$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa File: 1333404E5A0D11EF8810E217C4F9AE02.roa (raw, json) Hash identifier: imUuVp5lU2I0b3yBUcCAdgmAHGZS5lL7l1x9S6NGr0o= Subject key identifier: 55:2E:F3:89:D6:8A:5A:70:01:7A:9B:A4:08:50:98:DA:55:65:16:A3 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 0103 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa Signing time: Wed 14 Aug 2024 07:16:08 +0000 ROA not before: Wed 14 Aug 2024 07:16:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136993 IP address blocks: 103.69.132.0/22 maxlen: 24 103.69.152.0/22 maxlen: 24 103.206.188.0/22 maxlen: 23 116.66.176.0/24 maxlen: 24 116.66.177.0/24 maxlen: 24 116.66.178.0/24 maxlen: 24 116.66.179.0/24 maxlen: 24 137.59.100.0/22 maxlen: 23 180.149.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Aug 14 07:16:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66bc59b7-66f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:95:d1:28:08:99:81:92:91:6c:e8:6a:d8: ec:b4:b0:ce:2b:08:0a:56:92:27:f9:11:67:1b:3b: 12:b0:82:c1:f2:fd:ff:ab:fe:f1:a2:2d:91:0d:e1: 8f:41:52:7b:e6:33:46:d8:22:73:2c:38:8a:27:87: 92:82:77:fb:dd:3d:ce:b1:e0:db:77:4b:bd:32:77: 21:76:99:83:c4:0d:f9:b5:01:e9:e3:57:37:3e:ae: a0:75:db:06:84:ac:b4:4b:f8:b7:0c:3f:77:bb:52: b2:6c:07:eb:18:f8:1d:ec:1e:a2:3b:5f:25:5c:b9: f2:3f:47:a0:84:16:c9:9a:79:62:32:39:29:1e:27: 14:8e:8a:3a:04:8f:db:4e:40:4d:ec:51:fa:d8:7b: 3a:12:81:f6:86:80:65:db:87:53:8f:08:69:5a:0a: 03:98:d1:f7:8a:23:ba:64:f5:19:1d:c4:08:98:7d: 03:df:8a:3f:11:42:78:0d:00:55:93:aa:9a:d9:e8: bd:29:b9:1c:f7:c4:01:ee:6d:ff:0b:fc:55:78:97: 08:f8:e6:c3:b6:21:ac:4a:eb:6e:67:6f:f2:c2:12: ca:fc:97:7a:63:ef:0a:a7:42:ac:a3:47:7f:37:5f: 25:c4:08:28:af:5a:80:cb:8d:87:ed:0e:8d:5d:17: 72:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:2E:F3:89:D6:8A:5A:70:01:7A:9B:A4:08:50:98:DA:55:65:16:A3 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/1333404E5A0D11EF8810E217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.132.0/22 103.69.152.0/22 103.206.188.0/22 116.66.176.0/22 137.59.100.0/22 180.149.236.0/22 Signature Algorithm: sha256WithRSAEncryption 77:d6:60:4c:7d:33:c6:5d:98:c4:9e:28:81:dd:03:ee:87:73: 1c:cd:e3:5d:18:34:f1:a9:19:19:3a:72:51:3d:32:5b:88:c1: 8b:ba:4c:7a:c3:e0:7a:48:ba:6c:a2:92:86:db:e7:a9:62:c8: d6:55:21:ed:0f:a5:4d:6f:06:60:d4:8e:1f:0a:11:b6:e0:c8: f8:49:f1:f6:97:05:4b:bd:e4:79:f3:38:b7:9c:4a:dc:fb:8f: c0:8f:45:e8:2a:27:09:5d:a9:d1:07:ce:69:25:77:32:cb:9b: df:46:b1:78:e6:0e:15:08:b5:ef:20:7f:0e:b7:7a:25:52:a8: 99:57:73:f6:b7:8e:fa:c3:d1:9e:f4:ab:1c:c1:7b:72:a0:c1: 80:7a:9e:48:fe:ae:e8:cd:a8:85:51:06:79:ac:89:4b:75:ec: 49:7f:af:74:6a:4a:9b:cd:21:76:6c:c3:de:dd:a3:c7:8e:b4: d6:88:fe:0a:a7:9a:a5:6f:20:07:d3:b6:b8:95:2b:6a:03:17: 06:c7:e1:b4:82:25:af:4e:d1:7a:14:61:8c:2a:64:6d:ec:24: db:e8:6f:04:14:bb:a4:e1:9b:2f:a3:cd:1f:ee:30:ac:b8:73: 5a:8c:f9:e7:67:2f:c3:4c:bf:92:5b:bc:0a:9c:76:ba:05:e2: 68:f2:d0:11 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjQwODE0MDcxNjA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJjNTliNy02NmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqz2V0SgImYGSkWzoatjstLDOKwgKVpIn+RFnGzsSsILB8v3/q/7xoi2RDeGP QVJ75jNG2CJzLDiKJ4eSgnf73T3OseDbd0u9MnchdpmDxA35tQHp41c3Pq6gddsG hKy0S/i3DD93u1KybAfrGPgd7B6iO18lXLnyP0eghBbJmnliMjkpHicUjoo6BI/b TkBN7FH62Hs6EoH2hoBl24dTjwhpWgoDmNH3iiO6ZPUZHcQImH0D34o/EUJ4DQBV k6qa2ei9Kbkc98QB7m3/C/xVeJcI+ObDtiGsSutuZ2/ywhLK/Jd6Y+8Kp0Kso0d/ N18lxAgor1qAy42H7Q6NXRdyyQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFFUu84nW ilpwAXqbpAhQmNpVZRajMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMTMzMzQwNEU1 QTBEMTFFRjg4MTBFMjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAJnRYQDBAJnRZgDBAJnzrwDBAJ0QrADBAKJO2QDBAK0leww DQYJKoZIhvcNAQELBQADggEBAHfWYEx9M8ZdmMSeKIHdA+6HcxzN410YNPGpGRk6 clE9MluIwYu6THrD4HpIumyikobb56liyNZVIe0PpU1vBmDUjh8KEbbgyPhJ8faX BUu95HnzOLecStz7j8CPRegqJwldqdEHzmkldzLLm99GsXjmDhUIte8gfw63eiVS qJlXc/a3jvrD0Z70qxzBe3KgwYB6nkj+rujNqIVRBnmsiUt17El/r3RqSpvNIXZs w97do8eOtNaI/gqnmqVvIAfTtriVK2oDFwbH4bSCJa9O0XoUYYwqZG3sJNvobwQU u6Thmy+jzR/uMKy4c1qM+ednL8NMv5JbvAqcdroF4mjy0BE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:51 2024 by rpki-client on console-ams.rpki-client.org