$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa File: C443D86A55A311E7896BED09C4F9AE02.roa (raw, json) Hash identifier: RAjaQS5QbqXtrUMbAxpVJSZQfE94i9hS979yM5B3+jI= Subject key identifier: 6A:BA:2C:9A:9F:CB:5C:E7:B6:45:C0:2C:3E:11:77:A4:8F:53:83:05 Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 19B7 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa Signing time: Thu 22 Aug 2024 11:57:18 +0000 ROA not before: Thu 22 Aug 2024 11:57:18 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 8360 IP address blocks: 103.85.135.0/24 maxlen: 24 103.119.72.0/23 maxlen: 23 103.233.172.0/23 maxlen: 24 103.233.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6583 (0x19b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Aug 22 11:57:18 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66c7279e-ba6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d3:bd:d1:13:af:c0:6c:ba:0e:5c:b1:eb:30: b0:84:da:a1:86:f0:f3:db:bc:01:2c:42:94:1d:de: 09:98:22:c7:b9:a7:b4:4a:b4:8a:7f:7d:fe:0a:b1: 4e:17:8d:ca:58:64:23:fb:45:88:a3:1b:82:24:43: 2c:a4:67:98:07:39:92:9b:0f:37:d7:4a:d9:f9:79: 0a:2f:5b:a2:d7:5e:b4:ff:e1:0b:09:3f:05:11:e2: b1:51:76:5a:b9:47:1b:5a:30:39:2e:8c:78:b0:ce: df:6a:df:13:a7:b1:61:c7:f1:6c:ec:d4:fe:8b:08: 95:61:69:37:01:16:45:59:ff:17:7c:f2:77:98:e9: 75:7c:85:b5:83:89:c8:25:e7:f8:de:0b:3c:14:9b: ed:5a:b7:7f:5a:88:3b:d2:aa:73:34:b2:d1:b9:4d: ea:fc:ab:4e:ae:25:75:16:8f:a8:6d:66:a0:8c:db: b5:4c:0f:b9:03:ee:65:98:5d:24:db:66:35:c1:1b: 4f:7f:c1:b8:f4:ea:c5:f7:d3:d0:8b:9c:a8:93:94: 3c:6c:c5:33:b4:6a:ae:3b:8e:6d:c1:75:bf:03:3c: e0:d7:c7:63:0d:62:ce:82:10:09:bc:93:ca:26:2d: 39:4a:ec:71:ed:be:5b:dd:ce:64:b3:02:d0:6d:b4: 6e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BA:2C:9A:9F:CB:5C:E7:B6:45:C0:2C:3E:11:77:A4:8F:53:83:05 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/C443D86A55A311E7896BED09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.135.0/24 103.119.72.0/23 103.233.172.0/22 Signature Algorithm: sha256WithRSAEncryption 59:87:5c:e9:86:57:77:a8:b3:69:33:c1:49:86:0a:6a:1f:77: 72:80:a1:6c:13:a3:dd:28:19:07:73:97:b8:b7:15:03:18:59: 6f:b0:83:03:36:5b:52:18:9d:bc:7d:50:25:e3:03:85:24:02: d1:db:bb:a6:aa:1e:f3:ad:c1:3e:ab:fb:57:47:f8:9d:67:5e: 7e:85:5b:62:ed:24:be:c9:5b:eb:b4:be:92:c4:12:dc:23:2e: 77:20:08:6b:d5:11:95:53:f6:ff:9e:af:df:54:f8:b3:76:2c: af:e5:4a:ed:19:ef:28:e1:bc:c2:7c:15:24:45:fe:a3:22:de: eb:c5:1d:83:13:ae:b8:35:a1:18:78:eb:b2:6d:1a:4b:9c:e6: 39:75:b2:8f:57:d1:e4:08:c2:42:65:82:45:10:4b:a5:28:0d: d3:b5:d0:80:75:c0:17:63:29:31:91:98:c8:d5:10:11:ff:91: 1a:d6:29:a6:46:36:26:0e:13:4f:36:f5:84:55:54:80:2d:bf: 9a:46:a9:8c:00:b9:32:c1:bb:ba:b4:e4:de:77:8f:03:51:15: 94:d3:b3:02:78:64:e7:e7:7e:48:94:07:2d:48:5b:a6:b6:7d: e1:b3:65:7d:e1:1a:78:33:1f:cb:8d:6d:29:6f:f6:0a:af:37: 8d:a4:0e:a1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjQwODIyMTE1NzE4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3Mjc5ZS1iYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdO90ROvwGy6Dlyx6zCwhNqhhvDz27wBLEKUHd4JmCLHuae0SrSKf33+CrFO F43KWGQj+0WIoxuCJEMspGeYBzmSmw8310rZ+XkKL1ui1160/+ELCT8FEeKxUXZa uUcbWjA5Lox4sM7fat8Tp7Fhx/Fs7NT+iwiVYWk3ARZFWf8XfPJ3mOl1fIW1g4nI Jef43gs8FJvtWrd/Wog70qpzNLLRuU3q/KtOriV1Fo+obWagjNu1TA+5A+5lmF0k 22Y1wRtPf8G49OrF99PQi5yok5Q8bMUztGquO45twXW/Azzg18djDWLOghAJvJPK Ji05Suxx7b5b3c5kswLQbbRuGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGq6LJqf y1zntkXALD4Rd6SPU4MFMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUzQTUvMjU4MEE4RDY0QjY1MTFFN0I0NjlDMDdBQzRGOUFFMDIvQzQ0M0Q4NkE1 NUEzMTFFNzg5NkJFRDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnVYcDBAFnd0gDBAJn6awwDQYJKoZIhvcNAQELBQADggEB AFmHXOmGV3eos2kzwUmGCmofd3KAoWwTo90oGQdzl7i3FQMYWW+wgwM2W1IYnbx9 UCXjA4UkAtHbu6aqHvOtwT6r+1dH+J1nXn6FW2LtJL7JW+u0vpLEEtwjLncgCGvV EZVT9v+er99U+LN2LK/lSu0Z7yjhvMJ8FSRF/qMi3uvFHYMTrrg1oRh467JtGkuc 5jl1so9X0eQIwkJlgkUQS6UoDdO10IB1wBdjKTGRmMjVEBH/kRrWKaZGNiYOE082 9YRVVIAtv5pGqYwAuTLBu7q05N53jwNRFZTTswJ4ZOfnfkiUBy1IW6a2feGzZX3h GngzH8uNbSlv9gqvN42kDqE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:05 2024 by rpki-client on console-ams.rpki-client.org