roa (raw, json) Hash identifier: ElQvBJV6B10UNvlVIlGas46V55/K9saRpZMoFdDMc0c= Subject key identifier: AF:F8:4B:73:1B:DF:36:F2:30:FF:50:17:52:E8:42:44:F4:22:92:E5 Certificate issuer: /CN=A91FC8B6/serialNumber=D6F2BAAE7A520FAA4682CADC3693660B9E1FF104 Certificate serial: F5 Authority key identifier: D6:F2:BA:AE:7A:52:0F:AA:46:82:CA:DC:36:93:66:0B:9E:1F:F1:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa Signing time: Sat 31 Aug 2024 05:56:29 +0000 ROA not before: Sat 31 Aug 2024 05:56:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151341 IP address blocks: 103.204.178.0/23 maxlen: 24 2401:a0::/36 maxlen: 36 2401:a0:1000::/36 maxlen: 36 2401:a0:2000::/36 maxlen: 36 2401:a0:3000::/36 maxlen: 36 2401:a0:4000::/36 maxlen: 36 2401:a0:5000::/36 maxlen: 36 2401:a0:6000::/36 maxlen: 36 2401:a0:7000::/36 maxlen: 36 2401:a0:8000::/36 maxlen: 36 2401:a0:9000::/36 maxlen: 36 2401:a0:a000::/36 maxlen: 36 2401:a0:b000::/36 maxlen: 36 2401:a0:c000::/36 maxlen: 36 2401:a0:d000::/36 maxlen: 36 2401:a0:e000::/36 maxlen: 36 2401:a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.crl rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC8B6/serialNumber=D6F2BAAE7A520FAA4682CADC3693660B9E1FF104 Validity Not Before: Aug 31 05:56:29 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66d2b08d-8c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:3b:99:0c:68:47:34:b7:7e:17:2f:74:91: b9:6e:8c:2c:ba:53:73:28:fb:30:41:c4:49:93:e5: 4a:0a:59:eb:65:90:47:6b:7a:ba:40:fc:41:0e:30: b3:00:e1:70:e1:ca:03:36:4a:c4:fe:aa:02:37:dd: b4:8b:85:6f:bc:9d:9d:0e:85:fc:5f:fc:e0:71:95: d5:08:62:2d:d7:61:d0:90:c5:13:d6:b7:43:2a:69: c9:46:3e:fc:2d:91:41:3e:34:58:4f:15:13:2b:2a: 08:af:0f:e3:f2:76:ba:b0:a4:a0:aa:f0:98:c5:31: ce:98:85:50:54:6a:be:fb:c2:de:99:e0:b2:e5:c0: bd:11:9d:f5:c6:eb:38:18:81:6a:f9:d0:d3:6d:34: 92:79:b8:64:86:84:cc:56:f2:9b:fe:4c:de:28:b2: 05:2c:68:0c:68:2f:62:42:fc:9b:07:3a:61:8d:ff: 54:62:a6:e8:f4:3d:d8:96:1e:8e:cd:31:02:de:4d: eb:ab:40:f5:90:01:f7:95:31:fb:8b:f6:51:cc:f9: de:e2:7f:8e:8d:5c:68:c9:f8:b9:13:66:84:0d:37: 50:f1:6f:96:a3:c9:d4:b0:93:81:ff:c5:d2:db:e0: 85:bd:66:29:5b:24:84:dd:20:dc:42:59:2c:5b:db: a9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F8:4B:73:1B:DF:36:F2:30:FF:50:17:52:E8:42:44:F4:22:92:E5 X509v3 Authority Key Identifier: keyid:D6:F2:BA:AE:7A:52:0F:AA:46:82:CA:DC:36:93:66:0B:9E:1F:F1:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/1vK6rnpSD6pGgsrcNpNmC54f8QQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1vK6rnpSD6pGgsrcNpNmC54f8QQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC8B6/EC622B06F63F11ED97882C72C4F9AE02/37B81F7AF64511ED8C736D76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.178.0/23 IPv6: 2401:a0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:85:ab:dd:4b:27:f6:4b:53:6c:5a:42:a2:e0:e2:61:15:43: e4:c0:7c:ff:e6:fe:e6:8d:51:f2:61:f4:a8:52:73:7a:8f:2b: 33:bb:29:2a:2b:0c:c6:d6:72:90:3e:6e:78:6c:4d:a9:b9:bf: d3:b6:00:d7:57:05:55:d9:80:bc:34:09:ce:fe:7c:06:63:76: 01:fa:f9:eb:27:7b:92:21:22:da:09:cb:2a:e6:07:5d:eb:0e: 7f:d8:1a:e9:7c:73:ab:aa:69:aa:04:4b:ad:b6:96:35:b0:db: 0a:eb:d4:a2:fa:94:a9:34:1b:21:d6:83:bb:30:6f:db:e7:f9: 43:b6:e9:ef:d5:36:69:7d:2a:57:04:29:00:7a:f7:1e:c7:dd: 0f:ca:04:a0:da:7e:41:ef:c5:57:77:50:97:36:3f:b7:61:a8: 0a:6b:ec:38:e6:59:94:56:27:1b:de:a0:d8:7d:ff:0a:4b:ff: 0a:19:7d:62:f5:e3:c7:f7:da:6d:21:0e:b9:6e:f7:ec:73:5a: e7:c6:40:fc:b1:c9:d1:95:e4:2c:36:d6:35:0e:f8:99:79:c3: 0e:5e:4b:59:88:11:86:6c:3c:93:c0:8b:c5:e4:b8:86:11:a6: 69:d9:ec:94:a1:91:7f:65:6c:db:71:5a:22:3d:c7:c7:13:ad: 82:1a:40:18 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM4QjYxMTAvBgNVBAUTKEQ2RjJCQUFFN0E1MjBGQUE0NjgyQ0FEQzM2OTM2NjBC OUUxRkYxMDQwHhcNMjQwODMxMDU1NjI5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyYjA4ZC04YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu907mQxoRzS3fhcvdJG5bowsulNzKPswQcRJk+VKClnrZZBHa3q6QPxBDjCz AOFw4coDNkrE/qoCN920i4VvvJ2dDoX8X/zgcZXVCGIt12HQkMUT1rdDKmnJRj78 LZFBPjRYTxUTKyoIrw/j8na6sKSgqvCYxTHOmIVQVGq++8LemeCy5cC9EZ31xus4 GIFq+dDTbTSSebhkhoTMVvKb/kzeKLIFLGgMaC9iQvybBzphjf9UYqbo9D3Ylh6O zTEC3k3rq0D1kAH3lTH7i/ZRzPne4n+OjVxoyfi5E2aEDTdQ8W+Wo8nUsJOB/8XS 2+CFvWYpWySE3SDcQlksW9up/wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK/4S3Mb 3zbyMP9QF1LoQkT0IpLlMB8GA1UdIwQYMBaAFNbyuq56Ug+qRoLK3DaTZgueH/EE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzhCNi9FQzYyMkIwNkY2 M0YxMUVEOTc4ODJDNzJDNEY5QUUwMi8xdks2cm5wU0Q2cEdnc3JjTnBObUM1NGY4 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF2SzZybnBTRDZwR2dzcmNOcE5tQzU0ZjhRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM4QjYvRUM2MjJCMDZGNjNGMTFFRDk3ODgyQzcyQzRGOUFFMDIvMzdCODFGN0FG NjQ1MTFFRDhDNzM2RDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnzLIwDQQCAAIwBwMFACQBAKAwDQYJKoZIhvcNAQELBQAD ggEBAI+Fq91LJ/ZLU2xaQqLg4mEVQ+TAfP/m/uaNUfJh9KhSc3qPKzO7KSorDMbW cpA+bnhsTam5v9O2ANdXBVXZgLw0Cc7+fAZjdgH6+esne5IhItoJyyrmB13rDn/Y Gul8c6uqaaoES622ljWw2wrr1KL6lKk0GyHWg7swb9vn+UO26e/VNml9KlcEKQB6 9x7H3Q/KBKDafkHvxVd3UJc2P7dhqApr7DjmWZRWJxveoNh9/wpL/woZfWL148f3 2m0hDrlu9+xzWufGQPyxydGV5Cw21jUO+Jl5ww5eS1mIEYZsPJPAi8XkuIYRpmnZ 7JShkX9lbNtxWiI9x8cTrYIaQBg= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org