$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa File: 721709C63F6711EF879C2E11C4F9AE02.roa (raw, json) Hash identifier: 4+7i8uhqmJcz0PVrJF2uPtR5QXEiHBewcipuHNR3zFs= Subject key identifier: 65:FB:F8:03:A9:93:02:7D:89:9B:32:A8:A4:5A:A0:3D:D5:C4:3E:8C Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 107C Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:16:34 +0000 ROA not before: Fri 16 Aug 2024 18:16:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 216047 IP address blocks: 103.140.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4220 (0x107c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 16 18:16:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bf9781-36e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:00:37:5c:75:e5:34:c1:dc:8f:bf:a0:f6:f8: 3a:73:8a:47:3d:ef:92:dc:e5:fe:ed:7e:6e:1d:e1: 0b:65:ea:22:22:db:d5:7c:4f:0f:b9:37:bd:76:bc: d5:9f:9d:a5:aa:77:f0:4b:92:bd:7f:50:03:06:32: 35:d4:4e:14:d8:39:b8:71:12:00:81:b2:b5:44:c1: 0c:9b:80:ef:6a:61:88:00:04:f9:36:c3:e1:76:27: 95:76:31:73:27:41:c4:61:0e:91:66:14:71:94:5c: cb:a9:6d:e1:f4:c7:28:97:6e:fb:14:1f:97:0d:f8: 49:df:59:df:30:49:b4:8b:46:4e:ec:09:59:8d:07: bb:c1:3b:d5:e2:1b:0b:2a:56:c8:a4:83:cb:eb:9a: 2a:63:25:19:cc:31:4d:f7:63:77:d8:21:51:48:18: 39:b1:f5:8b:ba:5c:b7:17:08:a2:6b:26:8f:89:86: 68:56:06:f7:5a:5c:e9:da:17:f7:69:81:dc:1f:fe: 38:98:ba:4d:53:e6:08:05:c5:7d:1d:47:69:29:a3: ab:8a:8d:48:a9:7f:a0:3b:3b:36:0b:a2:d8:ab:2c: af:bc:8c:39:94:86:b0:1b:25:6f:2d:61:a8:a8:87: dd:1f:74:51:90:ae:a6:fe:de:f4:8f:65:cc:49:22: 61:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:FB:F8:03:A9:93:02:7D:89:9B:32:A8:A4:5A:A0:3D:D5:C4:3E:8C X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.8.0/24 Signature Algorithm: sha256WithRSAEncryption b7:6c:db:58:80:72:9c:5b:db:8b:2c:75:e0:2f:78:74:b1:60: be:79:c1:84:19:1f:ef:f5:3c:bd:3d:06:25:9b:77:e0:93:d6: a8:3e:48:8a:70:b4:53:b1:d3:b6:9d:8f:9e:6a:1c:a0:53:bb: ab:77:34:9c:c4:69:13:4e:1e:08:ba:e4:7f:af:2c:ea:73:ac: 15:da:1f:79:5b:6a:ba:f0:99:a3:ff:f9:9b:98:98:18:ad:c7: 87:6a:54:3f:4e:a0:b9:8e:07:c2:fd:33:4c:9e:20:aa:64:29: 5b:41:ba:0b:ee:c3:1a:f1:a0:8c:8a:7f:21:1f:e1:dd:85:6b: 81:87:26:66:c3:e1:a9:98:b9:fe:8d:fe:33:a8:c6:f4:23:42: 37:18:67:eb:4c:a7:16:c0:0d:72:42:65:a3:52:9d:71:6a:49: a7:ea:2f:0b:45:c6:47:8b:12:f9:fc:ff:f0:ad:f9:c9:72:ee: 8e:0b:48:31:00:9a:e8:8f:fa:b4:46:47:cf:ca:17:d6:44:94: 3d:17:8e:52:f0:a0:4a:ce:09:bf:0b:18:6b:ae:12:2e:3b:83: 10:78:42:41:85:5b:62:c6:11:68:3f:5b:87:46:3e:58:b8:ae: 4f:2d:b6:4a:34:4b:8d:43:60:a5:0d:50:01:aa:d9:4d:a9:d3: fb:62:95:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQwODE2MTgxNjM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc4MS0zNmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugA3XHXlNMHcj7+g9vg6c4pHPe+S3OX+7X5uHeELZeoiItvVfE8PuTe9drzV n52lqnfwS5K9f1ADBjI11E4U2Dm4cRIAgbK1RMEMm4DvamGIAAT5NsPhdieVdjFz J0HEYQ6RZhRxlFzLqW3h9Mcol277FB+XDfhJ31nfMEm0i0ZO7AlZjQe7wTvV4hsL KlbIpIPL65oqYyUZzDFN92N32CFRSBg5sfWLuly3FwiiayaPiYZoVgb3Wlzp2hf3 aYHcH/44mLpNU+YIBcV9HUdpKaOrio1IqX+gOzs2C6LYqyyvvIw5lIawGyVvLWGo qIfdH3RRkK6m/t70j2XMSSJhEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGX7+AOp kwJ9iZsyqKRaoD3VxD6MMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvNzIxNzA5QzYz RjY3MTFFRjg3OUMyRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjAgwDQYJKoZIhvcNAQELBQADggEBALds21iAcpxb24ss deAveHSxYL55wYQZH+/1PL09BiWbd+CT1qg+SIpwtFOx07adj55qHKBTu6t3NJzE aRNOHgi65H+vLOpzrBXaH3lbarrwmaP/+ZuYmBitx4dqVD9OoLmOB8L9M0yeIKpk KVtBugvuwxrxoIyKfyEf4d2Fa4GHJmbD4amYuf6N/jOoxvQjQjcYZ+tMpxbADXJC ZaNSnXFqSafqLwtFxkeLEvn8//Ct+cly7o4LSDEAmuiP+rRGR8/KF9ZElD0XjlLw oErOCb8LGGuuEi47gxB4QkGFW2LGEWg/W4dGPli4rk8ttko0S41DYKUNUAGq2U2p 0/tilfk= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:22 2024 by rpki-client on console-ams.rpki-client.org