$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/61A85BEE21CF11EBA0C85857C4F9AE02.roa File: 61A85BEE21CF11EBA0C85857C4F9AE02.roa (raw, json) Hash identifier: A3Tpub6p9P/++fbZ37k+IAk9EhP0OOzrI3+cFHFK9sU= Subject key identifier: 93:32:0F:CE:0B:42:46:86:88:1F:B8:E6:27:80:83:83:CE:CE:90:DD Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0F22 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/61A85BEE21CF11EBA0C85857C4F9AE02.roa Signing time: Tue 24 Sep 2024 17:55:47 +0000 ROA not before: Tue 24 Sep 2024 17:55:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138538 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3874 (0xf22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 24 17:55:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2fd23-65e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:af:b1:94:d6:96:38:b2:6b:a2:90:ba:34:b8: d8:08:ae:73:83:d3:88:57:01:ac:71:82:50:77:42: d9:1e:ef:08:46:68:63:21:91:39:27:d6:98:4f:3f: 4e:00:af:a5:8f:2f:54:c9:54:96:31:54:8d:0d:7c: 07:84:ec:1a:7f:c8:a3:30:48:a6:68:3a:39:ab:3a: cd:b6:0b:99:d6:61:ae:e1:36:e9:23:27:af:65:98: 4f:a4:c3:dd:e5:9e:c8:27:14:dc:eb:45:61:5a:2f: 40:e6:c7:d5:42:bd:ed:c2:a2:68:2a:0e:d2:fd:1b: 2a:d1:6d:94:6d:23:9d:cd:82:7e:b7:73:ad:b5:4d: d8:e8:72:71:ba:f1:bb:ef:9c:6a:6c:64:f6:7d:3e: 42:7f:10:b5:fb:bc:9a:dd:e4:a7:31:f5:02:58:e3: bc:11:7f:6f:c4:22:ba:55:4e:ac:9e:0b:70:f8:22: 78:22:b0:3b:e6:22:fa:5c:79:f9:f1:05:da:15:56: b8:24:63:e0:04:f0:0a:cc:61:ba:42:34:7f:52:42: dd:02:a4:5c:7a:ba:ee:36:f9:66:41:37:99:88:c3: c8:11:6a:28:ab:8a:51:d4:83:8b:df:97:2f:7f:8d: 7c:2b:46:b0:56:7e:21:98:a6:a0:90:ad:4d:24:08: 15:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:32:0F:CE:0B:42:46:86:88:1F:B8:E6:27:80:83:83:CE:CE:90:DD X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/61A85BEE21CF11EBA0C85857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 08:47:5d:0f:3f:25:44:45:3c:6e:c3:9b:6c:41:9b:8c:9c:20: 1a:35:aa:79:ae:14:c1:71:9d:20:1c:ae:00:7e:0c:cb:61:4c: db:22:04:2d:78:6e:24:1e:d3:86:14:c8:37:66:3b:9c:ec:9d: d6:9f:13:80:17:4c:0f:92:b9:dc:87:d8:87:8d:26:75:00:8e: e4:8a:56:ae:3a:ce:e5:0d:b2:46:b2:3b:8d:4d:1c:ee:42:64: 99:95:0b:43:7b:fc:a8:53:ad:1b:97:38:ba:80:8b:2b:1c:c6: 29:3d:4d:1a:bc:3b:1b:f3:2c:58:24:6e:59:0c:3c:4a:5f:98: 08:e3:dd:d0:ff:12:f6:b8:e9:ac:c3:d1:bd:53:7f:91:cd:f4: a7:71:26:62:f6:ae:e3:2f:5f:1c:4e:07:11:d7:1e:f5:5f:15: 9a:2e:5d:0f:b9:0f:6e:16:5b:3c:f2:e4:80:fc:56:57:6e:3e: d2:69:78:18:35:a8:2b:05:9d:96:58:f3:c6:e9:eb:d1:0d:cc: 9b:01:55:d9:40:1a:b5:ff:01:bc:23:0a:53:44:33:80:40:2b: 40:96:fb:58:3e:45:e6:51:5c:bc:bc:50:f4:a3:1c:9d:3c:fe: 73:5b:b6:d0:70:9d:8e:f5:b4:a0:b3:f1:71:5b:9b:bc:21:3e: f9:dd:4b:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjQwOTI0MTc1NTQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZmQyMy02NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAma+xlNaWOLJropC6NLjYCK5zg9OIVwGscYJQd0LZHu8IRmhjIZE5J9aYTz9O AK+ljy9UyVSWMVSNDXwHhOwaf8ijMEimaDo5qzrNtguZ1mGu4TbpIyevZZhPpMPd 5Z7IJxTc60VhWi9A5sfVQr3twqJoKg7S/Rsq0W2UbSOdzYJ+t3OttU3Y6HJxuvG7 75xqbGT2fT5CfxC1+7ya3eSnMfUCWOO8EX9vxCK6VU6sngtw+CJ4IrA75iL6XHn5 8QXaFVa4JGPgBPAKzGG6QjR/UkLdAqRcerruNvlmQTeZiMPIEWooq4pR1IOL35cv f418K0awVn4hmKagkK1NJAgVnwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJMyD84L QkaGiB+45ieAg4POzpDdMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvNjFBODVCRUUy MUNGMTFFQkEwQzg1ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAAhHXQ8/ JURFPG7Dm2xBm4ycIBo1qnmuFMFxnSAcrgB+DMthTNsiBC14biQe04YUyDdmO5zs ndafE4AXTA+SudyH2IeNJnUAjuSKVq46zuUNskayO41NHO5CZJmVC0N7/KhTrRuX OLqAiyscxik9TRq8OxvzLFgkblkMPEpfmAjj3dD/Eva46azD0b1Tf5HN9KdxJmL2 ruMvXxxOBxHXHvVfFZouXQ+5D24WWzzy5ID8VlduPtJpeBg1qCsFnZZY88bp69EN zJsBVdlAGrX/AbwjClNEM4BAK0CW+1g+ReZRXLy8UPSjHJ08/nNbttBwnY71tKCz 8XFbm7whPvndSxg= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org