$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa File: 7B9B345895F711EBB7B18033C4F9AE02.roa (raw, json) Hash identifier: CNF2bQbvx54fbqlbE6d9eIkZgGR9D+Dhe0VNtxI5HFs= Subject key identifier: 18:BD:21:1C:9E:02:34:AC:D1:A0:A6:ED:65:AA:63:43:0D:44:6C:9C Certificate issuer: /CN=A91C7169/serialNumber=900B870C80C0EB3F8468F53E7672FA741752C5D5 Certificate serial: 17FE Authority key identifier: 90:0B:87:0C:80:C0:EB:3F:84:68:F5:3E:76:72:FA:74:17:52:C5:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa Signing time: Sat 14 Sep 2024 17:34:57 +0000 ROA not before: Sat 14 Sep 2024 17:34:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136950 IP address blocks: 103.71.152.0/22 maxlen: 22 103.71.152.0/24 maxlen: 24 103.71.153.0/24 maxlen: 24 103.234.72.0/22 maxlen: 22 103.234.73.0/24 maxlen: 24 103.234.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.crl rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6142 (0x17fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7169/serialNumber=900B870C80C0EB3F8468F53E7672FA741752C5D5 Validity Not Before: Sep 14 17:34:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e5c941-9258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a5:06:ae:a5:c9:e7:02:5c:82:16:b7:21:be: 64:e8:67:20:82:02:5e:65:b2:93:d0:17:a6:2a:98: a4:12:2f:98:62:60:07:27:9d:8d:1b:34:cb:c9:11: 94:16:38:41:7d:49:e8:cf:89:91:2b:d7:c7:5d:03: 24:3c:bd:98:31:c2:3e:2f:08:d5:92:c5:f9:fc:8d: 48:04:47:f0:8d:f7:53:d1:e6:11:d0:b5:14:11:eb: a8:2f:b8:d1:0e:76:3d:1e:d6:2d:32:de:1b:1a:38: 4f:a3:99:93:ee:a1:e8:0b:70:d1:ab:00:0d:ee:29: ec:d7:2a:db:51:96:2f:d5:c7:e3:1b:fb:97:e2:51: 33:64:09:24:ad:71:4e:81:ed:2a:a8:2d:97:ce:9e: 3c:bf:0a:bd:00:84:c1:88:9e:60:81:e5:1e:27:8f: f2:21:97:ad:7b:77:8e:5b:1a:8c:e1:b0:00:58:be: 41:6e:25:aa:fd:87:2f:29:c3:60:72:da:cf:b8:b1: 84:32:14:6d:76:4c:e9:17:1f:03:69:1c:03:f2:a2: 8a:86:a3:97:88:af:16:66:a2:86:f7:52:6f:34:6f: d6:ea:7c:6b:d1:06:d3:16:39:be:47:33:56:a4:37: 48:b4:19:7b:d4:e8:75:6e:3e:53:45:2f:c2:b2:e4: 4f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:BD:21:1C:9E:02:34:AC:D1:A0:A6:ED:65:AA:63:43:0D:44:6C:9C X509v3 Authority Key Identifier: keyid:90:0B:87:0C:80:C0:EB:3F:84:68:F5:3E:76:72:FA:74:17:52:C5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/kAuHDIDA6z-EaPU-dnL6dBdSxdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAuHDIDA6z-EaPU-dnL6dBdSxdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7169/502608B4AD9011E79267FF0FC4F9AE02/7B9B345895F711EBB7B18033C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.152.0/22 103.234.72.0/22 Signature Algorithm: sha256WithRSAEncryption 35:14:66:89:23:56:fb:63:f1:47:89:c5:1d:db:d1:46:ed:ec: 6d:42:9e:d3:f8:e1:32:a2:c6:6a:bf:2e:6c:35:2a:0b:14:5d: 78:e0:6d:87:7d:55:97:94:01:09:a1:4c:ab:1d:78:15:c4:0b: b1:17:52:83:a2:21:91:c1:99:fe:98:ca:6d:97:50:bd:12:17: 7e:a0:e2:0c:83:b0:dc:96:d5:7e:08:68:98:89:54:99:fd:5d: 36:13:93:ce:a4:b4:2a:dc:85:10:b5:d5:57:9c:bb:a9:74:8d: d7:35:1f:f3:84:c0:e3:cc:98:c1:6f:5f:a0:23:16:98:f7:38: 79:a7:aa:48:16:86:22:a3:5e:53:03:d0:22:7a:72:9d:90:f5: 7b:61:db:d3:8f:21:1b:b6:75:ed:27:c4:b7:bc:76:4d:4c:87: 5c:9d:f1:63:2d:c5:a1:bf:39:c0:83:72:24:a1:b6:b1:a5:0f: fa:fe:79:19:32:26:71:12:df:e5:4b:c4:17:0a:63:e8:07:59: d0:95:50:cd:ae:7b:3c:9b:b8:d9:70:8d:d8:b0:e5:48:79:f3: 9d:03:87:5e:45:33:f5:86:a0:8b:be:38:29:5d:83:8e:d1:74: 6d:8a:be:a0:8a:f3:80:b2:f5:03:90:1e:34:90:9f:52:6d:8a: c7:20:b6:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxNjkxMTAvBgNVBAUTKDkwMEI4NzBDODBDMEVCM0Y4NDY4RjUzRTc2NzJGQTc0 MTc1MkM1RDUwHhcNMjQwOTE0MTczNDU3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU1Yzk0MS05MjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaUGrqXJ5wJcgha3Ib5k6GcgggJeZbKT0BemKpikEi+YYmAHJ52NGzTLyRGU FjhBfUnoz4mRK9fHXQMkPL2YMcI+LwjVksX5/I1IBEfwjfdT0eYR0LUUEeuoL7jR DnY9HtYtMt4bGjhPo5mT7qHoC3DRqwAN7ins1yrbUZYv1cfjG/uX4lEzZAkkrXFO ge0qqC2Xzp48vwq9AITBiJ5ggeUeJ4/yIZete3eOWxqM4bAAWL5BbiWq/YcvKcNg ctrPuLGEMhRtdkzpFx8DaRwD8qKKhqOXiK8WZqKG91JvNG/W6nxr0QbTFjm+RzNW pDdItBl71Oh1bj5TRS/CsuRP2wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBi9IRye AjSs0aCm7WWqY0MNRGycMB8GA1UdIwQYMBaAFJALhwyAwOs/hGj1PnZy+nQXUsXV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzE2OS81MDI2MDhCNEFE OTAxMUU3OTI2N0ZGMEZDNEY5QUUwMi9rQXVIRElEQTZ6LUVhUFUtZG5MNmRCZFN4 ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBdUhESURBNnotRWFQVS1kbkw2ZEJkU3hkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzcxNjkvNTAyNjA4QjRBRDkwMTFFNzkyNjdGRjBGQzRGOUFFMDIvN0I5QjM0NTg5 NUY3MTFFQkI3QjE4MDMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnR5gDBAJn6kgwDQYJKoZIhvcNAQELBQADggEBADUUZokj Vvtj8UeJxR3b0Ubt7G1CntP44TKixmq/Lmw1KgsUXXjgbYd9VZeUAQmhTKsdeBXE C7EXUoOiIZHBmf6Yym2XUL0SF36g4gyDsNyW1X4IaJiJVJn9XTYTk86ktCrchRC1 1Vecu6l0jdc1H/OEwOPMmMFvX6AjFpj3OHmnqkgWhiKjXlMD0CJ6cp2Q9Xth29OP IRu2de0nxLe8dk1Mh1yd8WMtxaG/OcCDciShtrGlD/r+eRkyJnES3+VLxBcKY+gH WdCVUM2uezybuNlwjdiw5Uh5850Dh15FM/WGoIu+OCldg47RdG2KvqCK84Cy9QOQ HjSQn1Jtiscgtgg= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:06 2024 by rpki-client on console-ams.rpki-client.org