$ rpki-client -vvf rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/E11FA920F11A11EB9F005358C4F9AE02.roa File: E11FA920F11A11EB9F005358C4F9AE02.roa (raw, json) Hash identifier: Pfjb1wm6jDOim3eSfbu3Z5HUwd0Kah9HIhgDBWP9f4g= Subject key identifier: 1D:9B:83:9E:26:47:9D:3C:81:01:8D:FB:29:9B:11:5F:6B:3F:C9:6C Certificate issuer: /CN=A91177A8/serialNumber=9E35E53EEA6B7BC3EC29AF3B3620E9A654C0B6AC Certificate serial: 04B1 Authority key identifier: 9E:35:E5:3E:EA:6B:7B:C3:EC:29:AF:3B:36:20:E9:A6:54:C0:B6:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/njXlPupre8PsKa87NiDpplTAtqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/E11FA920F11A11EB9F005358C4F9AE02.roa Signing time: Sat 03 Aug 2024 01:13:35 +0000 ROA not before: Sat 03 Aug 2024 01:13:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137398 IP address blocks: 103.167.80.0/24 maxlen: 24 103.169.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/njXlPupre8PsKa87NiDpplTAtqw.crl rsync://rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/njXlPupre8PsKa87NiDpplTAtqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/njXlPupre8PsKa87NiDpplTAtqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91177A8/serialNumber=9E35E53EEA6B7BC3EC29AF3B3620E9A654C0B6AC Validity Not Before: Aug 3 01:13:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ad843e-5e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:97:fc:e3:92:db:4a:c5:65:36:d4:21:d9:80: 26:be:2f:78:c7:6e:ce:92:8f:d6:c0:4f:6a:f4:9c: 22:d1:9a:a9:85:2a:a2:36:aa:65:f8:d8:20:87:98: 58:d3:1d:98:0b:c1:df:95:14:db:85:7d:cc:32:33: 23:f1:d7:6e:ee:0b:49:eb:47:c8:5a:12:0c:04:81: 67:fd:25:06:d0:06:5a:f2:fd:e1:59:a8:36:ce:dc: 80:4e:62:f4:60:38:73:20:e5:ca:ef:08:83:cf:3e: 33:c0:b5:9f:1e:fb:cf:d5:92:6a:a3:33:c4:fe:00: c8:9a:40:d4:d5:a0:b1:8e:80:65:72:6d:08:3a:bd: eb:31:9a:c4:b5:20:f6:6d:2a:cc:5c:3d:3a:0c:ad: af:46:70:f6:d1:9c:be:46:53:e9:55:53:6a:db:6e: a5:21:63:43:70:2a:db:b5:17:24:df:55:1b:4f:94: c2:63:32:77:df:b5:85:c5:6d:cc:45:39:68:2c:d3: ea:07:14:1a:2c:8d:82:63:ed:b2:e1:94:f1:f8:c7: 83:63:c9:88:03:04:cb:58:77:17:c5:fa:63:38:f5: 39:ad:99:82:d3:b7:9f:9a:de:d7:d1:9f:14:a8:0a: 2a:47:5d:4e:e8:f8:b5:02:52:8a:ef:fc:02:ef:46: 47:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:9B:83:9E:26:47:9D:3C:81:01:8D:FB:29:9B:11:5F:6B:3F:C9:6C X509v3 Authority Key Identifier: keyid:9E:35:E5:3E:EA:6B:7B:C3:EC:29:AF:3B:36:20:E9:A6:54:C0:B6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/njXlPupre8PsKa87NiDpplTAtqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/njXlPupre8PsKa87NiDpplTAtqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91177A8/BA526138F11611EBB0E3C74DC4F9AE02/E11FA920F11A11EB9F005358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.80.0/24 103.169.208.0/24 Signature Algorithm: sha256WithRSAEncryption 62:03:ed:f7:53:ac:33:43:a8:ad:fd:98:f8:09:76:96:c9:c0: 1a:6e:f4:0e:57:11:aa:a4:7a:32:49:48:cf:f4:65:5a:94:f5: b3:80:f0:d3:cc:ac:94:1b:2a:a1:10:15:f2:8a:0d:c2:be:21: 9a:ee:76:e7:67:8f:ea:0c:12:71:88:ca:e8:bd:b4:c8:ca:ae: 90:d0:be:b9:0b:72:40:5e:dc:2e:e3:ea:3d:97:fd:1c:d7:10: ab:3c:f1:52:1f:af:27:b5:85:d0:31:1a:64:3b:9f:fa:10:dc: 4b:a0:03:2f:79:6c:22:f2:ad:16:11:97:a1:39:b8:24:6b:25: 78:05:32:16:1e:d0:fa:e9:8f:42:f1:01:90:7d:25:e8:ab:9b: 94:e9:2c:e6:54:5d:46:e2:a5:bf:1d:f7:7b:34:a7:eb:ab:18: 30:41:74:d9:f6:15:6c:b5:77:69:b2:58:61:d6:a6:e5:1a:86: 25:9a:a3:a8:42:55:3f:af:1d:d4:f6:4e:8d:7c:42:49:c4:79: 93:54:43:29:55:f2:ef:d1:4d:3d:ee:e3:39:1c:58:9e:c8:0a: ce:c3:d9:b3:3c:f1:62:9d:f5:ab:4e:68:59:2c:7d:02:1c:d3: f6:48:f5:77:26:a3:c8:a6:0b:5b:fc:48:81:e6:9f:a8:fd:89: 4e:3f:c8:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3QTgxMTAvBgNVBAUTKDlFMzVFNTNFRUE2QjdCQzNFQzI5QUYzQjM2MjBFOUE2 NTRDMEI2QUMwHhcNMjQwODAzMDExMzM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkODQzZS01ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5f845LbSsVlNtQh2YAmvi94x27Oko/WwE9q9Jwi0ZqphSqiNqpl+Nggh5hY 0x2YC8HflRTbhX3MMjMj8ddu7gtJ60fIWhIMBIFn/SUG0AZa8v3hWag2ztyATmL0 YDhzIOXK7wiDzz4zwLWfHvvP1ZJqozPE/gDImkDU1aCxjoBlcm0IOr3rMZrEtSD2 bSrMXD06DK2vRnD20Zy+RlPpVVNq226lIWNDcCrbtRck31UbT5TCYzJ337WFxW3M RTloLNPqBxQaLI2CY+2y4ZTx+MeDY8mIAwTLWHcXxfpjOPU5rZmC07efmt7X0Z8U qAoqR11O6Pi1AlKK7/wC70ZHEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB2bg54m R508gQGN+ymbEV9rP8lsMB8GA1UdIwQYMBaAFJ415T7qa3vD7CmvOzYg6aZUwLas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzdBOC9CQTUyNjEzOEYx MTYxMUVCQjBFM0M3NERDNEY5QUUwMi9ualhsUHVwcmU4UHNLYTg3TmlEcHBsVEF0 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25qWGxQdXByZThQc0thODdOaURwcGxUQXRxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc3QTgvQkE1MjYxMzhGMTE2MTFFQkIwRTNDNzREQzRGOUFFMDIvRTExRkE5MjBG MTFBMTFFQjlGMDA1MzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnp1ADBABnqdAwDQYJKoZIhvcNAQELBQADggEBAGID7fdT rDNDqK39mPgJdpbJwBpu9A5XEaqkejJJSM/0ZVqU9bOA8NPMrJQbKqEQFfKKDcK+ IZrududnj+oMEnGIyui9tMjKrpDQvrkLckBe3C7j6j2X/RzXEKs88VIfrye1hdAx GmQ7n/oQ3EugAy95bCLyrRYRl6E5uCRrJXgFMhYe0Prpj0LxAZB9Jeirm5TpLOZU XUbipb8d93s0p+urGDBBdNn2FWy1d2myWGHWpuUahiWao6hCVT+vHdT2To18QknE eZNUQylV8u/RTT3u4zkcWJ7ICs7D2bM88WKd9atOaFksfQIc0/ZI9Xcmo8imC1v8 SIHmn6j9iU4/yDk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:31 2024 by rpki-client on console-fra.rpki-client.org