$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/F7B1497E987F11ED9E1F4D0FC4F9AE02.roa File: F7B1497E987F11ED9E1F4D0FC4F9AE02.roa (raw, json) Hash identifier: Gl4gKDf4aT96XGuS7DGEepsfpPgK8tonViSlMSSTaDQ= Subject key identifier: 6C:9C:0A:A8:1A:11:F7:DA:08:08:3E:F8:04:5B:E7:F0:6D:A9:0E:33 Certificate issuer: /CN=A91B7A06/serialNumber=ADE135D5E04D4963709B3CA6BFC010B6D0F97CAF Certificate serial: 120C Authority key identifier: AD:E1:35:D5:E0:4D:49:63:70:9B:3C:A6:BF:C0:10:B6:D0:F9:7C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/reE11eBNSWNwmzymv8AQttD5fK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/F7B1497E987F11ED9E1F4D0FC4F9AE02.roa Signing time: Fri 02 Aug 2024 18:05:22 +0000 ROA not before: Fri 02 Aug 2024 18:05:22 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.113.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/reE11eBNSWNwmzymv8AQttD5fK8.crl rsync://rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/reE11eBNSWNwmzymv8AQttD5fK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/reE11eBNSWNwmzymv8AQttD5fK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4620 (0x120c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7A06/serialNumber=ADE135D5E04D4963709B3CA6BFC010B6D0F97CAF Validity Not Before: Aug 2 18:05:22 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66ad1fe1-250f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7a:74:6e:65:46:08:55:7e:fa:f5:bc:a5:49: de:eb:2f:7a:c6:d5:93:ea:a2:99:21:cb:de:1c:a5: 30:0e:46:8f:35:22:00:56:b9:15:77:d2:4b:3a:a9: 09:1f:5d:62:d5:4d:6c:48:bc:31:7f:2f:f0:8d:d6: 27:f6:27:81:d2:43:38:ca:bf:d7:2c:80:93:71:3c: 5c:9f:6f:a0:a6:46:0a:51:d1:ee:33:36:e1:1d:a0: 20:52:6e:26:50:98:33:80:9c:3d:f8:87:b4:46:1b: 63:9a:c2:8a:e2:3f:3f:93:c1:f7:89:d0:59:91:6a: 8d:05:15:4c:ed:11:be:b9:96:9d:ff:60:c5:88:dc: e9:83:60:29:55:ee:7c:f9:e8:9a:10:df:8b:1d:d0: aa:59:2c:1d:b1:93:27:99:fd:96:d2:a6:9c:db:2f: 9b:09:09:ea:43:f7:e9:3a:6d:5d:38:72:e2:f2:ae: 55:10:8a:32:55:b4:5b:b6:fc:a7:71:5c:d5:32:3c: 7a:63:55:dd:f3:1c:d9:41:c3:33:fb:54:60:bc:a9: e0:48:02:ac:eb:73:d2:6c:40:c5:83:b3:16:e3:bd: 76:7e:eb:21:81:b8:da:c7:75:29:d7:ff:53:97:9a: e6:51:95:0b:39:29:38:3e:03:ef:79:71:63:8c:a5: b6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:9C:0A:A8:1A:11:F7:DA:08:08:3E:F8:04:5B:E7:F0:6D:A9:0E:33 X509v3 Authority Key Identifier: keyid:AD:E1:35:D5:E0:4D:49:63:70:9B:3C:A6:BF:C0:10:B6:D0:F9:7C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/reE11eBNSWNwmzymv8AQttD5fK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/reE11eBNSWNwmzymv8AQttD5fK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7A06/48F4DCDAC6C311E88F71CC56C4F9AE02/F7B1497E987F11ED9E1F4D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.154.0/24 Signature Algorithm: sha256WithRSAEncryption 95:0b:c8:b2:dc:ff:45:0a:55:d0:cb:54:6e:2d:b0:67:fb:01: a1:2c:61:f7:54:31:bb:8f:ff:02:4f:08:c6:21:1b:72:86:06: 67:3f:60:7d:96:12:8c:20:e3:c4:4e:ab:a0:46:9c:c0:99:78: 4f:9f:d4:e2:aa:6c:17:64:3d:98:d2:50:51:25:80:2c:a8:5a: 83:58:9e:90:69:52:76:65:a4:7d:96:ec:d3:b3:60:76:e8:e5: 6f:71:5c:d6:ec:56:f9:12:08:a0:f8:e9:29:93:7b:e3:c3:3e: cb:41:78:72:51:7e:dd:27:12:3f:ad:c2:7b:a1:d8:8e:c2:0d: 9a:f0:5a:70:57:8c:2c:71:c3:80:c3:6e:44:18:52:ba:76:33: 19:66:3c:6e:39:0f:6c:5c:da:7c:ca:fc:73:38:15:22:7c:1e: 48:68:d2:6d:5f:f5:ae:c7:c4:c4:3a:35:7c:a3:23:92:ef:7b: 35:54:8c:88:bd:40:a7:74:1d:8c:91:87:0e:61:99:45:df:03: 35:1b:f9:32:07:a4:c6:9f:0b:44:8c:57:08:bd:99:7d:67:09: 44:99:bc:11:c5:c2:fc:b9:11:e0:29:35:f7:4c:c9:f7:78:ad: 03:3b:a4:84:ef:77:63:ae:0d:28:d5:2f:8a:ed:32:0c:cf:5d: 2c:5d:ca:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdBMDYxMTAvBgNVBAUTKEFERTEzNUQ1RTA0RDQ5NjM3MDlCM0NBNkJGQzAxMEI2 RDBGOTdDQUYwHhcNMjQwODAyMTgwNTIyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMWZlMS0yNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXp0bmVGCFV++vW8pUne6y96xtWT6qKZIcveHKUwDkaPNSIAVrkVd9JLOqkJ H11i1U1sSLwxfy/wjdYn9ieB0kM4yr/XLICTcTxcn2+gpkYKUdHuMzbhHaAgUm4m UJgzgJw9+Ie0RhtjmsKK4j8/k8H3idBZkWqNBRVM7RG+uZad/2DFiNzpg2ApVe58 +eiaEN+LHdCqWSwdsZMnmf2W0qac2y+bCQnqQ/fpOm1dOHLi8q5VEIoyVbRbtvyn cVzVMjx6Y1Xd8xzZQcMz+1RgvKngSAKs63PSbEDFg7MW4712fushgbjax3Up1/9T l5rmUZULOSk4PgPveXFjjKW2+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGycCqga EffaCAg++ARb5/BtqQ4zMB8GA1UdIwQYMBaAFK3hNdXgTUljcJs8pr/AELbQ+Xyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0EwNi80OEY0RENEQUM2 QzMxMUU4OEY3MUNDNTZDNEY5QUUwMi9yZUUxMWVCTlNXTndtenltdjhBUXR0RDVm SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JlRTExZUJOU1dOd216eW12OEFRdHRENWZLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdBMDYvNDhGNERDREFDNkMzMTFFODhGNzFDQzU2QzRGOUFFMDIvRjdCMTQ5N0U5 ODdGMTFFRDlFMUY0RDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncZowDQYJKoZIhvcNAQELBQADggEBAJULyLLc/0UKVdDL VG4tsGf7AaEsYfdUMbuP/wJPCMYhG3KGBmc/YH2WEowg48ROq6BGnMCZeE+f1OKq bBdkPZjSUFElgCyoWoNYnpBpUnZlpH2W7NOzYHbo5W9xXNbsVvkSCKD46SmTe+PD PstBeHJRft0nEj+twnuh2I7CDZrwWnBXjCxxw4DDbkQYUrp2MxlmPG45D2xc2nzK /HM4FSJ8Hkho0m1f9a7HxMQ6NXyjI5LvezVUjIi9QKd0HYyRhw5hmUXfAzUb+TIH pMafC0SMVwi9mX1nCUSZvBHFwvy5EeApNfdMyfd4rQM7pITvd2OuDSjVL4rtMgzP XSxdygQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org