$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa File: F68AC4D84D9B11EC9CF19624C4F9AE02.roa (raw, json) Hash identifier: DYCid3LLEniTmBG1cDjym9t3s6fpWuAE5JDaOW/kSN8= Subject key identifier: 03:4B:11:65:32:10:4C:5B:18:82:E6:7C:02:E9:73:73:4E:8F:8B:F3 Certificate issuer: /CN=A91EFC72/serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Certificate serial: 04E7 Authority key identifier: B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa Signing time: Wed 31 Jul 2024 00:43:11 +0000 ROA not before: Wed 31 Jul 2024 00:43:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 10098 IP address blocks: 103.55.200.0/22 maxlen: 22 103.55.200.0/23 maxlen: 23 103.55.200.0/24 maxlen: 24 103.55.201.0/24 maxlen: 24 103.55.202.0/23 maxlen: 23 103.55.202.0/24 maxlen: 24 103.55.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1255 (0x4e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFC72/serialNumber=B7A7A9FFBEC713F84E0B5180AF76DEB16E729229 Validity Not Before: Jul 31 00:43:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a9889e-3565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4f:7e:a5:96:5b:61:1e:74:22:d4:6a:c1:c7: d7:c6:3a:a4:f4:72:56:f7:9d:4e:de:92:be:c8:a8: c8:c0:5d:38:34:8b:c8:85:b5:72:0c:3e:b2:9c:1c: 1a:53:e0:a3:89:fc:79:12:23:7e:ec:4c:de:85:9c: 34:88:2d:23:3a:40:f5:2f:e3:f5:c2:d4:67:67:ce: 14:00:fb:cf:99:30:ba:21:b2:bb:da:85:00:b9:8e: e9:14:7c:08:47:6b:8e:0e:07:55:09:46:4a:bf:5f: f6:de:ea:98:4b:21:2c:1c:83:50:50:d1:89:a2:7e: 49:a0:ca:95:50:4e:9a:a0:8e:7a:f7:1d:9b:a7:98: e2:ec:59:e0:83:e3:93:33:19:32:86:49:cf:79:82: 3a:1c:5e:75:68:68:b7:ca:5e:fb:91:82:35:fe:7e: bd:91:19:e0:09:c7:03:6f:e7:2f:02:c8:b2:c9:33: f3:0a:83:28:69:b1:a3:7b:a7:8e:02:1a:5c:bb:88: d6:1c:3e:ff:5b:8b:ac:9d:98:04:5d:86:76:18:d6: 75:44:18:2f:60:92:64:55:7a:c3:15:5f:eb:b3:bf: 53:94:42:ef:af:6b:fc:d3:6a:5d:52:48:ea:3f:db: 23:2a:79:4b:12:ad:6b:7f:f4:24:b5:6d:1d:79:ff: 0d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4B:11:65:32:10:4C:5B:18:82:E6:7C:02:E9:73:73:4E:8F:8B:F3 X509v3 Authority Key Identifier: keyid:B7:A7:A9:FF:BE:C7:13:F8:4E:0B:51:80:AF:76:DE:B1:6E:72:92:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/t6ep_77HE_hOC1GAr3besW5ykik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t6ep_77HE_hOC1GAr3besW5ykik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFC72/075F6968E60D11EBB09F6A61C4F9AE02/F68AC4D84D9B11EC9CF19624C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.200.0/22 Signature Algorithm: sha256WithRSAEncryption 26:49:23:d9:9d:9e:ed:8b:90:a2:89:9b:d3:07:4a:f4:3f:e9: 85:42:86:ce:51:52:0d:77:fa:a7:88:e6:0d:98:3f:a1:b5:7d: d1:7c:24:29:e1:15:db:c3:1f:2c:4a:83:0e:b6:b0:e7:37:c5: 7c:4d:b3:1b:83:14:e1:4e:da:fc:46:3e:04:d6:dd:11:fd:81: 00:eb:70:51:61:89:00:6e:9f:89:8e:48:ef:2b:a4:b6:78:58: 16:9e:50:fe:59:b5:06:28:80:5e:78:5b:9a:b9:72:b7:83:15: 9c:4b:a9:6c:31:06:e3:df:b3:65:e3:5b:18:2d:26:0a:b2:05: 8b:8d:8a:7f:a5:2e:8a:b7:77:0d:cc:81:e0:22:71:3d:c1:c7: 48:a0:6a:f0:73:a2:04:ec:46:0a:8d:30:d3:d0:30:00:c2:a1: e0:21:22:9b:6a:53:f8:57:56:da:c8:d0:27:ff:89:66:18:fb: e2:a7:b5:e3:aa:d6:e0:e2:f7:d4:d3:52:59:ea:23:bf:ec:62: 2f:a0:69:07:60:df:b0:83:f0:fe:01:34:e8:d7:09:2a:17:17: 3f:70:41:b4:66:be:17:5a:57:6d:70:35:74:5d:d3:21:78:70: 6a:7f:70:c3:72:1d:6f:ec:1c:35:6c:f5:6b:46:0a:16:01:86: bc:ac:9a:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZDNzIxMTAvBgNVBAUTKEI3QTdBOUZGQkVDNzEzRjg0RTBCNTE4MEFGNzZERUIx NkU3MjkyMjkwHhcNMjQwNzMxMDA0MzExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5ODg5ZS0zNTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwk9+pZZbYR50ItRqwcfXxjqk9HJW951O3pK+yKjIwF04NIvIhbVyDD6ynBwa U+Cjifx5EiN+7EzehZw0iC0jOkD1L+P1wtRnZ84UAPvPmTC6IbK72oUAuY7pFHwI R2uODgdVCUZKv1/23uqYSyEsHINQUNGJon5JoMqVUE6aoI569x2bp5ji7Fngg+OT MxkyhknPeYI6HF51aGi3yl77kYI1/n69kRngCccDb+cvAsiyyTPzCoMoabGje6eO Ahpcu4jWHD7/W4usnZgEXYZ2GNZ1RBgvYJJkVXrDFV/rs79TlELvr2v802pdUkjq P9sjKnlLEq1rf/QktW0def8N0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFANLEWUy EExbGILmfALpc3NOj4vzMB8GA1UdIwQYMBaAFLenqf++xxP4TgtRgK923rFucpIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkM3Mi8wNzVGNjk2OEU2 MEQxMUVCQjA5RjZBNjFDNEY5QUUwMi90NmVwXzc3SEVfaE9DMUdBcjNiZXNXNXlr aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q2ZXBfNzdIRV9oT0MxR0FyM2Jlc1c1eWtpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZDNzIvMDc1RjY5NjhFNjBEMTFFQkIwOUY2QTYxQzRGOUFFMDIvRjY4QUM0RDg0 RDlCMTFFQzlDRjE5NjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnN8gwDQYJKoZIhvcNAQELBQADggEBACZJI9mdnu2LkKKJ m9MHSvQ/6YVChs5RUg13+qeI5g2YP6G1fdF8JCnhFdvDHyxKgw62sOc3xXxNsxuD FOFO2vxGPgTW3RH9gQDrcFFhiQBun4mOSO8rpLZ4WBaeUP5ZtQYogF54W5q5creD FZxLqWwxBuPfs2XjWxgtJgqyBYuNin+lLoq3dw3MgeAicT3Bx0igavBzogTsRgqN MNPQMADCoeAhIptqU/hXVtrI0Cf/iWYY++KnteOq1uDi99TTUlnqI7/sYi+gaQdg 37CD8P4BNOjXCSoXFz9wQbRmvhdaV21wNXRd0yF4cGp/cMNyHW/sHDVs9WtGChYB hrysmj4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org