$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa File: D8FCAB6C750611EFAE4AA240C4F9AE02.roa (raw, json) Hash identifier: BNtUgizLuW7VE24IioUopOhcnv7kySphvSn8ooQaevk= Subject key identifier: 53:74:03:D6:4F:63:1F:34:FA:F7:29:5A:6C:B0:BB:5A:64:FA:2B:B0 Certificate issuer: /CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Certificate serial: 0AE8 Authority key identifier: 58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa Signing time: Tue 17 Sep 2024 15:09:34 +0000 ROA not before: Tue 17 Sep 2024 15:09:34 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136469 IP address blocks: 103.20.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Validity Not Before: Sep 17 15:09:34 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66e99bae-3771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0b:47:dc:95:3d:15:a8:6d:49:74:83:e7:b3: ce:f4:74:e7:c4:ca:e9:4c:70:d3:af:22:6a:2b:dd: 44:27:df:36:2e:03:70:3c:5b:72:09:57:33:9b:fd: 07:46:1c:1c:5d:4b:4d:f2:3b:5c:a6:ca:ea:ad:18: 09:f2:3a:30:9c:97:eb:17:0b:b5:1c:af:94:70:7a: f8:31:bc:f5:bb:69:54:71:b2:9b:f9:ac:6b:f4:dd: f3:ab:65:ed:53:3a:97:ab:32:77:84:46:7c:98:92: 0b:27:1a:c8:37:5d:d7:36:7c:74:55:cc:ec:80:e9: f6:3d:eb:eb:61:3d:22:f9:38:ec:d4:53:42:aa:a8: 42:94:74:5b:f6:d0:b5:a6:fb:0a:5b:e8:2e:0a:e6: 39:0d:c7:db:5d:96:1d:dc:56:89:99:ae:e2:2a:99: 39:e0:08:1b:04:72:3b:13:9b:97:c7:84:29:d0:df: f6:77:bb:63:39:87:d5:92:4f:f0:cd:a2:41:76:0e: 54:4a:44:ed:0e:71:80:42:8b:3f:0b:82:f8:b0:5e: ae:75:2e:fb:c4:d9:5c:02:69:af:68:a0:82:1e:f4: 29:f0:91:2f:6d:78:ae:4f:18:a7:11:08:1a:54:65: bf:93:ee:cc:bd:2e:1f:94:87:f8:68:92:4f:22:61: 0d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:74:03:D6:4F:63:1F:34:FA:F7:29:5A:6C:B0:BB:5A:64:FA:2B:B0 X509v3 Authority Key Identifier: keyid:58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/D8FCAB6C750611EFAE4AA240C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.245.0/24 Signature Algorithm: sha256WithRSAEncryption 30:5e:6d:63:fc:3b:b1:8c:42:9e:8b:4a:d7:ce:ff:51:f9:4a: 31:a9:a7:43:0c:f1:ef:2e:e4:f1:b0:d4:c2:13:a5:10:de:9c: 4f:f5:9a:66:f9:24:ce:03:09:90:f7:0e:e3:1f:15:8f:94:78: 20:f9:93:77:14:d7:31:36:6b:c6:32:d8:f6:c2:9d:88:fe:e6: e3:de:8f:02:44:00:52:d0:dc:3c:07:1b:00:c5:71:71:6c:64: cf:76:34:7b:7e:5a:6c:7a:5f:f2:f9:67:7b:55:f2:b2:08:c4: d7:34:e1:e8:8e:7a:23:40:d2:27:ba:29:db:e2:d5:f1:7f:14: b4:5e:b4:5b:81:3d:28:a2:63:51:0b:9c:ea:fd:1f:f8:59:31: a5:a1:a3:02:6d:d3:b5:d2:a7:cc:b2:dd:93:ea:02:de:35:29: 71:0e:3f:6c:22:51:30:7c:9b:a0:79:ce:4a:17:c7:7d:9b:af: f8:d6:b3:e6:32:27:24:4c:bc:48:d1:64:ca:40:6b:97:7f:d2: f4:78:b7:65:b3:5e:80:d4:1f:c3:e2:8f:55:93:34:e8:f7:32: 14:b0:26:ee:68:f9:84:b2:79:f3:a9:69:73:61:9a:a2:dc:e2: 1c:a5:20:37:17:b8:59:4e:d0:69:f2:c3:62:a6:16:c6:d1:5e: 60:53:e9:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdEODUxMTAvBgNVBAUTKDU4MjdFNEJEODcwMjc3RURGMEVCMTA1NjNBOUI0MUMx RTRCRTdDODEwHhcNMjQwOTE3MTUwOTM0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU5OWJhZS0zNzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQtH3JU9FahtSXSD57PO9HTnxMrpTHDTryJqK91EJ982LgNwPFtyCVczm/0H RhwcXUtN8jtcpsrqrRgJ8jownJfrFwu1HK+UcHr4Mbz1u2lUcbKb+axr9N3zq2Xt UzqXqzJ3hEZ8mJILJxrIN13XNnx0VczsgOn2PevrYT0i+Tjs1FNCqqhClHRb9tC1 pvsKW+guCuY5DcfbXZYd3FaJma7iKpk54AgbBHI7E5uXx4Qp0N/2d7tjOYfVkk/w zaJBdg5USkTtDnGAQos/C4L4sF6udS77xNlcAmmvaKCCHvQp8JEvbXiuTxinEQga VGW/k+7MvS4flIf4aJJPImENxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFN0A9ZP Yx80+vcpWmywu1pk+iuwMB8GA1UdIwQYMBaAFFgn5L2HAnft8OsQVjqbQcHkvnyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Q4NS82MkNFRDQ4RTMz RTIxMUVBQTQ5MzI4ODRDNEY5QUUwMi9XQ2ZrdlljQ2QtM3c2eEJXT3B0QndlUy1m SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dDZmt2WWNDZC0zdzZ4QldPcHRCd2VTLWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdEODUvNjJDRUQ0OEUzM0UyMTFFQUE0OTMyODg0QzRGOUFFMDIvRDhGQ0FCNkM3 NTA2MTFFRkFFNEFBMjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFPUwDQYJKoZIhvcNAQELBQADggEBADBebWP8O7GMQp6L StfO/1H5SjGpp0MM8e8u5PGw1MITpRDenE/1mmb5JM4DCZD3DuMfFY+UeCD5k3cU 1zE2a8Yy2PbCnYj+5uPejwJEAFLQ3DwHGwDFcXFsZM92NHt+Wmx6X/L5Z3tV8rII xNc04eiOeiNA0ie6Kdvi1fF/FLRetFuBPSiiY1ELnOr9H/hZMaWhowJt07XSp8yy 3ZPqAt41KXEOP2wiUTB8m6B5zkoXx32br/jWs+YyJyRMvEjRZMpAa5d/0vR4t2Wz XoDUH8Pij1WTNOj3MhSwJu5o+YSyefOpaXNhmqLc4hylIDcXuFlO0Gnyw2KmFsbR XmBT6co= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org