$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa File: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (raw, json) Hash identifier: KdODWWy5DaOqxG/rlhfUZW4he8HC+tvuYe4LwAo61T4= Subject key identifier: 3A:45:77:BA:64:5F:8C:80:4B:B8:AB:C6:DC:BE:33:F6:7F:35:4E:70 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 02BB Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa Signing time: Tue 09 Jul 2024 02:44:29 +0000 ROA not before: Tue 09 Jul 2024 02:44:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 125 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Jul 9 02:44:29 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668ca40d-07f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bc:a3:3b:f0:02:93:79:a0:99:05:00:10:a6: a9:6a:53:ee:5b:42:fa:d3:35:21:55:b8:31:7f:35: 79:4f:da:8f:dc:cf:0f:29:7a:75:36:3d:1f:32:83: b6:79:3b:11:65:a7:e5:dd:db:23:93:15:f1:95:cc: 07:96:3a:2b:17:6c:12:32:3f:cc:93:81:21:ad:1d: 16:1a:b5:16:2e:29:23:90:d0:26:ef:47:cb:42:7b: de:53:07:8f:f2:fa:e4:18:0a:b4:4a:d5:37:21:0a: d5:32:04:da:e9:a2:be:92:2d:0f:16:95:00:f9:04: eb:02:d8:d1:42:9c:52:67:16:4b:f7:dd:84:28:7b: f5:1f:42:78:60:65:6f:df:b3:f1:fe:a4:17:08:63: b9:93:6d:2b:c5:6d:01:b8:c5:63:67:14:54:15:9e: a3:ed:ad:cd:fd:a7:d6:f9:4c:78:0b:ff:07:9f:77: f0:c6:d5:c4:ba:0d:2e:1a:f2:d2:c4:23:2a:af:b8: cc:f0:67:ad:63:32:9c:da:57:bc:c8:93:d2:c2:45: f7:34:01:a1:43:65:4c:c5:3d:80:60:b4:cc:4a:53: 10:3d:03:be:26:d8:61:47:ef:3a:6e:62:cf:1a:75: 04:ab:92:e7:d1:1d:5d:29:6f:74:cb:13:0d:50:e0: 6b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:45:77:BA:64:5F:8C:80:4B:B8:AB:C6:DC:BE:33:F6:7F:35:4E:70 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption ac:75:c8:e1:b5:5a:4b:7f:5e:3b:6b:3f:6b:25:8f:42:9f:78: 16:c2:97:52:68:0c:3c:19:37:0a:9e:fe:d5:07:70:09:b0:e2: 63:a7:e9:28:33:6d:eb:22:35:10:0d:22:c9:fd:04:a0:1e:c9: 88:8e:c5:f5:2f:60:b4:0b:1b:19:aa:ee:eb:5c:86:f7:2b:1e: de:a5:b5:c7:4a:f9:cc:b6:ab:bd:37:f4:02:21:dd:b6:33:3b: a4:11:54:d0:90:bf:91:f8:58:3c:d4:b7:64:24:e7:7e:04:d9: c3:66:01:29:d7:69:40:83:9a:9d:28:34:79:3d:e6:54:0b:da: fd:29:d3:3a:49:cc:d2:fa:ce:ea:fe:90:d0:56:c4:ed:63:16: b1:3b:c7:41:c3:22:a9:eb:eb:cd:47:74:19:90:1f:41:f3:b5: f6:e5:1e:0c:df:3e:42:fe:39:94:fd:91:60:23:c7:41:44:5f: be:c9:de:cd:59:03:e1:af:5c:9a:be:07:1a:85:20:41:72:7f: 44:da:9b:b3:99:1c:bb:2d:5b:5d:6c:15:45:26:f6:58:3b:99: 1c:01:99:96:a4:a9:29:f2:dc:7d:52:67:3b:aa:e9:47:9e:e5: 4f:13:0e:93:7f:07:fd:71:69:46:2f:dd:41:eb:e4:40:af:d6: bd:5f:51:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjQwNzA5MDI0NDI5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjYTQwZC0wN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzryjO/ACk3mgmQUAEKapalPuW0L60zUhVbgxfzV5T9qP3M8PKXp1Nj0fMoO2 eTsRZafl3dsjkxXxlcwHljorF2wSMj/Mk4EhrR0WGrUWLikjkNAm70fLQnveUweP 8vrkGAq0StU3IQrVMgTa6aK+ki0PFpUA+QTrAtjRQpxSZxZL992EKHv1H0J4YGVv 37Px/qQXCGO5k20rxW0BuMVjZxRUFZ6j7a3N/afW+Ux4C/8Hn3fwxtXEug0uGvLS xCMqr7jM8GetYzKc2le8yJPSwkX3NAGhQ2VMxT2AYLTMSlMQPQO+JthhR+86bmLP GnUEq5Ln0R1dKW90yxMNUOBrSQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDpFd7pk X4yAS7irxty+M/Z/NU5wMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvQUJCMUVFNjRC NEVEMTFFQ0JBM0QwMTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnI9kDBABn6OAwDQYJKoZIhvcNAQELBQADggEBAKx1yOG1 Wkt/XjtrP2slj0KfeBbCl1JoDDwZNwqe/tUHcAmw4mOn6SgzbesiNRANIsn9BKAe yYiOxfUvYLQLGxmq7utchvcrHt6ltcdK+cy2q7039AIh3bYzO6QRVNCQv5H4WDzU t2Qk534E2cNmASnXaUCDmp0oNHk95lQL2v0p0zpJzNL6zur+kNBWxO1jFrE7x0HD Iqnr681HdBmQH0HztfblHgzfPkL+OZT9kWAjx0FEX77J3s1ZA+GvXJq+BxqFIEFy f0Tam7OZHLstW11sFUUm9lg7mRwBmZakqSny3H1SZzuq6Uee5U8TDpN/B/1xaUYv 3UHr5ECv1r1fUVA= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:50 2024 by rpki-client on console-ams.rpki-client.org