$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9BBCC1F60D2411EEA8431074C4F9AE02.roa File: 9BBCC1F60D2411EEA8431074C4F9AE02.roa (raw, json) Hash identifier: ed+DKZIJR1YbPJAhfNED0AymtEOfO9waIhPjdUrWQck= Subject key identifier: 18:D7:0F:DC:86:94:16:0E:94:87:A1:4F:59:C3:F8:68:76:50:AC:C8 Certificate issuer: /CN=A91C3E37/serialNumber=F45618EA273F40B4BC685E29887E205083C490A6 Certificate serial: CF Authority key identifier: F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FYY6ic_QLS8aF4piH4gUIPEkKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9BBCC1F60D2411EEA8431074C4F9AE02.roa Signing time: Tue 11 Jun 2024 07:36:51 +0000 ROA not before: Tue 11 Jun 2024 07:36:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151324 IP address blocks: 103.196.176.0/23 maxlen: 23 103.196.176.0/24 maxlen: 24 103.196.177.0/24 maxlen: 24 2001:df2:6c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.crl rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FYY6ic_QLS8aF4piH4gUIPEkKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3E37/serialNumber=F45618EA273F40B4BC685E29887E205083C490A6 Validity Not Before: Jun 11 07:36:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6667fe93-e4f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:22:10:f5:20:86:3b:7a:37:17:89:51:fc:4d: 6b:97:28:d8:8a:88:67:c3:d6:25:dc:f4:fe:37:22: f5:a9:3e:3f:90:c3:6a:ae:37:cf:2c:7d:22:c9:a4: 0a:10:7a:86:a8:0e:86:25:86:08:35:70:1e:96:22: fe:f2:ff:3b:13:4b:3a:e4:23:ed:dd:e3:90:c6:d8: d4:8e:a9:2e:b9:f4:f5:1c:72:49:20:3e:8c:f6:8d: e4:3f:c5:73:6b:1b:97:32:81:13:a3:32:b4:9e:81: 6e:17:6b:0f:f4:1b:2d:3e:2c:d6:07:b5:b2:1c:96: a6:b7:67:25:af:21:41:7d:9f:9c:50:ef:5d:24:31: bd:4b:da:f5:f5:50:80:71:b1:40:59:82:7a:c0:80: 31:33:eb:f5:9b:e1:de:55:24:65:4d:5e:99:4d:bd: 9d:19:4b:6b:60:13:1e:26:2f:db:60:41:23:c2:56: 0c:31:f2:24:1c:9e:1e:39:20:34:df:77:34:f0:bf: 00:86:cd:5e:b7:8c:c7:92:34:60:b1:20:cd:1f:07: c5:fe:28:ff:1f:ff:1b:a7:23:8f:61:ce:97:54:28: e7:03:ab:d0:18:44:01:2c:eb:06:1a:f0:bc:4d:04: 37:b5:02:65:05:b7:15:f8:9f:65:3b:8d:6b:91:31: 57:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D7:0F:DC:86:94:16:0E:94:87:A1:4F:59:C3:F8:68:76:50:AC:C8 X509v3 Authority Key Identifier: keyid:F4:56:18:EA:27:3F:40:B4:BC:68:5E:29:88:7E:20:50:83:C4:90:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9FYY6ic_QLS8aF4piH4gUIPEkKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FYY6ic_QLS8aF4piH4gUIPEkKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3E37/B44553D8F09F11ED9B4A0734C4F9AE02/9BBCC1F60D2411EEA8431074C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.176.0/23 IPv6: 2001:df2:6c40::/48 Signature Algorithm: sha256WithRSAEncryption 26:39:5f:cb:7f:ba:a1:8a:31:af:5b:aa:2e:b3:08:b5:9a:bb: a1:22:a0:50:b6:96:2f:02:c6:17:13:d7:f5:c9:7a:79:d0:a2: 82:e2:d9:33:67:f7:89:2d:04:cd:14:0b:76:cb:2e:20:65:90: 74:61:ea:82:c4:60:71:bb:a4:6c:5a:ad:29:1b:92:80:56:c2: b3:1a:ac:59:4c:1e:ec:58:f0:5f:21:42:da:1e:83:0e:65:29: 61:ee:17:a5:58:0c:5d:ad:15:1b:f7:62:99:24:9b:20:45:66: 28:8b:06:55:e5:51:8f:e1:b9:24:c0:74:e7:04:a9:c2:0f:10: b8:4a:36:1c:69:48:3f:89:e9:fb:e8:25:0c:91:ed:f8:e6:aa: de:15:28:ee:37:52:0a:51:57:1a:d2:44:7a:6e:e5:84:2a:70: d2:a8:1a:b6:aa:c9:1a:b1:14:f6:6c:8b:23:28:6e:3b:18:31: f2:f5:52:82:8d:35:1a:f4:94:0e:bd:1b:2c:0a:10:b7:f7:6c: b2:28:e0:a1:40:e8:b5:0e:8b:d4:99:66:c8:9e:1e:f0:d9:6c: 79:5f:ae:55:c5:9a:fa:0f:b9:13:5a:26:cd:5b:eb:22:23:74: 6d:b6:99:ca:7e:ee:30:0c:3a:bc:84:9d:a1:66:6a:19:57:6c: 19:98:af:5b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNFMzcxMTAvBgNVBAUTKEY0NTYxOEVBMjczRjQwQjRCQzY4NUUyOTg4N0UyMDUw ODNDNDkwQTYwHhcNMjQwNjExMDczNjUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3ZmU5My1lNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCIQ9SCGO3o3F4lR/E1rlyjYiohnw9Yl3PT+NyL1qT4/kMNqrjfPLH0iyaQK EHqGqA6GJYYINXAeliL+8v87E0s65CPt3eOQxtjUjqkuufT1HHJJID6M9o3kP8Vz axuXMoETozK0noFuF2sP9BstPizWB7WyHJamt2clryFBfZ+cUO9dJDG9S9r19VCA cbFAWYJ6wIAxM+v1m+HeVSRlTV6ZTb2dGUtrYBMeJi/bYEEjwlYMMfIkHJ4eOSA0 33c08L8Ahs1et4zHkjRgsSDNHwfF/ij/H/8bpyOPYc6XVCjnA6vQGEQBLOsGGvC8 TQQ3tQJlBbcV+J9lO41rkTFXkQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBjXD9yG lBYOlIehT1nD+Gh2UKzIMB8GA1UdIwQYMBaAFPRWGOonP0C0vGheKYh+IFCDxJCm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0UzNy9CNDQ1NTNEOEYw OUYxMUVEOUI0QTA3MzRDNEY5QUUwMi85RllZNmljX1FMUzhhRjRwaUg0Z1VJUEVr S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGWVk2aWNfUUxTOGFGNHBpSDRnVUlQRWtLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNFMzcvQjQ0NTUzRDhGMDlGMTFFRDlCNEEwNzM0QzRGOUFFMDIvOUJCQ0MxRjYw RDI0MTFFRUE4NDMxMDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnxLAwDwQCAAIwCQMHACABDfJsQDANBgkqhkiG9w0BAQsF AAOCAQEAJjlfy3+6oYoxr1uqLrMItZq7oSKgULaWLwLGFxPX9cl6edCiguLZM2f3 iS0EzRQLdssuIGWQdGHqgsRgcbukbFqtKRuSgFbCsxqsWUwe7FjwXyFC2h6DDmUp Ye4XpVgMXa0VG/dimSSbIEVmKIsGVeVRj+G5JMB05wSpwg8QuEo2HGlIP4np++gl DJHt+Oaq3hUo7jdSClFXGtJEem7lhCpw0qgatqrJGrEU9myLIyhuOxgx8vVSgo01 GvSUDr0bLAoQt/dssijgoUDotQ6L1JlmyJ4e8NlseV+uVcWa+g+5E1omzVvrIiN0 bbaZyn7uMAw6vISdoWZqGVdsGZivWw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:50 2024 by rpki-client on console-ams.rpki-client.org