$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa File: 7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa (raw, json) Hash identifier: V9elMt4mtakfJ0YTHY94DFYKDGmWTd90QDlgS5t/Q2o= Subject key identifier: 43:C9:A5:1B:11:D8:81:F9:59:8C:18:06:B3:FE:46:09:2A:0B:08:2A Certificate issuer: /CN=A91F67F5/serialNumber=ABF173DC0A2586959291769A067037319AFA8FD5 Certificate serial: 07D8 Authority key identifier: AB:F1:73:DC:0A:25:86:95:92:91:76:9A:06:70:37:31:9A:FA:8F:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa Signing time: Mon 08 Jan 2024 22:00:27 +0000 ROA not before: Mon 08 Jan 2024 22:00:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 55707 IP address blocks: 101.2.168.0/22 maxlen: 24 103.7.72.0/22 maxlen: 22 103.7.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.crl rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67F5/serialNumber=ABF173DC0A2586959291769A067037319AFA8FD5 Validity Not Before: Jan 8 22:00:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659c707b-5564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:27:5a:b4:c0:b2:8a:71:5b:9a:13:cb:85:22: b0:22:fb:3f:09:3b:b7:ad:b8:93:2c:f3:da:c1:de: 29:ea:b2:20:c7:24:e9:85:b7:4e:c5:01:6d:cd:a9: 66:1a:d0:96:e9:f6:47:8e:13:a9:a4:84:41:f4:49: b0:38:32:0f:ea:2b:b7:1e:8e:1f:5b:f1:c4:cb:15: 25:6e:69:1d:47:a1:83:86:52:09:0a:32:09:73:ad: 7a:00:af:97:d6:ee:b8:d3:3b:a9:c2:f1:31:5f:be: 17:99:2a:a4:7b:06:78:03:ca:fd:56:e7:85:aa:60: f8:d0:f3:33:c2:25:7e:21:2b:84:a4:85:7f:81:74: 4a:1c:62:fd:c9:a0:63:c8:22:4a:a4:99:c5:e2:ee: 6e:56:a4:14:fa:2e:15:d4:cf:e9:b6:83:7d:e1:49: 88:e5:47:7c:7c:87:95:e5:d3:88:7a:49:b7:bf:c4: a7:e9:af:06:32:e1:3b:b7:a5:f1:bb:24:57:ef:46: 6b:ba:78:d2:e5:b1:ab:3d:93:24:25:d5:26:d5:d3: 7a:2f:f7:71:30:4b:ae:24:ee:f3:9a:54:7f:e4:c8: bd:22:1e:1f:c8:2f:06:ac:cc:e8:82:b6:04:14:24: ab:e6:e7:31:43:29:6f:de:cb:49:23:f8:6f:75:0e: 8f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C9:A5:1B:11:D8:81:F9:59:8C:18:06:B3:FE:46:09:2A:0B:08:2A X509v3 Authority Key Identifier: keyid:AB:F1:73:DC:0A:25:86:95:92:91:76:9A:06:70:37:31:9A:FA:8F:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.168.0/22 103.7.72.0/22 Signature Algorithm: sha256WithRSAEncryption 86:a1:f9:22:95:83:3a:bf:0f:d0:02:6f:09:3e:d5:d4:cd:30: a7:c8:7c:ef:fb:0a:50:75:03:4e:71:85:6b:d9:f3:84:65:aa: 2e:a5:e1:4b:5a:a1:dd:42:04:7b:7f:fb:31:cd:2d:3f:ec:1b: 06:f7:41:e4:a0:e6:eb:24:10:46:67:66:b7:00:aa:9b:57:99: 6d:81:1d:46:04:f9:1e:94:04:fa:af:f2:6a:84:39:f0:e7:57: 02:c0:3c:a6:ec:e2:2b:75:1f:36:c5:f9:e9:b1:04:73:08:68: aa:eb:ad:99:8d:93:cc:05:64:53:05:e3:8f:1e:5d:80:f5:80: 22:f0:a3:82:8d:78:f4:8d:72:1a:91:30:81:eb:7c:64:fa:56: a3:20:82:df:c8:c8:05:af:4c:f9:1a:10:f1:6a:50:19:72:c5: c8:18:95:61:de:2a:2b:f9:4a:7d:0a:91:e5:22:0b:6b:46:60: 01:fd:d1:27:48:ef:a7:84:dd:ec:c4:c6:4b:8f:bf:05:89:df: 0a:33:2e:e0:bb:5a:1a:5a:18:ac:b9:63:66:d0:b1:6f:89:21: d6:0d:a1:d6:a8:08:f6:9a:ef:ae:9f:1f:32:39:4d:e5:a3:37: 23:d6:ad:cf:1e:72:03:37:4b:03:ae:3f:5c:06:1c:2e:b1:ca: 20:f9:8a:07 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3RjUxMTAvBgNVBAUTKEFCRjE3M0RDMEEyNTg2OTU5MjkxNzY5QTA2NzAzNzMx OUFGQThGRDUwHhcNMjQwMTA4MjIwMDI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljNzA3Yi01NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuidatMCyinFbmhPLhSKwIvs/CTu3rbiTLPPawd4p6rIgxyTphbdOxQFtzalm GtCW6fZHjhOppIRB9EmwODIP6iu3Ho4fW/HEyxUlbmkdR6GDhlIJCjIJc616AK+X 1u640zupwvExX74XmSqkewZ4A8r9VueFqmD40PMzwiV+ISuEpIV/gXRKHGL9yaBj yCJKpJnF4u5uVqQU+i4V1M/ptoN94UmI5Ud8fIeV5dOIekm3v8Sn6a8GMuE7t6Xx uyRX70ZrunjS5bGrPZMkJdUm1dN6L/dxMEuuJO7zmlR/5Mi9Ih4fyC8GrMzogrYE FCSr5ucxQylv3stJI/hvdQ6PXQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEPJpRsR 2IH5WYwYBrP+RgkqCwgqMB8GA1UdIwQYMBaAFKvxc9wKJYaVkpF2mgZwNzGa+o/V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdGNS9CRDEwQjREQ0Ix QzYxMUVBQTg0ODI5NkNDNEY5QUUwMi9xX0Z6M0FvbGhwV1NrWGFhQm5BM01acjZq OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FfRnozQW9saHBXU2tYYWFCbkEzTVpyNmo5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3RjUvQkQxMEI0RENCMUM2MTFFQUE4NDgyOTZDQzRGOUFFMDIvN0NBMEEyRTJC MUNFMTFFQUFGMkYyNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJlAqgDBAJnB0gwDQYJKoZIhvcNAQELBQADggEBAIah+SKV gzq/D9ACbwk+1dTNMKfIfO/7ClB1A05xhWvZ84Rlqi6l4Utaod1CBHt/+zHNLT/s Gwb3QeSg5uskEEZnZrcAqptXmW2BHUYE+R6UBPqv8mqEOfDnVwLAPKbs4it1HzbF +emxBHMIaKrrrZmNk8wFZFMF448eXYD1gCLwo4KNePSNchqRMIHrfGT6VqMggt/I yAWvTPkaEPFqUBlyxcgYlWHeKiv5Sn0KkeUiC2tGYAH90SdI76eE3ezExkuPvwWJ 3wozLuC7WhpaGKy5Y2bQsW+JIdYNodaoCPaa766fHzI5TeWjNyPWrc8ecgM3SwOu P1wGHC6xyiD5igc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org