$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa File: D78A16ECCAC311EC910B8C20C4F9AE02.roa (raw, json) Hash identifier: oJo0EldVtMJvTJnA4FpJe7JGIUD/xhTk+VY6Q3vUpoY= Subject key identifier: 68:DD:F9:76:1C:65:2E:A6:5F:E5:B5:6F:46:29:BF:2F:04:9E:51:01 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 05AF Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa Signing time: Wed 14 Aug 2024 23:41:50 +0000 ROA not before: Wed 14 Aug 2024 23:41:50 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136950 IP address blocks: 103.97.228.0/23 maxlen: 23 103.97.228.0/24 maxlen: 24 103.97.229.0/24 maxlen: 24 2401:8f40:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Aug 14 23:41:50 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bd40be-3fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ad:d9:d9:18:c0:55:50:18:8e:87:f3:9f:43: 37:a9:95:62:38:b7:fd:84:0c:f7:e2:17:3c:14:39: 21:10:8c:fe:eb:49:0b:72:a3:b8:5a:cb:a9:e2:c4: 9d:c3:86:0e:9a:cc:b0:c1:5c:06:97:c3:d6:ee:7d: 2d:d3:88:12:4c:0a:ed:49:2a:ab:b1:52:1a:d1:00: 1c:8c:f7:04:fc:26:02:f0:ca:b2:95:6d:b6:fd:f8: a0:77:ef:10:fc:44:48:d3:2d:1a:54:32:ec:3b:58: 80:01:9d:18:fb:16:81:0f:76:f5:df:ff:c3:8d:a7: cb:6c:24:5c:40:74:80:20:ab:80:a8:e5:a9:e0:00: 98:7d:7f:08:ec:33:2c:54:71:ca:7d:a7:2e:dd:58: e1:e2:10:27:cc:6e:b3:69:cc:60:cb:8a:d8:ae:da: e0:cd:52:5f:a8:58:7b:70:67:95:36:e1:da:a4:08: 0b:9a:b1:03:da:54:b3:7a:2f:a2:28:cc:c6:6c:0f: ab:67:83:18:21:52:26:19:b9:68:ce:c0:b8:5f:fb: 9a:1d:fc:66:b7:2d:9f:c7:2a:87:0e:06:60:68:ef: 14:ea:38:a7:71:5e:3c:23:59:c8:33:31:27:5b:45: ce:23:0d:8a:4e:24:8c:de:06:f2:b4:36:25:82:c2: 5c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DD:F9:76:1C:65:2E:A6:5F:E5:B5:6F:46:29:BF:2F:04:9E:51:01 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D78A16ECCAC311EC910B8C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.228.0/23 IPv6: 2401:8f40:1::/48 Signature Algorithm: sha256WithRSAEncryption 6d:24:8b:e9:d7:32:6a:86:f7:07:39:31:75:52:56:e3:c4:62: 1c:e2:b2:06:36:75:26:c5:f5:07:06:3b:fd:44:c2:fe:a8:19: 23:4e:cc:58:64:f9:0c:19:a2:91:da:a9:51:ab:f4:ae:9c:4d: d4:1d:a1:24:6d:7a:fb:02:58:52:b6:89:6c:8d:5c:04:0a:43: fb:87:a3:c0:ee:10:9f:02:8a:af:1a:22:fb:44:3a:d3:3d:2e: 62:93:cf:65:91:ec:b4:ba:32:ec:bc:4b:2b:1b:14:57:f3:d6: ef:44:eb:c8:46:de:f8:62:93:13:9f:ad:68:53:c9:19:07:77: 29:4b:87:3c:8e:80:56:59:d6:30:f3:d0:d0:80:a0:1d:17:08: bb:94:98:a8:a7:3b:9e:f1:cf:2f:b3:97:c4:cb:7d:24:92:a3: 0c:4c:32:ed:17:a2:b2:34:f0:68:25:14:28:c6:e8:2b:fc:6c: d8:e2:2f:cb:81:23:b0:36:ab:16:23:09:4e:cd:2c:ca:15:1e: fe:97:8c:cf:d5:b6:ea:82:8e:c4:16:df:65:14:5f:ee:ec:09: f6:86:70:f9:de:e8:70:51:5c:cb:4e:6a:b6:73:04:98:ad:92: 15:c1:40:b0:b8:42:b7:16:c2:2c:a2:d3:00:2f:c0:98:07:e6: 7e:b1:21:0f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjQwODE0MjM0MTUwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkNDBiZS0zZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAna3Z2RjAVVAYjofzn0M3qZViOLf9hAz34hc8FDkhEIz+60kLcqO4Wsup4sSd w4YOmsywwVwGl8PW7n0t04gSTArtSSqrsVIa0QAcjPcE/CYC8MqylW22/figd+8Q /ERI0y0aVDLsO1iAAZ0Y+xaBD3b13//DjafLbCRcQHSAIKuAqOWp4ACYfX8I7DMs VHHKfacu3Vjh4hAnzG6zacxgy4rYrtrgzVJfqFh7cGeVNuHapAgLmrED2lSzei+i KMzGbA+rZ4MYIVImGblozsC4X/uaHfxmty2fxyqHDgZgaO8U6jincV48I1nIMzEn W0XOIw2KTiSM3gbytDYlgsJckQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGjd+XYc ZS6mX+W1b0Ypvy8EnlEBMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4OTcvRTFEMTE3NzA5NUJBMTFFQkIyODEyMzcxQzRGOUFFMDIvRDc4QTE2RUND QUMzMTFFQzkxMEI4QzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnYeQwDwQCAAIwCQMHACQBj0AAATANBgkqhkiG9w0BAQsF AAOCAQEAbSSL6dcyaob3BzkxdVJW48RiHOKyBjZ1JsX1BwY7/UTC/qgZI07MWGT5 DBmikdqpUav0rpxN1B2hJG16+wJYUraJbI1cBApD+4ejwO4QnwKKrxoi+0Q60z0u YpPPZZHstLoy7LxLKxsUV/PW70TryEbe+GKTE5+taFPJGQd3KUuHPI6AVlnWMPPQ 0ICgHRcIu5SYqKc7nvHPL7OXxMt9JJKjDEwy7ReisjTwaCUUKMboK/xs2OIvy4Ej sDarFiMJTs0syhUe/peMz9W26oKOxBbfZRRf7uwJ9oZw+d7ocFFcy05qtnMEmK2S FcFAsLhCtxbCLKLTAC/AmAfmfrEhDw== -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:56 2024 by rpki-client on console-ams.rpki-client.org