$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/D326CC30384411EA9D540B58C4F9AE02.roa File: D326CC30384411EA9D540B58C4F9AE02.roa (raw, json) Hash identifier: 4J+4foQcx/WgvPgxSrTkNKwcOyMcaMXru+FJKfj6p4Q= Subject key identifier: 7F:27:E4:4E:88:0D:C5:6D:86:C8:F8:35:85:B6:76:9C:8F:71:01:EA Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0AA4 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/D326CC30384411EA9D540B58C4F9AE02.roa Signing time: Wed 31 Jul 2024 20:08:12 +0000 ROA not before: Wed 31 Jul 2024 20:08:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137510 IP address blocks: 103.141.124.0/23 maxlen: 24 2405:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2724 (0xaa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Jul 31 20:08:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66aa99ac-16d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:92:1d:7a:7b:b6:f5:d9:7d:4f:24:88:88: 23:78:32:57:28:d4:82:d4:8a:e8:f8:e5:34:ee:dd: 8b:27:b0:32:10:2b:8c:16:2c:92:d3:6d:5e:5a:a4: a5:bd:54:0d:a3:a4:a9:db:37:25:a8:46:14:ed:4e: 92:22:90:68:4b:de:8e:e8:41:77:01:e3:64:12:65: 09:6d:1f:01:e1:08:6d:6a:7c:ef:0f:b5:00:38:5d: e5:8e:50:12:80:ae:fa:95:b6:b5:07:36:9b:1a:a4: a8:d5:2e:0f:a5:a7:5d:d4:52:77:25:14:32:54:f0: c1:99:3c:5e:02:2d:ec:8e:47:9f:07:cd:c1:4c:94: 90:10:05:7b:ad:b2:cc:48:c9:e6:d3:3c:b5:74:95: 45:a8:5a:3c:ea:ea:e5:70:94:68:50:f8:d1:89:04: b3:6d:1d:2b:60:e1:74:47:0f:83:e1:47:99:a8:49: 68:be:8c:54:42:7a:ec:81:ab:2b:d2:83:a5:e9:31: da:91:d9:94:15:0a:c2:82:f8:c0:90:98:bb:f2:14: 57:40:ca:f6:67:0e:36:c1:c7:69:ca:a1:b6:19:88: e3:59:ef:b6:c3:20:ba:fa:e1:b3:70:b2:31:5a:d2: 07:ab:54:c0:21:28:e0:cb:a0:25:9a:d2:ed:6c:c5: 55:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:27:E4:4E:88:0D:C5:6D:86:C8:F8:35:85:B6:76:9C:8F:71:01:EA X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/D326CC30384411EA9D540B58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.124.0/23 IPv6: 2405:1840::/32 Signature Algorithm: sha256WithRSAEncryption 26:9e:4d:82:f8:b6:64:b9:bb:8e:04:26:c1:fc:cc:d4:33:84: 22:5f:e7:bb:58:8c:1d:24:72:f4:3b:b8:d6:99:e0:12:39:5d: d6:84:0b:bf:c4:46:79:62:89:55:c4:91:1f:d7:b1:df:ce:2a: 4d:a9:0b:3c:27:9a:35:e3:36:cb:a4:cd:45:cd:50:58:42:ae: bb:d6:a8:f2:74:69:c9:fc:3c:0a:8f:15:5d:93:6b:88:bb:b4: ee:2c:02:de:37:cb:a3:37:07:00:55:a4:3d:df:55:e4:31:fc: 36:20:ed:f1:45:b3:5e:8b:01:93:61:da:92:48:8f:c6:f4:3e: e6:0b:f3:a3:b9:58:75:39:2a:d6:7e:2c:b0:6b:ae:d0:48:c7: 22:1c:4c:49:f2:7d:7e:d3:b9:8f:a7:61:38:3e:a5:79:be:c0: 81:88:84:da:40:92:1d:3c:c8:22:e6:c1:ce:24:41:3d:b3:78: 3a:6f:70:c4:85:dd:77:b4:4a:bb:4f:24:50:6b:53:6a:59:ac: 07:5a:f7:4f:4c:db:52:12:88:6d:50:46:8f:52:40:13:09:9d: bc:48:33:92:9c:11:fb:3f:86:ae:31:23:72:22:11:35:0e:82: 0e:47:ea:82:75:18:77:1d:6a:b8:ea:ff:7a:b6:b2:e5:07:84: 51:3e:82:3a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjQwNzMxMjAwODEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhOTlhYy0xNmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYmSHXp7tvXZfU8kiIgjeDJXKNSC1Iro+OU07t2LJ7AyECuMFiyS021eWqSl vVQNo6Sp2zclqEYU7U6SIpBoS96O6EF3AeNkEmUJbR8B4QhtanzvD7UAOF3ljlAS gK76lba1BzabGqSo1S4Ppadd1FJ3JRQyVPDBmTxeAi3sjkefB83BTJSQEAV7rbLM SMnm0zy1dJVFqFo86urlcJRoUPjRiQSzbR0rYOF0Rw+D4UeZqElovoxUQnrsgasr 0oOl6THakdmUFQrCgvjAkJi78hRXQMr2Zw42wcdpyqG2GYjjWe+2wyC6+uGzcLIx WtIHq1TAISjgy6AlmtLtbMVVkQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFH8n5E6I DcVthsj4NYW2dpyPcQHqMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA0QkQvNDM3M0Q1MEMzODQzMTFFQUE2MTkyRTUzQzRGOUFFMDIvRDMyNkNDMzAz ODQ0MTFFQTlENTQwQjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjXwwDQQCAAIwBwMFACQFGEAwDQYJKoZIhvcNAQELBQAD ggEBACaeTYL4tmS5u44EJsH8zNQzhCJf57tYjB0kcvQ7uNaZ4BI5XdaEC7/ERnli iVXEkR/Xsd/OKk2pCzwnmjXjNsukzUXNUFhCrrvWqPJ0acn8PAqPFV2Ta4i7tO4s At43y6M3BwBVpD3fVeQx/DYg7fFFs16LAZNh2pJIj8b0PuYL86O5WHU5KtZ+LLBr rtBIxyIcTEnyfX7TuY+nYTg+pXm+wIGIhNpAkh08yCLmwc4kQT2zeDpvcMSF3Xe0 SrtPJFBrU2pZrAda909M21ISiG1QRo9SQBMJnbxIM5KcEfs/hq4xI3IiETUOgg5H 6oJ1GHcdarjq/3q2suUHhFE+gjo= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:20 2024 by rpki-client on console-ams.rpki-client.org