$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa File: 0834FF2C2F4C11EDB0375D6CC4F9AE02.roa (raw, json) Hash identifier: jsKgrIPw9kysznIIPdP3oqonMHQ5VwN13abO5ggVkg4= Subject key identifier: 28:F6:38:A7:23:DA:54:E9:12:C2:F3:83:F1:3A:5F:1C:36:B1:14:F5 Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0842 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa Signing time: Mon 02 Sep 2024 21:29:48 +0000 ROA not before: Mon 02 Sep 2024 21:29:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149010 IP address blocks: 103.253.24.0/24 maxlen: 24 103.253.25.0/24 maxlen: 24 103.253.26.0/24 maxlen: 24 103.253.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Sep 2 21:29:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d62e4c-e779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:54:e4:4b:bc:49:48:28:30:67:11:2d:ed:c6: 0a:41:2a:3a:61:59:c5:82:ba:7f:00:ae:d6:fd:26: 7c:11:90:85:0f:e6:96:bf:8f:eb:f2:ff:6f:4b:72: 70:72:80:f1:70:b8:aa:26:d0:d7:15:2e:29:75:17: f7:22:d7:47:e0:02:a1:42:34:a2:b7:c4:92:05:a4: aa:0c:14:a0:17:48:14:47:e0:f3:c5:67:fe:23:6c: d1:7a:82:fe:ad:6a:f3:3c:41:91:57:3d:fd:cc:00: b0:3d:d8:4b:86:f3:aa:bf:91:d7:58:7f:0f:c5:a2: 1a:cd:73:f4:f9:96:85:9f:e9:74:14:d6:66:8d:9f: 73:12:29:e9:20:a1:bf:dc:fd:39:40:f0:63:92:3f: 61:76:f2:ee:9e:0e:57:aa:5e:6f:eb:e9:67:50:06: 10:44:5d:20:94:f3:6e:b9:9f:ea:59:f9:0a:42:0d: c0:22:d6:48:58:d2:5e:f6:3d:30:73:9f:d7:52:b5: ec:72:5f:68:80:07:03:8c:ae:1f:2d:8c:53:a6:57: 9f:ef:e6:55:1e:12:41:f4:0a:a8:02:89:ca:2b:a2: 59:f3:4d:01:8a:c6:60:8c:af:38:45:99:60:70:0c: ad:38:0a:14:ff:f5:b9:f5:b7:a7:d4:c8:26:1b:82: 51:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F6:38:A7:23:DA:54:E9:12:C2:F3:83:F1:3A:5F:1C:36:B1:14:F5 X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/0834FF2C2F4C11EDB0375D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.24.0/22 Signature Algorithm: sha256WithRSAEncryption 35:02:ce:02:80:42:9d:93:6c:07:3c:71:75:d6:18:6d:9a:6e: 00:94:b2:37:20:26:58:43:6c:c6:4c:90:58:3a:d7:92:33:af: d8:13:9c:b6:b9:df:cc:f5:2c:ba:89:e1:0a:7d:aa:59:87:ee: d8:04:9e:4e:0b:27:1e:ba:9f:86:75:65:4f:ab:0c:7b:7f:c2: 0c:84:79:20:3a:cc:91:22:8a:18:5a:cb:cb:5a:af:fe:95:b5: 20:0c:ce:07:cf:7b:36:84:ff:67:d4:10:b3:ed:2a:23:51:46: 0f:fc:2e:ee:ef:fa:d6:28:84:15:52:b4:0a:82:d1:46:4a:fa: 1e:09:c4:d0:0a:31:bd:28:47:72:bb:12:aa:63:e6:4f:63:98: 0a:7d:0e:f0:b3:e3:15:93:40:89:81:0e:d4:eb:d3:b0:ba:b4: 95:c5:02:b5:bb:c3:2a:96:d0:eb:08:a5:b4:83:95:25:94:a9: fa:c2:88:62:15:a5:ed:ad:8b:bf:e9:52:df:cb:5c:ae:1f:6f: a6:aa:6c:61:74:9c:2b:9d:ae:de:f6:c4:46:72:e0:b0:fe:04: 32:93:8a:90:ed:2c:cc:de:08:36:be:d6:75:e1:fc:38:c1:db: ac:cf:c6:52:97:51:30:ca:06:1c:43:af:cf:55:a4:7a:c0:f7: 88:a1:4b:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjQwOTAyMjEyOTQ4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MmU0Yy1lNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVTkS7xJSCgwZxEt7cYKQSo6YVnFgrp/AK7W/SZ8EZCFD+aWv4/r8v9vS3Jw coDxcLiqJtDXFS4pdRf3ItdH4AKhQjSit8SSBaSqDBSgF0gUR+DzxWf+I2zReoL+ rWrzPEGRVz39zACwPdhLhvOqv5HXWH8PxaIazXP0+ZaFn+l0FNZmjZ9zEinpIKG/ 3P05QPBjkj9hdvLung5Xql5v6+lnUAYQRF0glPNuuZ/qWfkKQg3AItZIWNJe9j0w c5/XUrXscl9ogAcDjK4fLYxTplef7+ZVHhJB9AqoAonKK6JZ800BisZgjK84RZlg cAytOAoU//W59ben1MgmG4JRsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCj2OKcj 2lTpEsLzg/E6Xxw2sRT1MB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvMDgzNEZGMkMy RjRDMTFFREIwMzc1RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn/RgwDQYJKoZIhvcNAQELBQADggEBADUCzgKAQp2TbAc8 cXXWGG2abgCUsjcgJlhDbMZMkFg615Izr9gTnLa538z1LLqJ4Qp9qlmH7tgEnk4L Jx66n4Z1ZU+rDHt/wgyEeSA6zJEiihhay8tar/6VtSAMzgfPezaE/2fUELPtKiNR Rg/8Lu7v+tYohBVStAqC0UZK+h4JxNAKMb0oR3K7Eqpj5k9jmAp9DvCz4xWTQImB DtTr07C6tJXFArW7wyqW0OsIpbSDlSWUqfrCiGIVpe2ti7/pUt/LXK4fb6aqbGF0 nCudrt72xEZy4LD+BDKTipDtLMzeCDa+1nXh/DjB26zPxlKXUTDKBhxDr89VpHrA 94ihSwM= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:05 2024 by rpki-client on console-ams.rpki-client.org