$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/E76ABE9EB51811EAA9D89B43C4F9AE02.roa File: E76ABE9EB51811EAA9D89B43C4F9AE02.roa (raw, json) Hash identifier: ttXfxcVj6+WhtbE63+vyOYQl4F7FNyy4bCidNx2zj30= Subject key identifier: FE:11:57:CE:95:6F:F5:C6:0D:67:3A:FD:25:8D:EA:71:8B:DE:BA:FA Certificate issuer: /CN=A91AA8E4/serialNumber=923FB4DB8659C5E0AE8BDDC71A92B6A37032F3D4 Certificate serial: 0835 Authority key identifier: 92:3F:B4:DB:86:59:C5:E0:AE:8B:DD:C7:1A:92:B6:A3:70:32:F3:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kj-024ZZxeCui93HGpK2o3Ay89Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/E76ABE9EB51811EAA9D89B43C4F9AE02.roa Signing time: Wed 28 Aug 2024 21:10:12 +0000 ROA not before: Wed 28 Aug 2024 21:10:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136936 IP address blocks: 103.99.103.0/24 maxlen: 24 2001:df2:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/kj-024ZZxeCui93HGpK2o3Ay89Q.crl rsync://rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/kj-024ZZxeCui93HGpK2o3Ay89Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kj-024ZZxeCui93HGpK2o3Ay89Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA8E4/serialNumber=923FB4DB8659C5E0AE8BDDC71A92B6A37032F3D4 Validity Not Before: Aug 28 21:10:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66cf9234-3534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:be:7e:f5:93:37:94:e8:be:bf:ee:36:78:58: 4b:5e:da:b0:26:32:5d:0e:73:1c:4c:da:6e:44:88: 65:31:25:14:eb:b7:32:bf:ad:3d:56:d1:d9:de:3c: ad:45:fd:78:d4:18:a6:26:64:d3:44:18:07:a0:8b: 73:5b:aa:ca:01:67:b3:e6:87:23:bf:60:64:b2:91: 7c:ed:17:cd:83:e8:46:6e:76:36:be:a4:ac:75:af: d4:b8:36:41:19:28:1a:29:36:68:54:85:1b:9c:8c: 58:72:12:48:9d:5c:b1:b5:59:35:5e:fb:bc:2b:9e: 84:e2:ea:f9:df:72:90:02:28:e3:76:c4:af:d9:99: 04:b6:24:e9:e6:87:ec:e2:e0:d7:3c:54:e4:de:b1: 6c:fa:b5:d4:f0:38:e7:f7:b9:43:c3:b3:c5:cc:1e: 7f:d8:c3:e5:b9:f2:aa:46:9c:4a:d8:d1:ca:62:e1: 76:f2:bf:b1:11:50:97:97:cf:f8:a4:a2:02:4f:9a: 88:42:2d:6b:22:fe:2e:a5:b7:32:9a:f8:d7:72:39: ee:fd:99:25:19:6a:8f:e6:1f:67:9a:8d:28:de:35: 6e:c7:10:ff:0d:9f:7f:34:ed:e4:5d:70:b1:dd:ee: 50:28:87:24:a2:e8:97:db:92:21:0d:b5:38:76:ec: 24:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:11:57:CE:95:6F:F5:C6:0D:67:3A:FD:25:8D:EA:71:8B:DE:BA:FA X509v3 Authority Key Identifier: keyid:92:3F:B4:DB:86:59:C5:E0:AE:8B:DD:C7:1A:92:B6:A3:70:32:F3:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/kj-024ZZxeCui93HGpK2o3Ay89Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kj-024ZZxeCui93HGpK2o3Ay89Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA8E4/C425F526B4F911EA85E60059C4F9AE02/E76ABE9EB51811EAA9D89B43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.103.0/24 IPv6: 2001:df2:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 61:a7:6b:7c:4b:b3:80:cf:11:09:b6:cd:60:fe:b0:67:ae:1c: f1:f2:59:2f:67:34:82:44:90:2d:da:40:42:e6:2a:e2:2f:5e: 73:38:33:50:b9:9e:cf:34:68:df:80:eb:26:8e:b8:a0:0f:ff: 5c:04:d2:61:ff:99:50:43:b2:cb:06:57:d7:44:e8:37:e2:ec: 97:12:01:b1:fd:e3:96:af:3c:2a:24:ad:23:01:eb:78:a7:0e: 61:0f:18:01:7a:19:ed:b6:87:04:fe:37:ec:2d:08:54:7e:7e: 80:ea:54:73:c0:86:5b:e1:9e:0f:a9:0e:57:f2:dd:3c:cf:b7: 1d:f1:cf:4f:1c:91:2b:1a:40:36:9d:6c:36:61:65:ec:d0:5b: d9:22:9a:b5:6f:d4:e4:50:0f:15:b9:59:c1:0e:b0:18:87:91: 99:1d:86:02:5c:fd:59:78:e7:71:34:b4:f1:b7:70:ac:a5:46: 9c:df:77:c8:b2:0a:89:11:1e:88:89:9f:d3:57:53:32:8b:cc: e0:a1:95:22:72:22:1d:a2:a7:26:d8:d8:06:32:a0:94:5a:6f: f4:7c:f4:fb:05:e2:88:ef:fb:f1:f8:fa:d5:95:98:58:1b:6d: a8:02:61:22:d3:42:cd:71:09:6a:3d:a6:f1:63:ac:d1:f3:2c: 8d:70:06:26 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4RTQxMTAvBgNVBAUTKDkyM0ZCNERCODY1OUM1RTBBRThCRERDNzFBOTJCNkEz NzAzMkYzRDQwHhcNMjQwODI4MjExMDEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmOTIzNC0zNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL5+9ZM3lOi+v+42eFhLXtqwJjJdDnMcTNpuRIhlMSUU67cyv609VtHZ3jyt Rf141BimJmTTRBgHoItzW6rKAWez5ocjv2BkspF87RfNg+hGbnY2vqSsda/UuDZB GSgaKTZoVIUbnIxYchJInVyxtVk1Xvu8K56E4ur533KQAijjdsSv2ZkEtiTp5ofs 4uDXPFTk3rFs+rXU8Djn97lDw7PFzB5/2MPlufKqRpxK2NHKYuF28r+xEVCXl8/4 pKICT5qIQi1rIv4upbcymvjXcjnu/ZklGWqP5h9nmo0o3jVuxxD/DZ9/NO3kXXCx 3e5QKIckouiX25IhDbU4duwk9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP4RV86V b/XGDWc6/SWN6nGL3rr6MB8GA1UdIwQYMBaAFJI/tNuGWcXgrovdxxqStqNwMvPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQThFNC9DNDI1RjUyNkI0 RjkxMUVBODVFNjAwNTlDNEY5QUUwMi9rai0wMjRaWnhlQ3VpOTNIR3BLMm8zQXk4 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tqLTAyNFpaeGVDdWk5M0hHcEsybzNBeTg5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4RTQvQzQyNUY1MjZCNEY5MTFFQTg1RTYwMDU5QzRGOUFFMDIvRTc2QUJFOUVC NTE4MTFFQUE5RDg5QjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnY2cwDwQCAAIwCQMHACABDfJdADANBgkqhkiG9w0BAQsF AAOCAQEAYadrfEuzgM8RCbbNYP6wZ64c8fJZL2c0gkSQLdpAQuYq4i9eczgzULme zzRo34DrJo64oA//XATSYf+ZUEOyywZX10ToN+LslxIBsf3jlq88KiStIwHreKcO YQ8YAXoZ7baHBP437C0IVH5+gOpUc8CGW+GeD6kOV/LdPM+3HfHPTxyRKxpANp1s NmFl7NBb2SKatW/U5FAPFblZwQ6wGIeRmR2GAlz9WXjncTS08bdwrKVGnN93yLIK iREeiImf01dTMovM4KGVInIiHaKnJtjYBjKglFpv9Hz0+wXiiO/78fj61ZWYWBtt qAJhItNCzXEJaj2m8WOs0fMsjXAGJg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org