$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa File: 609701825A1611EF9ED11513C4F9AE02.roa (raw, json) Hash identifier: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8= Subject key identifier: 9A:78:78:0F:4D:0E:AE:70:2E:71:9D:D8:D3:CD:8B:39:01:50:CA:6F Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 16 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa Signing time: Sun 15 Sep 2024 10:39:50 +0000 ROA not before: Sun 15 Sep 2024 10:39:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 26658 IP address blocks: 43.239.160.0/22 maxlen: 22 103.35.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Sep 15 10:39:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e6b975-5b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:59:93:61:07:ff:27:06:cc:89:14:e0:77:7f: 2b:7d:e8:02:12:a2:0f:ee:98:58:f6:d3:0f:37:b8: 58:cb:cc:11:04:8b:2d:30:52:50:d1:b5:98:16:9d: e7:d7:1a:1f:08:5b:3c:c1:62:f2:9f:16:1b:d5:86: 48:e8:14:d0:fb:58:1d:b6:2c:3b:35:e6:9b:7a:24: 27:ce:08:0c:38:26:75:20:61:ef:2a:4c:23:c7:e1: ee:79:9f:d8:d7:54:73:0f:99:66:09:d9:ca:05:42: 14:8f:3c:a8:5a:4e:59:28:9f:e8:55:29:ff:24:54: 9e:56:59:ad:00:44:28:bb:74:e7:6a:b8:12:0a:9b: ff:24:ce:29:4b:d3:41:db:8d:07:da:52:41:f7:61: 80:07:23:45:6a:ed:62:3d:79:3a:ad:1c:50:f0:21: f9:37:3f:ef:f1:b6:3f:cd:c7:4b:13:9a:2a:e0:92: 2d:01:f3:fd:b4:18:9a:21:af:c1:b7:3f:1b:18:e5: 57:5e:10:36:ff:63:99:d6:ba:8b:14:c9:15:ee:d3: 1e:30:59:b2:f0:2e:03:c6:3c:d6:3d:b8:5c:56:cc: 9d:7a:d5:b7:3f:af:83:f9:dc:f4:48:4c:c5:b4:6d: 34:58:97:a4:54:fe:dd:7a:c7:c1:c5:d4:01:66:da: 3d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:78:78:0F:4D:0E:AE:70:2E:71:9D:D8:D3:CD:8B:39:01:50:CA:6F X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/609701825A1611EF9ED11513C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.160.0/22 103.35.76.0/22 Signature Algorithm: sha256WithRSAEncryption 57:03:3b:e8:3b:4f:db:c7:8b:7b:87:95:2d:f5:10:bc:8c:ab: 7d:e4:9e:c8:31:33:cf:6e:1a:43:d4:25:2a:2e:55:cf:ec:71: 6e:33:92:b3:6d:34:65:74:48:0c:aa:71:17:b0:0c:e3:b9:9e: 72:6f:89:7d:08:de:31:0b:99:33:c8:6a:3b:5f:54:8d:30:08: 1c:2a:8d:10:8f:a2:81:b1:b5:ce:72:fe:d2:fd:10:e3:ee:21: bd:b5:4b:1c:2a:b2:e4:13:55:2b:a6:03:c1:87:54:a1:d1:c4: 35:92:39:37:9c:5d:4d:aa:be:de:42:8e:d2:85:9d:d3:b8:70: a4:5f:b7:ee:56:99:ad:2d:0a:2f:19:19:e3:73:69:e7:a2:d3: ce:69:c8:0e:42:14:d1:b5:da:b1:ea:08:79:ea:93:6d:6e:0e: d2:1a:74:ee:7f:5c:71:96:a2:bb:36:47:f6:96:19:9f:7e:08: 1e:05:6c:71:0a:2b:04:19:2b:ae:9d:27:e7:0c:b7:39:15:5c: c2:32:ff:d5:89:32:69:d8:92:60:ac:10:8c:ce:20:bf:ed:08: a5:0f:75:81:ec:36:f9:96:ef:be:2f:d3:a3:7a:6f:46:59:6a: e8:2f:dc:12:99:18:ad:db:22:94:44:80:df:50:c8:73:5b:98: 30:7a:39:11 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkNEQTExMC8GA1UEBRMoMEU1NDYyNTk2QzBDNkU3N0UxODlCNTFCRTI2RTI1Qzkx NTM4QzU1QzAeFw0yNDA5MTUxMDM5NTBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTZiOTc1LTViMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEWZNhB/8nBsyJFOB3fyt96AISog/umFj20w83uFjLzBEEiy0wUlDRtZgWnefX Gh8IWzzBYvKfFhvVhkjoFND7WB22LDs15pt6JCfOCAw4JnUgYe8qTCPH4e55n9jX VHMPmWYJ2coFQhSPPKhaTlkon+hVKf8kVJ5WWa0ARCi7dOdquBIKm/8kzilL00Hb jQfaUkH3YYAHI0Vq7WI9eTqtHFDwIfk3P+/xtj/Nx0sTmirgki0B8/20GJohr8G3 PxsY5VdeEDb/Y5nWuosUyRXu0x4wWbLwLgPGPNY9uFxWzJ161bc/r4P53PRITMW0 bTRYl6RU/t16x8HF1AFm2j2/AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUmnh4D00O rnAucZ3Y082LOQFQym8wHwYDVR0jBBgwFoAUDlRiWWwMbnfhibUb4m4lyRU4xVww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQ0RBLzJDN0U3MkI4NUEx NjExRUY4MkI2RDkxMkM0RjlBRTAyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhW dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGxSaVdXd01ibmZoaWJVYjRtNGx5UlU0eFZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi82MDk3MDE4MjVB MTYxMUVGOUVEMTE1MTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAivvoAMEAmcjTDANBgkqhkiG9w0BAQsFAAOCAQEAVwM76DtP 28eLe4eVLfUQvIyrfeSeyDEzz24aQ9QlKi5Vz+xxbjOSs200ZXRIDKpxF7AM47me cm+JfQjeMQuZM8hqO19UjTAIHCqNEI+igbG1znL+0v0Q4+4hvbVLHCqy5BNVK6YD wYdUodHENZI5N5xdTaq+3kKO0oWd07hwpF+37laZrS0KLxkZ43Np56LTzmnIDkIU 0bXaseoIeeqTbW4O0hp07n9ccZaiuzZH9pYZn34IHgVscQorBBkrrp0n5wy3ORVc wjL/1YkyadiSYKwQjM4gv+0IpQ91gew2+Zbvvi/To3pvRllq6C/cEpkYrdsilESA 31DIc1uYMHo5EQ== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:54 2024 by rpki-client on console-ams.rpki-client.org