$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/7641B9AE12CD11EFAC15BB64C4F9AE02.roa File: 7641B9AE12CD11EFAC15BB64C4F9AE02.roa (raw, json) Hash identifier: M0DuUC9dZlW1rJ9Ex1QdPrWmmcntHnV78typE7HBTbE= Subject key identifier: 58:26:CC:E6:35:EF:46:D1:3B:01:A7:2E:2A:01:9F:D6:C8:4B:6E:27 Certificate issuer: /CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A Certificate serial: BE Authority key identifier: F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/7641B9AE12CD11EFAC15BB64C4F9AE02.roa Signing time: Wed 15 May 2024 15:11:54 +0000 ROA not before: Wed 15 May 2024 15:11:54 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9009 IP address blocks: 103.130.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A Validity Not Before: May 15 15:11:54 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6644d0b9-be85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:ba:c2:73:b9:24:be:b9:2e:50:fc:b8:01: 01:a8:1f:6e:6c:a7:59:bb:02:08:58:8b:a2:c4:6a: 98:cc:b6:ed:ed:15:1c:34:de:bb:30:89:4f:26:57: a4:fb:39:54:9b:d6:74:5e:90:69:8e:3a:fe:e6:47: e2:17:0c:14:87:fe:e7:54:18:dc:d9:ca:47:de:1c: 16:3a:ea:cd:67:98:bc:3f:d8:f7:0a:bb:2c:dd:46: 1a:76:42:b3:12:5b:a6:a1:4c:d9:ed:ff:67:25:e0: a9:ad:81:75:8d:c5:09:a6:bc:0e:88:47:c1:ad:16: bb:17:03:ab:65:e3:55:ea:fb:af:a3:cb:07:72:9f: 64:a4:45:d2:4e:1b:9a:2f:96:33:86:ff:67:ef:88: 55:40:91:ff:2d:fa:58:22:78:8c:4c:3c:c2:7c:ec: d8:de:be:97:08:c5:8b:75:11:13:51:6e:76:dd:18: 1a:46:5d:c8:f6:e1:db:78:df:42:b8:1d:a0:93:a8: ff:ee:7e:96:3a:ce:a5:93:34:fb:e7:14:73:02:69: 90:25:07:de:ed:dd:b2:dc:cf:5d:94:5e:a2:0c:a2: 1e:ec:c9:b2:48:98:8b:dd:45:70:1b:14:1f:c2:d7: 38:4c:e3:b1:84:f5:e3:f1:7e:5f:60:52:e5:5b:71: f7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:26:CC:E6:35:EF:46:D1:3B:01:A7:2E:2A:01:9F:D6:C8:4B:6E:27 X509v3 Authority Key Identifier: keyid:F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/7641B9AE12CD11EFAC15BB64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:eb:36:21:88:32:ef:e6:8d:a3:fb:32:9a:4a:c3:a2:19:4f: 28:af:30:41:38:42:65:7e:8c:70:11:ff:81:14:c7:1f:8d:19: d4:f2:6b:9a:08:42:b6:81:65:9d:ab:29:37:42:cb:d4:98:38: ec:98:e9:63:fc:fa:6b:fd:1a:8e:52:e5:10:24:bd:c2:11:fb: f7:5c:06:8c:a2:9a:b1:14:30:10:a9:f9:d6:8c:58:77:3f:63: af:cf:bb:57:16:dc:d6:fd:84:d2:47:bb:77:36:4e:97:b6:27: 4f:56:aa:bb:be:57:dc:86:30:c8:e9:0f:62:f2:98:6c:d1:1b: 00:d1:61:57:67:ee:fa:2b:96:91:30:b6:4d:54:16:73:ab:69: 21:ef:8a:b5:3a:f1:86:07:15:91:ce:b4:ad:56:bd:90:bb:0b: 64:47:2f:11:c3:f0:83:25:87:c1:82:3c:dc:e4:00:85:39:60: 19:ca:0c:81:db:4a:0a:99:28:10:1a:37:49:08:f8:2a:7a:bc: ce:59:bf:44:c9:34:9c:8c:bf:a2:dc:0d:a3:b3:08:b2:3b:2e: 80:94:f1:7c:22:c4:c3:90:c8:c3:44:b7:90:57:ba:6b:dc:ef: e0:69:44:70:80:df:5a:7b:9d:c3:ec:3c:63:6d:0a:f7:b8:59: 11:2b:69:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNkExMTAvBgNVBAUTKEY1NDU5Q0JBMzFGOTMzRjkwNzNCNTE0QzlDQkJFQzM0 RjZFRDJFNEEwHhcNMjQwNTE1MTUxMTU0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ0ZDBiOS1iZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z+6wnO5JL65LlD8uAEBqB9ubKdZuwIIWIuixGqYzLbt7RUcNN67MIlPJlek +zlUm9Z0XpBpjjr+5kfiFwwUh/7nVBjc2cpH3hwWOurNZ5i8P9j3Crss3UYadkKz ElumoUzZ7f9nJeCprYF1jcUJprwOiEfBrRa7FwOrZeNV6vuvo8sHcp9kpEXSThua L5Yzhv9n74hVQJH/LfpYIniMTDzCfOzY3r6XCMWLdRETUW523RgaRl3I9uHbeN9C uB2gk6j/7n6WOs6lkzT75xRzAmmQJQfe7d2y3M9dlF6iDKIe7MmySJiL3UVwGxQf wtc4TOOxhPXj8X5fYFLlW3H3xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgmzOY1 70bROwGnLioBn9bIS24nMB8GA1UdIwQYMBaAFPVFnLox+TP5BztRTJy77DT27S5K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU2QS80QzI4MUJCRTEx QTYxMUVFQjMzNDY5MjZDNEY5QUUwMi85VVdjdWpINU1fa0hPMUZNbkx2c05QYnRM a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVV2N1akg1TV9rSE8xRk1uTHZzTlBidExrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNkEvNEMyODFCQkUxMUE2MTFFRUIzMzQ2OTI2QzRGOUFFMDIvNzY0MUI5QUUx MkNEMTFFRkFDMTVCQjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngu4wDQYJKoZIhvcNAQELBQADggEBAI3rNiGIMu/mjaP7 MppKw6IZTyivMEE4QmV+jHAR/4EUxx+NGdTya5oIQraBZZ2rKTdCy9SYOOyY6WP8 +mv9Go5S5RAkvcIR+/dcBoyimrEUMBCp+daMWHc/Y6/Pu1cW3Nb9hNJHu3c2Tpe2 J09Wqru+V9yGMMjpD2LymGzRGwDRYVdn7vorlpEwtk1UFnOraSHvirU68YYHFZHO tK1WvZC7C2RHLxHD8IMlh8GCPNzkAIU5YBnKDIHbSgqZKBAaN0kI+Cp6vM5Zv0TJ NJyMv6LcDaOzCLI7LoCU8XwixMOQyMNEt5BXumvc7+BpRHCA31p7ncPsPGNtCve4 WREradk= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org