$ rpki-client -vvf rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AD8C3CF46FC111E9B6D55F15C4F9AE02.roa File: AD8C3CF46FC111E9B6D55F15C4F9AE02.roa (raw, json) Hash identifier: eK3TIXZU++KT77U0gOV6eFDrKQRn1O/nNJMoTFYBGpc= Subject key identifier: 9F:8F:DD:41:12:B7:26:88:C9:BF:7A:AA:A6:AC:E9:7A:DB:49:2E:22 Certificate issuer: /CN=A91A489D/serialNumber=1F281EFA405C8BBB3D9DF8D581D8C5831AA19AE4 Certificate serial: 0E2E Authority key identifier: 1F:28:1E:FA:40:5C:8B:BB:3D:9D:F8:D5:81:D8:C5:83:1A:A1:9A:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hyge-kBci7s9nfjVgdjFgxqhmuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AD8C3CF46FC111E9B6D55F15C4F9AE02.roa Signing time: Mon 04 Dec 2023 18:25:49 +0000 ROA not before: Mon 04 Dec 2023 18:25:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136783 IP address blocks: 103.80.36.0/24 maxlen: 24 103.80.37.0/24 maxlen: 24 103.80.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/Hyge-kBci7s9nfjVgdjFgxqhmuQ.crl rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/Hyge-kBci7s9nfjVgdjFgxqhmuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hyge-kBci7s9nfjVgdjFgxqhmuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3630 (0xe2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A489D/serialNumber=1F281EFA405C8BBB3D9DF8D581D8C5831AA19AE4 Validity Not Before: Dec 4 18:25:49 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656e19ad-c006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f8:00:09:41:28:bd:1d:e9:f3:fc:24:fb:83: c2:61:14:84:8e:29:5a:42:f8:38:ed:f2:cc:11:0c: 60:6e:d2:ac:a7:2e:8c:87:b6:e9:85:20:71:9d:7d: 41:ab:bd:2a:e9:fb:39:6d:6a:6d:37:0e:71:dd:1d: 32:03:c8:e7:41:76:ee:7e:30:e4:11:5d:12:e0:09: f9:aa:1e:30:e7:c1:fd:c8:3e:76:f1:5f:00:84:f6: c0:6d:38:06:18:ce:bb:62:48:46:c8:4e:8e:4e:e2: 1d:a4:4b:ef:dc:01:e8:70:13:e2:19:d4:18:7a:26: 20:83:67:ef:bb:17:5d:48:cb:39:aa:67:12:bf:b9: 1b:0a:37:d8:43:78:a8:3b:c6:93:9c:1e:83:51:ea: 1f:1b:86:23:d5:58:14:c2:bb:f1:57:ce:ea:4b:2b: d8:83:14:f9:fd:76:09:6b:ce:0b:5d:bc:5f:ef:37: 66:ad:98:4a:3a:ef:d3:0e:5d:d9:bb:f3:9b:2f:1e: 97:04:ec:f2:28:cf:8b:c4:75:fc:82:bf:05:ae:9b: cc:bd:be:69:d6:15:3a:23:8e:0a:8d:44:cd:31:33: 58:47:97:63:50:bf:ac:72:4b:d6:2f:8e:d8:d1:4d: 66:35:6e:ea:67:c6:ed:c3:88:05:f0:ec:55:34:a5: 7d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:8F:DD:41:12:B7:26:88:C9:BF:7A:AA:A6:AC:E9:7A:DB:49:2E:22 X509v3 Authority Key Identifier: keyid:1F:28:1E:FA:40:5C:8B:BB:3D:9D:F8:D5:81:D8:C5:83:1A:A1:9A:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/Hyge-kBci7s9nfjVgdjFgxqhmuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hyge-kBci7s9nfjVgdjFgxqhmuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A489D/200D3E6A6FC011E9A07D1B12C4F9AE02/AD8C3CF46FC111E9B6D55F15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.36.0-103.80.38.255 Signature Algorithm: sha256WithRSAEncryption 78:09:7b:d2:4e:07:14:8a:07:9f:e5:44:90:d7:fb:9e:c6:89: d7:88:ca:97:c9:50:46:17:b9:0f:7e:82:70:4b:de:cc:44:16: 62:3f:31:0e:cc:c4:97:35:6b:75:43:b3:d8:76:ff:8c:b4:b6: 65:9e:5e:d2:92:60:9c:83:05:81:f8:53:c7:c9:d0:5d:7d:96: 8a:a9:fd:71:07:54:4e:f1:a1:6d:cd:8d:23:d4:8d:09:2d:17: 7e:f6:9e:10:78:70:f9:8a:45:f6:6f:0b:4e:d0:14:57:87:52: e8:ba:aa:90:c8:5f:c7:c0:a0:e5:dd:20:11:04:ce:b3:9a:9b: ff:7a:0d:90:cd:b0:4e:e3:23:34:17:46:42:fb:7b:9d:53:73: ee:57:f2:c9:6a:c8:6b:56:66:72:ef:e6:48:b6:f0:20:dd:58: e4:9c:b1:9a:d7:14:ec:a3:24:bd:2b:a9:38:6d:d6:82:8f:32: 88:be:d1:42:65:dc:17:7c:0d:af:ea:e3:ad:6c:2a:f0:65:f9: bd:50:bc:87:13:fa:2c:3c:fa:25:90:60:96:c1:7c:dd:e6:3e: 82:3f:ff:22:aa:97:07:0d:b9:70:24:7b:fa:57:49:c5:fc:ee: 78:53:9c:26:06:ba:88:49:a8:47:fe:a6:40:9b:02:64:0a:83: 92:bf:4b:31 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ4OUQxMTAvBgNVBAUTKDFGMjgxRUZBNDA1QzhCQkIzRDlERjhENTgxRDhDNTgz MUFBMTlBRTQwHhcNMjMxMjA0MTgyNTQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlMTlhZC1jMDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvgACUEovR3p8/wk+4PCYRSEjilaQvg47fLMEQxgbtKspy6Mh7bphSBxnX1B q70q6fs5bWptNw5x3R0yA8jnQXbufjDkEV0S4An5qh4w58H9yD528V8AhPbAbTgG GM67YkhGyE6OTuIdpEvv3AHocBPiGdQYeiYgg2fvuxddSMs5qmcSv7kbCjfYQ3io O8aTnB6DUeofG4Yj1VgUwrvxV87qSyvYgxT5/XYJa84LXbxf7zdmrZhKOu/TDl3Z u/ObLx6XBOzyKM+LxHX8gr8FrpvMvb5p1hU6I44KjUTNMTNYR5djUL+sckvWL47Y 0U1mNW7qZ8btw4gF8OxVNKV9CQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJ+P3UES tyaIyb96qqas6XrbSS4iMB8GA1UdIwQYMBaAFB8oHvpAXIu7PZ341YHYxYMaoZrk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDg5RC8yMDBEM0U2QTZG QzAxMUU5QTA3RDFCMTJDNEY5QUUwMi9IeWdlLWtCY2k3czluZmpWZ2RqRmd4cWht dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h5Z2Uta0JjaTdzOW5malZnZGpGZ3hxaG11US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ4OUQvMjAwRDNFNkE2RkMwMTFFOUEwN0QxQjEyQzRGOUFFMDIvQUQ4QzNDRjQ2 RkMxMTFFOUI2RDU1RjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmdQJAMEAGdQJjANBgkqhkiG9w0BAQsFAAOCAQEAeAl7 0k4HFIoHn+VEkNf7nsaJ14jKl8lQRhe5D36CcEvezEQWYj8xDszElzVrdUOz2Hb/ jLS2ZZ5e0pJgnIMFgfhTx8nQXX2Wiqn9cQdUTvGhbc2NI9SNCS0XfvaeEHhw+YpF 9m8LTtAUV4dS6LqqkMhfx8Cg5d0gEQTOs5qb/3oNkM2wTuMjNBdGQvt7nVNz7lfy yWrIa1Zmcu/mSLbwIN1Y5JyxmtcU7KMkvSupOG3Wgo8yiL7RQmXcF3wNr+rjrWwq 8GX5vVC8hxP6LDz6JZBglsF83eY+gj//IqqXBw25cCR7+ldJxfzueFOcJga6iEmo R/6mQJsCZAqDkr9LMQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org