$ rpki-client -vvf rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa File: 93FE3B60220111EE8E5D8D0FC4F9AE02.roa (raw, json) Hash identifier: Yz/+/IZVcc+5lrqnMdZi03yjb19ulOEfIAhXRVTBBuo= Subject key identifier: C8:A8:B2:5A:86:91:4C:E2:D0:B2:AE:78:8B:20:00:65:3A:1C:C7:CB Certificate issuer: /CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Certificate serial: 0777 Authority key identifier: 78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa Signing time: Tue 09 Jul 2024 00:59:12 +0000 ROA not before: Tue 09 Jul 2024 00:59:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133104 IP address blocks: 103.152.248.0/24 maxlen: 24 103.152.249.0/24 maxlen: 24 119.252.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1911 (0x777) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Validity Not Before: Jul 9 00:59:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=668c8b60-01ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fe:aa:f2:7f:d2:61:68:91:ab:d2:36:0b:a5: 77:ab:57:64:14:31:e1:20:08:1d:ca:57:cf:73:ff: 47:10:cb:d0:80:07:0a:d5:13:31:a7:ea:f1:91:58: b5:ef:ce:59:d9:58:76:82:4a:b1:2d:16:68:be:3a: a1:a3:72:d7:3e:26:de:0d:10:35:c1:b7:8c:d4:90: 51:e7:40:1c:ce:3c:f8:0d:34:c6:ff:3c:82:1d:b2: f1:50:42:0b:dd:a9:ab:62:7a:12:09:48:e3:04:63: 33:ae:ce:7f:e7:8c:bb:fc:47:8c:48:4d:02:91:7c: a1:32:65:f6:30:24:cf:a1:b8:c5:42:03:ba:89:1e: 2c:8c:0d:17:41:9e:55:21:07:ad:8e:2a:a8:bb:7c: e9:ae:99:2c:29:14:6b:66:29:4b:5e:70:57:ec:84: 01:a7:ff:18:ca:2b:9d:c6:a9:0f:50:d2:22:93:83: e0:24:f8:a1:d2:d8:84:e4:85:c7:fc:58:ae:a1:7b: 6a:57:c6:7c:1e:84:a4:52:da:9a:91:e5:52:0f:57: a8:03:9b:25:7c:69:ac:1c:bf:83:d8:f9:29:1f:ca: 56:de:a2:cf:a2:bf:5d:81:63:dc:b2:0e:c8:23:51: f8:b8:4e:46:47:35:90:aa:57:99:4f:45:aa:be:54: de:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A8:B2:5A:86:91:4C:E2:D0:B2:AE:78:8B:20:00:65:3A:1C:C7:CB X509v3 Authority Key Identifier: keyid:78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/93FE3B60220111EE8E5D8D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.248.0/23 119.252.177.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:50:56:b4:61:06:a5:44:68:5e:5f:0f:68:e6:86:c0:95:8f: 3b:a8:76:56:dc:e2:a5:1a:6a:1f:07:a0:32:4c:83:2c:e1:72: ce:93:10:c2:74:9c:97:66:37:07:13:4d:c2:2b:98:ee:fe:28: 8d:c3:bb:2e:59:42:d6:ab:8f:70:f7:e9:d5:30:c2:2d:b0:51: b2:e2:91:d8:ce:6b:0a:59:38:02:80:9a:fb:f4:6a:3d:07:62: 23:ce:83:96:0d:14:83:4b:4e:c0:3a:93:35:2c:e1:9e:64:7e: 74:61:60:64:91:95:ea:7e:d0:b0:df:d1:a0:f8:c2:a0:f8:69: 07:3c:55:e0:ff:4c:19:29:1d:0a:9f:df:5f:57:49:eb:ba:e4: 54:30:76:29:63:01:71:58:ff:7b:b0:69:c9:91:95:2b:a5:d4: 0d:ec:1c:c8:27:80:8b:01:a8:93:78:1b:e7:04:b2:67:17:8d: bb:99:99:c0:2c:fb:1b:5b:c7:2d:6d:54:9c:1a:56:65:9c:29: be:76:4d:ea:93:9a:46:dc:ce:bd:6c:33:81:11:74:7c:33:1c: 66:c4:5b:e5:5c:1e:89:e9:75:75:7d:e4:05:7a:6f:bb:e0:7d: 69:0a:b5:98:dd:f5:e3:5a:02:1d:8c:ab:46:1f:54:7e:8a:0c: 7d:dc:77:81 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGRTUxMTAvBgNVBAUTKDc4QTk5NzdGRkI0N0FGM0VDMUU5NDZCQzEwRjgxMzc2 OTQ5RUJFQzIwHhcNMjQwNzA5MDA1OTEyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjOGI2MC0wMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1P6q8n/SYWiRq9I2C6V3q1dkFDHhIAgdylfPc/9HEMvQgAcK1RMxp+rxkVi1 785Z2Vh2gkqxLRZovjqho3LXPibeDRA1wbeM1JBR50Aczjz4DTTG/zyCHbLxUEIL 3amrYnoSCUjjBGMzrs5/54y7/EeMSE0CkXyhMmX2MCTPobjFQgO6iR4sjA0XQZ5V IQetjiqou3zprpksKRRrZilLXnBX7IQBp/8YyiudxqkPUNIik4PgJPih0tiE5IXH /FiuoXtqV8Z8HoSkUtqakeVSD1eoA5slfGmsHL+D2PkpH8pW3qLPor9dgWPcsg7I I1H4uE5GRzWQqleZT0WqvlTekQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMioslqG kUzi0LKueIsgAGU6HMfLMB8GA1UdIwQYMBaAFHipl3/7R68+welGvBD4E3aUnr7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkZFNS85REFGNDg2RURE RUIxMUVBQjMwRUQ5MjFDNEY5QUUwMi9lS21YZl90SHJ6N0I2VWE4RVBnVGRwU2V2 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLbVhmX3RIcno3QjZVYThFUGdUZHBTZXZzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGRTUvOURBRjQ4NkVEREVCMTFFQUIzMEVEOTIxQzRGOUFFMDIvOTNGRTNCNjAy MjAxMTFFRThFNUQ4RDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnmPgDBAB3/LEwDQYJKoZIhvcNAQELBQADggEBAE5QVrRh BqVEaF5fD2jmhsCVjzuodlbc4qUaah8HoDJMgyzhcs6TEMJ0nJdmNwcTTcIrmO7+ KI3Duy5ZQtarj3D36dUwwi2wUbLikdjOawpZOAKAmvv0aj0HYiPOg5YNFINLTsA6 kzUs4Z5kfnRhYGSRlep+0LDf0aD4wqD4aQc8VeD/TBkpHQqf319XSeu65FQwdilj AXFY/3uwacmRlSul1A3sHMgngIsBqJN4G+cEsmcXjbuZmcAs+xtbxy1tVJwaVmWc Kb52TeqTmkbczr1sM4ERdHwzHGbEW+VcHonpdXV95AV6b7vgfWkKtZjd9eNaAh2M q0YfVH6KDH3cd4E= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:39 2024 by rpki-client on console-ams.rpki-client.org