$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/9F83FF76379211EB87782474C4F9AE02.roa File: 9F83FF76379211EB87782474C4F9AE02.roa (raw, json) Hash identifier: LFKqme373CTsjnyLCujbaQKei0FZTpA8mt8kjF/+nL8= Subject key identifier: 38:1F:43:BA:8D:53:69:0A:F0:E4:7C:3F:9B:0F:0F:F8:92:DB:ED:80 Certificate issuer: /CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Certificate serial: 0B9E Authority key identifier: 05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/9F83FF76379211EB87782474C4F9AE02.roa Signing time: Wed 14 Aug 2024 19:38:16 +0000 ROA not before: Wed 14 Aug 2024 19:38:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136555 IP address blocks: 103.92.152.0/22 maxlen: 22 103.92.152.0/23 maxlen: 23 103.92.152.0/24 maxlen: 24 103.92.153.0/24 maxlen: 24 103.92.154.0/23 maxlen: 23 103.92.154.0/24 maxlen: 24 103.92.155.0/24 maxlen: 24 2403:bb40::/32 maxlen: 32 2403:bb40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC12/serialNumber=05070BF9AD930449FB3B69B8691CF20C012779B9 Validity Not Before: Aug 14 19:38:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66bd07a8-f019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7a:54:3a:2a:74:94:e2:93:b6:49:c5:22:0a: 32:d2:b7:7b:a3:0f:6f:f6:87:89:ca:82:e1:59:4a: 27:47:22:a3:41:71:d7:d0:e8:9e:dd:cb:7e:fb:20: ca:71:7a:d5:46:16:c5:cf:71:d9:66:fe:fb:6d:18: 2f:ae:26:ee:28:a9:ee:9a:36:22:49:1a:a1:c1:47: ec:60:a3:ea:5f:ce:32:3d:bd:f4:b5:5f:fe:5d:3c: b0:fa:9a:b1:ca:e3:fa:1d:07:66:48:d3:66:27:2d: 81:2a:d4:77:a7:9b:81:e1:13:61:cc:aa:ef:0e:16: 9a:74:f1:fe:77:4e:56:bb:7e:5c:25:16:6d:97:92: 77:b7:7d:ac:25:97:df:e3:9b:db:d4:1d:13:c8:0e: 87:83:2a:4a:5e:a7:ab:49:ec:77:58:29:20:94:3a: a7:3b:de:f1:95:68:84:9a:90:28:cd:cc:df:41:77: 6b:8a:ec:16:57:25:d7:d1:60:80:43:ee:25:1c:9b: 13:50:42:6c:0a:e4:8a:95:23:4a:e6:0d:98:91:8a: 78:a9:00:b8:28:57:d9:97:00:c9:07:97:95:ef:41: 4e:41:6f:74:a9:14:01:84:3f:1e:40:c1:48:6f:57: 45:7e:c7:5c:f5:16:03:8c:18:8b:c3:d2:b9:86:e9: d0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1F:43:BA:8D:53:69:0A:F0:E4:7C:3F:9B:0F:0F:F8:92:DB:ED:80 X509v3 Authority Key Identifier: keyid:05:07:0B:F9:AD:93:04:49:FB:3B:69:B8:69:1C:F2:0C:01:27:79:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/BQcL-a2TBEn7O2m4aRzyDAEnebk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQcL-a2TBEn7O2m4aRzyDAEnebk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC12/8592E4880F6611EAAF51C646C4F9AE02/9F83FF76379211EB87782474C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.152.0/22 IPv6: 2403:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 9c:83:82:12:f1:c1:8a:63:1a:b8:16:9d:b0:13:7d:a8:f2:21: d1:05:2c:6a:15:68:04:0a:52:d1:44:d6:4b:6a:d3:91:d7:85: e2:f4:7b:22:56:50:ab:23:e5:1c:08:7f:9a:5b:2d:4a:1b:fe: 7c:72:c2:9c:c4:48:30:34:35:f3:c8:d2:23:60:ae:0b:40:74: 44:56:ef:0f:bf:e4:f2:e4:be:85:08:50:7a:03:86:5a:34:92: 14:3b:d8:68:22:b8:3e:71:e9:cf:e4:c2:f8:a7:3e:9a:b8:65: 1f:64:4d:8a:e0:ac:1b:48:0d:5c:dc:59:bc:1d:3f:e5:72:69: a0:36:9d:26:bf:62:40:aa:88:b7:ea:b6:65:d3:fc:f5:b5:14: c2:3b:05:91:cf:74:0a:9b:d8:47:60:5d:29:e9:d9:8d:93:1d: e2:95:7f:f8:31:4a:6d:03:e4:ca:29:9e:f8:ec:87:55:75:40: b9:82:7d:f4:ca:03:b4:99:5e:b6:3f:25:61:4d:fa:b6:d1:64: bd:fb:d9:f0:16:81:cf:03:6e:54:95:19:9d:fe:5d:e3:50:4d: 7f:bc:1a:cc:ed:e5:dd:dc:2e:b7:75:47:34:36:f7:07:61:82: 5f:09:41:85:07:27:ec:00:fb:00:bc:5f:3f:46:1a:7e:e2:c5: a7:1d:29:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDMTIxMTAvBgNVBAUTKDA1MDcwQkY5QUQ5MzA0NDlGQjNCNjlCODY5MUNGMjBD MDEyNzc5QjkwHhcNMjQwODE0MTkzODE2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkMDdhOC1mMDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnnpUOip0lOKTtknFIgoy0rd7ow9v9oeJyoLhWUonRyKjQXHX0Oie3ct++yDK cXrVRhbFz3HZZv77bRgvribuKKnumjYiSRqhwUfsYKPqX84yPb30tV/+XTyw+pqx yuP6HQdmSNNmJy2BKtR3p5uB4RNhzKrvDhaadPH+d05Wu35cJRZtl5J3t32sJZff 45vb1B0TyA6HgypKXqerSex3WCkglDqnO97xlWiEmpAozczfQXdriuwWVyXX0WCA Q+4lHJsTUEJsCuSKlSNK5g2YkYp4qQC4KFfZlwDJB5eV70FOQW90qRQBhD8eQMFI b1dFfsdc9RYDjBiLw9K5hunQUwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDgfQ7qN U2kK8OR8P5sPD/iS2+2AMB8GA1UdIwQYMBaAFAUHC/mtkwRJ+ztpuGkc8gwBJ3m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMxMi84NTkyRTQ4ODBG NjYxMUVBQUY1MUM2NDZDNEY5QUUwMi9CUWNMLWEyVEJFbjdPMm00YVJ6eURBRW5l YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRY0wtYTJUQkVuN08ybTRhUnp5REFFbmViay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVDMTIvODU5MkU0ODgwRjY2MTFFQUFGNTFDNjQ2QzRGOUFFMDIvOUY4M0ZGNzYz NzkyMTFFQjg3NzgyNDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnXJgwDQQCAAIwBwMFACQDu0AwDQYJKoZIhvcNAQELBQAD ggEBAJyDghLxwYpjGrgWnbATfajyIdEFLGoVaAQKUtFE1ktq05HXheL0eyJWUKsj 5RwIf5pbLUob/nxywpzESDA0NfPI0iNgrgtAdERW7w+/5PLkvoUIUHoDhlo0khQ7 2GgiuD5x6c/kwvinPpq4ZR9kTYrgrBtIDVzcWbwdP+VyaaA2nSa/YkCqiLfqtmXT /PW1FMI7BZHPdAqb2EdgXSnp2Y2THeKVf/gxSm0D5Mopnvjsh1V1QLmCffTKA7SZ XrY/JWFN+rbRZL372fAWgc8DblSVGZ3+XeNQTX+8Gszt5d3cLrd1RzQ29wdhgl8J QYUHJ+wA+wC8Xz9GGn7ixacdKQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org