$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/B7D0DFCE4DB711EF8E122A5FC4F9AE02.roa File: B7D0DFCE4DB711EF8E122A5FC4F9AE02.roa (raw, json) Hash identifier: VKZ9LIexMFkEYGOmEADIBtbRMOmwzVdorGbV8zP17Qg= Subject key identifier: B1:06:14:8C:E5:21:87:06:72:BE:E4:67:4E:E2:92:A9:5D:A2:CB:4F Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27 Certificate serial: 0110 Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/B7D0DFCE4DB711EF8E122A5FC4F9AE02.roa Signing time: Sat 05 Oct 2024 04:37:55 +0000 ROA not before: Sat 05 Oct 2024 04:37:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 57043 IP address blocks: 103.99.53.0/24 maxlen: 24 103.99.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27 Validity Not Before: Oct 5 04:37:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700c2a3-60ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:53:36:a4:6b:a0:ac:e6:d3:1c:3d:85:94:85: 0a:92:1c:cb:73:e5:f9:22:3b:f3:02:39:91:7b:d4: ec:f5:2e:54:85:9e:08:93:47:74:6e:f4:53:c3:10: 3f:92:97:20:83:9f:6b:a5:ad:ae:71:9f:c5:c2:07: a0:38:a1:8a:4a:67:c3:13:57:fe:43:2b:49:9c:73: 95:46:7b:30:8b:b5:9c:90:11:cd:1c:88:d5:04:21: e1:2f:f3:54:b9:06:bd:6e:4a:2d:13:23:8b:32:02: 9b:ca:94:fd:0c:4b:96:4e:65:07:6e:0b:73:4e:70: 2b:a3:ac:7a:43:01:aa:25:03:91:d9:c6:a0:2a:80: e0:08:40:79:2f:e2:30:27:b3:22:c7:a2:50:84:87: 4f:17:c9:95:e7:b9:70:a5:56:c0:fe:2f:af:fd:ed: 3b:15:75:38:93:3a:29:03:49:cc:ac:71:f1:dd:ca: 1f:ab:21:f4:89:40:78:bb:ad:18:0b:28:70:24:f8: 32:b4:6f:04:24:b9:2d:42:9e:d9:eb:88:20:28:fe: f4:c8:09:65:89:1a:9b:62:6b:c2:75:5d:86:5d:7c: 14:ef:e7:53:85:e9:eb:a7:53:e6:86:06:19:ce:02: 68:32:e5:f8:bd:b6:ee:d9:da:52:fc:22:04:7d:42: 4a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:06:14:8C:E5:21:87:06:72:BE:E4:67:4E:E2:92:A9:5D:A2:CB:4F X509v3 Authority Key Identifier: keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/B7D0DFCE4DB711EF8E122A5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.53.0/24 103.99.55.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:c2:d7:b0:d6:20:a0:d1:8d:6d:98:03:d5:50:cd:52:77:50: 40:23:cb:af:3a:21:1e:ee:df:be:0b:cb:c9:a1:42:f3:23:02: 31:b0:8d:f7:86:2d:a2:d2:7c:2b:65:f5:3b:da:62:ba:04:55: 92:33:74:8f:95:86:fc:a1:8d:00:75:d7:68:11:4c:51:d9:01: 99:4c:54:56:12:08:6c:b9:c9:b6:f5:93:2e:b0:03:e9:be:9b: c2:aa:40:ea:36:ee:b9:b9:ae:30:ce:be:a7:b0:3c:d9:f0:3b: e2:c8:31:06:fc:d8:2d:34:d7:bf:a9:63:b5:73:fc:d8:11:04: 36:72:f8:83:d0:f2:68:56:57:b8:35:e3:de:ff:cf:59:7d:65: 71:c9:cd:c8:ca:fb:05:f5:1b:bb:1a:fa:5b:7f:f8:e7:28:52: da:5c:c7:f7:5d:b2:79:c7:27:d6:19:2c:fa:4d:7f:fa:6e:fe: 6b:5e:82:c5:a6:5a:87:b4:98:ee:98:99:60:d8:26:6a:ee:55: 84:00:09:ff:d3:85:3d:a8:4f:a1:8b:a5:bc:d1:10:9b:f6:e1: d2:5f:cf:13:8f:7d:38:d5:fe:bb:c0:b2:82:82:2c:b7:38:5d: 40:03:08:53:e8:54:09:c9:52:78:d8:98:2e:b2:da:65:8d:5d: 0c:90:09:a8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI3QUIxMTAvBgNVBAUTKDU5RDU4ODEyNUE3MTY2OTg3MzhEMUQxRTlFNkQ4QTY4 RDc0MDlCMjcwHhcNMjQxMDA1MDQzNzU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYzJhMy02MGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21M2pGugrObTHD2FlIUKkhzLc+X5IjvzAjmRe9Ts9S5UhZ4Ik0d0bvRTwxA/ kpcgg59rpa2ucZ/FwgegOKGKSmfDE1f+QytJnHOVRnswi7WckBHNHIjVBCHhL/NU uQa9bkotEyOLMgKbypT9DEuWTmUHbgtzTnAro6x6QwGqJQOR2cagKoDgCEB5L+Iw J7Mix6JQhIdPF8mV57lwpVbA/i+v/e07FXU4kzopA0nMrHHx3cofqyH0iUB4u60Y CyhwJPgytG8EJLktQp7Z64ggKP70yAlliRqbYmvCdV2GXXwU7+dThenrp1PmhgYZ zgJoMuX4vbbu2dpS/CIEfUJK2QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLEGFIzl IYcGcr7kZ07ikqldostPMB8GA1UdIwQYMBaAFFnViBJacWaYc40dHp5timjXQJsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjdBQi82RjZFOTgyODMx MEUxMUVFODg5RkYwM0ZDNEY5QUUwMi9XZFdJRWxweFpwaHpqUjBlbm0yS2FOZEFt eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkV0lFbHB4WnBoempSMGVubTJLYU5kQW15Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI3QUIvNkY2RTk4MjgzMTBFMTFFRTg4OUZGMDNGQzRGOUFFMDIvQjdEMERGQ0U0 REI3MTFFRjhFMTIyQTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYzUDBABnYzcwDQYJKoZIhvcNAQELBQADggEBAHrC17DW IKDRjW2YA9VQzVJ3UEAjy686IR7u374Ly8mhQvMjAjGwjfeGLaLSfCtl9TvaYroE VZIzdI+VhvyhjQB112gRTFHZAZlMVFYSCGy5ybb1ky6wA+m+m8KqQOo27rm5rjDO vqewPNnwO+LIMQb82C0017+pY7Vz/NgRBDZy+IPQ8mhWV7g1497/z1l9ZXHJzcjK +wX1G7sa+lt/+OcoUtpcx/ddsnnHJ9YZLPpNf/pu/mtegsWmWoe0mO6YmWDYJmru VYQACf/ThT2oT6GLpbzREJv24dJfzxOPfTjV/rvAsoKCLLc4XUADCFPoVAnJUnjY mC6y2mWNXQyQCag= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:35 2024 by rpki-client on console-fra.rpki-client.org