$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa File: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: Bcj/iiKxpeGROHNnH2fXMR3kft/+QpPcp29Mc0T3G5U= Subject key identifier: EB:8A:D4:BA:E8:3F:E9:90:7B:97:51:78:37:11:DA:03:79:3F:00:B9 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 06A6 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa Signing time: Mon 16 Sep 2024 22:01:00 +0000 ROA not before: Mon 16 Sep 2024 22:01:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140732 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 16 22:01:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e8aa9c-34f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d7:8a:d6:47:c5:52:37:61:1e:02:e3:a2:5e: f5:d3:91:1d:d7:9d:2e:17:bd:21:bc:3e:0d:2a:0f: 5c:73:2c:9d:90:c7:64:7f:52:a2:97:46:83:b7:99: 77:05:d1:8e:1a:9a:9b:b6:f8:55:01:df:42:09:49: 08:a7:16:43:3c:01:2f:26:2f:73:c1:be:7a:0a:69: 22:ab:2f:9d:04:c6:de:88:cb:a5:ff:c7:ad:41:17: a7:bb:c4:97:92:f3:6b:d0:ef:e2:be:20:96:55:4f: 05:40:7a:9d:2f:01:97:33:b7:4c:b0:bd:35:f3:c2: 2e:d1:5f:ab:4e:df:e9:a7:67:4c:ae:77:f9:a6:4b: 9a:d0:5b:1c:87:15:5f:5f:f5:cc:75:41:43:c9:2c: d4:4b:40:af:6d:ab:c4:5a:a5:4f:3c:d8:1b:b2:f2: 91:fa:09:41:6e:9e:cf:08:ee:b6:65:08:5f:e4:17: 97:3a:8a:0a:89:fd:8b:d0:46:62:4d:ac:53:88:48: e8:8e:d9:5d:3b:be:b6:5f:75:e6:d7:12:5b:de:79: 28:47:fb:af:af:81:09:a7:78:12:54:4d:3d:84:4c: 83:66:34:d6:6e:8c:bc:6a:6c:b5:a2:89:c3:9d:51: 70:ab:1a:67:9b:f1:36:c4:77:67:90:21:5d:1e:1b: ff:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8A:D4:BA:E8:3F:E9:90:7B:97:51:78:37:11:DA:03:79:3F:00:B9 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 Signature Algorithm: sha256WithRSAEncryption 38:32:c4:eb:74:69:30:44:fe:59:81:c7:1a:e2:48:50:c5:19: d4:ad:57:f5:a4:62:a9:9f:8b:0a:8e:5b:90:4c:ae:5f:d7:a5: f3:9e:fd:96:d1:e3:5a:28:ed:50:49:d9:fc:e2:50:c4:1d:a7: 1b:eb:05:c9:f6:d2:82:64:d8:98:ab:6c:7a:85:e8:bc:29:f3: 24:ee:32:72:1f:2d:cf:c2:11:b8:72:08:c4:41:7b:6e:8d:bc: 0c:67:20:0d:39:4e:3e:e9:26:cd:6e:b9:df:6d:ab:03:aa:83: 35:78:da:47:a0:23:d4:08:5a:89:2b:ba:9c:d9:51:b3:92:79: b5:82:3b:15:fe:77:69:31:36:ae:74:1e:5e:26:dc:30:0b:cb: 74:d3:72:64:9d:0f:9e:9c:8a:a3:9c:3b:08:4e:c3:60:f9:c8: 64:21:75:c7:4e:57:ac:9b:2d:60:d9:7c:d8:8e:fc:0d:5b:4d: 48:1f:5c:50:3c:25:89:da:5e:88:7c:23:6a:4b:84:97:4f:a5: 83:5c:46:07:bb:73:fa:3d:33:2c:f2:e7:eb:1b:6f:21:25:ad: 66:77:75:92:a3:08:c2:ce:b8:12:0a:e6:b2:d1:47:47:5a:b3: 3b:10:81:0b:08:5f:c5:a1:81:9b:73:e3:db:15:ea:9c:1e:3a: 90:ec:6e:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjQwOTE2MjIwMTAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4YWE5Yy0zNGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NeK1kfFUjdhHgLjol7105Ed150uF70hvD4NKg9ccyydkMdkf1Kil0aDt5l3 BdGOGpqbtvhVAd9CCUkIpxZDPAEvJi9zwb56Cmkiqy+dBMbeiMul/8etQRenu8SX kvNr0O/iviCWVU8FQHqdLwGXM7dMsL0188Iu0V+rTt/pp2dMrnf5pkua0FschxVf X/XMdUFDySzUS0CvbavEWqVPPNgbsvKR+glBbp7PCO62ZQhf5BeXOooKif2L0EZi TaxTiEjojtldO762X3Xm1xJb3nkoR/uvr4EJp3gSVE09hEyDZjTWboy8amy1oonD nVFwqxpnm/E2xHdnkCFdHhv/GwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOuK1Lro P+mQe5dReDcR2gN5PwC5MB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMEEzN0ZFRkEw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnDMQDBAJnSWQwDQYJKoZIhvcNAQELBQADggEBADgyxOt0 aTBE/lmBxxriSFDFGdStV/WkYqmfiwqOW5BMrl/XpfOe/ZbR41oo7VBJ2fziUMQd pxvrBcn20oJk2JirbHqF6Lwp8yTuMnIfLc/CEbhyCMRBe26NvAxnIA05Tj7pJs1u ud9tqwOqgzV42kegI9QIWokrupzZUbOSebWCOxX+d2kxNq50Hl4m3DALy3TTcmSd D56ciqOcOwhOw2D5yGQhdcdOV6ybLWDZfNiO/A1bTUgfXFA8JYnaXoh8I2pLhJdP pYNcRge7c/o9Myzy5+sbbyElrWZ3dZKjCMLOuBIK5rLRR0daszsQgQsIX8WhgZtz 49sV6pweOpDsbvs= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org