$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa File: 60E695B6C52A11EE80D54071C4F9AE02.roa (raw, json) Hash identifier: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM= Subject key identifier: 63:02:73:C1:3D:86:35:83:D0:F5:10:90:83:18:0D:5C:F7:4E:8E:4F Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 102C Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa Signing time: Thu 24 Oct 2024 17:55:33 +0000 ROA not before: Thu 24 Oct 2024 17:55:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132429 IP address blocks: 103.20.232.0/23 maxlen: 23 103.75.20.0/24 maxlen: 24 103.75.21.0/24 maxlen: 24 202.61.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4140 (0x102c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Oct 24 17:55:33 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a8a14-95d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:bf:72:ce:81:52:97:f9:36:b8:41:5f:84: 51:8f:0a:55:41:b7:a2:73:c7:f2:e1:36:b0:2f:ea: 63:fb:6f:f1:a6:14:c2:1a:cd:44:56:18:18:e6:e8: 76:1b:b5:ba:74:40:c7:7f:b2:21:48:fe:71:f0:2e: 61:26:87:a3:b1:99:8b:83:ec:ef:0e:5c:c0:7a:97: e4:58:bb:ff:a8:62:38:06:30:b4:b3:2c:4b:68:f5: b4:1e:ef:bf:f1:37:dd:a9:9f:4a:21:ac:37:aa:d9: d3:32:06:3b:e3:ab:4c:3c:b1:ac:3a:60:5a:8b:bb: fa:36:a7:b6:ff:18:0a:92:fb:97:92:d0:68:bf:05: 40:0b:f7:56:9d:33:0a:b9:dd:3c:e8:00:cb:47:24: c6:91:f7:b8:05:a9:c1:9f:ca:77:c9:a0:30:87:d1: c0:35:0f:f0:9b:af:56:5d:3f:f9:8e:5c:cf:26:57: d2:51:71:97:e0:e3:70:d4:06:a9:92:c9:13:4b:4b: 92:52:eb:0e:86:e1:2d:95:59:a3:f5:28:38:93:b7: ef:f4:37:f0:b2:96:42:ad:7a:3f:8f:c2:8e:cf:7b: 55:1a:50:af:e0:c5:77:9e:88:6f:1a:98:c6:50:e2: 6e:e8:38:de:da:19:a3:a5:ce:ee:41:cf:03:13:bf: c4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:02:73:C1:3D:86:35:83:D0:F5:10:90:83:18:0D:5C:F7:4E:8E:4F X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/60E695B6C52A11EE80D54071C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.232.0/23 103.75.20.0/23 202.61.106.0/23 Signature Algorithm: sha256WithRSAEncryption a3:d0:a7:0f:ca:3c:8b:5b:7f:a6:b8:63:0f:95:79:6b:bd:94: 19:b8:8a:4b:21:0b:35:08:cf:3b:09:2a:0f:16:01:dc:63:64: 6d:c5:a7:92:0e:93:55:9c:f8:10:c9:c7:b2:19:c6:17:04:17: 89:7e:fb:44:1c:9e:9d:6d:b0:4d:ea:0a:0f:74:41:6e:c3:fd: 12:c1:02:c3:5d:3e:b3:42:b0:b5:b8:9e:fa:de:cb:3b:3c:99: c9:8c:0d:df:14:f6:d5:fd:0e:9d:e2:8d:42:a9:0b:48:dd:40: b8:97:27:84:aa:47:32:51:e9:16:3b:1e:ca:5e:98:c6:b1:f4: d9:19:8f:9c:de:6a:9f:36:5b:0b:a8:66:bc:d4:5f:07:05:cc: 87:dd:75:3b:9c:fa:c3:d3:27:81:7b:fa:45:1b:a6:7d:07:c0: f0:bf:f9:d5:3e:38:5a:98:60:6e:46:ad:01:9e:cd:e1:67:1d: bb:6c:ce:91:19:f3:3a:c6:0e:1d:60:a5:68:4c:ef:4f:74:47: da:e7:5a:17:43:a3:2a:12:c0:ad:83:74:e2:9d:f9:c8:1a:8c: b1:a2:b0:59:48:8e:4e:28:09:6c:e8:c1:ff:8a:6d:2b:0f:36: 9d:5f:b2:12:2e:46:2d:10:bc:1b:f3:76:05:86:4e:2f:f2:46: 28:5c:80:9f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICECwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjQxMDI0MTc1NTMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhOGExNC05NWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApf6/cs6BUpf5NrhBX4RRjwpVQbeic8fy4TawL+pj+2/xphTCGs1EVhgY5uh2 G7W6dEDHf7IhSP5x8C5hJoejsZmLg+zvDlzAepfkWLv/qGI4BjC0syxLaPW0Hu+/ 8TfdqZ9KIaw3qtnTMgY746tMPLGsOmBai7v6Nqe2/xgKkvuXktBovwVAC/dWnTMK ud086ADLRyTGkfe4BanBn8p3yaAwh9HANQ/wm69WXT/5jlzPJlfSUXGX4ONw1Aap kskTS0uSUusOhuEtlVmj9Sg4k7fv9DfwspZCrXo/j8KOz3tVGlCv4MV3nohvGpjG UOJu6Dje2hmjpc7uQc8DE7/E4wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGMCc8E9 hjWD0PUQkIMYDVz3To5PMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUwOTYvMkZCQjQ0MEUzMzQ1MTFFOTk4QzU2NzNCQzRGOUFFMDIvNjBFNjk1QjZD NTJBMTFFRTgwRDU0MDcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnFOgDBAFnSxQDBAHKPWowDQYJKoZIhvcNAQELBQADggEB AKPQpw/KPItbf6a4Yw+VeWu9lBm4ikshCzUIzzsJKg8WAdxjZG3Fp5IOk1Wc+BDJ x7IZxhcEF4l++0Qcnp1tsE3qCg90QW7D/RLBAsNdPrNCsLW4nvreyzs8mcmMDd8U 9tX9Dp3ijUKpC0jdQLiXJ4SqRzJR6RY7HspemMax9NkZj5zeap82WwuoZrzUXwcF zIfddTuc+sPTJ4F7+kUbpn0HwPC/+dU+OFqYYG5GrQGezeFnHbtszpEZ8zrGDh1g pWhM7090R9rnWhdDoyoSwK2DdOKd+cgajLGisFlIjk4oCWzowf+KbSsPNp1fshIu Ri0QvBvzdgWGTi/yRihcgJ8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org