$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/ABA6DCF0030F11EFB12D8A18C4F9AE02.roa File: ABA6DCF0030F11EFB12D8A18C4F9AE02.roa (raw, json) Hash identifier: HE0CwiBUoR42Ac8HkzfJLJ/ETIx9kfwRBCLdGKiPhXc= Subject key identifier: 92:B9:C9:EC:AE:71:E4:00:FF:9B:C7:BC:2B:E0:0A:8E:70:BE:DC:CB Certificate issuer: /CN=A91CAE04/serialNumber=B362437AB67D290C5CDFEF2F62B77EDD8A9FFA44 Certificate serial: 92 Authority key identifier: B3:62:43:7A:B6:7D:29:0C:5C:DF:EF:2F:62:B7:7E:DD:8A:9F:FA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/ABA6DCF0030F11EFB12D8A18C4F9AE02.roa Signing time: Mon 03 Jun 2024 08:41:24 +0000 ROA not before: Mon 03 Jun 2024 08:41:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151350 IP address blocks: 103.209.74.0/23 maxlen: 24 2401:2a0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.crl rsync://rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAE04/serialNumber=B362437AB67D290C5CDFEF2F62B77EDD8A9FFA44 Validity Not Before: Jun 3 08:41:24 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665d81b3-fc74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:92:b2:a5:a7:c4:45:b8:41:60:e1:09:e1:6f: 0f:dd:f3:7c:8e:4a:18:e1:59:ca:b3:5c:5e:ee:89: a7:dc:ce:9b:2a:8b:31:41:ca:7b:d8:0a:a3:f2:47: a9:72:97:78:bc:fa:f0:9f:5c:92:8b:b4:ca:9d:df: 7b:5b:b5:86:4a:46:25:6e:83:a5:b6:c4:9f:7a:2e: b0:6e:78:28:6f:61:6f:d0:c2:25:7f:f0:2c:63:76: bc:7d:d2:81:4b:33:ed:de:dd:24:fd:27:b2:bf:38: 3b:70:39:9c:37:80:d3:66:4c:5f:dc:d1:43:8d:9a: 06:9a:b3:38:27:9c:26:38:4e:56:a4:4d:af:f3:71: 7a:91:58:3f:d9:e3:1e:c5:cf:60:50:92:7b:9d:8a: b3:95:b0:0a:4c:41:67:91:01:52:63:0a:af:b5:b7: 74:64:fd:29:d3:85:f4:22:c4:05:de:60:8c:37:83: 0f:6e:92:c3:9a:c4:75:27:fe:fc:bc:d3:16:5a:97: 82:1a:24:86:78:f7:67:f1:cb:12:e8:b7:42:31:56: df:36:74:47:2e:86:db:70:00:2e:b5:6b:f0:ba:93: 56:39:4c:b1:3f:b5:8e:b0:f0:82:04:c6:e8:5d:54: b0:e5:77:b2:dc:45:ff:5b:f8:99:ab:a2:1f:bc:c2: 78:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B9:C9:EC:AE:71:E4:00:FF:9B:C7:BC:2B:E0:0A:8E:70:BE:DC:CB X509v3 Authority Key Identifier: keyid:B3:62:43:7A:B6:7D:29:0C:5C:DF:EF:2F:62:B7:7E:DD:8A:9F:FA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2JDerZ9KQxc3-8vYrd-3Yqf-kQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAE04/9D8F772A5F9611EE83638F3EC4F9AE02/ABA6DCF0030F11EFB12D8A18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.74.0/23 IPv6: 2401:2a0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 7b:79:75:07:be:4a:8c:18:4a:47:28:25:81:ab:a1:dd:58:c4: 71:06:a9:78:1c:26:c4:8f:88:44:09:21:8b:b9:c5:d8:ae:4a: 28:3c:42:bc:63:b5:67:4d:40:7a:5d:09:1e:5f:3f:34:b1:12: f1:a1:b2:11:83:6e:4c:ca:32:31:65:81:73:dc:b0:64:3b:22: 60:f6:52:1e:7e:01:5c:11:2f:ad:25:c9:af:50:41:5b:75:90: ee:fb:87:97:d1:b8:e6:49:40:86:48:20:ae:d9:4c:7e:b7:24: 5b:b5:03:47:ea:fd:29:5d:45:51:92:f3:19:04:0c:79:c0:28: 07:27:3e:cf:74:7f:53:11:f7:72:5c:2e:be:2a:6e:22:0d:b2: bc:ae:10:4f:c4:35:2e:8b:f8:16:2d:4d:6d:f8:f7:43:99:5d: 05:92:0e:7f:fd:85:fb:3c:18:f8:bb:c6:ea:9d:8d:65:09:8c: e8:21:14:bd:9f:44:17:b2:fa:af:01:49:8b:99:01:19:7b:51: 07:5f:9a:95:4b:b9:dd:7e:01:09:34:53:06:ca:08:54:b7:1d: 95:59:aa:fc:cc:d3:23:9b:9f:5d:39:1a:89:d3:69:a3:7f:53: ca:b3:d5:ab:f5:b5:c6:7c:d8:2b:4c:ba:4d:50:00:8d:80:ab: ee:5d:ab:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FFMDQxMTAvBgNVBAUTKEIzNjI0MzdBQjY3RDI5MEM1Q0RGRUYyRjYyQjc3RURE OEE5RkZBNDQwHhcNMjQwNjAzMDg0MTI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkODFiMy1mYzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JKypafERbhBYOEJ4W8P3fN8jkoY4VnKs1xe7omn3M6bKosxQcp72Aqj8kep cpd4vPrwn1ySi7TKnd97W7WGSkYlboOltsSfei6wbngob2Fv0MIlf/AsY3a8fdKB SzPt3t0k/Seyvzg7cDmcN4DTZkxf3NFDjZoGmrM4J5wmOE5WpE2v83F6kVg/2eMe xc9gUJJ7nYqzlbAKTEFnkQFSYwqvtbd0ZP0p04X0IsQF3mCMN4MPbpLDmsR1J/78 vNMWWpeCGiSGePdn8csS6LdCMVbfNnRHLobbcAAutWvwupNWOUyxP7WOsPCCBMbo XVSw5Xey3EX/W/iZq6IfvMJ4xwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJK5yeyu ceQA/5vHvCvgCo5wvtzLMB8GA1UdIwQYMBaAFLNiQ3q2fSkMXN/vL2K3ft2Kn/pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUUwNC85RDhGNzcyQTVG OTYxMUVFODM2MzhGM0VDNEY5QUUwMi9zMkpEZXJaOUtReGMzLTh2WXJkLTNZcWYt a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MySkRlclo5S1F4YzMtOHZZcmQtM1lxZi1rUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FFMDQvOUQ4Rjc3MkE1Rjk2MTFFRTgzNjM4RjNFQzRGOUFFMDIvQUJBNkRDRjAw MzBGMTFFRkIxMkQ4QTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn0UowDwQCAAIwCQMHACQBAqD//zANBgkqhkiG9w0BAQsF AAOCAQEAe3l1B75KjBhKRyglgauh3VjEcQapeBwmxI+IRAkhi7nF2K5KKDxCvGO1 Z01Ael0JHl8/NLES8aGyEYNuTMoyMWWBc9ywZDsiYPZSHn4BXBEvrSXJr1BBW3WQ 7vuHl9G45klAhkggrtlMfrckW7UDR+r9KV1FUZLzGQQMecAoByc+z3R/UxH3clwu vipuIg2yvK4QT8Q1Lov4Fi1Nbfj3Q5ldBZIOf/2F+zwY+LvG6p2NZQmM6CEUvZ9E F7L6rwFJi5kBGXtRB1+alUu53X4BCTRTBsoIVLcdlVmq/MzTI5ufXTkaidNpo39T yrPVq/W1xnzYK0y6TVAAjYCr7l2r6w== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org