$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa File: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (raw, json) Hash identifier: qVUxUTjG003o3VqH+LJ1RqY1Y4pgpDhTWOzQr0cogNA= Subject key identifier: 82:2A:75:E0:88:EA:98:3F:DF:EA:6D:47:F0:94:78:CC:F1:55:C9:1C Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0BBE Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa Signing time: Thu 10 Oct 2024 19:27:37 +0000 ROA not before: Thu 10 Oct 2024 19:27:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150748 IP address blocks: 103.100.234.0/24 maxlen: 24 103.100.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 10 19:27:37 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67082aa9-7e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:3b:21:0e:b6:09:6c:50:df:0a:9e:7c:a5: 1d:00:e0:c5:ab:11:8f:4d:98:5a:3b:ff:6e:2c:40: e9:1c:3d:60:b9:c4:39:1b:03:86:c1:59:f8:9b:da: c5:b3:e4:cb:ff:58:0e:8b:3a:13:85:6b:4a:32:ed: 7a:91:66:b9:28:40:99:a9:8b:fc:09:3f:c6:8c:f1: 79:6e:fe:5f:77:12:b4:ed:9c:2e:df:59:64:ce:f2: 63:f8:78:0f:d9:b9:91:24:47:9d:53:66:25:5b:74: 7c:b7:6c:ce:6f:06:3d:25:75:3f:3d:3f:7d:5e:36: 02:cc:ad:12:6d:9d:d6:15:84:02:7c:e9:ba:f7:b4: cb:48:a9:11:14:f4:93:f7:6d:30:6e:8c:52:66:0a: 43:7c:d3:d2:ec:23:62:15:55:70:5d:a7:32:b6:24: 9c:b0:0e:71:e2:0c:69:3e:ab:8f:bb:3b:5f:54:bb: 37:c7:e3:da:21:29:22:1b:08:9b:e2:76:29:65:18: 1e:7b:e7:b6:08:b4:7a:89:cd:1b:6f:d5:0a:f5:aa: 99:6e:21:7d:b6:13:fd:be:e1:8e:fc:ef:ca:52:8f: e1:38:ec:11:81:b7:0b:e1:2b:a1:d8:fa:86:1f:ab: 45:c5:fb:0a:3d:f5:95:07:33:d4:55:04:0e:99:ee: b9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2A:75:E0:88:EA:98:3F:DF:EA:6D:47:F0:94:78:CC:F1:55:C9:1C X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/84CFF0D6D2F311EEAFCF3273C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.234.0/23 Signature Algorithm: sha256WithRSAEncryption a1:d2:ff:89:15:61:c2:83:a1:fa:13:ae:e8:52:a6:b8:7d:a7: 00:95:62:35:42:bf:69:50:1f:82:de:6d:fe:56:38:3e:b5:ed: 02:dc:aa:d4:45:87:25:cf:90:c3:5e:99:b5:a8:99:fb:4f:66: 5d:67:09:43:37:51:9d:46:25:71:e1:fd:ba:57:8a:be:74:42: 8d:20:b5:ab:a6:01:2b:3a:63:38:3e:88:42:dc:96:99:2f:d3: cd:5b:9d:f3:77:10:9f:2f:0a:57:62:28:8b:fb:cf:fe:e7:08: a1:74:2d:93:dd:1b:bc:70:72:e3:f5:62:09:93:33:98:9f:2b: f2:7c:d5:cd:62:9e:13:5e:6d:8a:f3:1c:f7:8f:25:6b:4d:29: 20:cb:b0:20:12:20:db:f1:6d:2e:67:0c:15:43:78:fa:85:c7: 01:e9:bc:c5:b1:2e:83:d1:fe:6e:ff:51:03:1c:8e:05:fe:97: 24:64:cc:01:17:4f:d1:b1:45:62:a2:95:de:9d:69:f6:ca:1a: ad:1f:3e:00:a3:26:a5:f1:35:e1:c6:26:f4:96:b6:76:20:dd: ed:9d:63:bb:e3:c4:b6:76:6c:81:38:fa:9e:f1:08:d2:82:a5: 01:a9:78:ee:50:34:fb:e2:68:71:c8:69:48:94:6d:2b:ab:46: a8:9c:84:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjQxMDEwMTkyNzM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4MmFhOS03ZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFw7IQ62CWxQ3wqefKUdAODFqxGPTZhaO/9uLEDpHD1gucQ5GwOGwVn4m9rF s+TL/1gOizoThWtKMu16kWa5KECZqYv8CT/GjPF5bv5fdxK07Zwu31lkzvJj+HgP 2bmRJEedU2YlW3R8t2zObwY9JXU/PT99XjYCzK0SbZ3WFYQCfOm697TLSKkRFPST 920wboxSZgpDfNPS7CNiFVVwXacytiScsA5x4gxpPquPuztfVLs3x+PaISkiGwib 4nYpZRgee+e2CLR6ic0bb9UK9aqZbiF9thP9vuGO/O/KUo/hOOwRgbcL4Suh2PqG H6tFxfsKPfWVBzPUVQQOme65FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIIqdeCI 6pg/3+ptR/CUeMzxVckcMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvODRDRkYwRDZE MkYzMTFFRUFGQ0YzMjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZOowDQYJKoZIhvcNAQELBQADggEBAKHS/4kVYcKDofoT ruhSprh9pwCVYjVCv2lQH4Lebf5WOD617QLcqtRFhyXPkMNembWomftPZl1nCUM3 UZ1GJXHh/bpXir50Qo0gtaumASs6Yzg+iELclpkv081bnfN3EJ8vCldiKIv7z/7n CKF0LZPdG7xwcuP1YgmTM5ifK/J81c1inhNebYrzHPePJWtNKSDLsCASINvxbS5n DBVDePqFxwHpvMWxLoPR/m7/UQMcjgX+lyRkzAEXT9GxRWKild6dafbKGq0fPgCj JqXxNeHGJvSWtnYg3e2dY7vjxLZ2bIE4+p7xCNKCpQGpeO5QNPviaHHIaUiUbSur RqichH4= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org