$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/70C35E88B07511EA8C0EC372C4F9AE02.roa File: 70C35E88B07511EA8C0EC372C4F9AE02.roa (raw, json) Hash identifier: 956ajCquzYApHK+QBCIF5rt+mjn+xmrWfi6TNjOt4mQ= Subject key identifier: A9:45:77:0D:14:08:44:06:7D:90:48:05:A8:08:04:DB:65:47:01:6D Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 07D1 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/70C35E88B07511EA8C0EC372C4F9AE02.roa Signing time: Tue 02 Jan 2024 21:39:14 +0000 ROA not before: Tue 02 Jan 2024 21:39:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136035 IP address blocks: 103.80.100.0/24 maxlen: 24 103.80.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Jan 2 21:39:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65948282-08f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:70:7e:93:4f:04:56:9e:89:35:a4:76:fe:fc: 7e:99:aa:7e:f0:b5:c3:13:29:22:f6:75:fe:42:b8: 78:70:57:a0:b8:45:f0:1a:67:14:4a:6a:54:e9:a2: 94:c9:62:54:ed:93:1e:db:0b:f0:1f:d8:91:61:64: 14:46:3a:7c:80:6b:87:cf:69:36:b9:fa:c5:ec:0f: ab:17:98:3a:8b:bc:89:d5:2e:05:8a:fa:7a:27:fa: 21:2f:88:3b:17:a3:bc:2e:85:21:10:10:57:c2:76: 64:96:ce:4a:31:cf:cf:0d:c7:7d:29:8e:58:b4:46: 6e:3e:96:79:35:cf:ec:11:61:99:f2:4e:e7:3a:dc: ed:27:4f:27:96:f6:c7:2a:b8:27:be:b0:0c:b2:79: 84:2a:e0:52:20:91:fc:e5:31:9e:12:5c:4c:9d:c2: dc:ef:8f:12:63:f2:91:70:40:b7:47:67:bf:88:c1: fd:fe:4e:d3:4c:71:24:13:9b:29:b9:86:14:a8:44: c5:ad:f6:a4:04:15:cd:f4:56:6c:58:7d:e9:28:7a: 28:cb:7a:fa:8d:79:08:64:a9:db:12:96:01:cd:b7: e3:77:8b:42:8f:f0:33:94:d3:b5:3f:ac:e6:96:6e: 3e:c2:e1:07:75:9e:8a:bb:44:5f:15:33:0f:7a:41: 9e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:45:77:0D:14:08:44:06:7D:90:48:05:A8:08:04:DB:65:47:01:6D X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/70C35E88B07511EA8C0EC372C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.100.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:1c:27:e9:e2:fe:d1:94:2b:69:f8:68:ef:b4:49:59:ff:1a: 86:b1:bd:6f:a9:69:3b:69:12:f2:25:15:5b:cb:8c:34:fe:78: f4:4d:d6:9e:04:5a:13:12:6f:6d:a2:a5:b7:2f:61:35:42:65: 81:b6:04:46:d4:b0:9a:5c:6d:83:89:f3:b1:03:6d:4d:d3:a9: 18:08:da:3d:3b:0a:06:96:98:b3:af:8c:30:49:2d:66:45:bf: a4:01:fb:d8:d5:06:2b:5e:6a:8b:f8:11:0b:27:34:d7:f2:5a: 1d:bd:cf:a9:56:1c:ff:12:6a:3c:04:59:60:49:1d:ac:db:f4: 68:e5:99:d1:c9:23:2f:13:63:cf:a3:f3:bb:03:da:0b:99:97: 54:dc:8d:19:00:72:ea:76:22:b4:f0:87:f0:03:68:ea:0e:08: f3:67:4f:78:8d:89:1e:c1:bf:bc:4f:9a:ef:f1:47:84:21:ea: ac:6c:ba:44:93:57:6b:cd:ba:4b:9c:5c:e4:74:2a:5a:df:10: c4:2d:ea:f6:ce:d5:ed:9a:70:19:ec:dc:8f:af:01:8c:90:b8: 5c:ca:28:3a:27:bd:67:63:94:6a:15:da:5f:2b:dd:91:49:c0: 83:26:62:90:a3:5d:fb:19:c1:53:41:45:df:7a:ad:73:cd:d6: 9e:66:df:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjQwMTAyMjEzOTE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ODI4Mi0wOGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53B+k08EVp6JNaR2/vx+map+8LXDEyki9nX+Qrh4cFeguEXwGmcUSmpU6aKU yWJU7ZMe2wvwH9iRYWQURjp8gGuHz2k2ufrF7A+rF5g6i7yJ1S4Fivp6J/ohL4g7 F6O8LoUhEBBXwnZkls5KMc/PDcd9KY5YtEZuPpZ5Nc/sEWGZ8k7nOtztJ08nlvbH KrgnvrAMsnmEKuBSIJH85TGeElxMncLc748SY/KRcEC3R2e/iMH9/k7TTHEkE5sp uYYUqETFrfakBBXN9FZsWH3pKHooy3r6jXkIZKnbEpYBzbfjd4tCj/AzlNO1P6zm lm4+wuEHdZ6Ku0RfFTMPekGe5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKlFdw0U CEQGfZBIBagIBNtlRwFtMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVFMjMvODYyQTgzQ0FCMDczMTFFQTkwRUM5OTZFQzRGOUFFMDIvNzBDMzVFODhC MDc1MTFFQThDMEVDMzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnUGQwDQYJKoZIhvcNAQELBQADggEBAD0cJ+ni/tGUK2n4 aO+0SVn/GoaxvW+paTtpEvIlFVvLjDT+ePRN1p4EWhMSb22ipbcvYTVCZYG2BEbU sJpcbYOJ87EDbU3TqRgI2j07CgaWmLOvjDBJLWZFv6QB+9jVBiteaov4EQsnNNfy Wh29z6lWHP8SajwEWWBJHazb9GjlmdHJIy8TY8+j87sD2guZl1TcjRkAcup2IrTw h/ADaOoOCPNnT3iNiR7Bv7xPmu/xR4Qh6qxsukSTV2vNukucXOR0KlrfEMQt6vbO 1e2acBns3I+vAYyQuFzKKDonvWdjlGoV2l8r3ZFJwIMmYpCjXfsZwVNBRd96rXPN 1p5m358= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:29 2024 by rpki-client on console-ams.rpki-client.org