$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa File: 7F17B380BED411EBA325CC76C4F9AE02.roa (raw, json) Hash identifier: 8xPWjkoE+zFud+TFxgnEq1UzwqrmQYh6gT2DXl5XDNA= Subject key identifier: 25:7E:A4:66:7A:50:DF:2C:82:29:87:3E:42:74:4A:E3:C8:DE:2B:06 Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 04D6 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa Signing time: Sat 03 Feb 2024 00:52:52 +0000 ROA not before: Sat 03 Feb 2024 00:52:52 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137431 IP address blocks: 103.108.104.0/22 maxlen: 24 2402:6540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Feb 3 00:52:52 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd8e64-9d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0a:fc:ba:7e:03:2b:8b:1d:6a:87:22:7c:4e: 56:cd:50:03:68:e0:59:20:1f:8f:6f:b6:ae:b0:1b: 79:2c:20:ea:f9:2e:7a:b5:8e:69:8b:a8:37:07:76: 59:95:db:3b:fa:4a:7c:eb:90:64:81:2e:0f:8c:d7: 97:88:0d:89:bf:65:46:ab:65:75:8f:c3:d7:df:b9: 13:5e:cb:90:c1:53:6c:e5:e2:e5:c5:24:7a:29:3a: 58:7d:92:b9:f8:90:0c:f5:e3:53:fb:9f:ad:78:d7: 72:31:2e:4c:a8:92:df:aa:b4:36:a4:5a:d4:59:74: 75:b0:8a:7d:11:47:1e:db:45:59:90:00:63:74:73: e9:dd:34:ca:f7:de:11:70:cd:50:26:e1:25:b8:33: 53:67:48:f0:74:5d:04:fb:e8:3a:09:74:88:8a:80: 49:76:18:1c:0e:e0:9a:dc:32:cc:ff:37:65:4b:8e: 1d:bf:13:7e:b6:74:8d:94:6b:0b:c4:9c:cf:ad:18: 59:36:4e:c4:9c:c1:8c:23:ca:e5:a9:5e:68:54:38: 94:7c:ae:fb:85:25:33:a5:49:f9:27:03:fc:ec:61: 47:35:0d:a6:a2:d5:b6:a5:f1:6c:8e:bc:b8:94:f4: 65:71:d2:c5:ce:72:15:da:de:26:2b:e5:03:a7:7a: 6b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:7E:A4:66:7A:50:DF:2C:82:29:87:3E:42:74:4A:E3:C8:DE:2B:06 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.104.0/22 IPv6: 2402:6540::/32 Signature Algorithm: sha256WithRSAEncryption 81:97:8b:f7:54:2a:d4:ea:24:99:fd:b7:9e:86:cc:e8:25:70: 88:8b:d4:ea:cf:c5:ec:f4:6b:3b:71:02:35:c9:ae:31:fe:04: b0:4a:ca:58:e2:3f:fd:ce:4c:f9:6a:7a:88:e1:a9:4a:97:a4: f0:01:1c:bb:af:96:17:06:fd:1d:10:b5:da:f2:9f:2a:6d:ec: 2c:e5:05:d4:be:b2:5f:eb:f0:96:83:d4:81:fa:db:92:41:bc: c7:6a:92:4c:98:f9:80:ca:6c:4c:e7:56:95:56:78:84:65:d7: 71:94:8b:56:87:72:fb:7c:24:1e:1a:bc:ca:e6:ca:c7:9a:ac: e1:3d:09:ab:7c:28:0a:21:9a:c5:80:22:61:c0:69:d6:8c:b8: e0:a2:a1:44:b0:9d:bd:b6:98:67:af:46:c5:12:25:cc:77:4e: 6f:2e:6f:a2:a1:bb:fa:0c:a3:54:09:e1:69:c1:45:53:e9:e0: f6:3a:a8:46:2b:8b:ac:82:e4:cd:fe:f5:56:92:d0:2e:0a:d7: 40:a8:b9:d5:da:4e:9d:2b:c2:88:5d:e5:a0:24:a4:d7:fa:21: ca:42:00:63:ac:e0:6b:fa:1f:c9:2e:9c:60:44:e2:d6:2b:97: ec:99:45:97:d6:f8:07:e9:58:82:7d:c2:a7:74:dd:70:2b:8c: 15:4a:2c:f2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjQwMjAzMDA1MjUyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkOGU2NC05ZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQr8un4DK4sdaocifE5WzVADaOBZIB+Pb7ausBt5LCDq+S56tY5pi6g3B3ZZ lds7+kp865BkgS4PjNeXiA2Jv2VGq2V1j8PX37kTXsuQwVNs5eLlxSR6KTpYfZK5 +JAM9eNT+5+teNdyMS5MqJLfqrQ2pFrUWXR1sIp9EUce20VZkABjdHPp3TTK994R cM1QJuEluDNTZ0jwdF0E++g6CXSIioBJdhgcDuCa3DLM/zdlS44dvxN+tnSNlGsL xJzPrRhZNk7EnMGMI8rlqV5oVDiUfK77hSUzpUn5JwP87GFHNQ2motW2pfFsjry4 lPRlcdLFznIV2t4mK+UDp3prrwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCV+pGZ6 UN8sgimHPkJ0SuPI3isGMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzAyQjMvMkM4MjQyQUVCRUQyMTFFQjlGNDA5MDc2QzRGOUFFMDIvN0YxN0IzODBC RUQ0MTFFQkEzMjVDQzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbGgwDQQCAAIwBwMFACQCZUAwDQYJKoZIhvcNAQELBQAD ggEBAIGXi/dUKtTqJJn9t56GzOglcIiL1OrPxez0aztxAjXJrjH+BLBKyljiP/3O TPlqeojhqUqXpPABHLuvlhcG/R0Qtdrynypt7CzlBdS+sl/r8JaD1IH625JBvMdq kkyY+YDKbEznVpVWeIRl13GUi1aHcvt8JB4avMrmysearOE9Cat8KAohmsWAImHA adaMuOCioUSwnb22mGevRsUSJcx3Tm8ub6Khu/oMo1QJ4WnBRVPp4PY6qEYri6yC 5M3+9VaS0C4K10CoudXaTp0rwohd5aAkpNf6IcpCAGOs4Gv6H8kunGBE4tYrl+yZ RZfW+AfpWIJ9wqd03XArjBVKLPI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org