$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa File: D6692528CAC311EC910B8C20C4F9AE02.roa (raw, json) Hash identifier: ZgaT6NUPSJGrS2FDGhXNf1URQXdcMTQg5TCptCSVeas= Subject key identifier: F8:F3:8E:E0:71:FA:86:72:6D:C5:E4:D4:5D:47:8E:A2:53:55:3B:14 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 05AE Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa Signing time: Wed 14 Aug 2024 23:41:49 +0000 ROA not before: Wed 14 Aug 2024 23:41:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136778 IP address blocks: 103.106.202.0/23 maxlen: 23 103.106.202.0/24 maxlen: 24 103.106.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Aug 14 23:41:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bd40bd-6b3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:7a:14:ec:d0:ff:e8:3b:bf:28:f5:30:f2: e7:1c:ef:68:8b:ac:c0:d8:f3:67:b9:5d:d1:c1:5e: 25:75:81:d7:f4:14:b1:79:c6:97:e9:db:5b:a4:da: 2b:89:f1:37:01:56:33:d7:1f:b3:65:4c:ce:06:91: eb:90:80:b1:5e:91:2e:7e:b2:6e:17:81:d8:cb:42: 1a:9f:50:16:b6:91:5d:43:dd:24:88:3d:81:18:7a: ff:f0:74:30:ae:b5:a0:e5:71:46:50:c4:24:a6:ec: a4:d5:cb:8b:8f:32:f0:d2:0f:1d:ec:49:88:df:56: ea:56:d7:3a:56:16:f9:c7:f7:07:06:1f:2a:b0:78: 9b:c7:78:91:31:0f:d1:7f:5c:e5:73:c6:45:b5:3e: 56:73:05:6f:68:08:78:55:29:72:dc:b7:19:87:cd: f5:3e:77:89:9b:aa:72:3b:41:13:b4:6e:33:e0:6f: 5e:c0:df:d0:e4:12:91:48:22:c5:67:b0:46:ce:06: 9b:5d:91:f0:53:d3:b7:f7:33:ce:fd:94:a1:30:41: 86:bb:65:13:36:7b:e6:de:66:66:64:8e:12:07:fc: f4:92:4c:ac:1c:4e:25:f5:95:8c:5c:88:77:ee:44: 10:48:c2:01:8e:3a:8d:bc:26:79:ea:3a:e1:22:54: 18:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F3:8E:E0:71:FA:86:72:6D:C5:E4:D4:5D:47:8E:A2:53:55:3B:14 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.202.0/23 Signature Algorithm: sha256WithRSAEncryption 70:7e:2a:58:89:43:cd:86:3d:6f:76:99:2a:f6:b7:00:11:72: 2b:86:1e:cb:3e:82:70:ed:8c:13:8f:e4:b7:d2:cd:26:05:ae: 9d:c8:53:4e:1a:93:88:72:62:f5:94:ce:27:cd:1b:85:07:4a: f3:4c:45:99:ae:bb:bb:3d:ad:a9:0a:6b:09:5f:23:94:c6:db: a2:6e:4a:8d:bf:90:81:15:a9:fc:fe:cc:3f:15:6c:d9:c2:88: bd:b9:b8:b4:b0:3e:13:a1:34:f5:51:36:b7:6a:3f:8e:97:2f: 4d:a8:97:bb:9b:a4:7c:73:8e:80:5a:b8:31:4f:29:53:f0:9b: 49:62:9b:bd:05:1a:79:cf:4e:72:aa:09:19:90:0b:f5:3c:f9: 1e:7a:ab:b9:45:fb:f1:72:43:18:21:c6:20:32:d6:04:ee:ca: 8f:57:48:db:c2:a9:0c:c0:50:84:e0:f2:20:ee:41:f2:0c:62: 07:35:62:d2:df:46:70:e2:fa:48:01:8a:17:36:d3:0b:d3:83: 0a:34:6c:92:0d:e6:60:5e:41:3f:8d:b3:1b:1d:ce:1a:16:03: d0:8a:4c:a8:4e:e7:0f:ce:cc:bb:8e:fc:20:33:13:c5:0c:09: 92:e1:ce:3d:ae:e3:8e:a9:2e:2c:e6:c2:4c:aa:69:91:18:b6: 94:12:51:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjQwODE0MjM0MTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkNDBiZC02YjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnZ6FOzQ/+g7vyj1MPLnHO9oi6zA2PNnuV3RwV4ldYHX9BSxecaX6dtbpNor ifE3AVYz1x+zZUzOBpHrkICxXpEufrJuF4HYy0Ian1AWtpFdQ90kiD2BGHr/8HQw rrWg5XFGUMQkpuyk1cuLjzLw0g8d7EmI31bqVtc6Vhb5x/cHBh8qsHibx3iRMQ/R f1zlc8ZFtT5WcwVvaAh4VSly3LcZh831PneJm6pyO0ETtG4z4G9ewN/Q5BKRSCLF Z7BGzgabXZHwU9O39zPO/ZShMEGGu2UTNnvm3mZmZI4SB/z0kkysHE4l9ZWMXIh3 7kQQSMIBjjqNvCZ56jrhIlQYSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPjzjuBx +oZybcXk1F1HjqJTVTsUMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4OTcvRTFEMTE3NzA5NUJBMTFFQkIyODEyMzcxQzRGOUFFMDIvRDY2OTI1MjhD QUMzMTFFQzkxMEI4QzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnasowDQYJKoZIhvcNAQELBQADggEBAHB+KliJQ82GPW92 mSr2twARciuGHss+gnDtjBOP5LfSzSYFrp3IU04ak4hyYvWUzifNG4UHSvNMRZmu u7s9rakKawlfI5TG26JuSo2/kIEVqfz+zD8VbNnCiL25uLSwPhOhNPVRNrdqP46X L02ol7ubpHxzjoBauDFPKVPwm0lim70FGnnPTnKqCRmQC/U8+R56q7lF+/FyQxgh xiAy1gTuyo9XSNvCqQzAUITg8iDuQfIMYgc1YtLfRnDi+kgBihc20wvTgwo0bJIN 5mBeQT+NsxsdzhoWA9CKTKhO5w/OzLuO/CAzE8UMCZLhzj2u446pLizmwkyqaZEY tpQSUfg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:49 2024 by rpki-client on console-ams.rpki-client.org