$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa File: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (raw, json) Hash identifier: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI= Subject key identifier: 3F:EF:1D:EA:73:DD:2E:4C:58:8A:AE:58:E0:D0:E9:7A:72:95:16:DE Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 013C Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa Signing time: Sun 27 Oct 2024 03:13:11 +0000 ROA not before: Sun 27 Oct 2024 03:13:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136000 IP address blocks: 103.79.104.0/22 maxlen: 22 103.156.156.0/23 maxlen: 23 202.91.44.0/22 maxlen: 22 2400:3740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Oct 27 03:13:11 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671dafc6-1f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:51:72:dd:2d:d2:37:07:3a:8d:7c:93:5f:96: 81:25:b4:37:68:e2:d2:1e:5e:bd:cf:1b:82:80:97: 36:37:42:f6:93:43:d6:ba:24:3f:09:4c:96:ab:2f: 14:17:2b:42:84:cb:25:41:f6:ee:71:20:ed:ff:ef: 19:c7:cf:b8:8f:c8:f5:d6:3a:aa:e3:86:27:f0:80: 9d:97:33:86:9b:53:8c:93:bc:88:72:4a:50:84:95: ca:d7:08:ec:20:28:5c:79:0e:23:c8:27:ce:ad:00: c0:12:52:0d:28:ad:3d:45:d9:84:59:0b:b7:cb:f4: e7:28:f1:03:df:7b:72:59:b9:94:cd:d6:d7:d4:98: 34:56:2a:f7:12:5b:90:e2:ae:c2:07:ef:99:58:53: 36:20:ee:34:c6:57:fb:d1:27:34:b1:ed:24:43:ec: 58:75:26:bb:b1:74:cb:04:1f:3a:e7:24:84:fb:2e: 62:62:80:c1:25:3e:da:80:ea:ec:9d:ae:ec:7d:3b: f1:10:1e:91:79:c1:c6:2e:73:44:2e:41:57:5a:44: ac:d3:b2:15:e7:22:62:b3:74:f8:fb:0c:81:55:d6: d3:26:17:bc:2f:37:35:f0:a2:93:92:28:a7:6c:06: 3a:e9:9f:51:2b:4a:58:d4:b4:2d:2a:73:54:9a:46: ed:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EF:1D:EA:73:DD:2E:4C:58:8A:AE:58:E0:D0:E9:7A:72:95:16:DE X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.104.0/22 103.156.156.0/23 202.91.44.0/22 IPv6: 2400:3740::/32 Signature Algorithm: sha256WithRSAEncryption 12:07:6e:a5:ae:02:49:fc:30:fc:9e:33:c9:0d:ba:e3:fb:a4: d5:28:33:47:f7:82:10:4e:86:b4:5e:98:6a:ba:b6:3d:d2:f2: e3:8b:71:75:be:61:dd:91:4e:b8:8d:af:cb:87:dd:0d:ec:7b: 26:4c:56:36:a2:92:e5:a8:9d:b1:35:40:9d:78:24:a0:0a:f5: 62:85:b2:0e:42:66:9a:84:e6:ad:96:bf:da:fa:d1:69:bf:5b: f0:e1:8a:a1:a0:29:4f:20:3f:23:51:c6:da:2b:5e:dc:21:69: 11:eb:97:f8:16:33:fb:66:e6:8b:4b:86:d7:b9:e6:64:10:e3: 52:bb:df:fc:71:40:fa:dc:0c:a6:94:ed:07:f2:ea:79:85:9b: 89:60:a1:b7:d8:f4:08:51:5a:7f:e2:97:e2:cf:26:af:a5:f9: 06:c8:0a:33:26:f7:99:d5:3a:1f:99:73:ca:92:a4:e0:6d:d7: 74:e9:68:bf:be:a6:67:76:b8:91:be:b5:33:68:02:a2:b4:65: 60:79:6c:28:70:6f:22:fc:d9:49:c8:a5:75:ac:ef:fb:79:c7: 81:e3:12:78:fa:7a:0e:80:93:12:ac:92:bc:0b:39:1c:33:60: 4a:56:e8:f1:65:d0:43:2d:17:f8:a8:0c:bd:07:eb:21:70:3a: 45:67:75:93 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjQxMDI3MDMxMzExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkYWZjNi0xZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FFy3S3SNwc6jXyTX5aBJbQ3aOLSHl69zxuCgJc2N0L2k0PWuiQ/CUyWqy8U FytChMslQfbucSDt/+8Zx8+4j8j11jqq44Yn8ICdlzOGm1OMk7yIckpQhJXK1wjs IChceQ4jyCfOrQDAElINKK09RdmEWQu3y/TnKPED33tyWbmUzdbX1Jg0Vir3EluQ 4q7CB++ZWFM2IO40xlf70Sc0se0kQ+xYdSa7sXTLBB865ySE+y5iYoDBJT7agOrs na7sfTvxEB6RecHGLnNELkFXWkSs07IV5yJis3T4+wyBVdbTJhe8Lzc18KKTkiin bAY66Z9RK0pY1LQtKnNUmkbtZQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFD/vHepz 3S5MWIquWODQ6XpylRbeMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRBMTMvQkI2QzlCNTRCOTgwMTFFREEzN0IxQjY1QzRGOUFFMDIvQThEMzI3RTRC QkM3MTFFRDhERjIzQzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnT2gDBAFnnJwDBALKWywwDQQCAAIwBwMFACQAN0AwDQYJ KoZIhvcNAQELBQADggEBABIHbqWuAkn8MPyeM8kNuuP7pNUoM0f3ghBOhrRemGq6 tj3S8uOLcXW+Yd2RTriNr8uH3Q3seyZMVjaikuWonbE1QJ14JKAK9WKFsg5CZpqE 5q2Wv9r60Wm/W/DhiqGgKU8gPyNRxtorXtwhaRHrl/gWM/tm5otLhte55mQQ41K7 3/xxQPrcDKaU7Qfy6nmFm4lgobfY9AhRWn/il+LPJq+l+QbICjMm95nVOh+Zc8qS pOBt13TpaL++pmd2uJG+tTNoAqK0ZWB5bChwbyL82UnIpXWs7/t5x4HjEnj6eg6A kxKskrwLORwzYEpW6PFl0EMtF/ioDL0H6yFwOkVndZM= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org