$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa File: 8A4C662AEAB511ECBBDE3C50C4F9AE02.roa (raw, json) Hash identifier: J8gquWVTmRgJWJ3mBG8a1mA8su1ptSNi3imZDckI5g0= Subject key identifier: 71:99:95:12:39:F9:10:33:5C:8A:AA:FC:5F:88:C5:9B:47:F8:4B:29 Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 038E Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa Signing time: Fri 11 Oct 2024 01:04:31 +0000 ROA not before: Fri 11 Oct 2024 01:04:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137427 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Oct 11 01:04:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6708799f-d72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:40:68:b7:0a:a7:c0:ed:3a:42:3c:26:7e: 8e:a2:4a:96:ad:1f:35:46:fe:d4:41:48:03:c7:1b: 36:4c:4b:54:88:61:2b:b6:23:50:0d:40:25:8c:de: 92:93:d7:87:58:f9:85:26:ff:90:38:79:1d:80:90: eb:cb:df:5c:a9:ce:28:29:27:76:a2:c7:e0:21:74: c9:2b:c5:8b:23:b5:9d:d8:30:76:7e:c4:b5:45:20: e0:73:81:1f:e7:6c:a7:81:eb:7c:eb:ef:58:96:5d: ec:95:d3:d6:2a:38:c6:e9:6b:ad:93:e5:f0:86:91: fd:8a:99:47:af:26:26:5a:01:e8:07:69:64:7e:d4: 6f:47:1e:0c:4a:72:cd:81:fb:65:f2:db:d7:2c:89: f0:25:ec:b7:b1:20:50:d0:49:d9:16:66:8d:aa:71: 3f:3e:63:d6:7a:60:4a:d9:97:51:9b:52:c1:d1:f5: fd:60:2f:e3:d3:f8:4f:0b:6d:a3:45:42:56:e9:02: 37:1b:bc:ee:f8:d4:cd:ba:3e:13:7b:f3:61:d2:8c: f5:43:ba:5b:96:3e:e7:64:9f:34:b1:31:fa:aa:b7: 60:c8:65:be:b2:56:9a:eb:17:e5:21:db:69:0c:3e: 91:20:9b:fa:68:91:7d:37:60:c3:f9:d9:3a:ae:13: 77:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:99:95:12:39:F9:10:33:5C:8A:AA:FC:5F:88:C5:9B:47:F8:4B:29 X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/8A4C662AEAB511ECBBDE3C50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 2f:9e:49:37:e8:c6:13:05:a3:d8:0b:33:1e:7a:45:8e:14:12: 8b:c6:bf:51:4c:10:ad:d2:26:5e:92:69:8f:54:92:02:46:6c: 65:69:98:ae:f2:e2:2b:3f:be:cf:7c:cc:e1:d7:20:6c:4b:40: cf:68:34:db:64:9d:c5:2c:1a:3a:82:19:76:db:54:03:68:5d: 8e:a9:ef:28:cf:d9:27:4e:0c:96:35:8b:4c:c0:f8:17:97:29: 06:a1:86:70:2e:e0:eb:1a:df:d2:d3:b1:cf:c3:3c:3f:66:de: 9b:20:8e:14:04:64:56:f3:8a:f7:f0:f6:95:4a:2b:8b:ff:f4: 5c:18:74:f3:f4:67:26:a1:b0:ec:e9:fa:50:ea:dc:54:f7:aa: fb:30:3e:0f:d7:13:c9:63:b0:11:bb:e1:c3:77:d8:7c:2a:7a: 1d:d4:bb:e6:76:77:08:7b:5f:64:be:91:20:ea:d5:f3:a9:59: 8a:fb:bb:8e:1e:70:99:56:fa:ab:b7:d9:97:f6:ff:d7:f8:13: e4:df:a5:76:48:ee:26:93:83:85:5c:22:6d:dc:ac:f8:9b:c7: 2c:a2:8a:9a:42:60:4f:df:1e:b2:fc:8e:4d:a5:2f:ed:c6:00: c8:7d:8f:74:92:83:d6:5c:ea:da:96:10:72:c8:30:96:c9:1f: 71:b1:95:14 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjQxMDExMDEwNDMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4Nzk5Zi1kNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6BAaLcKp8DtOkI8Jn6OokqWrR81Rv7UQUgDxxs2TEtUiGErtiNQDUAljN6S k9eHWPmFJv+QOHkdgJDry99cqc4oKSd2osfgIXTJK8WLI7Wd2DB2fsS1RSDgc4Ef 52ynget86+9Yll3sldPWKjjG6Wutk+XwhpH9iplHryYmWgHoB2lkftRvRx4MSnLN gftl8tvXLInwJey3sSBQ0EnZFmaNqnE/PmPWemBK2ZdRm1LB0fX9YC/j0/hPC22j RUJW6QI3G7zu+NTNuj4Te/Nh0oz1Q7pblj7nZJ80sTH6qrdgyGW+slaa6xflIdtp DD6RIJv6aJF9N2DD+dk6rhN3YQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFHGZlRI5 +RAzXIqq/F+IxZtH+EspMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOEE0QzY2MkFF QUI1MTFFQ0JCREUzQzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAL55JN+jGEwWj2AszHnpFjhQSi8a/UUwQrdImXpJpj1SSAkZsZWmYrvLiKz++ z3zM4dcgbEtAz2g022SdxSwaOoIZdttUA2hdjqnvKM/ZJ04MljWLTMD4F5cpBqGG cC7g6xrf0tOxz8M8P2bemyCOFARkVvOK9/D2lUori//0XBh08/RnJqGw7On6UOrc VPeq+zA+D9cTyWOwEbvhw3fYfCp6HdS75nZ3CHtfZL6RIOrV86lZivu7jh5wmVb6 q7fZl/b/1/gT5N+ldkjuJpODhVwibdys+JvHLKKKmkJgT98esvyOTaUv7cYAyH2P dJKD1lzq2pYQcsgwlskfcbGVFA== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org