$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/DD1FEE48C77311EEA5076E2CC4F9AE02.roa File: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (raw, json) Hash identifier: AMI8B01oJYBvuALPO9a5072lSyPAKpdtjtQhc2T4uR0= Subject key identifier: 67:F0:98:9F:9D:41:95:0F:09:BB:2C:C1:62:D4:65:CA:F7:8F:04:2B Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 01CF Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/DD1FEE48C77311EEA5076E2CC4F9AE02.roa Signing time: Wed 17 Jul 2024 03:45:38 +0000 ROA not before: Wed 17 Jul 2024 03:45:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141987 IP address blocks: 103.191.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: Jul 17 03:45:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66973e62-1c2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7d:44:78:9b:55:88:76:06:48:16:c4:6b:d4: ff:e9:b9:c0:7e:a4:8a:d6:84:82:df:f0:f2:02:24: db:90:12:74:83:ab:ab:ae:b9:60:0c:7f:06:9d:6f: c0:28:33:e2:1b:f9:c5:e4:92:0f:57:ba:f7:17:0d: de:c7:b9:71:05:3f:df:43:7b:ce:10:7f:11:d4:dc: ac:13:ba:e3:f9:c3:16:59:e4:4b:a2:e7:a4:17:4d: 5d:99:c7:28:54:b0:29:dd:df:06:d6:9c:d5:7a:43: dc:d0:9a:05:28:c5:28:7f:b4:99:87:13:8e:d7:c3: e6:21:f3:0d:8a:0b:0a:4d:9a:30:31:23:90:d0:98: 6f:50:98:9f:18:ae:65:6e:b4:85:00:7d:d9:78:aa: e5:f5:9c:96:0b:8a:4d:23:70:7e:15:1b:3d:3e:e1: ff:64:fa:45:e5:81:3c:d2:91:d7:50:d5:fe:bb:40: 8e:27:92:49:cf:dc:9a:cf:cf:ba:40:77:fe:fb:de: 87:47:d6:09:ea:b9:6f:39:34:cc:4e:35:c9:2b:ca: d7:01:d5:a1:16:fe:e0:62:04:e9:93:29:65:45:9f: 0f:2e:0d:74:12:df:a0:cb:c1:2b:c2:c9:72:31:86: 29:2a:a9:c6:bc:e8:24:7e:d8:80:53:1a:71:04:c8: a0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F0:98:9F:9D:41:95:0F:09:BB:2C:C1:62:D4:65:CA:F7:8F:04:2B X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/DD1FEE48C77311EEA5076E2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.74.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:c0:c1:ea:de:a3:da:fc:d0:af:38:31:69:14:b3:c8:ee:14: 8f:c9:b7:b4:55:94:76:16:e6:42:e1:12:42:3a:26:0e:56:e8: de:5d:48:27:6b:df:97:5a:89:d3:f7:99:30:2e:83:47:90:7b: 10:23:58:fa:bb:12:84:10:4e:8b:8f:f5:0e:f5:8c:a8:9b:aa: 1f:f2:20:35:b3:ab:a4:38:8f:67:ca:99:b8:fe:c3:32:af:06: c7:f6:fb:5e:28:80:4e:34:01:66:4e:f1:9c:9c:2e:b5:8b:e7: 1b:6c:12:eb:49:71:a4:d5:fa:70:99:2a:81:ce:d5:71:42:d3: 4f:2a:62:da:52:11:a1:e8:f1:0b:0f:c2:a2:06:c4:df:8e:4f: b6:97:45:65:4d:82:7b:4d:21:0d:ce:5f:ae:8b:08:41:df:2c: 54:7c:da:ab:0a:38:50:e2:6a:0b:9b:6b:0e:e6:39:89:b6:27: 9e:a6:35:24:f2:65:50:e7:57:1c:9a:91:08:bf:a3:0b:fb:fa: 70:8d:3a:dc:d3:50:c3:b9:6f:94:bd:39:f8:ac:46:d7:d2:f4: 8d:29:39:5f:c5:51:94:e2:29:23:62:da:b6:9e:a7:5d:5b:52: 76:b6:fe:ef:ec:d2:b0:c6:bf:e7:36:37:0a:70:24:fc:44:11: 0b:84:24:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjQwNzE3MDM0NTM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3M2U2Mi0xYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5X1EeJtViHYGSBbEa9T/6bnAfqSK1oSC3/DyAiTbkBJ0g6urrrlgDH8GnW/A KDPiG/nF5JIPV7r3Fw3ex7lxBT/fQ3vOEH8R1NysE7rj+cMWWeRLouekF01dmcco VLAp3d8G1pzVekPc0JoFKMUof7SZhxOO18PmIfMNigsKTZowMSOQ0JhvUJifGK5l brSFAH3ZeKrl9ZyWC4pNI3B+FRs9PuH/ZPpF5YE80pHXUNX+u0COJ5JJz9yaz8+6 QHf++96HR9YJ6rlvOTTMTjXJK8rXAdWhFv7gYgTpkyllRZ8PLg10Et+gy8Erwsly MYYpKqnGvOgkftiAUxpxBMigJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGfwmJ+d QZUPCbsswWLUZcr3jwQrMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU2OUMvOUVCMDc5OTgxMjdBMTFFRDkwMkRGRTI3QzRGOUFFMDIvREQxRkVFNDhD NzczMTFFRUE1MDc2RTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnv0owDQYJKoZIhvcNAQELBQADggEBAA/Awereo9r80K84 MWkUs8juFI/Jt7RVlHYW5kLhEkI6Jg5W6N5dSCdr35daidP3mTAug0eQexAjWPq7 EoQQTouP9Q71jKibqh/yIDWzq6Q4j2fKmbj+wzKvBsf2+14ogE40AWZO8ZycLrWL 5xtsEutJcaTV+nCZKoHO1XFC008qYtpSEaHo8QsPwqIGxN+OT7aXRWVNgntNIQ3O X66LCEHfLFR82qsKOFDiagubaw7mOYm2J56mNSTyZVDnVxyakQi/owv7+nCNOtzT UMO5b5S9OfisRtfS9I0pOV/FUZTiKSNi2raep11bUna2/u/s0rDGv+c2NwpwJPxE EQuEJPU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org