$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa File: D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa (raw, json) Hash identifier: q8cGmT+t8au+UKuDCZxswiTd5/kAq6SR+g4dGKCxO/A= Subject key identifier: 02:29:E7:61:A7:4F:BF:06:8F:2F:31:FF:E8:CB:9A:C1:75:64:41:48 Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B8E Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa Signing time: Mon 28 Oct 2024 19:17:46 +0000 ROA not before: Mon 28 Oct 2024 19:17:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138024 IP address blocks: 103.195.0.0/24 maxlen: 24 103.195.1.0/24 maxlen: 24 103.195.2.0/24 maxlen: 24 103.195.3.0/24 maxlen: 24 139.5.132.0/24 maxlen: 24 139.5.133.0/24 maxlen: 24 139.5.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2958 (0xb8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Oct 28 19:17:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671fe35a-31e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:00:10:25:92:11:d2:d9:25:84:8d:e0:74:e2: 66:39:21:fa:e4:19:0d:56:a0:e7:29:9f:ea:e5:ba: bc:97:3a:53:93:b9:8e:94:fd:8a:05:3b:72:5b:56: 36:c4:96:ce:df:3d:14:7b:f3:8c:68:56:ba:fc:f8: b2:32:e1:19:6a:9a:85:ab:e9:ef:e0:c4:ec:51:57: b7:ec:62:f3:f6:ac:29:b7:56:24:65:92:4d:59:18: 70:d2:a3:8c:fa:22:50:e5:a3:72:e1:47:76:0f:58: ac:f8:cf:de:7d:49:4c:fc:e3:29:a2:11:a8:7d:3f: 8f:a6:40:63:6c:a1:e6:25:eb:da:7f:0b:d9:bf:46: 33:aa:5b:6a:be:27:6f:01:7d:ce:fd:75:65:f0:15: 23:bb:f5:1b:0a:78:4b:cf:7a:3e:c8:7c:b5:ed:e6: bf:d2:97:fc:f4:ca:dd:80:0b:32:66:c6:69:18:a2: 7e:f3:7b:ef:33:c6:5b:ea:1c:be:88:aa:fb:50:b1: 70:ac:f8:cd:ec:75:9a:3f:05:d7:ba:d6:6f:37:e2: 9f:95:8a:6d:11:57:67:01:f6:8e:70:68:51:81:b3: 01:14:62:59:9f:b3:26:2d:fc:c1:41:77:b2:e9:11: 2f:15:e6:6f:60:56:79:f2:95:29:ad:dd:d9:1c:50: f1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:29:E7:61:A7:4F:BF:06:8F:2F:31:FF:E8:CB:9A:C1:75:64:41:48 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.0.0/22 139.5.132.0-139.5.134.255 Signature Algorithm: sha256WithRSAEncryption 80:bd:32:4a:73:d5:c1:c2:20:57:87:18:96:7f:27:7e:9f:83: 61:82:c8:57:12:8a:a7:33:36:b0:8d:b8:f6:25:35:00:b3:c0: 70:04:27:21:6f:c3:44:eb:98:6d:a2:ae:d9:f9:00:69:a2:45: b9:3d:19:05:96:74:a1:75:4d:8e:f5:cf:c9:79:28:fe:dd:b7: 0e:4f:bc:5c:f9:d1:7f:23:3d:e3:88:a4:0e:19:c3:fe:bb:88: 4e:10:9d:9d:98:81:1a:e9:28:15:12:61:67:a6:36:5f:8a:31: bf:d4:19:42:c4:96:00:1d:da:fa:3e:a1:0b:e2:ae:ff:28:f2: d9:a1:34:58:e9:4e:f1:40:3d:ec:58:c1:e6:65:67:a7:a0:bf: e3:29:86:e5:46:4d:42:ed:a8:04:05:20:b4:98:28:31:86:db: fb:c0:42:4e:b4:44:33:f5:0b:2b:75:a1:60:91:f1:a3:93:60: 31:c1:fe:33:19:55:40:f5:ff:8d:80:c9:ac:9b:88:5e:a1:f1: a2:af:8f:c2:c0:c0:f1:b1:53:bf:4a:6f:13:81:8e:e5:22:a3: e5:21:e0:b2:e5:fc:21:d9:f1:b4:62:05:e7:3d:9f:ce:9f:c8: 4e:30:fb:0a:7c:a7:69:65:8b:0e:c0:dd:23:b7:9e:a3:fd:64: 1f:9e:19:75 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICC44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQxMDI4MTkxNzQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZTM1YS0zMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgAQJZIR0tklhI3gdOJmOSH65BkNVqDnKZ/q5bq8lzpTk7mOlP2KBTtyW1Y2 xJbO3z0Ue/OMaFa6/PiyMuEZapqFq+nv4MTsUVe37GLz9qwpt1YkZZJNWRhw0qOM +iJQ5aNy4Ud2D1is+M/efUlM/OMpohGofT+PpkBjbKHmJevafwvZv0Yzqltqvidv AX3O/XVl8BUju/UbCnhLz3o+yHy17ea/0pf89MrdgAsyZsZpGKJ+83vvM8Zb6hy+ iKr7ULFwrPjN7HWaPwXXutZvN+KflYptEVdnAfaOcGhRgbMBFGJZn7MmLfzBQXey 6REvFeZvYFZ58pUprd3ZHFDxVwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAIp52Gn T78Gjy8x/+jLmsF1ZEFIMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0JEQzgvNjY5NzYzRjAxOEUwMTFFQUEwQzM4RTdCQzRGOUFFMDIvRDZBQUEzQjJE RkZEMTFFRTk3QjYyQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAJnwwAwDAMEAosFhAMEAIsFhjANBgkqhkiG9w0BAQsFAAOC AQEAgL0ySnPVwcIgV4cYln8nfp+DYYLIVxKKpzM2sI249iU1ALPAcAQnIW/DROuY baKu2fkAaaJFuT0ZBZZ0oXVNjvXPyXko/t23Dk+8XPnRfyM944ikDhnD/ruIThCd nZiBGukoFRJhZ6Y2X4oxv9QZQsSWAB3a+j6hC+Ku/yjy2aE0WOlO8UA97FjB5mVn p6C/4ymG5UZNQu2oBAUgtJgoMYbb+8BCTrREM/ULK3WhYJHxo5NgMcH+MxlVQPX/ jYDJrJuIXqHxoq+PwsDA8bFTv0pvE4GO5SKj5SHgsuX8IdnxtGIF5z2fzp/ITjD7 CnynaWWLDsDdI7eeo/1kH54ZdQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org