$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa File: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (raw, json) Hash identifier: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08= Subject key identifier: 13:3A:21:AF:C3:76:85:8E:E1:A9:AC:55:E4:E3:70:8A:2A:70:04:0E Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0B42 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa Signing time: Fri 06 Sep 2024 19:38:15 +0000 ROA not before: Fri 06 Sep 2024 19:38:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136905 IP address blocks: 103.98.128.0/24 maxlen: 24 103.98.129.0/24 maxlen: 24 103.98.130.0/24 maxlen: 24 103.98.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 6 19:38:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db5a27-b4c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8e:d5:31:c1:99:58:0a:24:bd:43:99:5e:5e: 92:1b:f1:77:b3:04:c9:aa:1a:44:e3:b7:19:9e:b5: 17:dc:44:81:4e:1f:dc:b1:13:97:aa:d3:7b:07:05: bc:f6:e3:1f:7b:de:31:cb:ad:73:ba:42:ad:44:30: ff:6c:34:2d:7b:d8:5a:bb:92:f4:f8:f3:d9:e4:ae: ce:62:b2:91:0c:d7:a6:c2:77:00:cd:50:f2:6f:c8: fc:59:1c:7c:2f:a0:c2:9c:ac:3b:e2:69:59:6e:0e: 9b:c8:3b:ec:1f:54:18:70:7d:f4:0f:cc:cb:d7:7d: ed:1f:d0:c1:15:ba:3b:4c:c9:9b:b7:03:2c:75:93: 96:36:56:64:82:3a:99:5b:ed:ea:cc:a1:66:de:a3: 7d:a9:7d:98:69:a8:e0:2d:5e:d9:cc:39:2a:6a:af: e5:6e:1a:a0:6b:96:cb:58:85:f6:94:2f:7b:f5:33: 53:90:67:31:b1:12:32:fe:34:98:dc:d7:20:a3:6f: 2c:fe:c2:95:75:65:2c:26:34:c1:ed:20:0e:8e:f1: 89:2c:06:88:a1:ca:07:7e:56:66:0d:b5:3c:cb:76: e8:ab:2d:35:a9:0c:27:d6:d4:d2:1c:ac:3c:de:e1: a2:f3:8e:83:28:9e:04:ca:98:e2:a1:19:c7:bc:67: 0f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3A:21:AF:C3:76:85:8E:E1:A9:AC:55:E4:E3:70:8A:2A:70:04:0E X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E5C9B0541B3E11EBBC57067AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:a0:86:f7:b9:0d:28:e4:77:7c:0c:9b:d0:75:4f:4b:97:54: 7d:32:77:3b:dc:45:13:6f:f9:98:49:c4:39:6e:0a:e3:e6:13: e1:f1:31:67:f9:97:18:29:4e:83:02:8c:18:90:1c:e2:81:f2: 39:ae:df:89:0c:ee:38:50:2c:69:11:32:13:f9:d8:84:a1:cc: 1a:65:b6:77:a7:8a:3a:e5:6a:46:db:5d:0f:7f:c3:3e:b2:27: e2:53:b9:ab:a4:95:49:06:c5:cb:94:13:0a:bb:f8:f0:65:2e: f4:d2:df:9a:49:bb:41:02:c2:c3:59:4e:9b:d1:8e:35:b8:44: fc:a4:9b:6a:06:18:2e:e5:24:28:e4:bf:8f:79:66:7e:e0:a1: df:11:fc:b2:71:79:da:fa:f8:d7:64:ba:2c:8e:f1:18:62:a8: 86:e7:b0:f9:23:ef:ff:13:5f:9a:ab:f4:c6:21:cd:6b:45:96: aa:12:2b:9e:32:4e:b0:e0:c3:6b:3a:d2:8b:45:3e:73:12:57: 37:2d:bf:9c:c8:11:69:5b:fb:90:99:3d:00:d4:73:be:35:b0: 8a:1c:df:bd:68:7d:6e:61:e6:52:47:e7:70:0b:41:bf:1a:f6: 81:cb:2b:6c:73:2c:46:24:1e:43:6d:7d:c4:54:d2:c4:67:8e: 41:64:f1:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjQwOTA2MTkzODE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNWEyNy1iNGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY7VMcGZWAokvUOZXl6SG/F3swTJqhpE47cZnrUX3ESBTh/csROXqtN7BwW8 9uMfe94xy61zukKtRDD/bDQte9hau5L0+PPZ5K7OYrKRDNemwncAzVDyb8j8WRx8 L6DCnKw74mlZbg6byDvsH1QYcH30D8zL133tH9DBFbo7TMmbtwMsdZOWNlZkgjqZ W+3qzKFm3qN9qX2YaajgLV7ZzDkqaq/lbhqga5bLWIX2lC979TNTkGcxsRIy/jSY 3Ncgo28s/sKVdWUsJjTB7SAOjvGJLAaIocoHflZmDbU8y3boqy01qQwn1tTSHKw8 3uGi846DKJ4EypjioRnHvGcPfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBM6Ia/D doWO4amsVeTjcIoqcAQOMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZBMTUvNzAxRjUzRDIxRDg3MTFFQUE4MTY5QjZDQzRGOUFFMDIvRTVDOUIwNTQx QjNFMTFFQkJDNTcwNjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYoAwDQYJKoZIhvcNAQELBQADggEBAAqghve5DSjkd3wM m9B1T0uXVH0ydzvcRRNv+ZhJxDluCuPmE+HxMWf5lxgpToMCjBiQHOKB8jmu34kM 7jhQLGkRMhP52IShzBpltnenijrlakbbXQ9/wz6yJ+JTuauklUkGxcuUEwq7+PBl LvTS35pJu0ECwsNZTpvRjjW4RPykm2oGGC7lJCjkv495Zn7god8R/LJxedr6+Ndk uiyO8RhiqIbnsPkj7/8TX5qr9MYhzWtFlqoSK54yTrDgw2s60otFPnMSVzctv5zI EWlb+5CZPQDUc741sIoc371ofW5h5lJH53ALQb8a9oHLK2xzLEYkHkNtfcRU0sRn jkFk8SY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org