$ rpki-client -vvf rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa File: B7F93F86E33F11EB9832A354C4F9AE02.roa (raw, json) Hash identifier: z0fyXCO60lkejMfyEE4mQL9l0P7nQ3XY65wfTKmQOmg= Subject key identifier: 5F:DA:EF:30:D5:DC:A2:B0:D3:E7:ED:58:B1:B7:07:43:B9:5C:DB:FA Certificate issuer: /CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Certificate serial: 13A8 Authority key identifier: 93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa Signing time: Sun 30 Jun 2024 17:37:38 +0000 ROA not before: Sun 30 Jun 2024 17:37:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 54574 IP address blocks: 103.117.100.0/22 maxlen: 22 103.117.100.0/22 maxlen: 24 103.117.100.0/24 maxlen: 24 103.117.101.0/24 maxlen: 24 103.117.102.0/24 maxlen: 24 103.117.103.0/24 maxlen: 24 2403:18c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:49:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5032 (0x13a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C56FB/serialNumber=93C058A0DF1773012459164B5A80D85372C7E292 Validity Not Before: Jun 30 17:37:38 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668197e2-b4f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:69:7e:8b:0e:25:d6:35:32:5c:c2:10:fd:92: 5f:ee:56:11:d0:da:69:c6:3c:c8:57:48:6f:7c:83: 2f:7e:c0:5f:e7:f3:75:73:6d:9a:3e:9b:1c:50:96: 8b:21:cf:79:e0:da:79:a9:9b:e0:70:47:e4:4a:19: fe:3c:76:f1:32:5b:72:78:7d:05:02:67:97:42:14: 81:c1:a0:35:5b:7f:a8:65:0b:37:4a:39:8d:b3:db: fd:4e:8d:f9:b5:a7:69:26:8d:42:96:c1:5d:5d:dc: 9b:d2:43:97:14:e2:dc:49:f4:78:74:9c:0c:27:ab: 7d:c1:d6:04:e3:bd:4e:50:8b:5e:a6:7a:50:e8:77: 87:bb:f6:2c:60:72:38:dc:3a:99:ee:1f:d2:ef:b1: f1:2d:0a:27:d5:6c:21:54:f4:d0:3e:b4:d8:5b:c2: 52:c5:46:35:ee:54:d4:03:15:3d:5b:2a:06:91:5a: f9:03:9b:48:a0:d9:9b:df:a7:54:76:27:84:c6:6c: e8:74:a6:3f:bd:ed:71:b3:d1:cd:56:43:5c:53:27: 78:d5:85:ba:d2:40:96:e7:76:99:3c:1c:39:68:7c: b3:d3:76:9e:ea:2a:de:09:81:cd:cc:60:80:aa:2b: 1d:a3:69:14:8d:a7:c5:45:e9:73:0b:4a:9d:f9:0f: bf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:DA:EF:30:D5:DC:A2:B0:D3:E7:ED:58:B1:B7:07:43:B9:5C:DB:FA X509v3 Authority Key Identifier: keyid:93:C0:58:A0:DF:17:73:01:24:59:16:4B:5A:80:D8:53:72:C7:E2:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/k8BYoN8XcwEkWRZLWoDYU3LH4pI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8BYoN8XcwEkWRZLWoDYU3LH4pI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C56FB/E9F51046783A11E8907D521AC4F9AE02/B7F93F86E33F11EB9832A354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.100.0/22 IPv6: 2403:18c0::/32 Signature Algorithm: sha256WithRSAEncryption 0c:a1:b0:57:79:33:de:c8:0a:41:9f:fa:d5:61:e0:a5:3e:56: 05:b4:a4:14:de:9f:66:d4:0a:b7:ad:d9:fb:5d:79:92:26:da: ed:f4:be:51:1c:65:e6:a7:e5:8c:fd:06:36:16:64:3e:d9:b1: 73:11:8d:5d:60:ea:b2:69:4c:97:dd:8f:33:0d:ea:e0:4a:8a: 8f:23:13:b0:a1:be:61:0f:d8:d7:d1:f5:1d:c6:dd:78:9c:25: 03:97:4e:c3:f1:ab:91:5a:83:8c:f3:37:29:98:9a:fb:c9:77: b9:db:94:49:e8:07:d8:3e:dc:58:cf:32:f5:42:4f:6a:4e:cb: 6f:09:ac:1c:eb:8e:a1:08:9c:aa:17:18:92:10:42:f5:09:fd: d7:79:60:57:fd:51:7f:25:d2:ce:a7:5d:fd:9a:18:05:68:f9: 07:eb:27:49:e8:bd:56:ae:51:af:3c:12:51:27:52:b7:ca:64: aa:32:7d:ea:47:7d:64:4e:db:df:a6:13:27:30:df:c5:54:d8: 63:db:8e:70:51:62:f2:9d:70:2d:2f:b3:b5:38:8f:2a:a3:aa: 83:12:ba:3d:24:8b:c3:23:44:c5:8d:d3:36:fb:c7:ca:0e:a4: 95:5a:f7:91:ad:c8:8d:02:b4:a2:1f:3a:7c:a7:d7:0e:ea:9b: 5d:51:13:d2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICE6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU2RkIxMTAvBgNVBAUTKDkzQzA1OEEwREYxNzczMDEyNDU5MTY0QjVBODBEODUz NzJDN0UyOTIwHhcNMjQwNjMwMTczNzM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxOTdlMi1iNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02l+iw4l1jUyXMIQ/ZJf7lYR0NppxjzIV0hvfIMvfsBf5/N1c22aPpscUJaL Ic954Np5qZvgcEfkShn+PHbxMltyeH0FAmeXQhSBwaA1W3+oZQs3SjmNs9v9To35 tadpJo1ClsFdXdyb0kOXFOLcSfR4dJwMJ6t9wdYE471OUItepnpQ6HeHu/YsYHI4 3DqZ7h/S77HxLQon1WwhVPTQPrTYW8JSxUY17lTUAxU9WyoGkVr5A5tIoNmb36dU dieExmzodKY/ve1xs9HNVkNcUyd41YW60kCW53aZPBw5aHyz03ae6ireCYHNzGCA qisdo2kUjafFRelzC0qd+Q+/9wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF/a7zDV 3KKw0+ftWLG3B0O5XNv6MB8GA1UdIwQYMBaAFJPAWKDfF3MBJFkWS1qA2FNyx+KS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTZGQi9FOUY1MTA0Njc4 M0ExMUU4OTA3RDUyMUFDNEY5QUUwMi9rOEJZb044WGN3RWtXUlpMV29EWVUzTEg0 cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4QllvTjhYY3dFa1dSWkxXb0RZVTNMSDRwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU2RkIvRTlGNTEwNDY3ODNBMTFFODkwN0Q1MjFBQzRGOUFFMDIvQjdGOTNGODZF MzNGMTFFQjk4MzJBMzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndWQwDQQCAAIwBwMFACQDGMAwDQYJKoZIhvcNAQELBQAD ggEBAAyhsFd5M97ICkGf+tVh4KU+VgW0pBTen2bUCret2ftdeZIm2u30vlEcZean 5Yz9BjYWZD7ZsXMRjV1g6rJpTJfdjzMN6uBKio8jE7ChvmEP2NfR9R3G3XicJQOX TsPxq5Fag4zzNymYmvvJd7nblEnoB9g+3FjPMvVCT2pOy28JrBzrjqEInKoXGJIQ QvUJ/dd5YFf9UX8l0s6nXf2aGAVo+QfrJ0novVauUa88ElEnUrfKZKoyfepHfWRO 29+mEycw38VU2GPbjnBRYvKdcC0vs7U4jyqjqoMSuj0ki8MjRMWN0zb7x8oOpJVa 95GtyI0CtKIfOnyn1w7qm11RE9I= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org