$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa File: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (raw, json) Hash identifier: lwqszE9XmV3ojkKqpjP9ezJUW9y6Q4zXvvKRbnBNqTk= Subject key identifier: 62:BC:A9:EF:86:0C:4B:91:E7:56:38:C2:63:23:C4:9E:43:C8:CC:E6 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 33BB Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa Signing time: Wed 10 Jan 2024 15:10:49 +0000 ROA not before: Wed 10 Jan 2024 15:10:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 137996 IP address blocks: 103.247.228.0/24 maxlen: 24 103.247.229.0/24 maxlen: 24 103.247.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13243 (0x33bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 10 15:10:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659eb378-5a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fa:9c:60:b4:0e:df:9e:d2:4d:14:68:aa:44: d2:13:d7:1e:ca:59:99:df:97:72:b7:2d:67:fd:2b: 5e:5b:32:a7:e5:95:7a:f9:7c:d7:98:19:7c:df:c8: 39:ab:96:10:13:17:99:5e:a7:d8:6d:b8:8c:a4:f6: e8:09:a5:1d:86:2c:c5:76:ed:94:bb:b6:1e:61:4d: b5:3a:50:ee:85:a6:4d:14:c0:27:83:e7:1e:0b:7f: b3:4b:48:3b:dd:25:29:1f:ef:0a:5a:13:52:e1:7a: 8a:12:56:cb:0c:08:cf:01:f0:97:26:9d:04:76:88: d8:e5:3b:39:43:80:7f:58:de:c8:37:67:92:fe:79: ee:cf:81:53:32:e7:05:0d:23:bb:9f:1b:3e:35:1a: 94:66:eb:3e:5a:fb:fb:67:1c:7e:3c:78:ff:ae:c2: 47:b4:46:4d:23:29:82:e9:f3:29:0e:fd:17:9c:5e: 92:5d:17:0c:3b:9d:c9:2d:aa:8a:02:be:f7:ed:c9: 60:15:d0:dc:cb:14:99:3f:e8:a0:b6:50:0d:9d:b1: fc:ea:6a:cb:39:85:84:20:9a:e4:3e:06:c6:6d:db: e0:bf:a0:81:fc:22:dd:95:61:ce:f0:d8:72:60:30: f6:1b:cb:cd:b8:e1:de:47:bf:6c:93:70:48:a6:4e: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:BC:A9:EF:86:0C:4B:91:E7:56:38:C2:63:23:C4:9E:43:C8:CC:E6 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/9A2B0DE4593F11EA9F9FA238C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.228.0-103.247.230.255 Signature Algorithm: sha256WithRSAEncryption 68:34:87:7e:a3:c4:12:0f:e0:43:0d:ef:11:22:6d:07:9b:08: 79:46:21:d1:b1:fb:10:ff:43:75:b0:60:e9:38:4c:43:23:dd: d1:ec:d4:a0:a5:4a:48:a6:0c:75:0e:ce:ad:0f:bb:cd:ee:76: a0:14:51:36:bd:db:2e:a4:74:fb:42:b3:e2:98:af:a1:bf:fd: 2a:b1:2c:37:47:5a:17:89:c9:79:dc:46:59:d3:fe:7e:c9:ac: f4:42:96:34:de:2e:6d:8e:b6:0d:32:87:19:b2:72:1a:03:e1: 79:91:86:c9:7b:d8:0c:96:4e:dd:a2:4e:60:2d:5e:40:1d:c7: 4f:d3:f7:c3:ca:db:6e:05:c2:56:6c:eb:8f:9e:e5:4c:67:13: 53:95:4a:2b:42:01:88:5c:46:3f:cd:e0:9a:ea:30:ec:07:32: c2:87:61:4d:d2:14:ec:ef:65:0f:0e:5f:0e:7d:b6:df:74:9a: f3:7e:fc:bf:0d:c8:b4:b1:09:f7:24:86:6d:87:14:ac:2f:a4: 6c:d8:67:66:aa:3a:da:08:de:9b:e0:7b:e9:1d:05:69:2e:d9: 21:7a:d4:6d:f3:c2:60:e3:a9:06:c9:19:0b:c0:c5:0d:f0:b4: dd:d5:a2:c1:aa:8d:89:71:ec:9d:e8:bb:c3:12:45:21:16:bb: 4a:c9:43:db -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICM7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjQwMTEwMTUxMDQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllYjM3OC01YTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvqcYLQO357STRRoqkTSE9ceylmZ35dyty1n/SteWzKn5ZV6+XzXmBl838g5 q5YQExeZXqfYbbiMpPboCaUdhizFdu2Uu7YeYU21OlDuhaZNFMAng+ceC3+zS0g7 3SUpH+8KWhNS4XqKElbLDAjPAfCXJp0EdojY5Ts5Q4B/WN7IN2eS/nnuz4FTMucF DSO7nxs+NRqUZus+Wvv7Zxx+PHj/rsJHtEZNIymC6fMpDv0XnF6SXRcMO53JLaqK Ar737clgFdDcyxSZP+igtlANnbH86mrLOYWEIJrkPgbGbdvgv6CB/CLdlWHO8Nhy YDD2G8vNuOHeR79sk3BIpk4FDwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGK8qe+G DEuR51Y4wmMjxJ5DyMzmMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvOUEyQjBERTQ1 OTNGMTFFQTlGOUZBMjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmf35AMEAGf35jANBgkqhkiG9w0BAQsFAAOCAQEAaDSH fqPEEg/gQw3vESJtB5sIeUYh0bH7EP9DdbBg6ThMQyPd0ezUoKVKSKYMdQ7OrQ+7 ze52oBRRNr3bLqR0+0Kz4pivob/9KrEsN0daF4nJedxGWdP+fsms9EKWNN4ubY62 DTKHGbJyGgPheZGGyXvYDJZO3aJOYC1eQB3HT9P3w8rbbgXCVmzrj57lTGcTU5VK K0IBiFxGP83gmuow7AcywodhTdIU7O9lDw5fDn2233Sa8378vw3ItLEJ9ySGbYcU rC+kbNhnZqo62gjem+B76R0FaS7ZIXrUbfPCYOOpBskZC8DFDfC03dWiwaqNiXHs nei7wxJFIRa7SslD2w== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:59 2024 by rpki-client on console-ams.rpki-client.org