$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa File: 1E35039C42D511EEAE5F803AC4F9AE02.roa (raw, json) Hash identifier: hdZa/uU6R1KyL95TVJPIwe+LkDp1/9Z9cxgyNi7o3uo= Subject key identifier: 8D:E8:32:E7:59:1D:13:35:AE:1E:5C:6B:C1:C3:89:C7:13:3D:9D:6F Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 9E Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa Signing time: Mon 17 Jun 2024 07:56:25 +0000 ROA not before: Mon 17 Jun 2024 07:56:25 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4648 IP address blocks: 203.99.64.0/24 maxlen: 24 203.99.65.0/24 maxlen: 24 203.99.68.0/24 maxlen: 24 203.99.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 17 07:56:25 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666fec29-f8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:b9:e5:3e:45:f0:48:ae:45:16:d1:0d:89: 49:8e:63:d7:f2:41:60:53:a1:0e:1a:41:13:a4:ac: ea:b7:3c:aa:81:73:60:38:59:15:b4:e2:6e:f1:1c: ea:ff:41:d6:b2:ae:51:24:f0:7c:c9:00:25:af:a3: fe:98:12:0a:0c:92:93:e5:68:3f:63:a2:92:eb:43: c2:10:11:fe:9e:b8:02:79:06:b0:76:2d:83:d5:0d: d1:34:19:5e:d2:f4:f5:59:82:2e:f4:15:9e:66:a3: 7c:a6:92:24:52:29:f5:6b:13:00:5f:b7:cd:0e:99: e1:d4:bf:b8:65:2c:b6:72:16:7c:88:8c:d2:9c:22: 8a:18:8d:5d:c7:a1:70:e8:38:d5:c6:e3:e7:d1:1c: 32:72:f5:81:01:1e:d9:a3:60:ec:2c:3a:f7:74:85: f3:b4:44:50:42:67:c8:f4:17:c4:60:2a:64:2d:5f: 6f:8b:f2:dd:83:d6:e0:5c:1d:ad:e8:a4:8c:b3:73: 08:3d:4a:7a:44:95:67:67:4d:b8:3f:4b:d8:7a:4d: 3b:8d:b4:f7:0e:97:89:85:69:77:d0:56:21:0d:f6: 68:9c:35:87:f3:66:5e:1a:0d:8d:29:7e:3c:c8:5a: ba:34:5b:a6:f0:0e:fd:83:af:7e:a1:85:57:f8:5a: 44:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E8:32:E7:59:1D:13:35:AE:1E:5C:6B:C1:C3:89:C7:13:3D:9D:6F X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/1E35039C42D511EEAE5F803AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.64.0/23 203.99.68.0/24 203.99.71.0/24 Signature Algorithm: sha256WithRSAEncryption d4:f3:84:ed:a8:14:14:59:97:15:ef:4f:0a:61:e7:50:7b:c3: 10:cd:fa:09:e2:06:35:27:6c:32:61:21:6d:d2:5a:eb:ba:d0: c3:c1:49:37:90:73:af:ff:58:f1:57:7a:88:c6:94:3e:05:53: 87:b7:03:21:51:34:ae:34:55:06:1e:12:2d:c8:41:4e:0c:cb: 50:e8:06:3b:4a:3a:77:a7:50:85:73:7a:ea:2b:fc:cb:d4:52: 39:a2:1c:71:a3:74:9d:2c:ad:bb:c3:3b:ed:cd:0f:03:46:ad: 76:1f:ae:34:d1:0a:30:3e:06:75:32:0c:92:42:40:62:ca:dc: f2:32:a4:7f:51:91:c6:76:9b:1c:60:30:5d:a1:fb:d7:3f:03: 24:23:d2:bd:5a:33:5b:8f:13:24:d4:69:56:6b:7f:d0:49:3b: 9f:2d:a8:1a:f3:01:24:71:58:63:b7:86:50:79:87:51:a9:c3: 1a:90:06:53:82:92:00:84:37:90:49:af:15:8a:90:3b:a2:e5: 17:ec:e6:53:79:2e:8e:d8:fc:80:1c:1a:c7:fb:a1:2d:85:18: 9e:60:70:8a:fb:b4:fe:e4:33:db:37:e8:bc:29:e2:4e:ef:bb: 0c:c7:bf:6a:b0:4d:8b:49:8f:15:f9:5b:8e:d0:67:37:de:95: 34:c9:3e:79 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjQwNjE3MDc1NjI1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmZWMyOS1mOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoO55T5F8EiuRRbRDYlJjmPX8kFgU6EOGkETpKzqtzyqgXNgOFkVtOJu8Rzq /0HWsq5RJPB8yQAlr6P+mBIKDJKT5Wg/Y6KS60PCEBH+nrgCeQawdi2D1Q3RNBle 0vT1WYIu9BWeZqN8ppIkUin1axMAX7fNDpnh1L+4ZSy2chZ8iIzSnCKKGI1dx6Fw 6DjVxuPn0RwycvWBAR7Zo2DsLDr3dIXztERQQmfI9BfEYCpkLV9vi/Ldg9bgXB2t 6KSMs3MIPUp6RJVnZ024P0vYek07jbT3DpeJhWl30FYhDfZonDWH82ZeGg2NKX48 yFq6NFum8A79g69+oYVX+FpELwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFI3oMudZ HRM1rh5ca8HDiccTPZ1vMB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvMUUzNTAzOUM0 MkQ1MTFFRUFFNUY4MDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAHLY0ADBADLY0QDBADLY0cwDQYJKoZIhvcNAQELBQADggEB ANTzhO2oFBRZlxXvTwph51B7wxDN+gniBjUnbDJhIW3SWuu60MPBSTeQc6//WPFX eojGlD4FU4e3AyFRNK40VQYeEi3IQU4My1DoBjtKOnenUIVzeuor/MvUUjmiHHGj dJ0srbvDO+3NDwNGrXYfrjTRCjA+BnUyDJJCQGLK3PIypH9RkcZ2mxxgMF2h+9c/ AyQj0r1aM1uPEyTUaVZrf9BJO58tqBrzASRxWGO3hlB5h1GpwxqQBlOCkgCEN5BJ rxWKkDui5Rfs5lN5Lo7Y/IAcGsf7oS2FGJ5gcIr7tP7kM9s36Lwp4k7vuwzHv2qw TYtJjxX5W47QZzfelTTJPnk= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org