$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa File: AF7700B2B52A11EAB9426C7DC4F9AE02.roa (raw, json) Hash identifier: shZ1SoLVzfeL8x+bbIRO6LB79qQKbmIOeQclikjQj88= Subject key identifier: FB:F1:E7:B9:6A:01:FD:96:E9:D3:3F:40:CA:C4:AF:6C:08:84:5A:9D Certificate issuer: /CN=A91C3083/serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Certificate serial: 1A28 Authority key identifier: B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa Signing time: Thu 08 Feb 2024 16:44:03 +0000 ROA not before: Thu 08 Feb 2024 16:44:03 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133854 IP address blocks: 103.81.204.0/24 maxlen: 24 103.81.205.0/24 maxlen: 24 103.81.206.0/24 maxlen: 24 202.144.200.0/24 maxlen: 24 202.144.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6696 (0x1a28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3083/serialNumber=B7AA537383214D648E633BCC420D3BD6861678FD Validity Not Before: Feb 8 16:44:03 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c504d2-74ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d8:2f:99:3c:1b:39:4b:fe:f0:8b:3e:06:74: 3b:36:fe:fa:47:5c:c4:03:fc:f7:6f:fc:8f:66:ee: f7:24:19:34:2d:b6:70:26:6e:f0:4c:7d:d9:06:ca: cc:29:21:ae:84:41:7c:d2:33:58:80:c7:35:bb:14: 05:37:5e:01:6c:9c:b8:90:fc:1b:a5:11:fc:b6:c4: 2a:7c:4c:fd:56:b9:a4:3c:68:3d:27:f5:e9:d1:c8: 48:76:dc:6d:2c:b2:48:03:5a:3e:3c:bf:06:ed:c3: 63:e3:78:f5:33:18:98:57:56:63:eb:29:7d:01:5e: 94:b4:1e:82:a4:0d:23:58:32:e9:59:77:2f:d4:86: 8b:78:ef:ff:cc:b9:bc:6e:4d:c4:6e:15:0f:12:24: 44:6e:37:1f:0b:d9:87:9c:63:fa:cc:e4:ba:0f:69: b6:42:5a:2b:e2:fb:9e:3e:68:89:0b:f3:e0:0d:3a: f2:51:2c:e4:cd:22:ff:6d:1c:db:5a:b4:c7:2d:3d: da:a7:78:35:81:a6:a0:c3:e3:8b:0e:95:d4:ca:3f: d4:08:ed:8f:46:96:60:c8:02:7d:22:38:9b:47:d6: a5:7b:a0:72:0b:f7:2f:01:8a:67:6e:22:18:ca:5b: cc:4d:68:97:e9:11:01:13:06:22:16:db:61:07:05: 3c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F1:E7:B9:6A:01:FD:96:E9:D3:3F:40:CA:C4:AF:6C:08:84:5A:9D X509v3 Authority Key Identifier: keyid:B7:AA:53:73:83:21:4D:64:8E:63:3B:CC:42:0D:3B:D6:86:16:78:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/t6pTc4MhTWSOYzvMQg071oYWeP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6pTc4MhTWSOYzvMQg071oYWeP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3083/A0CF059A2E6011E7B7473E70C4F9AE02/AF7700B2B52A11EAB9426C7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.204.0-103.81.206.255 202.144.200.0/24 202.144.202.0/24 Signature Algorithm: sha256WithRSAEncryption a1:f4:f4:3f:27:77:23:9b:3f:53:e0:3e:8d:ed:d9:89:8d:d2: ea:99:1e:f4:72:69:37:a2:2f:b9:37:6d:ad:80:ac:22:3d:5c: 83:20:25:99:f5:c4:49:c0:3b:c8:fa:f3:25:72:b2:ba:16:57: 03:01:1f:41:7b:24:4c:ee:34:7e:96:9c:75:96:f2:b6:9f:38: a1:dd:dc:d6:00:e2:e6:b4:ba:c0:08:35:81:b4:dc:08:77:c8: 89:af:e4:f4:6b:9e:a4:fe:79:36:73:23:6e:ce:e7:91:fe:18: e0:ee:51:c2:0a:50:b3:df:ff:30:48:76:e2:d8:c6:86:49:80: 51:a0:ce:8f:86:66:8f:62:36:aa:7a:8a:df:53:de:f3:d2:ff: 1c:53:68:4e:bc:07:6f:14:b1:f3:6b:af:57:d5:0e:2a:38:5a: f1:a2:24:e7:d1:d6:1b:0d:c3:8d:e7:09:ee:18:55:cb:30:0c: cf:63:9f:4c:ea:7e:0a:98:36:ca:80:ed:9f:5d:33:e3:97:b1: c1:c6:98:37:eb:88:e1:65:38:2f:78:82:ee:08:f6:89:34:a8: f7:23:37:bd:f6:86:4e:14:5b:92:2b:64:bc:72:0a:c7:11:75: 00:69:ba:7c:41:06:0a:9c:09:0c:be:c0:8c:5b:cc:eb:94:62: bc:3e:07:34 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICGigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMwODMxMTAvBgNVBAUTKEI3QUE1MzczODMyMTRENjQ4RTYzM0JDQzQyMEQzQkQ2 ODYxNjc4RkQwHhcNMjQwMjA4MTY0NDAzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MDRkMi03NGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dgvmTwbOUv+8Is+BnQ7Nv76R1zEA/z3b/yPZu73JBk0LbZwJm7wTH3ZBsrM KSGuhEF80jNYgMc1uxQFN14BbJy4kPwbpRH8tsQqfEz9VrmkPGg9J/Xp0chIdtxt LLJIA1o+PL8G7cNj43j1MxiYV1Zj6yl9AV6UtB6CpA0jWDLpWXcv1IaLeO//zLm8 bk3EbhUPEiREbjcfC9mHnGP6zOS6D2m2Qlor4vuePmiJC/PgDTryUSzkzSL/bRzb WrTHLT3ap3g1gaagw+OLDpXUyj/UCO2PRpZgyAJ9IjibR9ale6ByC/cvAYpnbiIY ylvMTWiX6REBEwYiFtthBwU8dQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFPvx57lq Af2W6dM/QMrEr2wIhFqdMB8GA1UdIwQYMBaAFLeqU3ODIU1kjmM7zEINO9aGFnj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzA4My9BMENGMDU5QTJF NjAxMUU3Qjc0NzNFNzBDNEY5QUUwMi90NnBUYzRNaFRXU09ZenZNUWcwNzFvWVdl UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2cFRjNE1oVFdTT1l6dk1RZzA3MW9ZV2VQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMwODMvQTBDRjA1OUEyRTYwMTFFN0I3NDczRTcwQzRGOUFFMDIvQUY3NzAwQjJC NTJBMTFFQUI5NDI2QzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAmdRzAMEAGdRzgMEAMqQyAMEAMqQyjANBgkqhkiG9w0B AQsFAAOCAQEAofT0Pyd3I5s/U+A+je3ZiY3S6pke9HJpN6IvuTdtrYCsIj1cgyAl mfXEScA7yPrzJXKyuhZXAwEfQXskTO40fpacdZbytp84od3c1gDi5rS6wAg1gbTc CHfIia/k9GuepP55NnMjbs7nkf4Y4O5RwgpQs9//MEh24tjGhkmAUaDOj4Zmj2I2 qnqK31Pe89L/HFNoTrwHbxSx82uvV9UOKjha8aIk59HWGw3DjecJ7hhVyzAMz2Of TOp+Cpg2yoDtn10z45exwcaYN+uI4WU4L3iC7gj2iTSo9yM3vfaGThRbkitkvHIK xxF1AGm6fEEGCpwJDL7AjFvM65RivD4HNA== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org