$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa File: 933DE524C2B811EEAA1FD486C4F9AE02.roa (raw, json) Hash identifier: v3eM1afKfp5x6LJXjZiYB0SH5/PZklJnEe+riVHLKYw= Subject key identifier: E0:7E:6A:8C:B6:D2:BB:23:EA:D8:C4:4A:10:77:DD:E2:AA:11:12:DB Certificate issuer: /CN=A91A8405/serialNumber=2D9ED3D26E635F7CFFE4BBF52087150B7A42188F Certificate serial: 0ADA Authority key identifier: 2D:9E:D3:D2:6E:63:5F:7C:FF:E4:BB:F5:20:87:15:0B:7A:42:18:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa Signing time: Mon 24 Jun 2024 20:02:05 +0000 ROA not before: Mon 24 Jun 2024 20:02:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139841 IP address blocks: 103.112.204.0/24 maxlen: 24 103.112.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.crl rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2778 (0xada) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8405/serialNumber=2D9ED3D26E635F7CFFE4BBF52087150B7A42188F Validity Not Before: Jun 24 20:02:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6679d0bc-29f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:67:90:9f:bf:4e:c8:b0:ba:38:30:8c:c3:54: c8:01:14:39:bf:0f:3e:5f:c3:f6:18:98:01:dd:9a: a5:b2:2a:9c:63:20:9a:b4:c5:63:6f:fd:66:9c:99: 85:0c:e8:a0:37:e5:cf:99:25:29:81:5a:52:57:80: 34:56:28:4c:b7:48:5c:6f:4f:97:85:c1:0a:29:b6: 50:31:0b:76:3b:90:fa:90:c1:f0:c8:25:2f:2d:03: 2d:f1:57:6b:14:47:a9:12:c4:01:67:d8:1b:28:f4: 71:ce:6a:5b:d4:f0:35:95:49:f0:63:32:28:b7:4d: 4a:3e:51:4b:17:aa:32:44:0d:17:f1:c2:64:08:25: 2b:a8:b5:ff:1d:06:cc:58:98:b9:09:55:e8:95:dc: 24:5d:96:4c:fd:29:99:25:90:66:65:39:8f:82:53: 01:65:ea:1c:6c:cd:f2:ac:e8:ff:5e:aa:e9:69:9c: b6:e0:2d:4e:09:43:e2:1a:02:af:f9:07:31:d3:f3: fb:54:88:f5:d4:b7:f2:c7:76:ac:ea:4c:b0:06:2f: 70:8e:7d:68:58:41:53:d6:cc:0b:20:62:7c:0b:3d: e5:1d:37:9b:49:88:1b:36:03:ea:ef:f7:6a:bf:06: 7d:30:a4:96:89:44:d4:2e:d8:86:63:41:98:d0:a5: 8a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:7E:6A:8C:B6:D2:BB:23:EA:D8:C4:4A:10:77:DD:E2:AA:11:12:DB X509v3 Authority Key Identifier: keyid:2D:9E:D3:D2:6E:63:5F:7C:FF:E4:BB:F5:20:87:15:0B:7A:42:18:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.204.0/24 103.112.207.0/24 Signature Algorithm: sha256WithRSAEncryption 41:2b:fb:db:6e:68:d3:48:0f:a4:db:7f:c1:89:14:de:07:44: 70:a0:bd:b4:0a:fd:95:16:05:2b:65:0f:d2:ee:d3:32:ec:83: 6c:5e:df:71:71:36:e7:be:3a:3e:20:98:40:20:7a:e4:b2:e8: 5c:6c:62:7b:32:a2:31:59:6b:0d:e4:6b:b0:75:db:4f:e0:5f: af:f2:4c:c4:f7:70:4b:51:7c:02:ca:63:e4:42:e2:af:f3:a5: e5:df:a6:34:83:5e:b4:e2:bb:24:81:3a:1b:9c:cd:38:33:0d: 8f:9f:28:48:6b:f0:e8:a3:e9:a8:07:4d:67:bc:19:bc:3c:01: 79:09:b2:fd:5b:16:36:43:a3:2a:f5:5e:58:c7:dd:1d:a0:30: 5f:e6:9b:10:b4:0e:54:66:97:a9:d9:d9:4e:7b:05:3d:31:1a: fe:bb:2b:b9:85:da:47:5b:fd:5b:eb:cd:df:44:9e:ea:7c:e0: 8d:98:db:9e:bb:81:25:07:bf:3c:02:c6:a0:71:00:21:f1:62: ff:d5:fa:a4:6d:85:ae:c4:eb:de:33:7b:2c:79:9e:1f:5d:5d: 31:c6:35:2d:07:c8:41:8f:1e:6a:fc:fa:91:49:48:da:16:fa: d6:48:1e:c3:a7:6b:8f:9e:4c:20:6d:e9:ca:ae:d4:9b:bd:32: 33:b9:2a:87 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MDUxMTAvBgNVBAUTKDJEOUVEM0QyNkU2MzVGN0NGRkU0QkJGNTIwODcxNTBC N0E0MjE4OEYwHhcNMjQwNjI0MjAwMjA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc5ZDBiYy0yOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmeQn79OyLC6ODCMw1TIARQ5vw8+X8P2GJgB3ZqlsiqcYyCatMVjb/1mnJmF DOigN+XPmSUpgVpSV4A0VihMt0hcb0+XhcEKKbZQMQt2O5D6kMHwyCUvLQMt8Vdr FEepEsQBZ9gbKPRxzmpb1PA1lUnwYzIot01KPlFLF6oyRA0X8cJkCCUrqLX/HQbM WJi5CVXoldwkXZZM/SmZJZBmZTmPglMBZeocbM3yrOj/XqrpaZy24C1OCUPiGgKv +Qcx0/P7VIj11Lfyx3as6kywBi9wjn1oWEFT1swLIGJ8Cz3lHTebSYgbNgPq7/dq vwZ9MKSWiUTULtiGY0GY0KWKDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOB+aoy2 0rsj6tjEShB33eKqERLbMB8GA1UdIwQYMBaAFC2e09JuY198/+S79SCHFQt6QhiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwNS9GOUMxOTY5NjMy MTIxMUVBOTM2MzNBNTlDNEY5QUUwMi9MWjdUMG01algzel81THYxSUljVkMzcENH STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xaN1QwbTVqWDN6XzVMdjFJSWNWQzNwQ0dJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg0MDUvRjlDMTk2OTYzMjEyMTFFQTkzNjMzQTU5QzRGOUFFMDIvOTMzREU1MjRD MkI4MTFFRUFBMUZENDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABncMwDBABncM8wDQYJKoZIhvcNAQELBQADggEBAEEr+9tu aNNID6Tbf8GJFN4HRHCgvbQK/ZUWBStlD9Lu0zLsg2xe33FxNue+Oj4gmEAgeuSy 6FxsYnsyojFZaw3ka7B120/gX6/yTMT3cEtRfALKY+RC4q/zpeXfpjSDXrTiuySB OhuczTgzDY+fKEhr8Oij6agHTWe8Gbw8AXkJsv1bFjZDoyr1XljH3R2gMF/mmxC0 DlRml6nZ2U57BT0xGv67K7mF2kdb/Vvrzd9Enup84I2Y2567gSUHvzwCxqBxACHx Yv/V+qRtha7E694zeyx5nh9dXTHGNS0HyEGPHmr8+pFJSNoW+tZIHsOna4+eTCBt 6cqu1Ju9MjO5Koc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org