$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa File: 9261E554464611EE84B7C534C4F9AE02.roa (raw, json) Hash identifier: lLxl/sSYgP6ZriIWkj+AWN6PJcQcpVbRmAe2Y2lbT3s= Subject key identifier: 6F:4F:39:A5:93:45:33:D3:B5:6E:5C:64:E7:23:34:B3:20:26:51:82 Certificate issuer: /CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Certificate serial: 09BB Authority key identifier: 1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa Signing time: Thu 22 Aug 2024 20:28:40 +0000 ROA not before: Thu 22 Aug 2024 20:28:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.117.160.0/24 maxlen: 24 103.117.161.0/24 maxlen: 24 103.117.162.0/24 maxlen: 24 103.117.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BB4/serialNumber=1D1217EF8FE84B582551671BCA35E68448692497 Validity Not Before: Aug 22 20:28:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c79f77-0b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:30:bb:2d:d5:34:12:84:dc:7d:bb:0d:6a: c7:37:98:2e:66:44:5d:3c:a3:4b:4f:39:ad:d8:57: 15:69:a6:5a:c4:58:5c:b8:ed:ea:5f:cf:13:21:63: 4f:cc:62:95:95:c1:06:d6:dd:2b:f9:1a:0b:d6:50: 06:2c:35:2d:60:ce:ff:34:b9:a4:5c:e6:3b:b1:3c: 3d:16:52:38:9b:3a:4d:84:47:5c:84:04:fb:8c:84: c6:23:44:8b:b7:c2:1f:6e:75:7c:76:6f:3e:e2:3c: 9b:7a:fa:55:c6:9a:b1:85:70:e7:24:b2:b1:42:b2: a8:69:fb:b4:46:ab:5d:10:a9:ca:b7:a0:06:6a:08: e7:f8:e6:fa:23:b3:70:6e:a7:21:38:81:76:d4:75: f2:6f:2f:75:cf:7d:58:4e:ff:e0:b5:ca:ad:cd:e2: 4f:0c:7e:fa:db:49:17:62:75:cb:84:8d:a1:4f:b2: 09:fa:04:22:21:72:e0:81:d1:2a:f7:56:8b:07:45: 91:10:25:ec:6b:d4:36:8d:7e:b7:16:b1:0b:e5:0c: f7:ee:e6:56:8e:00:4c:6d:22:87:79:9c:70:6b:79: 77:a5:a4:a5:e0:ca:24:a3:63:42:a8:53:cf:92:ca: 4b:1b:f7:80:d3:ee:9e:cb:34:8c:55:ae:b5:26:ea: e5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4F:39:A5:93:45:33:D3:B5:6E:5C:64:E7:23:34:B3:20:26:51:82 X509v3 Authority Key Identifier: keyid:1D:12:17:EF:8F:E8:4B:58:25:51:67:1B:CA:35:E6:84:48:69:24:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/HRIX74_oS1glUWcbyjXmhEhpJJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HRIX74_oS1glUWcbyjXmhEhpJJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BB4/D954BABE69B711EA88E72E59C4F9AE02/9261E554464611EE84B7C534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.160.0/22 Signature Algorithm: sha256WithRSAEncryption 76:99:81:b8:d3:bb:60:9f:6f:e4:e0:45:46:9f:f4:aa:5c:89: 63:23:46:d3:12:43:fd:88:d2:1e:4f:24:f5:4b:2a:94:da:12: 22:5c:10:9a:56:3c:85:88:2b:44:6f:6a:4f:19:8c:1e:3b:a6: 1a:0b:c6:11:9f:6b:b7:11:82:66:6a:5a:54:3e:53:23:34:4c: 1f:cf:ea:de:ed:9d:fa:f8:e5:5a:c6:0c:dd:ee:49:63:04:8e: 21:55:1d:7e:59:88:ef:06:31:1c:ce:69:71:d4:77:cc:39:4d: c4:6f:d0:1f:1c:f2:8f:d7:c6:c9:0a:97:f0:c0:16:17:82:8f: cd:e7:fb:cb:89:4e:ca:a6:66:2e:b4:b3:ed:2d:4a:2d:96:4d: bc:8d:44:d1:0b:5d:fe:a5:73:9d:cc:57:77:eb:c3:44:eb:d7: 60:57:9c:d7:90:52:a2:86:52:78:71:09:c6:d3:ad:5c:ab:9e: 79:10:1b:a9:8c:cb:0d:3e:01:83:91:54:27:4c:81:11:2d:61: 2e:f5:c4:7c:13:fc:ae:4f:09:78:cf:ac:6f:4e:ee:c3:88:6b: 1f:2e:52:8e:05:cc:e4:36:34:31:45:5e:d1:f8:0b:e0:f3:b3: c4:21:1a:03:4a:03:c2:35:c1:73:c0:ab:a0:c1:78:df:47:a7: f7:ec:8e:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCQjQxMTAvBgNVBAUTKDFEMTIxN0VGOEZFODRCNTgyNTUxNjcxQkNBMzVFNjg0 NDg2OTI0OTcwHhcNMjQwODIyMjAyODQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3OWY3Ny0wYjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Qwuy3VNBKE3H27DWrHN5guZkRdPKNLTzmt2FcVaaZaxFhcuO3qX88TIWNP zGKVlcEG1t0r+RoL1lAGLDUtYM7/NLmkXOY7sTw9FlI4mzpNhEdchAT7jITGI0SL t8IfbnV8dm8+4jybevpVxpqxhXDnJLKxQrKoafu0RqtdEKnKt6AGagjn+Ob6I7Nw bqchOIF21HXyby91z31YTv/gtcqtzeJPDH7620kXYnXLhI2hT7IJ+gQiIXLggdEq 91aLB0WRECXsa9Q2jX63FrEL5Qz37uZWjgBMbSKHeZxwa3l3paSl4Moko2NCqFPP kspLG/eA0+6eyzSMVa61JurlKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG9POaWT RTPTtW5cZOcjNLMgJlGCMB8GA1UdIwQYMBaAFB0SF++P6EtYJVFnG8o15oRIaSSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJCNC9EOTU0QkFCRTY5 QjcxMUVBODhFNzJFNTlDNEY5QUUwMi9IUklYNzRfb1MxZ2xVV2NieWpYbWhFaHBK SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hSSVg3NF9vUzFnbFVXY2J5alhtaEVocEpKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhCQjQvRDk1NEJBQkU2OUI3MTFFQTg4RTcyRTU5QzRGOUFFMDIvOTI2MUU1NTQ0 NjQ2MTFFRTg0QjdDNTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndaAwDQYJKoZIhvcNAQELBQADggEBAHaZgbjTu2Cfb+Tg RUaf9KpciWMjRtMSQ/2I0h5PJPVLKpTaEiJcEJpWPIWIK0Rvak8ZjB47phoLxhGf a7cRgmZqWlQ+UyM0TB/P6t7tnfr45VrGDN3uSWMEjiFVHX5ZiO8GMRzOaXHUd8w5 TcRv0B8c8o/XxskKl/DAFheCj83n+8uJTsqmZi60s+0tSi2WTbyNRNELXf6lc53M V3frw0Tr12BXnNeQUqKGUnhxCcbTrVyrnnkQG6mMyw0+AYORVCdMgREtYS71xHwT /K5PCXjPrG9O7sOIax8uUo4FzOQ2NDFFXtH4C+Dzs8QhGgNKA8I1wXPAq6DBeN9H p/fsjtE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org