$ rpki-client -vvf rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa File: 84AC17989B0811EDB5FDAF75C4F9AE02.roa (raw, json) Hash identifier: oocbcY3iFDyepn5SUv3wuDXzWJtrjmxt4UkH5Dd68Ak= Subject key identifier: 85:13:64:0D:3B:F8:DA:55:26:BB:A4:23:C3:16:F9:42:1B:DC:04:F3 Certificate issuer: /CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Certificate serial: 0ACF Authority key identifier: 2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa Signing time: Tue 10 Sep 2024 20:28:42 +0000 ROA not before: Tue 10 Sep 2024 20:28:42 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136978 IP address blocks: 103.101.48.0/24 maxlen: 24 103.101.49.0/24 maxlen: 24 2401:ca40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2767 (0xacf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B56F0/serialNumber=2F8773C951053B1438BC27ECC55E392AFB5E2BB2 Validity Not Before: Sep 10 20:28:42 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e0abfa-b51f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:1d:ef:d5:e3:07:47:92:a2:fd:9f:aa:6c: d7:f5:8b:0d:2e:b6:5a:4a:1c:1c:35:27:1d:27:1a: 06:4a:26:f6:90:89:0c:f7:c8:59:96:eb:3e:3c:5a: d5:2b:6a:43:a5:a0:c0:cf:c8:7e:72:d1:db:75:52: d1:0f:68:bd:87:7d:da:56:b5:74:76:c1:69:5b:5d: 2e:dc:94:82:cc:86:7e:84:c5:4a:4e:39:52:b1:b6: 45:a1:d9:5a:59:89:df:c1:25:fa:8a:d9:19:1b:50: 88:4c:54:60:cb:3e:c3:f5:53:a8:1a:62:7e:19:b8: 1e:1b:f3:ad:22:eb:1a:fc:ee:f0:ba:b8:4a:72:7e: 77:b4:17:c1:12:3c:dd:48:2a:0b:3e:43:35:54:14: df:5e:1a:53:3f:4a:8e:0c:b1:f9:b3:8b:2c:85:7a: d8:84:a8:c0:39:1d:ef:7f:3b:13:58:8a:07:a5:2f: c1:2e:18:79:4f:16:cf:31:d5:e2:1e:d8:14:00:40: 26:d7:30:0c:0c:ac:1c:87:6d:85:11:89:d8:69:41: 53:fd:c4:e7:54:73:ad:8f:07:79:60:4e:c1:a8:16: 0a:78:fb:8a:cc:b6:cb:e4:21:5f:6a:f2:79:3c:d5: 7a:7f:3c:3d:bd:03:a9:cd:7d:df:cc:2b:e3:cc:60: 36:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:13:64:0D:3B:F8:DA:55:26:BB:A4:23:C3:16:F9:42:1B:DC:04:F3 X509v3 Authority Key Identifier: keyid:2F:87:73:C9:51:05:3B:14:38:BC:27:EC:C5:5E:39:2A:FB:5E:2B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/L4dzyVEFOxQ4vCfsxV45KvteK7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4dzyVEFOxQ4vCfsxV45KvteK7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B56F0/7D67E4D4384C11EABEA2DB71C4F9AE02/84AC17989B0811EDB5FDAF75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.48.0/23 IPv6: 2401:ca40::/32 Signature Algorithm: sha256WithRSAEncryption d9:19:f5:5f:60:35:c5:92:51:eb:0b:88:c3:89:d4:95:7c:19: 1e:0e:ca:11:30:7f:97:96:45:79:e8:28:4d:89:e4:60:76:24: 53:20:eb:c4:d8:dd:be:05:76:73:cf:94:e7:9b:9c:15:f4:40: 17:c0:11:ba:1c:77:26:02:47:2f:6d:f7:97:56:21:93:2a:c3: 99:87:a1:75:be:23:9c:3d:d2:58:67:5d:75:52:39:85:c1:82: cf:65:4e:44:7e:f7:99:65:15:59:7b:41:fd:65:fb:c7:4a:45: dd:26:ec:73:07:e5:b7:5b:bd:2d:04:33:3b:cd:51:b4:0e:87: 7a:b7:d6:1c:5f:de:17:a3:3c:72:de:e1:56:c8:1e:e9:23:cc: 76:bf:3d:0f:aa:6b:ac:8d:f4:e0:f0:80:98:19:57:07:ab:55: da:a0:10:3e:92:7d:16:e4:76:d2:59:d3:83:3d:27:d3:45:79: 9d:9e:32:51:b3:66:0c:97:93:9c:7e:69:1e:d0:fc:5b:77:03: 80:6f:65:de:ba:2c:9e:f2:e9:20:c5:ec:29:1d:6b:db:7f:c6: 51:76:7c:5d:e3:3d:80:17:63:cf:d9:cd:4f:b9:96:32:0e:54: 96:a9:66:b2:ea:03:d7:54:82:65:f5:ec:2c:81:10:71:1c:e9: 8d:dd:d4:ab -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2RjAxMTAvBgNVBAUTKDJGODc3M0M5NTEwNTNCMTQzOEJDMjdFQ0M1NUUzOTJB RkI1RTJCQjIwHhcNMjQwOTEwMjAyODQyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwYWJmYS1iNTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoUd79XjB0eSov2fqmzX9YsNLrZaShwcNScdJxoGSib2kIkM98hZlus+PFrV K2pDpaDAz8h+ctHbdVLRD2i9h33aVrV0dsFpW10u3JSCzIZ+hMVKTjlSsbZFodla WYnfwSX6itkZG1CITFRgyz7D9VOoGmJ+GbgeG/OtIusa/O7wurhKcn53tBfBEjzd SCoLPkM1VBTfXhpTP0qODLH5s4sshXrYhKjAOR3vfzsTWIoHpS/BLhh5TxbPMdXi HtgUAEAm1zAMDKwch22FEYnYaUFT/cTnVHOtjwd5YE7BqBYKePuKzLbL5CFfavJ5 PNV6fzw9vQOpzX3fzCvjzGA2lQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIUTZA07 +NpVJrukI8MW+UIb3ATzMB8GA1UdIwQYMBaAFC+Hc8lRBTsUOLwn7MVeOSr7Xiuy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTZGMC83RDY3RTRENDM4 NEMxMUVBQkVBMkRCNzFDNEY5QUUwMi9MNGR6eVZFRk94UTR2Q2ZzeFY0NUt2dGVL N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0ZHp5VkVGT3hRNHZDZnN4VjQ1S3Z0ZUs3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2RjAvN0Q2N0U0RDQzODRDMTFFQUJFQTJEQjcxQzRGOUFFMDIvODRBQzE3OTg5 QjA4MTFFREI1RkRBRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnZTAwDQQCAAIwBwMFACQBykAwDQYJKoZIhvcNAQELBQAD ggEBANkZ9V9gNcWSUesLiMOJ1JV8GR4OyhEwf5eWRXnoKE2J5GB2JFMg68TY3b4F dnPPlOebnBX0QBfAEbocdyYCRy9t95dWIZMqw5mHoXW+I5w90lhnXXVSOYXBgs9l TkR+95llFVl7Qf1l+8dKRd0m7HMH5bdbvS0EMzvNUbQOh3q31hxf3hejPHLe4VbI HukjzHa/PQ+qa6yN9ODwgJgZVwerVdqgED6SfRbkdtJZ04M9J9NFeZ2eMlGzZgyX k5x+aR7Q/Ft3A4BvZd66LJ7y6SDF7Ckda9t/xlF2fF3jPYAXY8/ZzU+5ljIOVJap ZrLqA9dUgmX17CyBEHEc6Y3d1Ks= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org