$ rpki-client -vvf rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa File: 819F3DD6F5E111EC9754EB85C4F9AE02.roa (raw, json) Hash identifier: hbDMnvq+3uPhy+l00wQh92gtO222M2b23uJyUw6S38s= Subject key identifier: 11:F5:0C:7D:03:AC:7C:23:A5:F0:73:BB:8F:4A:9A:BF:3C:54:F3:56 Certificate issuer: /CN=A91E711B/serialNumber=422F3B078264782E987873D86A744E2861F2A503 Certificate serial: 022B Authority key identifier: 42:2F:3B:07:82:64:78:2E:98:78:73:D8:6A:74:4E:28:61:F2:A5:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa Signing time: Wed 21 Aug 2024 02:46:39 +0000 ROA not before: Wed 21 Aug 2024 02:46:39 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 21788 IP address blocks: 103.142.30.0/24 maxlen: 24 103.142.31.0/24 maxlen: 24 2001:df1:2880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.crl rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E711B/serialNumber=422F3B078264782E987873D86A744E2861F2A503 Validity Not Before: Aug 21 02:46:39 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c5550f-2740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:20:d2:fd:f3:52:4c:e8:dd:ee:94:4f:62:16: 56:dd:95:02:64:b9:02:09:dd:4a:e8:80:56:3f:29: de:37:5b:d1:ad:dd:7f:83:40:c4:70:30:36:a0:02: 22:66:7f:4a:f4:fb:4c:a8:c1:a4:27:e3:42:73:94: f7:1e:34:16:f3:01:c1:29:11:af:77:d3:b7:3a:d3: f0:c6:c5:4b:c1:ed:07:31:10:25:db:b6:4b:f9:01: 4d:29:75:5e:58:24:52:a7:81:10:85:11:74:a8:06: 64:ee:93:ef:7a:e1:8b:15:f7:a0:96:85:2e:ab:20: 58:3b:81:9a:e8:df:65:d8:83:76:10:81:19:6a:27: 42:5a:28:9d:dd:23:3c:b3:14:e6:19:cb:8b:98:08: 40:78:aa:e1:4b:ee:a2:80:51:07:69:c3:35:90:30: 7e:d3:4c:ba:7a:91:7e:64:15:a9:98:77:9f:2a:ee: c5:4e:cf:0b:75:5d:4a:21:d0:18:e6:e7:79:8d:ba: c5:47:08:85:ce:4e:c4:e6:76:4b:59:43:e3:ad:bb: b8:94:3e:11:72:74:18:4a:da:19:a2:01:89:0a:8e: fa:e6:0f:6f:4d:39:43:5c:d5:0a:0c:a6:58:25:6b: a4:70:e9:05:51:09:99:d3:25:84:e4:26:e1:51:57: 28:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F5:0C:7D:03:AC:7C:23:A5:F0:73:BB:8F:4A:9A:BF:3C:54:F3:56 X509v3 Authority Key Identifier: keyid:42:2F:3B:07:82:64:78:2E:98:78:73:D8:6A:74:4E:28:61:F2:A5:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.30.0/23 IPv6: 2001:df1:2880::/48 Signature Algorithm: sha256WithRSAEncryption 8b:dc:fa:fc:5c:ff:42:74:5c:08:e2:a8:68:08:1a:6e:34:73: c2:e4:c3:65:e4:e3:b5:1e:c7:89:f4:b6:af:65:5d:1b:af:b6: 52:69:ac:fb:4d:3f:f6:f1:9c:b5:19:a1:dc:18:7f:87:90:0f: f5:58:72:fa:e0:26:17:63:c0:b5:53:9b:3c:1a:72:18:bd:39: d9:af:44:ba:b3:d1:c2:f6:4b:9a:ad:be:c3:4c:24:cb:b2:17: 46:7f:a6:9b:57:e6:d2:a0:1f:4e:18:87:18:f1:95:7e:27:db: 52:8f:c0:8c:0d:c5:46:6d:c5:76:c1:5f:11:d1:8c:fd:82:3f: fb:66:38:6f:5f:c1:5b:2b:e9:05:4b:ab:bd:d0:54:15:7c:ec: 19:87:c4:20:c3:fe:12:7a:5e:65:a3:cd:9a:a6:bd:26:ce:31: e8:ec:64:ec:33:ca:e0:ca:e8:de:77:dc:62:97:4f:e9:63:b8: c1:3a:04:f1:c8:a2:43:ae:80:e2:07:7c:eb:0b:18:10:3e:d6: 34:88:b2:1f:94:73:17:07:aa:51:7a:77:00:0e:ee:27:0d:74: f0:6c:74:10:ff:f2:ab:fe:4c:78:67:e9:b2:76:b2:5c:28:0c: 83:4c:5e:98:aa:4d:00:7b:51:19:e9:4e:f6:ec:5b:0a:7e:11: 7d:20:f6:c1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxMUIxMTAvBgNVBAUTKDQyMkYzQjA3ODI2NDc4MkU5ODc4NzNEODZBNzQ0RTI4 NjFGMkE1MDMwHhcNMjQwODIxMDI0NjM5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1NTUwZi0yNzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5iDS/fNSTOjd7pRPYhZW3ZUCZLkCCd1K6IBWPyneN1vRrd1/g0DEcDA2oAIi Zn9K9PtMqMGkJ+NCc5T3HjQW8wHBKRGvd9O3OtPwxsVLwe0HMRAl27ZL+QFNKXVe WCRSp4EQhRF0qAZk7pPveuGLFfegloUuqyBYO4Ga6N9l2IN2EIEZaidCWiid3SM8 sxTmGcuLmAhAeKrhS+6igFEHacM1kDB+00y6epF+ZBWpmHefKu7FTs8LdV1KIdAY 5ud5jbrFRwiFzk7E5nZLWUPjrbu4lD4RcnQYStoZogGJCo765g9vTTlDXNUKDKZY JWukcOkFUQmZ0yWE5CbhUVcobQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBH1DH0D rHwjpfBzu49Kmr88VPNWMB8GA1UdIwQYMBaAFEIvOweCZHgumHhz2Gp0Tihh8qUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzExQi81MDVDOTczOEY1 REIxMUVDOUQwNjc3N0JDNEY5QUUwMi9RaTg3QjRKa2VDNlllSFBZYW5ST0tHSHlw UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpODdCNEprZUM2WWVIUFlhblJPS0dIeXBRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcxMUIvNTA1Qzk3MzhGNURCMTFFQzlEMDY3NzdCQzRGOUFFMDIvODE5RjNERDZG NUUxMTFFQzk3NTRFQjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjh4wDwQCAAIwCQMHACABDfEogDANBgkqhkiG9w0BAQsF AAOCAQEAi9z6/Fz/QnRcCOKoaAgabjRzwuTDZeTjtR7HifS2r2VdG6+2Umms+00/ 9vGctRmh3Bh/h5AP9Vhy+uAmF2PAtVObPBpyGL052a9EurPRwvZLmq2+w0wky7IX Rn+mm1fm0qAfThiHGPGVfifbUo/AjA3FRm3FdsFfEdGM/YI/+2Y4b1/BWyvpBUur vdBUFXzsGYfEIMP+EnpeZaPNmqa9Js4x6Oxk7DPK4Mro3nfcYpdP6WO4wToE8cii Q66A4gd86wsYED7WNIiyH5RzFweqUXp3AA7uJw108Gx0EP/yq/5MeGfpsnayXCgM g0xemKpNAHtRGelO9uxbCn4RfSD2wQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org