$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/87F6FDDC880911EB96D8882DC4F9AE02.roa File: 87F6FDDC880911EB96D8882DC4F9AE02.roa (raw, json) Hash identifier: suHvTQAomyIkUqlAyt38u4ad/m8Cw95cixcJetHke24= Subject key identifier: A7:6E:5B:5B:32:7E:C5:86:0A:72:90:2E:FC:BB:15:1A:4E:5A:10:C6 Certificate issuer: /CN=A91B7E17/serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Certificate serial: 0535 Authority key identifier: 76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/87F6FDDC880911EB96D8882DC4F9AE02.roa Signing time: Wed 15 Nov 2023 00:11:45 +0000 ROA not before: Wed 15 Nov 2023 00:11:45 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133528 IP address blocks: 103.131.88.0/22 maxlen: 22 103.131.88.0/24 maxlen: 24 103.131.89.0/24 maxlen: 24 103.131.90.0/24 maxlen: 24 103.131.91.0/24 maxlen: 24 2403:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7E17/serialNumber=76D1F66C016DC184734E6D9BE1BEE90801FFA01F Validity Not Before: Nov 15 00:11:45 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65540cc0-fcc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:08:eb:33:2c:c3:1e:41:89:7a:0b:2e:12:77: da:a8:73:30:53:ee:fc:a4:36:04:d1:62:59:de:95: 61:e7:67:01:38:de:d7:68:bd:3d:70:60:67:06:84: 13:7b:77:00:6d:8e:31:49:10:6c:aa:cf:90:34:ba: e5:0f:2e:21:c1:0a:6a:20:fe:75:8b:6e:83:ad:79: 83:48:5c:b0:77:ca:3b:0e:90:8c:97:ce:1c:1c:f8: 41:aa:30:d7:1e:7c:74:25:1a:00:4c:6f:db:fc:c5: 28:4e:81:41:b8:87:b6:a9:73:62:7a:3b:b2:59:36: b3:6c:73:1f:b7:b3:e4:b4:95:f6:8f:61:32:86:0c: 02:c4:5e:90:ff:bf:bd:0c:cb:9c:5d:cf:33:21:d3: 0f:e3:79:0b:ef:fd:f5:2a:d8:f6:fe:5d:f7:97:36: 99:09:6e:7d:70:2c:06:36:5d:4d:18:ae:0b:86:88: 8b:24:54:d7:5b:2a:43:f9:ad:71:c2:71:49:87:37: 05:f9:1c:b9:3a:6a:19:80:a9:6a:d4:15:4c:d2:1d: 33:3d:ea:67:c9:e6:7a:30:6f:a3:4d:40:f1:87:3a: 2e:dc:bc:19:89:d1:21:58:41:66:db:e4:8e:91:2d: da:f5:bc:8a:a1:28:91:a6:76:4b:f3:5d:89:9e:54: 2b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6E:5B:5B:32:7E:C5:86:0A:72:90:2E:FC:BB:15:1A:4E:5A:10:C6 X509v3 Authority Key Identifier: keyid:76:D1:F6:6C:01:6D:C1:84:73:4E:6D:9B:E1:BE:E9:08:01:FF:A0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/dtH2bAFtwYRzTm2b4b7pCAH_oB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtH2bAFtwYRzTm2b4b7pCAH_oB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7E17/7AB0B566880711EBA0A9B62AC4F9AE02/87F6FDDC880911EB96D8882DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.88.0/22 IPv6: 2403:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 3d:75:bd:be:fb:71:3f:b8:c4:c1:c3:64:79:6d:7d:a0:91:02: 5c:5b:11:f2:c0:78:7b:50:19:f4:8a:5b:14:3c:a1:d0:a3:3e: 5d:0f:25:fa:d9:29:9d:67:39:7a:4c:0d:5a:6e:d5:d7:8d:7b: c7:24:0e:dd:67:5f:04:14:0d:c3:da:d2:36:cf:99:95:bc:e8: ea:55:e5:00:30:b9:db:e7:c0:4e:df:7c:12:c3:2a:b4:7e:97: 54:88:58:10:6e:5f:7e:ba:87:71:97:33:01:fb:69:ae:ca:d0: cb:01:ef:64:dc:fc:ba:9a:17:30:a1:f6:00:8b:fd:37:ce:5c: e7:71:d0:b7:ed:7e:67:da:7f:76:da:1f:c3:13:9c:6f:9a:4f: 0b:d6:8d:d0:ca:57:f3:d8:7d:be:52:92:5e:d3:5e:e3:cc:9d: 21:f6:ff:64:97:f0:7c:c8:81:ce:10:cb:fd:8a:93:6a:31:eb: dd:b8:b6:1b:74:59:14:5c:2a:31:10:f2:2d:b3:4b:34:a9:5c: f2:63:a0:15:9a:8e:78:ad:fd:4e:10:fd:66:e1:bf:f3:a5:fb: 26:4c:e6:e8:99:77:ac:41:06:de:4a:d6:b5:80:5e:cc:40:27: 1a:11:08:ad:41:8c:2e:33:3b:37:d5:f4:3d:82:dd:28:e7:16: 8b:bc:23:9d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdFMTcxMTAvBgNVBAUTKDc2RDFGNjZDMDE2REMxODQ3MzRFNkQ5QkUxQkVFOTA4 MDFGRkEwMUYwHhcNMjMxMTE1MDAxMTQ1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0MGNjMC1mY2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gjrMyzDHkGJegsuEnfaqHMwU+78pDYE0WJZ3pVh52cBON7XaL09cGBnBoQT e3cAbY4xSRBsqs+QNLrlDy4hwQpqIP51i26DrXmDSFywd8o7DpCMl84cHPhBqjDX Hnx0JRoATG/b/MUoToFBuIe2qXNiejuyWTazbHMft7PktJX2j2EyhgwCxF6Q/7+9 DMucXc8zIdMP43kL7/31Ktj2/l33lzaZCW59cCwGNl1NGK4LhoiLJFTXWypD+a1x wnFJhzcF+Ry5OmoZgKlq1BVM0h0zPepnyeZ6MG+jTUDxhzou3LwZidEhWEFm2+SO kS3a9byKoSiRpnZL812JnlQrLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKduW1sy fsWGCnKQLvy7FRpOWhDGMB8GA1UdIwQYMBaAFHbR9mwBbcGEc05tm+G+6QgB/6Af MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0UxNy83QUIwQjU2Njg4 MDcxMUVCQTBBOUI2MkFDNEY5QUUwMi9kdEgyYkFGdHdZUnpUbTJiNGI3cENBSF9v QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0SDJiQUZ0d1lSelRtMmI0YjdwQ0FIX29COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdFMTcvN0FCMEI1NjY4ODA3MTFFQkEwQTlCNjJBQzRGOUFFMDIvODdGNkZEREM4 ODA5MTFFQjk2RDg4ODJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJng1gwDQQCAAIwBwMFACQDyMAwDQYJKoZIhvcNAQELBQAD ggEBAD11vb77cT+4xMHDZHltfaCRAlxbEfLAeHtQGfSKWxQ8odCjPl0PJfrZKZ1n OXpMDVpu1deNe8ckDt1nXwQUDcPa0jbPmZW86OpV5QAwudvnwE7ffBLDKrR+l1SI WBBuX366h3GXMwH7aa7K0MsB72Tc/LqaFzCh9gCL/TfOXOdx0Lftfmfaf3baH8MT nG+aTwvWjdDKV/PYfb5Skl7TXuPMnSH2/2SX8HzIgc4Qy/2Kk2ox6924tht0WRRc KjEQ8i2zSzSpXPJjoBWajnit/U4Q/Wbhv/Ol+yZM5uiZd6xBBt5K1rWAXsxAJxoR CK1BjC4zOzfV9D2C3SjnFou8I50= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org