$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa File: 2A425550ADCA11EC9AD18044C4F9AE02.roa (raw, json) Hash identifier: mUg2is3JQsGwm2KX2qhW2/i/JCscayj9EWo9Zd3Gl6g= Subject key identifier: D9:B2:71:AC:43:1C:34:6B:D4:1D:DA:D8:26:98:A7:47:3B:BD:18:70 Certificate issuer: /CN=A91D15BF/serialNumber=F771814CF6BF0D19B6324908D07E1E40ABBEF76E Certificate serial: 0311 Authority key identifier: F7:71:81:4C:F6:BF:0D:19:B6:32:49:08:D0:7E:1E:40:AB:BE:F7:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa Signing time: Wed 11 Sep 2024 04:05:21 +0000 ROA not before: Wed 11 Sep 2024 04:05:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137976 IP address blocks: 103.119.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.crl rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15BF/serialNumber=F771814CF6BF0D19B6324908D07E1E40ABBEF76E Validity Not Before: Sep 11 04:05:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e11700-8538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:86:2d:ad:2f:6c:c5:5c:f0:7a:92:19:83:d7: 0d:f3:10:bb:18:c5:a9:d2:44:61:f0:35:79:f1:5e: 09:c9:b3:af:50:b8:13:ef:0b:89:91:89:67:44:04: a2:35:65:8a:62:98:6f:0f:d8:87:fb:25:c7:0f:fa: 4b:e5:2a:d3:41:1b:b2:01:22:72:e2:71:ef:38:2c: 82:f4:8e:b7:f6:f8:a0:b5:4a:31:e9:72:51:95:51: 44:e8:18:3d:02:cb:67:c0:bb:40:fd:26:16:ad:d1: ff:6a:f5:45:4d:c2:bf:46:f7:c2:2a:41:b1:46:48: ce:a1:9b:7a:92:14:32:ca:59:c0:a9:36:0d:39:50: 3d:aa:26:b2:70:bc:cf:4f:41:4e:45:a1:67:14:50: 5f:a1:44:b4:b7:48:d5:76:cb:ed:ba:be:f5:79:df: 41:9d:58:5d:c6:b6:f5:4b:87:b4:53:09:38:a1:75: 1c:05:3f:2d:66:c3:b0:42:51:39:67:39:b7:38:a7: 39:dc:0f:36:28:a7:f5:5e:22:fe:14:71:29:fe:d3: c4:91:16:f7:b2:eb:de:52:86:7b:ae:df:9b:39:ba: 35:ec:47:c9:70:b2:3e:cf:d1:f4:d8:8c:bc:07:a2: b3:55:2e:c1:1e:d4:1e:43:42:24:d1:14:d3:03:b3: f8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B2:71:AC:43:1C:34:6B:D4:1D:DA:D8:26:98:A7:47:3B:BD:18:70 X509v3 Authority Key Identifier: keyid:F7:71:81:4C:F6:BF:0D:19:B6:32:49:08:D0:7E:1E:40:AB:BE:F7:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/93GBTPa_DRm2MkkI0H4eQKu-924.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/93GBTPa_DRm2MkkI0H4eQKu-924.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15BF/3DB0F9CA9F8811ECADA0C90DC4F9AE02/2A425550ADCA11EC9AD18044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.20.0/22 Signature Algorithm: sha256WithRSAEncryption c7:90:6a:cb:d9:e7:78:ed:ce:44:ff:d9:a9:fa:50:99:ff:cb: 49:42:85:d9:32:4e:42:10:64:86:ad:25:10:3a:bc:2a:6c:0b: 83:ff:55:ec:cb:55:a1:c8:66:f5:83:4a:ed:2a:bc:ab:a1:a7: 9b:fb:13:ec:b3:d1:ec:db:06:75:bf:04:ae:43:39:e4:c6:05: ac:07:e0:49:ce:71:b4:00:c7:7c:ac:48:01:35:86:c0:8e:81: 50:75:1c:39:5b:24:16:83:cc:66:33:62:08:49:12:bc:b3:f8: 76:78:8b:bc:ab:1e:05:d8:27:51:a3:f4:30:93:47:40:ce:62: 0d:97:19:dc:87:a5:30:24:07:65:19:9c:63:5a:e8:94:1c:ab: 0a:e8:75:5a:fa:22:ab:73:11:88:36:ca:6a:e4:68:27:14:ca: c6:f3:ba:32:9b:18:23:5b:17:0b:3d:c7:ce:df:2c:7a:bb:42: aa:b4:a0:f6:78:09:37:81:bc:5d:4c:65:a1:fa:be:6e:c9:b9: 33:71:19:1b:de:25:a6:d5:95:8a:4b:b9:fa:1e:02:14:6c:c9: 77:56:4d:49:c7:cf:96:c1:e3:63:f5:1d:6a:1f:ec:71:5f:98: d2:f0:aa:a5:65:39:24:b6:d7:f1:e7:15:3f:c8:2d:4c:73:bf: d4:3e:5d:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QkYxMTAvBgNVBAUTKEY3NzE4MTRDRjZCRjBEMTlCNjMyNDkwOEQwN0UxRTQw QUJCRUY3NkUwHhcNMjQwOTExMDQwNTIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxMTcwMC04NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYYtrS9sxVzwepIZg9cN8xC7GMWp0kRh8DV58V4JybOvULgT7wuJkYlnRASi NWWKYphvD9iH+yXHD/pL5SrTQRuyASJy4nHvOCyC9I639vigtUox6XJRlVFE6Bg9 AstnwLtA/SYWrdH/avVFTcK/RvfCKkGxRkjOoZt6khQyylnAqTYNOVA9qiaycLzP T0FORaFnFFBfoUS0t0jVdsvtur71ed9BnVhdxrb1S4e0Uwk4oXUcBT8tZsOwQlE5 Zzm3OKc53A82KKf1XiL+FHEp/tPEkRb3suveUoZ7rt+bObo17EfJcLI+z9H02Iy8 B6KzVS7BHtQeQ0Ik0RTTA7P4dwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmycaxD HDRr1B3a2CaYp0c7vRhwMB8GA1UdIwQYMBaAFPdxgUz2vw0ZtjJJCNB+HkCrvvdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVCRi8zREIwRjlDQTlG ODgxMUVDQURBMEM5MERDNEY5QUUwMi85M0dCVFBhX0RSbTJNa2tJMEg0ZVFLdS05 MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkzR0JUUGFfRFJtMk1ra0kwSDRlUUt1LTkyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE1QkYvM0RCMEY5Q0E5Rjg4MTFFQ0FEQTBDOTBEQzRGOUFFMDIvMkE0MjU1NTBB RENBMTFFQzlBRDE4MDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndxQwDQYJKoZIhvcNAQELBQADggEBAMeQasvZ53jtzkT/ 2an6UJn/y0lChdkyTkIQZIatJRA6vCpsC4P/VezLVaHIZvWDSu0qvKuhp5v7E+yz 0ezbBnW/BK5DOeTGBawH4EnOcbQAx3ysSAE1hsCOgVB1HDlbJBaDzGYzYghJEryz +HZ4i7yrHgXYJ1Gj9DCTR0DOYg2XGdyHpTAkB2UZnGNa6JQcqwrodVr6IqtzEYg2 ymrkaCcUysbzujKbGCNbFws9x87fLHq7Qqq0oPZ4CTeBvF1MZaH6vm7JuTNxGRve JabVlYpLufoeAhRsyXdWTUnHz5bB42P1HWof7HFfmNLwqqVlOSS21/HnFT/ILUxz v9Q+XRs= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org