$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa File: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (raw, json) Hash identifier: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI= Subject key identifier: ED:18:1E:CF:88:93:40:6B:9B:0C:5A:75:68:43:2C:75:CC:59:45:8F Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0B43 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa Signing time: Fri 06 Sep 2024 19:38:16 +0000 ROA not before: Fri 06 Sep 2024 19:38:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58504 IP address blocks: 103.98.128.0/23 maxlen: 24 103.98.130.0/24 maxlen: 24 103.98.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 6 19:38:16 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66db5a27-ec38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:22:8e:ee:bc:2d:2c:52:1d:da:15:e1:bd: 6f:b2:ec:9e:b2:53:49:dd:7a:8c:92:fa:46:bb:51: 06:4c:ba:c7:b0:d8:50:18:d0:48:7c:fe:3b:d9:52: 58:cf:46:bf:18:ff:17:7c:4e:5e:c3:f9:a5:d7:64: 2e:b8:01:4c:09:52:f4:ea:bf:00:a3:22:1a:b1:01: aa:75:77:b5:f5:b5:ee:fc:51:23:0e:52:00:32:a1: 33:ae:3e:80:17:4d:cc:97:26:97:98:84:67:34:00: 65:ad:ae:94:ef:70:c2:bc:64:85:db:b8:3f:16:1a: 7b:73:10:f6:2b:2c:41:87:38:b9:1e:27:d9:08:19: 67:80:38:b6:03:6d:95:f2:10:61:4f:13:93:3c:de: 69:10:a7:e4:d3:79:e2:bb:1c:e3:cd:a3:23:f1:c7: 9f:ed:84:7b:d8:24:94:c0:9e:18:ce:80:99:c5:89: 2e:98:7b:86:c9:7f:78:88:0c:b3:50:53:b2:43:73: c6:89:d0:b1:b4:e2:14:42:30:79:09:97:31:ab:6f: 7f:5e:24:35:e9:34:ad:a0:05:d7:72:05:8a:c3:22: 11:da:55:9e:f6:60:8e:96:eb:2c:72:6d:53:aa:f1: c5:ec:07:24:7c:bb:16:e0:0a:75:ad:a3:cc:32:d0: 8f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:18:1E:CF:88:93:40:6B:9B:0C:5A:75:68:43:2C:75:CC:59:45:8F X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/E6D6D72E1B3E11EBBC57067AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.128.0/22 Signature Algorithm: sha256WithRSAEncryption 69:5f:ec:35:40:65:40:e2:ac:42:69:aa:83:f7:77:0c:db:eb: 03:4a:c0:3b:8e:bd:a4:3d:ed:7c:3c:94:f8:b6:52:36:c0:35: 87:71:d7:5d:ed:77:86:dd:d2:58:3e:99:55:23:6b:24:fe:5e: 46:7b:5a:69:b0:80:c1:48:76:81:4d:c2:8e:9a:87:12:52:76: 30:e0:ac:22:d2:53:63:b6:9d:a2:8f:93:b7:4f:1d:46:8d:23: fe:0d:7a:57:2c:d4:e7:e8:ef:58:ce:7b:38:38:9e:15:52:1f: cc:8a:4a:08:72:6c:22:47:39:e9:6e:64:9b:84:fd:a0:c9:2f: e0:ae:47:03:32:5d:93:e4:5d:51:4f:13:aa:4c:14:d5:73:9f: c6:c5:d3:c2:a4:59:c1:cd:31:d1:89:74:fc:2d:6b:a2:ff:03: 78:c3:8d:2e:6a:94:57:f7:9d:a8:b6:4b:66:fb:d2:fc:86:c8: ec:67:1c:d2:c5:40:15:5d:50:fa:74:9a:b4:84:30:4f:6c:35: 84:ec:55:36:48:d4:12:a8:3a:2c:1c:db:0e:13:59:26:ac:44: b8:21:1d:83:db:0a:76:0b:5e:3e:e0:46:fe:a1:57:49:63:b8: 8a:95:bb:b2:1a:66:3b:1d:c7:47:9d:6a:90:92:4e:dc:aa:86: 7e:79:e0:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjQwOTA2MTkzODE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNWEyNy1lYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPgiju68LSxSHdoV4b1vsuyeslNJ3XqMkvpGu1EGTLrHsNhQGNBIfP472VJY z0a/GP8XfE5ew/ml12QuuAFMCVL06r8AoyIasQGqdXe19bXu/FEjDlIAMqEzrj6A F03MlyaXmIRnNABlra6U73DCvGSF27g/Fhp7cxD2KyxBhzi5HifZCBlngDi2A22V 8hBhTxOTPN5pEKfk03niuxzjzaMj8cef7YR72CSUwJ4YzoCZxYkumHuGyX94iAyz UFOyQ3PGidCxtOIUQjB5CZcxq29/XiQ16TStoAXXcgWKwyIR2lWe9mCOlusscm1T qvHF7AckfLsW4Ap1raPMMtCPKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO0YHs+I k0BrmwxadWhDLHXMWUWPMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkZBMTUvNzAxRjUzRDIxRDg3MTFFQUE4MTY5QjZDQzRGOUFFMDIvRTZENkQ3MkUx QjNFMTFFQkJDNTcwNjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYoAwDQYJKoZIhvcNAQELBQADggEBAGlf7DVAZUDirEJp qoP3dwzb6wNKwDuOvaQ97Xw8lPi2UjbANYdx113td4bd0lg+mVUjayT+XkZ7Wmmw gMFIdoFNwo6ahxJSdjDgrCLSU2O2naKPk7dPHUaNI/4Nelcs1Ofo71jOezg4nhVS H8yKSghybCJHOeluZJuE/aDJL+CuRwMyXZPkXVFPE6pMFNVzn8bF08KkWcHNMdGJ dPwta6L/A3jDjS5qlFf3nai2S2b70vyGyOxnHNLFQBVdUPp0mrSEME9sNYTsVTZI 1BKoOiwc2w4TWSasRLghHYPbCnYLXj7gRv6hV0ljuIqVu7IaZjsdx0edapCSTtyq hn554Eo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org