$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/2B7B2500A62E11EF8FF03040C4F9AE02.roa File: 2B7B2500A62E11EF8FF03040C4F9AE02.roa (raw, json) Hash identifier: +yAPNF6ojlFOJLTYVaEQ9SmWRMBtqwGItUQsI9wXCmI= Subject key identifier: 1E:1B:50:84:14:71:9B:38:AE:AE:44:33:7A:17:9C:DA:93:56:34:B9 Certificate issuer: /CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767 Certificate serial: 0555 Authority key identifier: 17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/2B7B2500A62E11EF8FF03040C4F9AE02.roa Signing time: Tue 19 Nov 2024 04:24:30 +0000 ROA not before: Tue 19 Nov 2024 04:24:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 32402 IP address blocks: 103.136.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.crl rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB09E/serialNumber=1760FF71E16BCFEEE7B8D6710D63606799AEF767 Validity Not Before: Nov 19 04:24:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=673c12fe-46a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:bb:9d:f0:72:d0:6d:24:bf:31:6c:7c:30:f1: 0d:dd:80:96:0e:09:63:d5:34:ef:86:85:d0:cf:30: 84:bb:0a:1b:d6:ea:9e:6f:a8:f1:a3:3f:91:18:c1: e5:d7:f2:e2:49:1a:3c:e1:f5:a8:e1:c5:2c:a0:4c: 45:72:cb:71:c4:00:6a:ee:d8:69:3e:91:9a:04:1f: 64:33:04:2b:f3:be:86:1c:da:b9:f4:5a:13:29:63: b5:61:71:61:92:8b:10:a6:ab:c0:90:1d:f8:45:fe: 6c:d0:74:71:c6:1d:bb:66:21:cf:09:01:a1:d9:43: 39:a6:81:e7:84:34:2c:85:a6:27:0b:80:c1:df:73: 57:59:a7:f2:f8:40:4d:5f:37:04:46:9e:bc:ed:f2: a6:00:d8:75:b4:73:d0:7a:1a:ee:3c:3b:41:65:c4: 49:b4:28:21:e6:3e:fc:80:2f:d8:29:d9:ea:8b:f8: 5b:25:d0:6d:74:40:34:dd:1a:30:db:9f:87:bd:c7: dd:06:32:e4:51:2b:42:c0:b7:7c:d2:db:6c:25:38: a2:59:af:aa:db:a1:af:ed:2c:00:ad:24:14:fd:95: 4a:dc:48:42:d1:b1:f3:36:6e:11:54:38:f2:ff:ca: a7:fe:68:00:1b:ba:64:c2:0e:c4:18:b3:1f:1b:d9: 8a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1B:50:84:14:71:9B:38:AE:AE:44:33:7A:17:9C:DA:93:56:34:B9 X509v3 Authority Key Identifier: keyid:17:60:FF:71:E1:6B:CF:EE:E7:B8:D6:71:0D:63:60:67:99:AE:F7:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/F2D_ceFrz-7nuNZxDWNgZ5mu92c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F2D_ceFrz-7nuNZxDWNgZ5mu92c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB09E/47119D00D00B11EBB5890E7BC4F9AE02/2B7B2500A62E11EF8FF03040C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.149.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:4a:26:a2:7a:4d:84:5d:c0:65:d2:23:a6:08:dd:a3:9c:0c: 49:a7:0b:a7:80:d9:99:2f:0b:b4:51:0d:ea:6d:fa:98:c5:e0: a0:c9:64:71:b9:ce:39:25:04:57:59:a5:ec:a3:19:ac:3d:ce: 05:0f:1f:33:88:09:5a:ee:6a:18:6e:be:74:5a:6e:98:80:a2: 7a:34:9e:b6:ac:f6:a5:78:fb:41:80:74:d2:82:fc:5f:ed:c0: 18:4c:d5:1e:44:48:72:2e:d8:45:5f:45:b9:b6:2a:20:91:4e: 9a:7a:ba:cb:92:68:13:08:c3:fb:b9:67:b3:f4:33:d2:ad:5b: ee:73:92:8d:48:58:d1:4b:75:ae:56:7b:d9:7c:c9:66:f0:69: 74:4e:24:a4:69:dd:5f:08:4a:27:af:94:fc:35:5d:9a:65:5f: 82:98:1e:9a:c7:2b:72:36:38:a5:79:48:79:19:23:b7:00:11: 97:93:a9:76:12:11:cc:99:3c:e4:3e:9a:a9:4c:86:73:72:ee: bc:18:21:1f:a5:7d:11:20:a9:5e:24:5a:f9:97:95:28:b9:88: 5e:6b:02:eb:70:aa:d3:6d:8c:5f:54:f5:2b:9b:ce:9e:4e:b5: b1:a5:a8:ae:f9:d5:b3:c8:db:40:e2:ed:13:cc:52:70:83:03: 8d:d2:f8:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IwOUUxMTAvBgNVBAUTKDE3NjBGRjcxRTE2QkNGRUVFN0I4RDY3MTBENjM2MDY3 OTlBRUY3NjcwHhcNMjQxMTE5MDQyNDMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjMTJmZS00NmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA97ud8HLQbSS/MWx8MPEN3YCWDglj1TTvhoXQzzCEuwob1uqeb6jxoz+RGMHl 1/LiSRo84fWo4cUsoExFcstxxABq7thpPpGaBB9kMwQr876GHNq59FoTKWO1YXFh kosQpqvAkB34Rf5s0HRxxh27ZiHPCQGh2UM5poHnhDQshaYnC4DB33NXWafy+EBN XzcERp687fKmANh1tHPQehruPDtBZcRJtCgh5j78gC/YKdnqi/hbJdBtdEA03Row 25+HvcfdBjLkUStCwLd80ttsJTiiWa+q26Gv7SwArSQU/ZVK3EhC0bHzNm4RVDjy /8qn/mgAG7pkwg7EGLMfG9mKBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4bUIQU cZs4rq5EM3oXnNqTVjS5MB8GA1UdIwQYMBaAFBdg/3Hha8/u57jWcQ1jYGeZrvdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjA5RS80NzExOUQwMEQw MEIxMUVCQjU4OTBFN0JDNEY5QUUwMi9GMkRfY2VGcnotN251Tlp4RFdOZ1o1bXU5 MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YyRF9jZUZyei03bnVOWnhEV05nWjVtdTkyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0IwOUUvNDcxMTlEMDBEMDBCMTFFQkI1ODkwRTdCQzRGOUFFMDIvMkI3QjI1MDBB NjJFMTFFRjhGRjAzMDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniJUwDQYJKoZIhvcNAQELBQADggEBAE1KJqJ6TYRdwGXS I6YI3aOcDEmnC6eA2ZkvC7RRDept+pjF4KDJZHG5zjklBFdZpeyjGaw9zgUPHzOI CVruahhuvnRabpiAono0nras9qV4+0GAdNKC/F/twBhM1R5ESHIu2EVfRbm2KiCR Tpp6usuSaBMIw/u5Z7P0M9KtW+5zko1IWNFLda5We9l8yWbwaXROJKRp3V8ISiev lPw1XZplX4KYHprHK3I2OKV5SHkZI7cAEZeTqXYSEcyZPOQ+mqlMhnNy7rwYIR+l fREgqV4kWvmXlSi5iF5rAutwqtNtjF9U9Subzp5OtbGlqK751bPI20Di7RPMUnCD A43S+GI= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:53 2024 by rpki-client on console-ams.rpki-client.org