$ rpki-client -vvf rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa File: 94F5846AE0D011ECAF88A30DC4F9AE02.roa (raw, json) Hash identifier: Tkim0bj/DqFtnK3qLWdBDKeH3dbPF/RS93ZGfjewyNw= Subject key identifier: E0:B4:91:11:A1:81:4E:F3:C8:49:78:DC:95:04:E6:15:8E:59:66:53 Certificate issuer: /CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Certificate serial: 05E8 Authority key identifier: 76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa Signing time: Sun 15 Sep 2024 01:12:31 +0000 ROA not before: Sun 15 Sep 2024 01:12:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136950 IP address blocks: 103.99.60.0/22 maxlen: 22 103.99.60.0/24 maxlen: 24 103.99.61.0/24 maxlen: 24 103.99.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B29F8/serialNumber=76C8E0115549EDA92DE22236A2A5A50AF09F8411 Validity Not Before: Sep 15 01:12:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e6347e-73a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:75:e0:d4:18:da:fb:cb:5f:9b:18:7f:6f:89: 75:bd:7d:ea:99:92:45:04:a4:7f:38:ac:a6:2a:6b: 22:1a:ec:f9:c0:96:7e:1b:1d:35:e1:16:9e:68:98: 61:12:4f:59:ab:34:9a:6f:52:39:2a:40:32:6b:bc: ad:cb:b7:1d:f0:8a:1d:06:ef:35:00:72:c8:07:16: 87:1b:cc:6a:72:e3:74:73:14:32:47:4b:22:bb:a6: 70:cf:ff:af:af:43:ee:ce:99:94:64:ba:b4:22:49: 48:ba:18:85:ec:e0:c2:1a:36:bc:81:27:86:e2:95: 0b:67:d7:ef:60:a9:7e:99:3f:3a:28:b3:b3:f5:f9: e0:9e:a1:73:21:ae:52:c7:23:26:55:c7:16:90:0c: 88:1d:41:f5:4c:7e:5f:b1:33:4f:f7:d9:93:11:68: 79:81:f4:3a:db:05:e6:bc:c6:7e:92:9a:78:88:3a: 36:21:d7:2b:de:05:28:3a:d4:81:76:ea:a3:49:17: 87:cd:5c:77:3b:f8:d8:cb:e4:13:34:72:44:a9:c8: 90:f9:6f:f9:65:ed:70:ec:03:84:15:67:93:6c:63: eb:a6:6c:7e:08:52:df:1d:4e:64:0e:ab:b4:5f:7f: 7c:8e:58:e2:a7:9c:39:09:16:52:55:5b:60:c3:32: e8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B4:91:11:A1:81:4E:F3:C8:49:78:DC:95:04:E6:15:8E:59:66:53 X509v3 Authority Key Identifier: keyid:76:C8:E0:11:55:49:ED:A9:2D:E2:22:36:A2:A5:A5:0A:F0:9F:84:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/dsjgEVVJ7akt4iI2oqWlCvCfhBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dsjgEVVJ7akt4iI2oqWlCvCfhBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B29F8/92D0BE02906811EB9E3FC66CC4F9AE02/94F5846AE0D011ECAF88A30DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.60.0/22 Signature Algorithm: sha256WithRSAEncryption 60:a2:d9:1b:c6:c7:58:2c:23:30:23:07:ae:fc:b8:a8:f0:2f: c8:0c:e8:c5:35:7d:2b:06:68:7e:ad:3d:ac:bb:64:78:60:1d: 4e:3c:b6:3a:64:e2:bf:8c:9d:35:c1:fd:ac:b9:0d:40:d7:49: be:4f:a0:17:53:c6:3c:f9:38:02:14:af:6d:a4:77:cc:93:94: 33:a6:7d:c1:28:e5:e8:8c:cb:3a:6b:52:ea:f1:96:ea:d2:ce: 50:2e:b1:42:e4:dd:0e:5e:98:d5:98:1a:6f:a6:da:c8:58:c3: cb:78:5d:35:7e:b6:18:5a:8d:05:3e:b4:d9:33:5e:fc:4b:b6: e3:bb:bd:55:47:10:8a:6d:fd:83:c0:d0:b4:f2:c6:19:90:1c: 03:d7:75:ce:4d:80:7b:62:64:2f:a7:f6:cb:cd:16:45:8b:ca: ac:bd:18:f7:b7:c3:75:4b:a4:04:72:af:66:a9:0b:e0:de:c7: 0e:56:e5:e6:3c:13:ac:e9:7a:01:ae:3e:b1:6e:aa:29:85:91: fc:01:4d:46:df:60:44:45:a5:8d:49:6c:2d:fd:fb:87:d3:1f: 21:72:b9:38:c6:21:fe:2e:38:72:0c:9b:6d:c6:60:5b:b8:16: 6e:ae:d4:c7:2f:da:b2:29:2a:b9:67:da:c6:79:5b:4a:77:23: 1e:49:99:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI5RjgxMTAvBgNVBAUTKDc2QzhFMDExNTU0OUVEQTkyREUyMjIzNkEyQTVBNTBB RjA5Rjg0MTEwHhcNMjQwOTE1MDExMjMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2MzQ3ZS03M2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HXg1Bja+8tfmxh/b4l1vX3qmZJFBKR/OKymKmsiGuz5wJZ+Gx014RaeaJhh Ek9ZqzSab1I5KkAya7yty7cd8IodBu81AHLIBxaHG8xqcuN0cxQyR0siu6Zwz/+v r0PuzpmUZLq0IklIuhiF7ODCGja8gSeG4pULZ9fvYKl+mT86KLOz9fngnqFzIa5S xyMmVccWkAyIHUH1TH5fsTNP99mTEWh5gfQ62wXmvMZ+kpp4iDo2Idcr3gUoOtSB duqjSReHzVx3O/jYy+QTNHJEqciQ+W/5Ze1w7AOEFWeTbGPrpmx+CFLfHU5kDqu0 X398jljip5w5CRZSVVtgwzLoNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOC0kRGh gU7zyEl43JUE5hWOWWZTMB8GA1UdIwQYMBaAFHbI4BFVSe2pLeIiNqKlpQrwn4QR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjlGOC85MkQwQkUwMjkw NjgxMUVCOUUzRkM2NkNDNEY5QUUwMi9kc2pnRVZWSjdha3Q0aUkyb3FXbEN2Q2Zo QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RzamdFVlZKN2FrdDRpSTJvcVdsQ3ZDZmhCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI5RjgvOTJEMEJFMDI5MDY4MTFFQjlFM0ZDNjZDQzRGOUFFMDIvOTRGNTg0NkFF MEQwMTFFQ0FGODhBMzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYzwwDQYJKoZIhvcNAQELBQADggEBAGCi2RvGx1gsIzAj B678uKjwL8gM6MU1fSsGaH6tPay7ZHhgHU48tjpk4r+MnTXB/ay5DUDXSb5PoBdT xjz5OAIUr22kd8yTlDOmfcEo5eiMyzprUurxlurSzlAusULk3Q5emNWYGm+m2shY w8t4XTV+thhajQU+tNkzXvxLtuO7vVVHEIpt/YPA0LTyxhmQHAPXdc5NgHtiZC+n 9svNFkWLyqy9GPe3w3VLpARyr2apC+Dexw5W5eY8E6zpegGuPrFuqimFkfwBTUbf YERFpY1JbC39+4fTHyFyuTjGIf4uOHIMm23GYFu4Fm6u1Mcv2rIpKrln2sZ5W0p3 Ix5JmaI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:47 2024 by rpki-client on console-fra.rpki-client.org