$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/931E0F7681C911EFA5B1D80BC4F9AE02.roa File: 931E0F7681C911EFA5B1D80BC4F9AE02.roa (raw, json) Hash identifier: 3+LMg/UqEn9I3nJe/StT1XRQjadAQ+o1wAjq5EdYwx0= Subject key identifier: 9F:49:AE:FF:F7:3D:80:09:BB:92:DF:8F:B7:62:6D:8F:C1:D1:51:C2 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0F38 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/931E0F7681C911EFA5B1D80BC4F9AE02.roa Signing time: Thu 03 Oct 2024 20:53:43 +0000 ROA not before: Thu 03 Oct 2024 20:53:43 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 17916 IP address blocks: 103.30.184.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3896 (0xf38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Oct 3 20:53:43 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66ff0457-4ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6a:e3:33:cc:a9:ee:cf:84:33:f5:56:c7:d5: e9:d1:bd:6d:c5:a9:a1:64:75:03:4f:6c:3f:69:ea: 7c:2c:db:54:25:90:29:12:f4:59:7c:f7:95:bb:16: a3:a0:b2:2b:f9:29:c3:86:a4:a2:b1:2c:fc:3c:11: ba:fd:73:57:19:7d:1d:7b:37:d4:24:21:66:0e:b5: 68:cb:0f:7d:c4:24:d2:df:18:d6:59:91:e0:8c:65: bf:17:e9:e0:34:a8:ee:bd:55:cc:82:93:2e:7e:65: 8a:23:15:96:a0:b4:69:fa:00:16:24:72:f3:66:fc: 19:c4:b7:dc:fa:bb:79:82:9c:72:76:70:bd:c1:b6: f7:d6:d2:74:01:07:44:8c:cb:77:79:b3:92:e7:f0: 00:d7:8f:6a:1e:af:e6:e7:59:39:87:79:33:89:4f: ce:64:83:f2:eb:ed:82:59:7b:29:3c:a8:0c:dd:ab: 6e:63:5a:4a:13:66:ff:ab:93:7f:fd:78:a3:67:8e: c0:01:09:7a:9f:2f:25:c3:e8:d4:74:81:50:fb:5e: 50:28:ed:9f:66:24:73:d2:13:c4:57:c2:49:3b:c0: 63:ea:92:aa:a8:8a:33:32:ab:9b:29:f3:69:63:fc: 61:10:71:3b:38:3a:f4:c2:6a:0e:44:23:f4:d5:b6: 13:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:49:AE:FF:F7:3D:80:09:BB:92:DF:8F:B7:62:6D:8F:C1:D1:51:C2 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/931E0F7681C911EFA5B1D80BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.184.0/23 Signature Algorithm: sha256WithRSAEncryption 01:10:6e:5f:e0:15:1c:27:79:62:56:27:e7:bf:89:8d:cf:61: c9:e3:78:e5:65:02:b5:4e:1e:e2:03:7c:65:8f:fa:99:2f:ec: 9d:2b:c5:6e:15:50:fb:38:8c:54:ad:01:72:b4:f8:ae:52:93: 70:33:9f:aa:25:43:1e:94:9c:4b:ac:cc:f5:85:99:d7:9f:ca: e9:fc:b7:83:2b:c7:3b:3e:4f:b8:a7:ac:54:b2:49:98:a9:fe: c9:ae:f2:df:bc:4a:03:62:73:90:ac:f1:06:b0:97:98:9c:ec: f4:0f:44:e3:eb:ab:cb:18:82:77:56:c2:1d:32:81:55:c4:30: 9d:5e:06:e4:07:41:16:a1:eb:3a:00:4e:31:62:2a:c8:07:1c: 8c:f3:d5:8e:24:ac:67:d8:5e:12:64:28:35:3b:b1:ed:1c:c9: 03:60:2d:05:b3:32:16:3d:e8:6f:0f:43:51:c2:48:65:ce:57: 67:18:7e:a8:83:b7:f5:8f:8f:a8:10:85:21:0c:2a:19:17:c3: 18:f3:85:e4:e8:83:ec:57:b5:d7:99:78:ec:87:c5:5e:e9:9a: 5b:96:33:35:02:82:f8:9c:67:87:84:f3:e3:01:48:56:6c:32: bf:5e:b8:d0:19:86:ff:5a:ca:8e:db:02:2d:c3:c6:2f:33:45: 1b:a3:84:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjQxMDAzMjA1MzQzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmZmMDQ1Ny00ZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGrjM8yp7s+EM/VWx9Xp0b1txamhZHUDT2w/aep8LNtUJZApEvRZfPeVuxaj oLIr+SnDhqSisSz8PBG6/XNXGX0dezfUJCFmDrVoyw99xCTS3xjWWZHgjGW/F+ng NKjuvVXMgpMufmWKIxWWoLRp+gAWJHLzZvwZxLfc+rt5gpxydnC9wbb31tJ0AQdE jMt3ebOS5/AA149qHq/m51k5h3kziU/OZIPy6+2CWXspPKgM3atuY1pKE2b/q5N/ /XijZ47AAQl6ny8lw+jUdIFQ+15QKO2fZiRz0hPEV8JJO8Bj6pKqqIozMqubKfNp Y/xhEHE7ODr0wmoORCP01bYTUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ9Jrv/3 PYAJu5Lfj7dibY/B0VHCMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvOTMxRTBGNzY4 MUM5MTFFRkE1QjFEODBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnHrgwDQYJKoZIhvcNAQELBQADggEBAAEQbl/gFRwneWJW J+e/iY3PYcnjeOVlArVOHuIDfGWP+pkv7J0rxW4VUPs4jFStAXK0+K5Sk3Azn6ol Qx6UnEuszPWFmdefyun8t4Mrxzs+T7inrFSySZip/smu8t+8SgNic5Cs8Qawl5ic 7PQPROPrq8sYgndWwh0ygVXEMJ1eBuQHQRah6zoATjFiKsgHHIzz1Y4krGfYXhJk KDU7se0cyQNgLQWzMhY96G8PQ1HCSGXOV2cYfqiDt/WPj6gQhSEMKhkXwxjzheTo g+xXtdeZeOyHxV7pmluWMzUCgvicZ4eE8+MBSFZsMr9euNAZhv9ayo7bAi3Dxi8z RRujhAA= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org