$ rpki-client -vvf rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/89B3D06E0F9111EBA9B90727C4F9AE02.roa File: 89B3D06E0F9111EBA9B90727C4F9AE02.roa (raw, json) Hash identifier: vAxVIummp1tZV92HZC5O4bYvIWtcttXOvxYUEW5yjEo= Subject key identifier: 7E:14:DF:AF:1D:D4:E2:18:8F:96:B8:16:0D:45:BA:B4:77:69:8C:D6 Certificate issuer: /CN=A91549ED/serialNumber=688BB0595F595B711E02450ACEE3B26C113B792F Certificate serial: 069C Authority key identifier: 68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/89B3D06E0F9111EBA9B90727C4F9AE02.roa Signing time: Mon 08 Jan 2024 23:02:37 +0000 ROA not before: Mon 08 Jan 2024 23:02:37 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.204.4.0/24 maxlen: 24 103.204.5.0/24 maxlen: 24 103.204.6.0/24 maxlen: 24 103.204.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91549ED/serialNumber=688BB0595F595B711E02450ACEE3B26C113B792F Validity Not Before: Jan 8 23:02:37 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659c7f0d-41d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b6:77:0b:a5:00:02:68:a8:61:91:8b:d2:97: cc:28:8b:5f:50:52:aa:31:26:51:97:18:c8:4d:f1: 0d:1c:f5:67:6c:0d:7f:ce:6f:39:85:c8:d1:92:78: 41:96:11:8b:26:c7:5f:bb:fa:57:c3:74:d1:e2:de: 81:ed:11:09:85:89:51:f8:f5:04:9f:b3:6e:7c:7c: b1:49:f1:2d:92:bf:75:33:aa:21:7d:be:83:e7:cc: 7a:ed:e8:b4:f1:2f:e3:b5:0b:fc:70:8a:cf:be:f4: 28:d4:cd:fa:c0:22:58:d4:c5:50:39:be:19:26:ac: 03:10:e2:bf:33:7d:ce:b1:44:31:d8:b5:77:63:85: 07:27:fe:9d:a9:b8:13:f0:9b:c9:fa:d3:31:ad:2b: ca:d1:c5:c1:08:ef:ad:f5:e2:c2:ef:dc:30:96:c6: 1c:23:58:4c:ed:0d:8d:f2:31:05:b9:ef:ab:52:d1: 43:83:57:0a:70:88:36:fa:c3:3f:02:17:be:ca:ea: 70:72:8d:c3:f8:78:97:28:2c:6b:c7:f8:26:55:32: 87:bc:be:11:f6:a8:1c:74:8f:dd:71:d2:d7:78:60: 11:70:35:33:c5:55:54:c9:ba:8e:3b:e5:ee:4a:5c: a5:ab:4c:a3:a8:41:88:ac:ae:68:6e:01:2e:f9:a4: ee:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:14:DF:AF:1D:D4:E2:18:8F:96:B8:16:0D:45:BA:B4:77:69:8C:D6 X509v3 Authority Key Identifier: keyid:68:8B:B0:59:5F:59:5B:71:1E:02:45:0A:CE:E3:B2:6C:11:3B:79:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/aIuwWV9ZW3EeAkUKzuOybBE7eS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIuwWV9ZW3EeAkUKzuOybBE7eS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91549ED/B7714B96091811EB95FA2737C4F9AE02/89B3D06E0F9111EBA9B90727C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.4.0/22 Signature Algorithm: sha256WithRSAEncryption 53:ea:b8:c8:99:f3:f1:42:cc:e8:8c:4f:29:6a:6e:f9:c5:02: 3b:39:4c:66:01:32:34:a0:b7:7a:e4:70:4a:55:6c:00:f3:a9: 3c:83:7a:38:1d:3b:7e:fa:10:46:85:29:bf:52:aa:c9:50:3d: c1:94:37:89:d9:4a:de:0c:e9:99:5a:8e:fc:e2:69:ee:df:ef: e5:73:46:e5:6d:f3:cb:f4:1e:bd:3f:2c:56:5a:26:ee:09:90: eb:29:47:be:94:00:2e:40:38:e5:d6:41:c1:6e:af:c1:f1:f2: 41:d7:1f:19:ac:25:88:cd:43:23:ef:74:e1:10:46:0e:b9:7a: a5:bd:6e:2f:cc:ed:25:f7:dc:4c:f3:99:14:7e:d1:cf:7a:4f: 90:69:3d:5b:0f:40:55:d9:f5:ba:ed:11:ff:f8:bb:64:95:92: bb:87:06:e2:e2:aa:f2:f5:9d:4d:b5:d9:53:2e:99:52:b8:28: 1d:6f:46:8b:8d:81:30:a9:80:b7:69:97:99:ad:7f:06:46:21: b5:cc:e1:b2:b1:60:f8:65:2a:ff:50:64:87:c6:73:e5:fe:1d: d5:40:e8:3e:31:f4:3d:13:6d:ea:da:0d:cc:fa:98:dc:55:43: 2e:11:aa:aa:49:89:06:5b:68:56:cf:03:9b:dc:83:84:69:ef: 3e:97:f6:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5RUQxMTAvBgNVBAUTKDY4OEJCMDU5NUY1OTVCNzExRTAyNDUwQUNFRTNCMjZD MTEzQjc5MkYwHhcNMjQwMTA4MjMwMjM3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljN2YwZC00MWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bZ3C6UAAmioYZGL0pfMKItfUFKqMSZRlxjITfENHPVnbA1/zm85hcjRknhB lhGLJsdfu/pXw3TR4t6B7REJhYlR+PUEn7NufHyxSfEtkr91M6ohfb6D58x67ei0 8S/jtQv8cIrPvvQo1M36wCJY1MVQOb4ZJqwDEOK/M33OsUQx2LV3Y4UHJ/6dqbgT 8JvJ+tMxrSvK0cXBCO+t9eLC79wwlsYcI1hM7Q2N8jEFue+rUtFDg1cKcIg2+sM/ Ahe+yupwco3D+HiXKCxrx/gmVTKHvL4R9qgcdI/dcdLXeGARcDUzxVVUybqOO+Xu Slylq0yjqEGIrK5obgEu+aTuKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH4U368d 1OIYj5a4Fg1FurR3aYzWMB8GA1UdIwQYMBaAFGiLsFlfWVtxHgJFCs7jsmwRO3kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDlFRC9CNzcxNEI5NjA5 MTgxMUVCOTVGQTI3MzdDNEY5QUUwMi9hSXV3V1Y5WlczRWVBa1VLenVPeWJCRTdl UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJdXdXVjlaVzNFZUFrVUt6dU95YkJFN2VTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ5RUQvQjc3MTRCOTYwOTE4MTFFQjk1RkEyNzM3QzRGOUFFMDIvODlCM0QwNkUw RjkxMTFFQkE5QjkwNzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzAQwDQYJKoZIhvcNAQELBQADggEBAFPquMiZ8/FCzOiM TylqbvnFAjs5TGYBMjSgt3rkcEpVbADzqTyDejgdO376EEaFKb9SqslQPcGUN4nZ St4M6Zlajvziae7f7+VzRuVt88v0Hr0/LFZaJu4JkOspR76UAC5AOOXWQcFur8Hx 8kHXHxmsJYjNQyPvdOEQRg65eqW9bi/M7SX33EzzmRR+0c96T5BpPVsPQFXZ9brt Ef/4u2SVkruHBuLiqvL1nU212VMumVK4KB1vRouNgTCpgLdpl5mtfwZGIbXM4bKx YPhlKv9QZIfGc+X+HdVA6D4x9D0TberaDcz6mNxVQy4RqqpJiQZbaFbPA5vcg4Rp 7z6X9uc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:40 2024 by rpki-client on console-ams.rpki-client.org