$ rpki-client -vvf rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa File: 06398E92797611EFAD5DCD6DC4F9AE02.roa (raw, json) Hash identifier: putFsHLYn/kUSEC1pei6TzDMUHgm7yZCoKX7CT3aVhM= Subject key identifier: 3B:76:3C:F6:BF:B9:2E:C9:57:23:2B:F1:F6:D4:5C:A9:AA:33:9F:2B Certificate issuer: /CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Certificate serial: 38 Authority key identifier: F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa Signing time: Mon 23 Sep 2024 06:35:29 +0000 ROA not before: Mon 23 Sep 2024 06:35:29 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.117.136.0/24 maxlen: 24 103.117.137.0/24 maxlen: 24 103.117.138.0/24 maxlen: 24 103.117.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Validity Not Before: Sep 23 06:35:29 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66f10c31-644d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a7:02:3f:f7:10:25:95:13:6e:4f:cb:fd:54: 28:de:82:e1:aa:8a:d5:ce:49:ab:be:6e:c6:42:bb: dc:d0:2c:53:78:0e:98:50:f0:ca:7b:72:bb:63:46: 33:27:65:96:00:b4:54:3e:07:5c:31:58:6d:c7:3e: bf:cc:ec:82:e0:1f:28:30:75:80:92:08:c9:3b:d2: 54:9d:1c:88:15:aa:d6:e3:c2:82:80:09:27:2d:80: 05:a9:15:8f:ec:0d:ea:0a:78:ac:22:2a:36:c0:92: d6:b3:31:01:df:5a:65:6e:45:1d:ac:8a:94:a4:6a: ca:f0:c8:bf:a2:b5:74:54:ac:0e:ee:c0:ee:9a:68: fb:f9:04:3e:98:34:ab:78:6c:3f:fa:a4:d0:78:b3: 04:f1:87:b3:39:50:40:d3:4d:e0:b4:fb:a2:92:94: e2:24:65:89:fa:19:f9:bb:41:a9:63:97:06:e7:cd: f0:53:9a:45:c1:83:bf:f4:9d:9b:65:a7:62:a8:6f: 50:c9:73:fb:74:bb:bd:e1:df:26:20:7a:f3:dd:40: f9:2b:31:93:85:cf:41:ab:f8:d3:a6:ed:b5:68:2a: bc:9c:14:01:3e:e3:22:7c:5b:f3:71:71:23:85:94: 97:54:1b:22:6d:b7:cc:fa:42:25:5a:e6:38:21:77: 38:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:76:3C:F6:BF:B9:2E:C9:57:23:2B:F1:F6:D4:5C:A9:AA:33:9F:2B X509v3 Authority Key Identifier: keyid:F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:d9:45:16:93:ad:3d:07:a5:98:41:b2:bb:de:30:67:cb:10: 83:ff:9b:09:6d:b1:ac:ea:df:d0:20:25:1f:4f:79:65:50:e4: 53:5f:83:84:95:82:2f:12:a0:93:36:cf:1e:ff:ab:e4:c6:4a: a4:b7:50:69:49:b2:61:6a:d5:28:cf:4d:ab:60:69:82:3e:9c: 54:f1:7d:23:70:a4:78:f0:f0:ad:36:f9:73:c8:f5:a4:50:e9: 2f:92:30:c8:ca:c8:58:98:07:47:44:11:ee:91:c4:87:4e:f8: aa:ca:2c:9b:12:d7:88:59:bc:ed:ef:b9:0b:c8:9e:22:70:1d: 37:eb:49:ed:2d:59:fd:28:ed:24:b7:18:c7:2f:97:c8:56:d2: 61:66:3c:17:1b:d4:d2:0c:04:64:44:47:c4:ab:c5:a9:72:27: 7a:a6:44:7a:0a:24:a3:df:a9:b5:7c:b3:75:6e:84:cd:b4:8b: 0e:34:82:3a:54:a6:fa:79:f1:83:7b:ab:b0:43:4e:50:d2:e1: d1:57:fc:8b:f3:b3:7d:13:23:49:e2:54:96:3e:b7:af:f7:93: 14:57:b9:e9:66:3d:cc:80:89:a2:19:ef:26:3f:a7:59:f5:9a: 3a:10:27:48:1b:57:cd:1d:fe:45:d2:d5:8f:ff:c1:38:62:9f: 09:0f:88:42 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODhDQTExMC8GA1UEBRMoRjYyNUU2Q0MwMzkwMjZGRjVCQzlENkJEQzQyRDhEMUMx OEFCRjMzQjAeFw0yNDA5MjMwNjM1MjlaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjEwYzMxLTY0NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlpwI/9xAllRNuT8v9VCjeguGqitXOSau+bsZCu9zQLFN4DphQ8Mp7crtjRjMn ZZYAtFQ+B1wxWG3HPr/M7ILgHygwdYCSCMk70lSdHIgVqtbjwoKACSctgAWpFY/s DeoKeKwiKjbAktazMQHfWmVuRR2sipSkasrwyL+itXRUrA7uwO6aaPv5BD6YNKt4 bD/6pNB4swTxh7M5UEDTTeC0+6KSlOIkZYn6Gfm7QaljlwbnzfBTmkXBg7/0nZtl p2Kob1DJc/t0u73h3yYgevPdQPkrMZOFz0Gr+NOm7bVoKrycFAE+4yJ8W/NxcSOF lJdUGyJtt8z6QiVa5jghdzixAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUO3Y89r+5 LslXIyvx9tRcqaoznyswHwYDVR0jBBgwFoAU9iXmzAOQJv9byda9xC2NHBir8zsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4OENBLzU2OTZFNzQ2MzQ2 NTExRUZBRjZERUI0RUM0RjlBRTAyLzlpWG16QU9RSnY5YnlkYTl4QzJOSEJpcjh6 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWlYbXpBT1FKdjlieWRhOXhDMk5IQmlyOHpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODhDQS81Njk2RTc0NjM0NjUxMUVGQUY2REVCNEVDNEY5QUUwMi8wNjM5OEU5Mjc5 NzYxMUVGQUQ1RENENkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd1iDANBgkqhkiG9w0BAQsFAAOCAQEAL9lFFpOtPQelmEGy u94wZ8sQg/+bCW2xrOrf0CAlH095ZVDkU1+DhJWCLxKgkzbPHv+r5MZKpLdQaUmy YWrVKM9Nq2Bpgj6cVPF9I3CkePDwrTb5c8j1pFDpL5IwyMrIWJgHR0QR7pHEh074 qsosmxLXiFm87e+5C8ieInAdN+tJ7S1Z/SjtJLcYxy+XyFbSYWY8FxvU0gwEZERH xKvFqXIneqZEegoko9+ptXyzdW6EzbSLDjSCOlSm+nnxg3ursENOUNLh0Vf8i/Oz fRMjSeJUlj63r/eTFFe56WY9zICJohnvJj+nWfWaOhAnSBtXzR3+RdLVj//BOGKf CQ+IQg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org