$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A1732A0E24CA11EF93486579C4F9AE02.roa File: A1732A0E24CA11EF93486579C4F9AE02.roa (raw, json) Hash identifier: c1fiRMTzx+sKc+PUXDGG2MhU2IceNjiS5ZTGcmsSFDc= Subject key identifier: 65:96:62:15:55:10:AB:F1:3E:11:A3:8A:6E:6A:82:6A:3A:1A:68:C2 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 52 Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A1732A0E24CA11EF93486579C4F9AE02.roa Signing time: Wed 09 Oct 2024 06:20:24 +0000 ROA not before: Wed 09 Oct 2024 06:20:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139352 IP address blocks: 103.55.52.0/24 maxlen: 24 103.55.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Oct 9 06:20:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670620a7-c79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:83:3c:77:cc:a9:30:3e:01:73:7e:c3:82: c4:48:85:1c:23:57:8e:b9:51:e3:c6:71:70:81:c9: a6:17:ee:ea:eb:01:e5:69:8d:cc:eb:23:55:01:d0: 8c:da:31:1b:ec:9f:86:e5:03:1d:e4:a2:e7:23:18: 72:ea:54:18:fe:a1:80:38:ca:fe:93:6a:15:be:1f: 6a:97:6f:70:32:0e:ca:ce:be:c7:9f:d2:4a:67:91: 7f:d2:0b:07:db:a3:cf:61:04:67:06:1b:6c:9f:98: 0f:53:48:35:a9:19:63:08:d2:fc:59:e6:f0:25:68: 7a:3e:76:1f:9d:49:1e:bc:31:36:b0:bc:0d:87:36: 10:ee:a0:5f:48:81:76:64:7f:39:8c:7e:b5:d6:66: ee:7f:90:63:c7:6e:11:fe:e3:05:b5:4d:19:80:04: a9:ae:c1:00:74:76:52:99:6f:0e:71:f8:b3:3d:68: 4b:07:78:70:3a:93:61:50:9a:93:db:5a:e0:f1:2f: c5:d1:77:37:3f:c7:50:8b:49:97:66:18:21:ce:ef: fd:15:bc:f4:b0:c6:93:86:10:51:ac:92:77:7e:39: 2f:c8:3c:c0:3e:dc:6a:74:e6:49:95:ac:f2:97:6d: 96:15:3b:d3:9e:37:b5:d4:de:b2:ad:81:df:a1:57: c6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:96:62:15:55:10:AB:F1:3E:11:A3:8A:6E:6A:82:6A:3A:1A:68:C2 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A1732A0E24CA11EF93486579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.52.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:d7:7e:ba:8c:95:3a:0d:b3:ab:90:43:ed:68:43:36:28:7e: 6f:4a:98:5c:33:97:9c:fa:96:9b:87:3e:e4:0f:24:46:7c:97: 42:2f:7a:83:ce:2a:69:3b:7e:c3:78:be:cb:81:3b:c7:df:59: 10:ec:9e:ac:22:2f:4d:ab:f5:44:16:9a:f4:9b:7b:65:42:6b: 33:23:2b:b6:16:54:cc:08:bd:54:fc:f7:68:51:1f:45:89:37: c0:cb:83:cc:93:21:e7:e4:4d:1b:1b:da:52:5a:39:1b:f8:ac: 17:34:24:65:f3:7d:49:04:28:1f:ca:eb:73:fe:59:2b:f1:0b: bc:43:4d:f0:20:46:f8:a3:5e:e1:11:f4:d9:a9:4a:f6:52:cf: 06:31:13:36:b0:70:4f:9b:6d:fc:db:70:c3:a3:4f:2f:ce:d6: 95:7d:e7:b2:32:f9:04:67:c8:94:37:f8:ba:ef:3b:a8:a0:a6: 21:f1:df:37:17:f1:0d:bf:ec:7d:df:df:8c:f6:9c:37:d5:91: b8:35:3d:77:03:12:19:c3:d1:d5:dc:90:53:0d:91:08:95:44: 75:90:0b:7e:a6:8f:e8:07:54:b9:60:65:06:3c:68:3c:27:f5: fc:ad:17:56:c4:63:07:cf:d3:25:e0:9b:66:32:f2:90:b4:d0: 12:26:53:86 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDEwMDkwNjIwMjRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyMGE3LWM3OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2z4M8d8ypMD4Bc37DgsRIhRwjV465UePGcXCByaYX7urrAeVpjczrI1UB0Iza MRvsn4blAx3koucjGHLqVBj+oYA4yv6TahW+H2qXb3AyDsrOvsef0kpnkX/SCwfb o89hBGcGG2yfmA9TSDWpGWMI0vxZ5vAlaHo+dh+dSR68MTawvA2HNhDuoF9IgXZk fzmMfrXWZu5/kGPHbhH+4wW1TRmABKmuwQB0dlKZbw5x+LM9aEsHeHA6k2FQmpPb WuDxL8XRdzc/x1CLSZdmGCHO7/0VvPSwxpOGEFGsknd+OS/IPMA+3Gp05kmVrPKX bZYVO9OeN7XU3rKtgd+hV8ZvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZZZiFVUQ q/E+EaOKbmqCajoaaMIwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9BMTczMkEwRTI0 Q0ExMUVGOTM0ODY1NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWc3NDANBgkqhkiG9w0BAQsFAAOCAQEAT9d+uoyVOg2zq5BD 7WhDNih+b0qYXDOXnPqWm4c+5A8kRnyXQi96g84qaTt+w3i+y4E7x99ZEOyerCIv Tav1RBaa9Jt7ZUJrMyMrthZUzAi9VPz3aFEfRYk3wMuDzJMh5+RNGxvaUlo5G/is FzQkZfN9SQQoH8rrc/5ZK/ELvENN8CBG+KNe4RH02alK9lLPBjETNrBwT5tt/Ntw w6NPL87WlX3nsjL5BGfIlDf4uu87qKCmIfHfNxfxDb/sfd/fjPacN9WRuDU9dwMS GcPR1dyQUw2RCJVEdZALfqaP6AdUuWBlBjxoPCf1/K0XVsRjB8/TJeCbZjLykLTQ EiZThg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org