$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa File: 7A7A6AC6234311EA90D15227C4F9AE02.roa (raw, json) Hash identifier: zo25YC/oPN7LoCYNy9rkqq5CmjGFDNR2L9SiYpUiaJY= Subject key identifier: D4:06:94:2F:D0:FD:3F:2E:23:3D:A2:2B:6B:08:D1:D3:D4:B4:92:66 Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 15E0 Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa Signing time: Sat 20 Jan 2024 17:04:38 +0000 ROA not before: Sat 20 Jan 2024 17:04:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136168 IP address blocks: 103.82.232.0/24 maxlen: 24 103.96.230.0/23 maxlen: 24 103.96.232.0/24 maxlen: 24 123.253.228.0/22 maxlen: 24 2401:8340::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:34:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5600 (0x15e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Validity Not Before: Jan 20 17:04:38 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65abfd25-ede3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a8:ef:d6:4e:3d:29:20:d9:3b:e1:b9:18:4d: e6:e5:a7:58:22:bb:0a:5a:21:dc:c9:d5:44:80:53: d7:43:fe:45:63:bf:97:00:b8:3f:91:30:39:cb:c0: 24:14:88:75:3c:d0:eb:0a:40:64:e0:5f:f0:80:91: 09:a3:b6:f9:5e:0f:01:14:8c:e5:af:d0:6b:f2:b6: 3b:aa:92:80:da:c5:66:ec:73:1e:fc:72:5a:ee:5c: b9:ff:57:76:80:23:9a:83:9d:3e:0e:30:6f:6e:e8: 8c:0f:fb:74:3e:a0:cd:03:fc:eb:63:41:3f:c2:a7: 9c:0b:ab:dd:f6:0f:31:a3:e8:58:12:e8:5d:86:36: 23:d5:21:ce:f5:81:60:cd:18:50:97:9e:6f:ac:40: ea:af:aa:cf:46:81:94:10:65:5a:82:5e:db:6e:da: 10:85:3f:4f:f7:ba:08:fa:96:74:24:88:63:8c:c7: 32:15:ee:e7:99:b1:3d:a2:01:01:25:39:95:50:71: 87:2c:e2:1d:c7:95:8a:9a:d8:48:a0:56:e0:31:2f: 01:49:7a:7a:19:70:cc:0f:5f:7d:f0:f3:ef:d7:85: 0d:50:00:8a:48:7c:df:e4:60:8a:04:2a:31:0a:72: 8c:8b:99:f8:2c:dc:e3:5e:b5:58:3d:f3:bf:cf:15: f4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:06:94:2F:D0:FD:3F:2E:23:3D:A2:2B:6B:08:D1:D3:D4:B4:92:66 X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.232.0/24 103.96.230.0-103.96.232.255 123.253.228.0/22 IPv6: 2401:8340::/32 Signature Algorithm: sha256WithRSAEncryption 90:92:b0:d5:b6:e9:4d:8a:29:6d:2d:f6:e4:f3:0c:a7:e1:a4: 2e:1e:d4:75:47:87:b2:7c:eb:57:eb:3b:78:01:a9:40:fc:da: 9e:69:25:b7:f8:c5:00:d2:72:53:bf:09:fa:a1:cd:47:1e:48: d2:e5:00:9a:10:fa:0c:ad:06:c7:c1:cd:50:e1:b3:8b:a3:64: 0b:a2:90:85:20:2b:da:bb:ba:41:ed:9a:8f:4d:25:fc:5b:59: d8:f7:a7:08:00:ce:2e:e7:2c:cb:fb:6f:28:23:da:1e:4c:95: 58:2a:e3:68:2c:24:e5:39:56:e2:0f:ee:6a:6a:5b:da:6a:8e: d2:33:10:07:d4:72:4d:be:eb:d2:7f:b5:45:c3:d1:8c:88:54: a1:e9:cb:fb:32:ef:d0:3c:dd:8c:58:25:19:f2:e9:a2:c2:fd: c2:e1:84:9a:2c:18:3b:a5:21:d5:df:31:79:ab:a0:9d:a6:e8: a3:04:41:61:60:14:9b:ca:30:45:61:ed:0b:98:e2:5d:92:a8: c9:96:e9:41:49:c2:e1:ab:cd:ed:e8:ba:9d:d5:8d:8e:7b:ad: 13:d9:02:a7:4d:f2:6b:16:a3:d5:70:5b:1b:64:fb:83:9c:6a: 2b:8c:bf:f7:9f:82:9b:24:62:80:ec:16:bf:f8:6a:9f:73:50: 5a:4b:38:88 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICFeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjQwMTIwMTcwNDM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFiZmQyNS1lZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6jv1k49KSDZO+G5GE3m5adYIrsKWiHcydVEgFPXQ/5FY7+XALg/kTA5y8Ak FIh1PNDrCkBk4F/wgJEJo7b5Xg8BFIzlr9Br8rY7qpKA2sVm7HMe/HJa7ly5/1d2 gCOag50+DjBvbuiMD/t0PqDNA/zrY0E/wqecC6vd9g8xo+hYEuhdhjYj1SHO9YFg zRhQl55vrEDqr6rPRoGUEGVagl7bbtoQhT9P97oI+pZ0JIhjjMcyFe7nmbE9ogEB JTmVUHGHLOIdx5WKmthIoFbgMS8BSXp6GXDMD1998PPv14UNUACKSHzf5GCKBCox CnKMi5n4LNzjXrVYPfO/zxX0pQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFNQGlC/Q /T8uIz2iK2sI0dPUtJJmMB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlCM0EvN0RFQUU3MzRGM0EzMTFFN0I1RDA5QzcxQzRGOUFFMDIvN0E3QTZBQzYy MzQzMTFFQTkwRDE1MjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBoDBABnUugwDAMEAWdg5gMEAGdg6AMEAnv95DANBAIAAjAHAwUA JAGDQDANBgkqhkiG9w0BAQsFAAOCAQEAkJKw1bbpTYopbS325PMMp+GkLh7UdUeH snzrV+s7eAGpQPzanmklt/jFANJyU78J+qHNRx5I0uUAmhD6DK0Gx8HNUOGzi6Nk C6KQhSAr2ru6Qe2aj00l/FtZ2PenCADOLucsy/tvKCPaHkyVWCrjaCwk5TlW4g/u ampb2mqO0jMQB9RyTb7r0n+1RcPRjIhUoenL+zLv0DzdjFglGfLposL9wuGEmiwY O6Uh1d8xeaugnaboowRBYWAUm8owRWHtC5jiXZKoyZbpQUnC4avN7ei6ndWNjnut E9kCp03yaxaj1XBbG2T7g5xqK4y/95+CmyRigOwWv/hqn3NQWks4iA== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:59 2024 by rpki-client on console-ams.rpki-client.org