$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa File: CD9B103E08DD11ED830BEB5CC4F9AE02.roa (raw, json) Hash identifier: aWVOZdqCRpaD5wVJp7PQwGvmT4WvDuk+Zr3vN2zui6Q= Subject key identifier: 57:E8:72:23:67:24:B7:20:09:2C:64:CC:E8:04:10:75:56:06:77:F4 Certificate issuer: /CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Certificate serial: 01E8 Authority key identifier: 25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa Signing time: Sat 13 Jul 2024 04:04:51 +0000 ROA not before: Sat 13 Jul 2024 04:04:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149984 IP address blocks: 103.189.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Validity Not Before: Jul 13 04:04:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6691fce2-cadf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3b:35:3e:ca:42:a2:00:36:e1:a0:f2:f7:3c: 6d:a9:06:40:d5:0d:6c:f3:94:64:6c:2a:c7:da:a6: a9:dc:0c:6c:16:66:22:3d:33:27:b3:a6:73:8b:4e: 9a:ff:cc:8b:e9:09:d8:7f:92:dd:f2:d5:64:00:bb: ec:19:d8:8a:40:03:68:65:be:6d:25:35:2d:88:ee: 9f:dc:3f:de:14:89:e0:76:bf:06:af:d5:f2:87:3f: c9:a6:33:7d:a3:fe:f0:1b:37:ee:bc:bb:6a:9b:49: f0:2a:0f:d0:45:8d:08:35:82:53:5e:22:1b:b6:a9: 7b:eb:f4:e9:4f:16:c4:6e:90:30:43:92:b8:5a:3e: 0a:32:df:d6:c1:1f:da:da:d5:30:e5:a5:b6:7d:7e: 2e:11:83:9a:b8:5f:f9:c0:5f:d9:ce:a3:cc:99:6f: 9f:23:5d:68:58:ff:da:01:06:81:29:28:3a:e9:6c: a9:b0:d2:ce:ee:cd:b0:52:ac:7f:45:95:4f:61:d8: 07:c3:18:56:f9:90:8c:fa:94:92:5b:d1:83:a8:90: a6:1b:d7:ba:43:78:de:4a:8b:05:92:08:ae:07:ca: 7c:92:b6:d1:c5:cf:c0:f2:99:3c:72:84:4b:16:24: 6d:61:7d:83:28:f2:8a:c5:14:55:fa:0c:7b:97:49: 72:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E8:72:23:67:24:B7:20:09:2C:64:CC:E8:04:10:75:56:06:77:F4 X509v3 Authority Key Identifier: keyid:25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/CD9B103E08DD11ED830BEB5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.2.0/24 Signature Algorithm: sha256WithRSAEncryption c5:1b:ad:e2:82:be:5a:55:df:0b:ea:28:b9:de:ed:f1:9a:3f: e1:58:4d:80:e2:04:a9:41:d0:44:c4:b5:29:da:18:1e:f4:59: 1b:e8:2d:0f:8a:c0:73:14:b6:9f:a3:ea:14:62:fd:95:94:3d: 49:99:51:b9:c4:cc:e8:79:51:f7:b6:65:42:39:e5:e7:84:aa: 97:fd:57:90:5f:33:83:c7:76:a5:5c:3e:3a:18:ff:99:00:3f: fe:e6:9c:21:b6:88:d7:a7:f0:30:eb:c4:38:f8:97:4f:62:50: 85:46:ae:64:f4:76:72:6d:b3:6b:e3:f2:34:43:c6:ba:51:de: bb:ee:98:fe:8f:da:d7:cd:a6:6a:20:ae:de:3d:f8:bd:f3:5b: 63:ad:b9:e0:90:b6:18:ac:c5:16:b2:c4:22:01:36:98:b7:d9: 9e:33:12:bd:93:00:40:ea:26:c0:b9:f9:ac:01:d8:e0:14:d8: cc:2e:af:90:19:10:df:61:22:ae:49:bd:99:f3:f4:a7:6f:9b: 5e:a4:4f:41:dd:ae:db:14:6c:ff:75:2f:8c:b1:4c:23:06:9f: c0:73:9c:11:c9:6a:2a:3f:8d:44:67:6a:4f:eb:74:9f:43:f7: 93:0f:54:bb:10:90:e9:74:fb:88:6c:92:31:e3:04:c0:34:6b: 02:74:bb:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKDI1MjkzQjBBNzAzNkM4MTNBOUNEMDIwMDZERkMyOTBB QUYyNTMyNzQwHhcNMjQwNzEzMDQwNDUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxZmNlMi1jYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjs1PspCogA24aDy9zxtqQZA1Q1s85RkbCrH2qap3AxsFmYiPTMns6Zzi06a /8yL6QnYf5Ld8tVkALvsGdiKQANoZb5tJTUtiO6f3D/eFIngdr8Gr9Xyhz/JpjN9 o/7wGzfuvLtqm0nwKg/QRY0INYJTXiIbtql76/TpTxbEbpAwQ5K4Wj4KMt/WwR/a 2tUw5aW2fX4uEYOauF/5wF/ZzqPMmW+fI11oWP/aAQaBKSg66WypsNLO7s2wUqx/ RZVPYdgHwxhW+ZCM+pSSW9GDqJCmG9e6Q3jeSosFkgiuB8p8krbRxc/A8pk8coRL FiRtYX2DKPKKxRRV+gx7l0lycQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFfociNn JLcgCSxkzOgEEHVWBnf0MB8GA1UdIwQYMBaAFCUpOwpwNsgTqc0CAG38KQqvJTJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9EM0FEMDdFMjA4 RDkxMUVEQkU5MkM5NTRDNEY5QUUwMi9KU2s3Q25BMnlCT3B6UUlBYmZ3cENxOGxN blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTazdDbkEyeUJPcHpRSUFiZndwQ3E4bE1uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBNzcvRDNBRDA3RTIwOEQ5MTFFREJFOTJDOTU0QzRGOUFFMDIvQ0Q5QjEwM0Uw OEREMTFFRDgzMEJFQjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQIwDQYJKoZIhvcNAQELBQADggEBAMUbreKCvlpV3wvq KLne7fGaP+FYTYDiBKlB0ETEtSnaGB70WRvoLQ+KwHMUtp+j6hRi/ZWUPUmZUbnE zOh5Ufe2ZUI55eeEqpf9V5BfM4PHdqVcPjoY/5kAP/7mnCG2iNen8DDrxDj4l09i UIVGrmT0dnJts2vj8jRDxrpR3rvumP6P2tfNpmogrt49+L3zW2OtueCQthisxRay xCIBNpi32Z4zEr2TAEDqJsC5+awB2OAU2Mwur5AZEN9hIq5JvZnz9Kdvm16kT0Hd rtsUbP91L4yxTCMGn8BznBHJaio/jURnak/rdJ9D95MPVLsQkOl0+4hskjHjBMA0 awJ0u6c= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org