$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa File: 99667AD4F83211ED97101D26C4F9AE02.roa (raw, json) Hash identifier: /nDMz4Pz2U+zhmiQ5RBk7WsimK68dDcy3QsRRkTPKlM= Subject key identifier: 7F:C8:30:52:43:B7:E7:BF:BD:50:76:0A:AC:B7:4D:4F:7D:3F:97:9C Certificate issuer: /CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Certificate serial: 011A Authority key identifier: C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa Signing time: Sun 03 Nov 2024 00:33:55 +0000 ROA not before: Sun 03 Nov 2024 00:33:55 +0000 ROA not after: Sat 01 Mar 2025 00:00:00 +0000 asID: 58701 IP address blocks: 103.20.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Validity Not Before: Nov 3 00:33:55 2024 GMT Not After : Mar 1 00:00:00 2025 GMT Subject: CN=6726c4f3-06bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:ec:11:43:18:65:6b:68:dc:ed:1d:0f:3d: f5:af:70:df:b2:a5:dd:d4:aa:4a:8e:80:87:1e:cb: 30:76:63:5b:47:86:a7:52:91:ab:76:6a:d3:3e:6c: e8:6a:d0:59:d4:bb:63:a7:ba:fc:97:c8:63:3f:89: d1:13:65:83:91:6d:30:60:3f:a8:97:a5:79:d6:9a: 1f:e4:49:b4:c4:24:0b:36:e8:35:0e:39:18:0a:98: a5:8d:cb:c1:fe:e2:c6:87:05:88:13:15:a7:06:1f: 52:31:2d:8d:d3:7a:81:2b:9e:d6:1e:ab:3b:df:91: 66:4f:3d:7a:4d:95:52:06:7e:cc:a6:e9:53:65:ac: 4d:4f:32:a7:3e:90:79:be:b9:9f:af:98:06:fa:44: 8d:9b:9d:34:e8:df:8a:5e:f4:22:c5:85:fe:df:0d: 76:1d:9d:0b:b4:58:19:b0:7a:01:a1:46:5b:6f:89: 2b:e3:a9:87:fd:2e:d6:01:0f:4e:10:42:30:5d:15: 7d:86:41:cb:67:56:0d:d0:7a:9a:14:77:7e:65:24: 8a:35:96:87:7b:95:0c:9d:ce:4c:b7:63:f3:d8:5c: 40:c4:07:64:8a:22:04:7e:b5:53:88:47:26:d0:5d: 4a:4b:3d:ba:5c:4c:a6:df:0a:62:71:89:6a:be:52: 13:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C8:30:52:43:B7:E7:BF:BD:50:76:0A:AC:B7:4D:4F:7D:3F:97:9C X509v3 Authority Key Identifier: keyid:C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/99667AD4F83211ED97101D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.89.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:8a:ff:f2:93:3e:c4:b7:0e:28:c4:8a:01:e1:4b:98:eb:85: 90:7e:52:af:9d:08:f1:56:10:07:25:80:77:96:9d:b8:b8:50: a2:7c:a4:e3:fa:b7:0a:82:f2:27:84:a3:28:09:9f:0a:e7:8e: 44:5c:be:a5:2a:9b:76:2a:f7:9e:00:17:8d:7a:e2:0f:66:93: 00:1e:76:a9:b3:e5:9b:29:e0:d0:6a:ee:0a:d9:96:e1:24:25: c6:9a:5e:12:5f:c3:ca:64:95:a9:1e:0e:9d:84:c2:47:a5:9d: f7:ba:7d:5a:1d:da:fa:57:38:9a:2c:f1:ad:09:2c:a1:6a:0a: d2:67:fc:77:1c:f5:14:0f:0a:98:37:01:f2:62:75:db:cb:dd: 71:82:82:be:8f:db:96:c5:b7:6e:2e:5c:55:6d:10:c0:52:fc: 70:19:64:68:8b:46:32:c7:ee:94:92:aa:d4:a8:d0:9f:2c:e6: 6b:da:b9:80:52:ff:07:39:56:5f:bc:96:05:33:90:18:62:cc: 63:62:4b:b9:90:3b:fc:e7:e3:cd:5c:c0:9e:17:8f:82:dd:4c: 7a:1d:49:70:72:e3:5d:5c:e7:99:88:22:b1:49:68:b9:c0:f4: 00:2b:27:e0:03:cb:f2:e1:88:cb:7a:16:0f:ff:e2:83:d8:35: 2d:87:f6:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKEM5Mzc1M0E5QUFBMkE4NkU1NkNBNEVBMEMzRkY4NTdD MzBFMzQyMjgwHhcNMjQxMTAzMDAzMzU1WhcNMjUwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YzRmMy0wNmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hPsEUMYZWto3O0dDz31r3DfsqXd1KpKjoCHHsswdmNbR4anUpGrdmrTPmzo atBZ1Ltjp7r8l8hjP4nRE2WDkW0wYD+ol6V51pof5Em0xCQLNug1DjkYCpiljcvB /uLGhwWIExWnBh9SMS2N03qBK57WHqs735FmTz16TZVSBn7MpulTZaxNTzKnPpB5 vrmfr5gG+kSNm5006N+KXvQixYX+3w12HZ0LtFgZsHoBoUZbb4kr46mH/S7WAQ9O EEIwXRV9hkHLZ1YN0HqaFHd+ZSSKNZaHe5UMnc5Mt2Pz2FxAxAdkiiIEfrVTiEcm 0F1KSz26XEym3wpicYlqvlITNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH/IMFJD t+e/vVB2Cqy3TU99P5ecMB8GA1UdIwQYMBaAFMk3U6mqoqhuVspOoMP/hXww40Io MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi95VGRUcWFxaXFHNVd5azZnd18tRmZERGpR aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lUZFRxYXFpcUc1V3lrNmd3Xy1GZkREalFpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3MTAvMTgyMjlBODY4MjZCMTFFQ0ExMUJBNTJCQzRGOUFFMDIvOTk2NjdBRDRG ODMyMTFFRDk3MTAxRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFFkwDQYJKoZIhvcNAQELBQADggEBAFyK//KTPsS3DijE igHhS5jrhZB+Uq+dCPFWEAclgHeWnbi4UKJ8pOP6twqC8ieEoygJnwrnjkRcvqUq m3Yq954AF4164g9mkwAedqmz5Zsp4NBq7grZluEkJcaaXhJfw8pklakeDp2Ewkel nfe6fVod2vpXOJos8a0JLKFqCtJn/Hcc9RQPCpg3AfJiddvL3XGCgr6P25bFt24u XFVtEMBS/HAZZGiLRjLH7pSSqtSo0J8s5mvauYBS/wc5Vl+8lgUzkBhizGNiS7mQ O/zn481cwJ4Xj4LdTHodSXBy411c55mIIrFJaLnA9AArJ+ADy/LhiMt6Fg//4oPY NS2H9j8= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org