$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa File: 99DF3B20183A11EBB9F78E80C4F9AE02.roa (raw, json) Hash identifier: 5azch1VZyBeeNfisaXPsuQUP0iZ15DlJLjHqDiHX26s= Subject key identifier: A0:21:05:65:4B:F9:D9:F1:C7:ED:41:84:34:F8:E8:94:37:7C:8F:BE Certificate issuer: /CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Certificate serial: 06A8 Authority key identifier: BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa Signing time: Sat 02 Mar 2024 23:12:18 +0000 ROA not before: Sat 02 Mar 2024 23:12:18 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 19905 IP address blocks: 103.225.112.0/24 maxlen: 24 103.225.113.0/24 maxlen: 24 103.225.114.0/24 maxlen: 24 103.225.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Validity Not Before: Mar 2 23:12:18 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e3b252-eb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:04:2e:75:d7:1c:61:da:6d:a2:2c:cd:da: 65:1a:7f:f5:b5:3a:9a:b3:bf:50:78:59:22:44:70: 4a:86:a4:9c:0a:4b:d6:d2:56:36:20:c0:0e:88:92: de:f7:b4:c0:b2:69:cd:19:58:f4:b4:9f:7b:0c:c4: 67:a8:d7:85:3f:6e:ef:5c:aa:35:d6:ae:f4:ad:a2: 10:e4:69:ba:a2:17:a4:a5:50:9a:26:4d:ca:78:be: 90:02:9c:62:c7:9d:33:f2:9a:09:56:d0:14:89:0d: 88:7b:73:97:43:97:26:11:1f:4f:d3:1e:63:b0:f8: 35:40:78:ac:ab:b1:10:ab:40:a8:e6:33:ac:8c:29: cc:01:01:76:d5:b4:48:28:9f:03:f0:38:11:99:50: 42:82:8f:94:51:1e:1d:4c:ee:b5:71:6b:5a:43:7c: 11:d2:e1:2d:5e:21:62:0f:a8:de:94:d1:00:fc:8f: e1:9c:fa:1b:10:41:d6:d0:ff:52:47:81:2e:24:cf: 19:57:75:6b:c7:02:1c:b3:38:c8:a5:75:d6:b0:d4: cb:84:06:68:92:8d:56:67:fe:f7:c1:a8:b5:59:80: b0:03:eb:25:49:6d:ae:55:cd:cf:e9:77:7a:d0:b5: 4b:e4:fb:07:c8:df:fe:a4:ed:b0:e2:e1:87:f9:9e: a1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:21:05:65:4B:F9:D9:F1:C7:ED:41:84:34:F8:E8:94:37:7C:8F:BE X509v3 Authority Key Identifier: keyid:BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.112.0/22 Signature Algorithm: sha256WithRSAEncryption bb:d1:a1:d7:b5:0e:42:1d:5e:e2:1a:68:7c:fa:fc:40:f3:28: 18:21:42:92:77:20:04:7c:3a:77:34:85:36:dc:f1:77:9e:21: e0:01:77:74:19:ed:c9:66:f5:80:31:22:8c:90:63:76:76:ab: ba:8d:59:11:de:60:ab:55:ea:53:e2:87:10:c8:86:b1:6d:0c: 35:c5:a3:68:91:23:94:51:10:af:23:a8:59:1f:c2:bd:0f:db: 1a:a8:12:d1:04:3c:1c:b9:b7:da:57:35:66:bc:43:f9:bd:2e: f3:fc:ca:4d:27:f6:7b:c9:0b:20:28:81:27:97:8c:a8:ec:bb: 78:37:a4:cb:6a:dd:2c:08:98:f5:3c:a5:55:3c:2b:09:62:4e: 69:e1:e1:ba:15:84:94:78:02:c7:69:30:ae:61:44:55:8e:bc: c1:97:f1:f0:cd:4f:3d:68:49:ce:61:14:a3:35:ff:75:90:7d: 11:a2:f5:45:59:7f:fa:a5:2a:2b:d9:35:14:9a:e8:f3:25:25: 57:a5:45:10:e8:fb:d8:53:76:85:a9:70:e6:8b:dc:b2:a3:47: b7:ba:be:d3:6c:95:89:dd:77:b0:e7:64:ce:73:f0:93:ab:7e: 8c:6d:1e:7c:10:79:86:d3:6f:76:04:12:68:02:e1:78:82:72: f4:84:a7:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3NzkxMTAvBgNVBAUTKEJCMDNCOEQyNDQ3RUY4MTNBMzdBOTU4Nzc2NkEwMUY3 MzU5REQ3NDAwHhcNMjQwMzAyMjMxMjE4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzYjI1Mi1lYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2wELnXXHGHabaIszdplGn/1tTqas79QeFkiRHBKhqScCkvW0lY2IMAOiJLe 97TAsmnNGVj0tJ97DMRnqNeFP27vXKo11q70raIQ5Gm6ohekpVCaJk3KeL6QApxi x50z8poJVtAUiQ2Ie3OXQ5cmER9P0x5jsPg1QHisq7EQq0Co5jOsjCnMAQF21bRI KJ8D8DgRmVBCgo+UUR4dTO61cWtaQ3wR0uEtXiFiD6jelNEA/I/hnPobEEHW0P9S R4EuJM8ZV3VrxwIcszjIpXXWsNTLhAZoko1WZ/73wai1WYCwA+slSW2uVc3P6Xd6 0LVL5PsHyN/+pO2w4uGH+Z6h7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKAhBWVL +dnxx+1BhDT46JQ3fI++MB8GA1UdIwQYMBaAFLsDuNJEfvgTo3qVh3ZqAfc1nddA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjc3OS84OTAyNDk5NDE4 MzcxMUVCODA2NEIwN0FDNEY5QUUwMi91d080MGtSLS1CT2plcFdIZG1vQjl6V2Qx MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3TzQwa1ItLUJPamVwV0hkbW9COXpXZDEwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI3NzkvODkwMjQ5OTQxODM3MTFFQjgwNjRCMDdBQzRGOUFFMDIvOTlERjNCMjAx ODNBMTFFQkI5Rjc4RTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4XAwDQYJKoZIhvcNAQELBQADggEBALvRode1DkIdXuIa aHz6/EDzKBghQpJ3IAR8Onc0hTbc8XeeIeABd3QZ7clm9YAxIoyQY3Z2q7qNWRHe YKtV6lPihxDIhrFtDDXFo2iRI5RREK8jqFkfwr0P2xqoEtEEPBy5t9pXNWa8Q/m9 LvP8yk0n9nvJCyAogSeXjKjsu3g3pMtq3SwImPU8pVU8KwliTmnh4boVhJR4Asdp MK5hRFWOvMGX8fDNTz1oSc5hFKM1/3WQfRGi9UVZf/qlKivZNRSa6PMlJVelRRDo +9hTdoWpcOaL3LKjR7e6vtNslYndd7DnZM5z8JOrfoxtHnwQeYbTb3YEEmgC4XiC cvSEp80= -----END CERTIFICATE-----Generated at Wed May 1 00:35:51 2024 by rpki-client on console-ams.rpki-client.org