$ rpki-client -vvf rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa File: A7D265605BB411EAB5B9A73BC4F9AE02.roa (raw, json) Hash identifier: 1yNV4IlFTDqCdXIN8GAYKZjI05HGr3RV6cvcTz8go7U= Subject key identifier: 91:1B:EB:8A:04:A5:CD:C9:53:39:85:AD:97:CA:9E:F0:F2:71:47:B7 Certificate issuer: /CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Certificate serial: 097D Authority key identifier: EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa Signing time: Sun 24 Dec 2023 20:48:07 +0000 ROA not before: Sun 24 Dec 2023 20:48:07 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138470 IP address blocks: 103.126.76.0/24 maxlen: 24 103.126.77.0/24 maxlen: 24 103.126.78.0/24 maxlen: 24 103.126.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B04E3/serialNumber=EC58B4378FCBFF4CB1241F82F3BCC0E872E4B396 Validity Not Before: Dec 24 20:48:07 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65889907-6df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:14:33:9e:63:6e:e5:45:5a:76:63:26:8e: 7e:85:84:a5:f7:a8:59:c5:ec:c0:d8:dc:01:1c:46: 90:28:00:aa:57:98:25:04:35:8e:21:ef:50:b4:65: 8c:06:64:73:67:b0:57:02:9d:ad:cd:e8:30:74:b9: 85:f5:82:f9:11:d6:a5:62:0c:29:bb:02:8b:2a:b8: 5c:b8:db:bc:72:ce:28:94:89:3e:71:da:3e:73:c2: 8c:e1:3c:10:8f:3e:3a:ff:ef:42:eb:53:f8:14:eb: fa:9b:78:87:a8:c5:2a:20:0f:4a:9d:6c:02:0b:bf: f8:b1:3c:41:a8:93:2d:20:06:30:ba:69:62:ec:93: ae:b6:86:6c:24:7d:83:e3:9d:86:77:10:59:48:fb: a1:35:fd:7c:f5:96:e4:11:35:e2:66:10:a3:39:a3: 56:d9:3b:24:71:c8:93:61:a2:0c:62:34:a0:e8:01: 18:ad:91:2a:26:67:13:d3:65:6b:0d:5b:08:68:75: f6:33:1f:45:54:b5:d1:58:58:d1:f6:d9:c4:58:ea: 62:c5:68:42:9f:a0:5a:1c:b2:50:3f:5f:44:d0:2d: 60:80:28:b4:ca:83:b7:3e:a7:59:48:6c:69:5f:dc: b7:98:83:47:62:77:ad:28:b4:ae:19:0b:81:40:47: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1B:EB:8A:04:A5:CD:C9:53:39:85:AD:97:CA:9E:F0:F2:71:47:B7 X509v3 Authority Key Identifier: keyid:EC:58:B4:37:8F:CB:FF:4C:B1:24:1F:82:F3:BC:C0:E8:72:E4:B3:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/7Fi0N4_L_0yxJB-C87zA6HLks5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Fi0N4_L_0yxJB-C87zA6HLks5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B04E3/1483BD365BB411EA88D5673BC4F9AE02/A7D265605BB411EAB5B9A73BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.76.0/22 Signature Algorithm: sha256WithRSAEncryption 16:e5:a4:be:b9:55:78:bf:58:26:1e:6b:41:14:8f:89:b7:1d: 4c:67:d7:49:cd:b8:85:ee:f0:3f:fb:95:3f:91:9d:b5:dc:b5: e7:9d:4b:e4:0f:a4:25:d4:b8:93:6d:96:7c:82:4c:63:a6:1a: 8c:7d:34:f2:8e:50:02:ac:6c:85:67:67:ce:a8:41:c3:e6:b4: ff:30:4e:3f:4e:7f:f4:6f:50:a6:dd:7d:d0:09:b5:68:00:cc: 4a:a6:97:48:10:6d:59:4e:74:81:3e:49:a1:29:d2:2d:06:27: 94:06:d0:9e:04:dc:bd:65:39:52:21:38:78:ce:4f:71:4e:29: 34:5a:ba:41:8c:22:cd:3b:5b:57:a9:84:58:ff:2e:43:22:53: 91:f8:b9:19:76:c3:84:9c:c8:93:60:54:97:e7:8d:38:50:02: 76:c0:cc:3b:21:56:df:b3:11:b0:0f:ab:8a:fe:5f:31:13:e5: a0:91:dd:b6:c5:d4:16:86:55:d5:5b:c8:26:0d:3e:a4:41:6e: 21:f7:ae:21:c4:6e:2f:3c:cb:54:a0:00:15:e0:38:43:b1:80: 47:04:16:1c:4f:2f:b9:94:c5:54:30:35:1e:71:d5:41:62:a0: 66:dc:82:ff:f5:49:3c:c2:9c:fa:92:97:fa:ff:42:8c:0a:35: fa:35:dd:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA0RTMxMTAvBgNVBAUTKEVDNThCNDM3OEZDQkZGNENCMTI0MUY4MkYzQkNDMEU4 NzJFNEIzOTYwHhcNMjMxMjI0MjA0ODA3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg4OTkwNy02ZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1AUM55jbuVFWnZjJo5+hYSl96hZxezA2NwBHEaQKACqV5glBDWOIe9QtGWM BmRzZ7BXAp2tzegwdLmF9YL5EdalYgwpuwKLKrhcuNu8cs4olIk+cdo+c8KM4TwQ jz46/+9C61P4FOv6m3iHqMUqIA9KnWwCC7/4sTxBqJMtIAYwumli7JOutoZsJH2D 452GdxBZSPuhNf189ZbkETXiZhCjOaNW2TskcciTYaIMYjSg6AEYrZEqJmcT02Vr DVsIaHX2Mx9FVLXRWFjR9tnEWOpixWhCn6BaHLJQP19E0C1ggCi0yoO3PqdZSGxp X9y3mINHYnetKLSuGQuBQEcW2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJEb64oE pc3JUzmFrZfKnvDycUe3MB8GA1UdIwQYMBaAFOxYtDePy/9MsSQfgvO8wOhy5LOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDRFMy8xNDgzQkQzNjVC QjQxMUVBODhENTY3M0JDNEY5QUUwMi83RmkwTjRfTF8weXhKQi1DODd6QTZITGtz NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGaTBONF9MXzB5eEpCLUM4N3pBNkhMa3M1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA0RTMvMTQ4M0JEMzY1QkI0MTFFQTg4RDU2NzNCQzRGOUFFMDIvQTdEMjY1NjA1 QkI0MTFFQUI1QjlBNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfkwwDQYJKoZIhvcNAQELBQADggEBABblpL65VXi/WCYe a0EUj4m3HUxn10nNuIXu8D/7lT+RnbXcteedS+QPpCXUuJNtlnyCTGOmGox9NPKO UAKsbIVnZ86oQcPmtP8wTj9Of/RvUKbdfdAJtWgAzEqml0gQbVlOdIE+SaEp0i0G J5QG0J4E3L1lOVIhOHjOT3FOKTRaukGMIs07W1ephFj/LkMiU5H4uRl2w4ScyJNg VJfnjThQAnbAzDshVt+zEbAPq4r+XzET5aCR3bbF1BaGVdVbyCYNPqRBbiH3riHE bi88y1SgABXgOEOxgEcEFhxPL7mUxVQwNR5x1UFioGbcgv/1STzCnPqSl/r/QowK Nfo13f0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org