$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa File: 9DF5B38CE0D011ECAF88A30DC4F9AE02.roa (raw, json) Hash identifier: mXA6CTErg0wxJdZBq3q6wmtLNI7KWR6GhtBTn2JOB3w= Subject key identifier: C3:13:32:F6:26:10:86:54:AF:80:D1:95:DF:BB:02:1B:33:04:7F:B0 Certificate issuer: /CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72 Certificate serial: 05D8 Authority key identifier: FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa Signing time: Fri 08 Nov 2024 22:41:52 +0000 ROA not before: Fri 08 Nov 2024 22:41:52 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136778 IP address blocks: 103.144.218.0/23 maxlen: 23 103.144.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.crl rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1496 (0x5d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53EC/serialNumber=FADC9764B209F81CF82933226A0669A32A4EDD72 Validity Not Before: Nov 8 22:41:52 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672e93b0-7438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:92:f3:eb:09:dc:0a:73:5a:b0:f8:96:81:96: 50:be:91:e7:a1:8e:b7:ed:76:b2:16:37:f2:ba:30: 74:ca:d2:58:4d:b7:2e:ff:68:8e:6d:32:7c:93:19: ed:ff:4b:e9:b8:32:a0:5c:89:34:55:a8:67:e7:67: 5a:c3:67:4c:9b:fd:a5:68:bc:c7:a6:3f:64:7d:90: 60:c5:ab:89:bd:5c:96:32:c7:2a:70:d8:ee:4c:8e: c4:09:7e:ba:f6:0f:e0:e5:a4:b6:e9:73:fe:10:f4: fd:39:d8:c4:f0:d7:07:ed:5e:f2:21:c0:fe:21:4b: 2a:88:49:22:4b:82:41:d4:6a:fb:6c:58:8d:3e:4d: 2b:47:21:f4:b7:9f:33:22:3d:f2:c7:82:af:c0:54: 82:c1:b9:b7:e8:af:4d:b0:ad:ff:01:b4:5a:f6:c6: 32:09:74:ae:41:aa:06:c7:4b:c2:08:3b:c1:e0:28: fb:12:25:59:58:d1:a7:a7:e2:fc:ab:c2:11:c7:88: 21:c2:d8:01:c5:d0:cf:26:88:a9:11:cd:18:88:4f: fd:e9:5f:2d:de:22:df:33:fa:50:6c:be:d1:ea:c6: 4d:bd:b3:e3:ac:dc:30:3b:6d:8c:2b:e4:2b:a3:31: 02:08:bf:15:a6:48:3c:41:8a:df:3b:81:ae:ec:bc: 60:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:13:32:F6:26:10:86:54:AF:80:D1:95:DF:BB:02:1B:33:04:7F:B0 X509v3 Authority Key Identifier: keyid:FA:DC:97:64:B2:09:F8:1C:F8:29:33:22:6A:06:69:A3:2A:4E:DD:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/-tyXZLIJ-Bz4KTMiagZpoypO3XI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tyXZLIJ-Bz4KTMiagZpoypO3XI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53EC/203CBB64968711EB8AE8132FC4F9AE02/9DF5B38CE0D011ECAF88A30DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.218.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:7c:99:52:b7:74:8d:70:8a:4f:0f:16:c0:cf:c3:1f:01:42: 60:c5:04:49:7c:21:69:b1:4b:10:f4:87:96:b3:35:43:e4:4f: 8b:ba:58:b9:e6:d8:1b:f0:9e:24:7a:55:59:fc:48:03:04:28: e0:df:45:47:c3:e1:c7:c0:b7:37:05:8c:03:17:9d:22:24:b6: 08:37:b6:90:6c:c4:2a:81:82:bc:5e:ee:7f:09:4b:09:b9:57: e6:44:14:25:13:d6:e9:d3:be:1c:5e:c7:bb:e1:7f:97:6e:ac: b8:78:63:8f:b7:ef:a5:3a:4a:76:b6:95:34:a3:da:2d:bc:da: 8e:d5:2a:12:ea:95:dd:df:68:11:4a:61:50:ad:54:53:d4:a4: fd:db:08:e5:1a:1e:ef:1f:1f:41:82:32:d8:fb:7b:a1:cf:d9: 68:0e:ac:11:53:e4:6f:39:09:46:21:9e:a1:d1:d4:b2:63:22: e4:d2:0e:94:aa:6f:f7:37:b3:29:45:18:38:be:07:3d:11:c7: a3:73:b1:cc:9c:3b:7e:15:04:25:76:dd:ce:71:53:36:a9:ec: f4:bf:77:63:9c:b9:df:55:30:13:09:ed:21:63:86:69:1f:d0: f5:8a:85:bc:c9:bf:28:7d:3e:0b:9c:c4:f2:2b:51:67:91:75: 05:47:26:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRUMxMTAvBgNVBAUTKEZBREM5NzY0QjIwOUY4MUNGODI5MzMyMjZBMDY2OUEz MkE0RURENzIwHhcNMjQxMTA4MjI0MTUyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlOTNiMC03NDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopLz6wncCnNasPiWgZZQvpHnoY637XayFjfyujB0ytJYTbcu/2iObTJ8kxnt /0vpuDKgXIk0Vahn52daw2dMm/2laLzHpj9kfZBgxauJvVyWMscqcNjuTI7ECX66 9g/g5aS26XP+EPT9OdjE8NcH7V7yIcD+IUsqiEkiS4JB1Gr7bFiNPk0rRyH0t58z Ij3yx4KvwFSCwbm36K9NsK3/AbRa9sYyCXSuQaoGx0vCCDvB4Cj7EiVZWNGnp+L8 q8IRx4ghwtgBxdDPJoipEc0YiE/96V8t3iLfM/pQbL7R6sZNvbPjrNwwO22MK+Qr ozECCL8Vpkg8QYrfO4Gu7LxgNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMMTMvYm EIZUr4DRld+7AhszBH+wMB8GA1UdIwQYMBaAFPrcl2SyCfgc+CkzImoGaaMqTt1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNFQy8yMDNDQkI2NDk2 ODcxMUVCOEFFODEzMkZDNEY5QUUwMi8tdHlYWkxJSi1CejRLVE1pYWdacG95cE8z WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eVhaTElKLUJ6NEtUTWlhZ1pwb3lwTzNYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUzRUMvMjAzQ0JCNjQ5Njg3MTFFQjhBRTgxMzJGQzRGOUFFMDIvOURGNUIzOENF MEQwMTFFQ0FGODhBMzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkNowDQYJKoZIhvcNAQELBQADggEBAD58mVK3dI1wik8P FsDPwx8BQmDFBEl8IWmxSxD0h5azNUPkT4u6WLnm2BvwniR6VVn8SAMEKODfRUfD 4cfAtzcFjAMXnSIktgg3tpBsxCqBgrxe7n8JSwm5V+ZEFCUT1unTvhxex7vhf5du rLh4Y4+376U6Sna2lTSj2i282o7VKhLqld3faBFKYVCtVFPUpP3bCOUaHu8fH0GC Mtj7e6HP2WgOrBFT5G85CUYhnqHR1LJjIuTSDpSqb/c3sylFGDi+Bz0Rx6Nzscyc O34VBCV23c5xUzap7PS/d2Ocud9VMBMJ7SFjhmkf0PWKhbzJvyh9PgucxPIrUWeR dQVHJtY= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:52 2024 by rpki-client on console-ams.rpki-client.org