$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/99191AA404E911EAA9C20A60C4F9AE02.roa File: 99191AA404E911EAA9C20A60C4F9AE02.roa (raw, json) Hash identifier: +PNWRMsQpZdZrhBnxEHUPHxE2UGarRHAqMGQOz8wwvo= Subject key identifier: BD:F6:F9:A6:2E:98:92:5B:7A:56:2C:FC:FA:BC:66:3E:86:EA:62:12 Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0BB5 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/99191AA404E911EAA9C20A60C4F9AE02.roa Signing time: Mon 24 Jun 2024 19:20:42 +0000 ROA not before: Mon 24 Jun 2024 19:20:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136165 IP address blocks: 103.77.224.0/24 maxlen: 24 103.100.107.0/24 maxlen: 24 103.249.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2997 (0xbb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Validity Not Before: Jun 24 19:20:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6679c70a-f38a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f0:c0:07:5c:16:f7:1f:8c:3e:82:be:d7:c3: 78:a2:51:81:c8:df:54:01:b1:11:39:a2:19:9f:76: 8b:2e:d7:fb:dc:48:5d:c9:de:5b:e8:10:5c:d0:61: f1:b2:3c:a8:e8:b0:2b:61:ac:1f:7f:5d:82:bb:70: b0:e7:ec:0f:eb:a1:2b:1c:f4:f0:4b:9b:29:c7:0f: a9:5c:19:3e:b0:4d:2a:1e:15:b0:c4:45:bf:20:95: 7e:b8:31:57:bb:60:96:97:e4:88:fc:49:e9:c7:ff: df:15:2c:d4:d6:8e:d1:7f:bb:ae:f3:db:82:e8:56: d5:ba:d1:75:50:42:93:ed:5c:fd:00:4f:c6:a7:df: f1:60:63:c1:0d:0d:c7:07:5d:06:33:a9:2c:12:e6: 94:ce:61:9d:85:aa:0f:f3:91:3a:c4:27:72:fb:1a: d8:76:8a:77:e2:3a:82:f2:72:a8:33:11:fb:e2:e0: c9:1a:bd:11:a3:29:86:61:87:f8:6c:98:ef:a5:8f: d7:c5:79:9c:c2:79:23:c5:df:20:42:12:7b:bf:78: e5:ca:41:81:95:6a:ec:e0:44:85:60:5e:67:5a:8f: d6:aa:6a:7a:bb:d3:b4:29:76:fb:0b:86:79:13:d3: 92:9f:d5:32:9b:22:38:f3:fb:65:af:01:bc:2a:13: 96:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F6:F9:A6:2E:98:92:5B:7A:56:2C:FC:FA:BC:66:3E:86:EA:62:12 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/99191AA404E911EAA9C20A60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.224.0/24 103.100.107.0/24 103.249.71.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:90:11:50:f7:31:b9:55:be:2c:35:7b:e1:d7:f1:d7:fb:ac: d8:be:fd:74:ae:c7:93:51:f1:8b:4d:a5:7f:dd:91:71:e1:9d: e0:8e:63:b6:8c:28:c0:82:02:94:eb:0d:00:8a:9c:1d:44:a0: 70:32:66:d7:7c:1b:8c:42:4d:5d:d3:59:d2:fb:da:31:7a:f1: 0d:e9:5a:09:50:a1:ec:6b:5c:f8:02:b4:22:d5:7d:4e:88:d3: 82:4f:89:8e:d0:32:e6:f8:e4:96:c4:80:b9:be:eb:5c:ca:f4: 28:b4:d7:f0:cd:2a:74:e2:03:f0:a2:ec:04:59:1c:78:4d:8b: 3d:c3:8d:07:c7:c9:d7:c9:72:8f:02:36:cb:7d:cf:de:5f:ad: a8:62:54:61:5f:63:f9:6d:c7:75:a4:c4:d6:1a:71:9f:e8:75: ad:4b:40:e4:34:87:08:b9:dc:f0:89:06:01:a9:bd:46:cd:f3: 79:cc:1d:5f:fa:d7:02:80:8a:f3:09:f6:d4:64:cf:0f:24:14: f1:bc:09:7b:bd:9f:7d:0e:07:c3:e4:e3:a6:65:ec:e3:cb:8f: 51:e2:a9:d2:b0:24:de:0e:62:c7:12:8d:30:f5:a5:42:fc:a0: c6:c9:5c:b6:15:9f:5c:4b:e6:e0:48:b4:e3:e3:ce:04:5a:11: 6a:85:75:23 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjQwNjI0MTkyMDQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc5YzcwYS1mMzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfDAB1wW9x+MPoK+18N4olGByN9UAbEROaIZn3aLLtf73Ehdyd5b6BBc0GHx sjyo6LArYawff12Cu3Cw5+wP66ErHPTwS5spxw+pXBk+sE0qHhWwxEW/IJV+uDFX u2CWl+SI/Enpx//fFSzU1o7Rf7uu89uC6FbVutF1UEKT7Vz9AE/Gp9/xYGPBDQ3H B10GM6ksEuaUzmGdhaoP85E6xCdy+xrYdop34jqC8nKoMxH74uDJGr0RoymGYYf4 bJjvpY/XxXmcwnkjxd8gQhJ7v3jlykGBlWrs4ESFYF5nWo/Wqmp6u9O0KXb7C4Z5 E9OSn9UymyI48/tlrwG8KhOW1QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL32+aYu mJJbelYs/Pq8Zj6G6mISMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBQkQvMjBFOEY5QTAwNEU5MTFFQThEMjBFRTVGQzRGOUFFMDIvOTkxOTFBQTQw NEU5MTFFQUE5QzIwQTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnTeADBABnZGsDBABn+UcwDQYJKoZIhvcNAQELBQADggEB AAuQEVD3MblVviw1e+HX8df7rNi+/XSux5NR8YtNpX/dkXHhneCOY7aMKMCCApTr DQCKnB1EoHAyZtd8G4xCTV3TWdL72jF68Q3pWglQoexrXPgCtCLVfU6I04JPiY7Q Mub45JbEgLm+61zK9Ci01/DNKnTiA/Ci7ARZHHhNiz3DjQfHydfJco8CNst9z95f rahiVGFfY/ltx3WkxNYacZ/oda1LQOQ0hwi53PCJBgGpvUbN83nMHV/61wKAivMJ 9tRkzw8kFPG8CXu9n30OB8Pk46Zl7OPLj1HiqdKwJN4OYscSjTD1pUL8oMbJXLYV n1xL5uBItOPjzgRaEWqFdSM= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:21 2024 by rpki-client on console-fra.rpki-client.org