$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa File: 91A286509F0811ECAE659F82C4F9AE02.roa (raw, json) Hash identifier: RqwnZfnau7RkdBU68iXpJ/pJr2ocars1rJf1vcp1FOQ= Subject key identifier: 4E:64:A6:E5:F8:23:DC:ED:3C:12:B9:37:56:00:94:64:24:F2:9D:6E Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 038D Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa Signing time: Fri 11 Oct 2024 01:04:30 +0000 ROA not before: Fri 11 Oct 2024 01:04:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136038 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Oct 11 01:04:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6708799e-fc31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:30:19:07:df:6b:c4:da:df:83:05:56:e1: ca:7f:e1:75:a4:69:a8:b0:0c:5c:d6:dc:b7:62:d4: e9:86:9f:56:70:aa:78:7a:f0:61:89:32:7d:76:f1: ba:44:16:8b:be:9f:fd:14:34:0c:3f:5f:d5:9c:9d: ad:be:bd:fb:bc:84:76:68:1a:ed:d2:f5:ef:0d:b3: ad:99:a9:1b:b2:49:81:74:ad:d9:f6:84:62:76:06: d2:10:8b:75:23:43:4f:5d:51:92:0e:20:ab:56:b4: 16:af:85:4a:45:6d:14:73:3d:a6:47:91:b3:9a:f2: 4e:26:ca:ea:66:98:40:d2:cd:d0:84:c1:27:c7:a0: c4:c4:7d:5f:32:60:72:03:8a:ac:8a:82:f1:81:f9: 53:ed:99:f6:9e:12:27:1d:30:0e:b6:c1:99:75:f2: f5:5d:83:b6:69:de:35:61:6d:8e:81:1e:d1:51:65: 52:28:b0:92:8c:7f:23:11:03:84:0c:66:a6:82:79: 96:7b:eb:b3:87:0b:91:56:0c:69:77:d2:bf:de:b2: 13:6d:8c:f1:e3:75:ea:5b:36:ff:dc:f4:57:31:bf: 87:9e:40:91:57:35:ca:aa:5b:26:d6:7f:c9:f2:54: 0b:df:7e:3c:8e:4f:c3:7f:cf:7c:c7:52:52:a0:df: b8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:64:A6:E5:F8:23:DC:ED:3C:12:B9:37:56:00:94:64:24:F2:9D:6E X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 8b:60:5a:21:ef:ba:82:8a:5c:af:e3:35:ca:7e:fc:82:37:23: 36:ce:62:29:e2:21:d3:6c:50:af:70:72:4d:a1:0a:2e:8b:a6: 10:ed:48:3a:18:b9:3f:d2:ce:06:2d:e2:7a:de:d1:58:db:9e: 81:a2:00:a5:d9:88:07:b2:cf:94:ae:1e:7c:1d:38:a1:b9:e8: e3:cc:bb:8d:f0:bb:0a:82:70:e6:d1:66:4b:31:f5:a8:b6:bc: cc:8f:77:00:f7:c3:be:1e:2e:f0:cc:92:57:75:8f:a7:7b:6c: c2:9a:ad:24:91:ad:72:ff:64:6f:c2:da:37:6c:4e:f9:aa:d1: a4:ff:d0:d4:21:92:bd:67:fb:ee:18:d9:fd:74:76:14:54:fc: 4d:be:b9:19:37:1c:93:72:6d:0c:58:ed:16:38:f6:be:0e:6d: 4f:f8:7b:ca:22:ca:52:07:d6:0f:cc:7e:b8:44:f3:d9:d6:3d: 98:4f:6b:6f:2c:2d:ab:9a:63:aa:8b:3c:e7:df:bd:fd:12:c3: 75:c0:a1:b8:26:e8:a5:ea:c7:c0:79:26:d9:21:30:63:f4:47: b1:1c:cb:89:d7:81:5c:41:ce:d9:52:36:16:84:5b:67:69:8b: 13:f4:e8:65:e7:f6:d2:0c:39:8a:44:c5:9e:35:05:03:87:6e: cb:fc:4a:61 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjQxMDExMDEwNDMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4Nzk5ZS1mYzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaQwGQffa8Ta34MFVuHKf+F1pGmosAxc1ty3YtTphp9WcKp4evBhiTJ9dvG6 RBaLvp/9FDQMP1/VnJ2tvr37vIR2aBrt0vXvDbOtmakbskmBdK3Z9oRidgbSEIt1 I0NPXVGSDiCrVrQWr4VKRW0Ucz2mR5GzmvJOJsrqZphA0s3QhMEnx6DExH1fMmBy A4qsioLxgflT7Zn2nhInHTAOtsGZdfL1XYO2ad41YW2OgR7RUWVSKLCSjH8jEQOE DGamgnmWe+uzhwuRVgxpd9K/3rITbYzx43XqWzb/3PRXMb+HnkCRVzXKqlsm1n/J 8lQL3348jk/Df898x1JSoN+4VQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFE5kpuX4 I9ztPBK5N1YAlGQk8p1uMB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOTFBMjg2NTA5 RjA4MTFFQ0FFNjU5RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAi2BaIe+6gopcr+M1yn78gjcjNs5iKeIh02xQr3ByTaEKLoumEO1IOhi5P9LO Bi3iet7RWNuegaIApdmIB7LPlK4efB04obno48y7jfC7CoJw5tFmSzH1qLa8zI93 APfDvh4u8MySV3WPp3tswpqtJJGtcv9kb8LaN2xO+arRpP/Q1CGSvWf77hjZ/XR2 FFT8Tb65GTcck3JtDFjtFjj2vg5tT/h7yiLKUgfWD8x+uETz2dY9mE9rbywtq5pj qos859+9/RLDdcChuCboperHwHkm2SEwY/RHsRzLideBXEHO2VI2FoRbZ2mLE/To Zef20gw5ikTFnjUFA4duy/xKYQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org