$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa File: A850C476026E11EBB2E0E72FC4F9AE02.roa (raw, json) Hash identifier: KYPMpugh4wkqi8c9+YZ4KJfTituHSP1OZb9rD6oRk2Y= Subject key identifier: 2B:36:D8:9B:76:B5:84:CF:41:A3:C7:3C:42:D7:E4:51:8B:72:A2:64 Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0F20 Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa Signing time: Tue 24 Sep 2024 17:55:46 +0000 ROA not before: Tue 24 Sep 2024 17:55:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3872 (0xf20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Sep 24 17:55:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2fd22-93d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ac:fc:1c:7c:70:08:90:fc:ca:1b:de:5f:c6: ad:6e:c3:4b:26:55:39:6e:51:5b:27:32:56:d6:18: 5f:36:7f:6f:e4:40:52:7a:3c:ac:6e:e6:b2:30:25: 0e:30:dd:f8:18:f2:8c:1f:cb:60:12:86:f9:a3:2f: c6:bb:d9:ee:03:d6:4b:5d:7d:f0:98:84:ac:eb:13: ed:1e:03:3b:5e:57:a6:d4:15:c7:b9:64:13:07:fa: 2a:f0:08:60:bf:92:69:63:1f:ab:3a:be:4a:dc:62: d8:05:56:6c:2e:be:d4:a9:84:5a:26:4b:39:9f:f6: a5:f2:cc:cd:12:3a:85:aa:2e:7f:43:ed:0d:43:60: 90:27:4c:ca:fb:a9:be:6f:74:11:77:c1:2b:6c:eb: f5:ad:13:2b:2b:58:01:80:a1:9f:57:1a:d6:2e:17: 78:14:e0:1e:d0:7f:7c:a6:a8:b8:5d:66:c9:c9:36: 66:ec:c9:18:a2:ea:d5:71:af:61:f9:82:bb:4a:95: 88:13:48:2f:b2:75:83:77:6b:59:7a:6a:4b:b0:69: 01:ed:84:b7:7e:96:02:c9:cf:a1:ae:e8:05:2a:69: 5d:00:20:0f:8c:b2:5e:89:7b:24:a4:24:c7:5d:d1: 2f:f5:ea:3b:79:18:f3:de:d6:66:4e:24:5f:f6:10: b7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:36:D8:9B:76:B5:84:CF:41:A3:C7:3C:42:D7:E4:51:8B:72:A2:64 X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/A850C476026E11EBB2E0E72FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 92:a1:41:4d:8d:72:1e:73:b2:b1:da:c0:10:85:84:5a:29:fa: 75:48:6a:94:0c:a6:59:c4:dd:22:eb:3e:60:2e:d4:c6:22:f3: 0f:63:c7:0f:a0:21:70:93:39:ad:33:ee:10:d3:67:fd:17:e8: 4f:bb:13:51:35:1d:e6:1d:17:95:65:1f:60:d4:ca:94:f7:bc: ec:02:46:10:04:69:40:79:20:4a:22:a8:d5:34:0a:d5:42:2b: ca:63:a3:31:b4:8c:2a:90:13:81:4c:af:0b:67:c1:de:fd:e0: 57:f3:f3:38:82:3c:f6:54:0d:ad:ca:31:6e:c4:9f:8f:b3:ea: 49:a0:f0:8b:43:49:d6:02:4c:1a:db:a2:f9:ff:ff:ef:42:2f: 68:66:6f:72:2b:2e:93:8a:54:38:82:52:26:67:0d:f9:bb:56: 48:ce:ac:bb:85:c0:7e:0b:dd:e0:e5:7e:fd:1e:ac:d9:3f:29: 8e:fa:e1:70:6d:d3:47:ef:62:9d:2b:c3:68:b4:f5:6f:5b:5d: 68:a3:09:9e:75:ed:e7:9b:fa:72:15:79:9b:91:e2:95:84:41: 63:93:77:24:90:6d:3f:75:dd:ae:97:d7:55:39:31:45:7f:5c: ed:41:12:66:3f:9c:96:86:2c:a9:c7:27:8d:bb:f5:9b:33:8e: c5:82:16:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjQwOTI0MTc1NTQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZmQyMi05M2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKz8HHxwCJD8yhveX8atbsNLJlU5blFbJzJW1hhfNn9v5EBSejysbuayMCUO MN34GPKMH8tgEob5oy/Gu9nuA9ZLXX3wmISs6xPtHgM7Xlem1BXHuWQTB/oq8Ahg v5JpYx+rOr5K3GLYBVZsLr7UqYRaJks5n/al8szNEjqFqi5/Q+0NQ2CQJ0zK+6m+ b3QRd8ErbOv1rRMrK1gBgKGfVxrWLhd4FOAe0H98pqi4XWbJyTZm7MkYourVca9h +YK7SpWIE0gvsnWDd2tZempLsGkB7YS3fpYCyc+hrugFKmldACAPjLJeiXskpCTH XdEv9eo7eRjz3tZmTiRf9hC3mQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCs22Jt2 tYTPQaPHPELX5FGLcqJkMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvQTg1MEM0NzYw MjZFMTFFQkIyRTBFNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAJKhQU2N ch5zsrHawBCFhFop+nVIapQMplnE3SLrPmAu1MYi8w9jxw+gIXCTOa0z7hDTZ/0X 6E+7E1E1HeYdF5VlH2DUypT3vOwCRhAEaUB5IEoiqNU0CtVCK8pjozG0jCqQE4FM rwtnwd794Ffz8ziCPPZUDa3KMW7En4+z6kmg8ItDSdYCTBrbovn//+9CL2hmb3Ir LpOKVDiCUiZnDfm7VkjOrLuFwH4L3eDlfv0erNk/KY764XBt00fvYp0rw2i09W9b XWijCZ517eeb+nIVeZuR4pWEQWOTdySQbT913a6X11U5MUV/XO1BEmY/nJaGLKnH J4279ZszjsWCFrY= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org