$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/69F009ECA6F411EFBE4D3A1DC4F9AE02.roa File: 69F009ECA6F411EFBE4D3A1DC4F9AE02.roa (raw, json) Hash identifier: im2kfbX7hi7WV0iPhgxdXTmxPQSsO9YjrTo+/s2tsXY= Subject key identifier: 70:BD:16:CE:24:0F:7D:21:5C:6D:BB:C0:06:63:AA:D4:54:78:A4:86 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 8C Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/69F009ECA6F411EFBE4D3A1DC4F9AE02.roa Signing time: Wed 20 Nov 2024 04:03:35 +0000 ROA not before: Wed 20 Nov 2024 04:03:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63150 IP address blocks: 103.219.192.0/24 maxlen: 24 103.219.193.0/24 maxlen: 24 103.219.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Nov 20 04:03:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673d5f97-12b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:05:a6:d4:3d:85:fa:ef:e4:4f:71:36:82: c4:b0:38:82:9d:36:dd:39:21:5b:ac:00:df:5c:fe: 27:2d:59:2b:fb:25:13:fb:c5:ae:d7:70:99:fc:3e: 24:f1:ad:e2:b3:ec:e7:f4:26:6f:6c:67:74:43:0f: 6c:df:e6:35:94:7e:4e:cd:d8:6c:6c:5f:df:cd:3d: 67:cd:c8:2e:08:09:01:58:34:d5:78:4f:1e:f5:c4: d6:0e:8e:de:77:dc:40:98:d4:76:fd:98:fb:ee:f9: b0:1f:da:b0:9c:d3:f0:6e:47:3d:8a:57:0a:5e:db: 38:8c:d0:4f:96:b5:eb:9b:4b:9b:98:ad:7e:0e:0c: 36:d7:5c:bc:61:f9:8d:48:52:5d:ce:20:29:e8:c0: c1:49:83:ed:23:5a:f0:19:e7:d7:89:53:a0:ae:5f: 46:70:c6:9e:ba:99:f7:d6:20:b6:00:d3:be:c4:b0: 71:74:0f:85:74:22:4f:d5:51:d3:d8:0d:4b:2f:b3: 97:af:8f:2b:ea:30:0f:52:e8:d4:ae:42:82:f7:a5: 0b:f5:65:b6:ea:26:5c:8d:db:4a:2e:b8:43:19:a1: 3c:a6:22:bb:23:5c:24:aa:ec:86:98:3e:72:d9:22: 8e:31:81:31:31:e2:9d:17:45:da:f2:71:3e:84:6c: bb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:BD:16:CE:24:0F:7D:21:5C:6D:BB:C0:06:63:AA:D4:54:78:A4:86 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/69F009ECA6F411EFBE4D3A1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.192.0-103.219.194.255 Signature Algorithm: sha256WithRSAEncryption b8:44:3a:3f:8b:5e:3e:22:33:da:df:0d:62:f7:3b:7f:b8:05: 20:7e:57:50:bc:4a:fb:b3:d5:14:57:2c:06:86:3d:b4:a3:3d: ec:d6:8b:5d:74:8f:ba:55:cb:a5:88:f4:a6:5b:a9:9f:a9:22: c9:1f:de:b7:9c:69:6b:a8:09:5c:91:2d:8e:8a:df:2a:1e:10: a6:f7:a1:7d:41:c8:fe:23:69:b5:d1:1d:ec:72:84:af:f9:31: cb:c6:0a:2e:55:2b:03:f7:d9:1f:62:0b:ff:47:3e:5f:ac:02: 19:ff:78:aa:fc:35:6f:96:e1:39:31:fa:03:6a:d7:a6:e2:b4: 0e:87:3b:45:4f:74:90:a2:1a:6d:e2:23:88:b6:bb:36:8e:ce: a0:30:27:0b:3e:60:06:e1:5d:e6:8b:4a:ab:04:d0:d1:ea:38: 2f:81:f3:a4:3b:87:ce:6c:6f:27:6a:bc:b8:58:61:0d:cb:08: aa:c7:92:76:15:fe:9a:ee:03:ca:77:4d:8c:f1:ff:ba:67:d5: f3:f1:a2:5f:3f:23:ce:48:0b:d9:de:10:a1:43:e6:c2:bc:60: 24:8b:7e:21:a1:b3:77:2b:64:b0:8a:19:7f:db:4b:db:09:4f: 7b:5c:de:83:a6:f4:4a:c8:50:cd:3f:82:e4:55:ad:42:3f:b0: cb:e2:f0:3f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjQxMTIwMDQwMzM1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNkNWY5Ny0xMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ4FptQ9hfrv5E9xNoLEsDiCnTbdOSFbrADfXP4nLVkr+yUT+8Wu13CZ/D4k 8a3is+zn9CZvbGd0Qw9s3+Y1lH5OzdhsbF/fzT1nzcguCAkBWDTVeE8e9cTWDo7e d9xAmNR2/Zj77vmwH9qwnNPwbkc9ilcKXts4jNBPlrXrm0ubmK1+Dgw211y8YfmN SFJdziAp6MDBSYPtI1rwGefXiVOgrl9GcMaeupn31iC2ANO+xLBxdA+FdCJP1VHT 2A1LL7OXr48r6jAPUujUrkKC96UL9WW26iZcjdtKLrhDGaE8piK7I1wkquyGmD5y 2SKOMYExMeKdF0Xa8nE+hGy74wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHC9Fs4k D30hXG27wAZjqtRUeKSGMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzNDcvQzNFNzIxOTBGOUE5MTFFRUE4MkE3OTFBQzRGOUFFMDIvNjlGMDA5RUNB NkY0MTFFRkJFNEQzQTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBmfbwAMEAGfbwjANBgkqhkiG9w0BAQsFAAOCAQEAuEQ6 P4tePiIz2t8NYvc7f7gFIH5XULxK+7PVFFcsBoY9tKM97NaLXXSPulXLpYj0plup n6kiyR/et5xpa6gJXJEtjorfKh4QpvehfUHI/iNptdEd7HKEr/kxy8YKLlUrA/fZ H2IL/0c+X6wCGf94qvw1b5bhOTH6A2rXpuK0Doc7RU90kKIabeIjiLa7No7OoDAn Cz5gBuFd5otKqwTQ0eo4L4HzpDuHzmxvJ2q8uFhhDcsIqseSdhX+mu4DyndNjPH/ umfV8/GiXz8jzkgL2d4QoUPmwrxgJIt+IaGzdytksIoZf9tL2wlPe1zeg6b0SshQ zT+C5FWtQj+wy+LwPw== -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:15 2024 by rpki-client on console-ams.rpki-client.org