$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa File: EFB54FEC42D211EE9D8A0832C4F9AE02.roa (raw, json) Hash identifier: tNlqnTYXK/FVcXJJVdKao/xTVsvmNPHSSjgb9yu5e3k= Subject key identifier: 50:A1:8D:D5:FE:C9:32:AF:B9:41:E3:48:CD:E7:EE:5E:F8:D8:CE:2D Certificate issuer: /CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Certificate serial: 9F Authority key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa Signing time: Mon 17 Jun 2024 07:56:26 +0000 ROA not before: Mon 17 Jun 2024 07:56:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4768 IP address blocks: 203.99.66.0/24 maxlen: 24 203.99.67.0/24 maxlen: 24 203.99.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E Validity Not Before: Jun 17 07:56:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666fec2a-6413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:77:6e:f9:bc:ea:66:cf:c8:d1:14:03:6d:f3: 16:e2:06:ae:fc:9a:28:4e:77:0e:97:89:ce:61:b2: 8d:bb:d4:2b:12:88:fb:a3:d4:ff:fc:ca:f0:ce:61: b9:56:ad:bd:95:dc:71:2b:cf:9b:a9:5a:35:d5:0c: 24:47:1f:99:09:ec:d8:0a:c3:a4:79:98:18:58:f7: e0:68:60:3f:f6:d5:ad:42:d9:8d:09:35:c9:c8:ee: 8a:24:a6:b0:4b:ae:01:a1:0f:2e:e5:c5:41:b2:f7: 6f:44:d9:a5:db:ce:71:97:84:4b:01:f1:d5:94:8a: 9c:70:9f:32:27:5f:71:8e:e4:72:ac:91:01:09:69: 22:70:6a:19:f7:79:d6:b1:68:bd:4a:80:21:10:bd: b3:14:2c:7c:1c:7e:a7:48:16:c7:19:6e:b4:3f:a5: 6d:f0:a1:2c:ca:99:5d:d5:94:84:d3:a2:16:d2:4d: 0e:d6:c6:f6:1d:ec:70:48:8a:58:35:c9:36:ba:ae: 2c:73:a6:65:4b:00:a5:9d:9f:8c:64:b4:a6:47:ec: 4b:69:ff:ca:ea:ef:05:9c:42:29:00:99:90:05:52: 17:0f:38:a2:3a:fd:fb:a5:46:a0:1e:1f:13:fb:b4: 99:0f:01:26:32:97:ac:66:53:5a:d2:e9:d7:c2:8e: 49:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A1:8D:D5:FE:C9:32:AF:B9:41:E3:48:CD:E7:EE:5E:F8:D8:CE:2D X509v3 Authority Key Identifier: keyid:AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/EFB54FEC42D211EE9D8A0832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.99.66.0/23 203.99.69.0/24 Signature Algorithm: sha256WithRSAEncryption 44:b6:93:1e:f0:a0:f7:b0:33:0e:ae:d5:31:30:08:91:0c:ac: 87:32:c1:f9:05:4d:ff:da:93:95:5b:98:c5:dc:e2:87:69:78: 8f:e2:be:98:5b:a1:59:b9:d4:99:8f:07:3a:d6:31:47:7c:ce: e3:13:0c:55:7f:67:8c:de:4e:ed:0d:3e:3b:26:9f:ad:3f:a3: 8c:7d:53:6d:ca:26:66:d6:09:54:c9:35:98:39:7a:53:46:ab: 0e:61:80:6b:43:38:6f:1b:e0:17:8f:08:d1:af:92:5f:97:e4: 64:a8:c0:69:3f:19:f4:58:62:d4:05:58:26:49:3f:c4:0b:39: 22:9d:50:92:02:85:ed:11:22:ed:58:5c:6b:f8:29:b9:6c:73: 20:2b:8e:63:ce:28:55:50:00:bc:67:4c:5f:2b:11:67:f3:be: 0b:ee:2d:ff:af:96:d8:dd:b8:84:d5:ef:e5:f1:f7:9a:c7:89: bc:b1:7f:31:ae:17:82:f2:73:3b:70:f9:d7:d9:dc:28:e6:0c: 53:57:5f:75:07:9f:d7:27:48:fc:00:ad:e8:9a:1a:95:7b:7b: 54:73:33:21:bb:2d:44:de:74:02:77:fa:a0:cd:49:f4:12:74: 88:c9:77:eb:24:ea:1e:02:2f:21:36:68:33:51:96:c1:b5:4d: bc:26:89:52 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcxMDMxMTAvBgNVBAUTKEFEQTdCM0U2NDI4NDQwRTUyNERBMDY4Mzg2QTFFREYz MjFGODgxMUUwHhcNMjQwNjE3MDc1NjI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmZWMyYS02NDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33du+bzqZs/I0RQDbfMW4gau/JooTncOl4nOYbKNu9QrEoj7o9T//MrwzmG5 Vq29ldxxK8+bqVo11QwkRx+ZCezYCsOkeZgYWPfgaGA/9tWtQtmNCTXJyO6KJKaw S64BoQ8u5cVBsvdvRNml285xl4RLAfHVlIqccJ8yJ19xjuRyrJEBCWkicGoZ93nW sWi9SoAhEL2zFCx8HH6nSBbHGW60P6Vt8KEsypld1ZSE06IW0k0O1sb2HexwSIpY Nck2uq4sc6ZlSwClnZ+MZLSmR+xLaf/K6u8FnEIpAJmQBVIXDziiOv37pUagHh8T +7SZDwEmMpesZlNa0unXwo5JowIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFChjdX+ yTKvuUHjSM3n7l742M4tMB8GA1UdIwQYMBaAFK2ns+ZChEDlJNoGg4ah7fMh+IEe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzEwMy83QUI4MTEyQTQy RDIxMUVFQjdDNEQwMUVDNEY5QUUwMi9yYWV6NWtLRVFPVWsyZ2FEaHFIdDh5SDRn UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhZXo1a0tFUU9VazJnYURocUh0OHlINGdSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDcxMDMvN0FCODExMkE0MkQyMTFFRUI3QzREMDFFQzRGOUFFMDIvRUZCNTRGRUM0 MkQyMTFFRTlEOEEwODMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHLY0IDBADLY0UwDQYJKoZIhvcNAQELBQADggEBAES2kx7w oPewMw6u1TEwCJEMrIcywfkFTf/ak5VbmMXc4odpeI/ivphboVm51JmPBzrWMUd8 zuMTDFV/Z4zeTu0NPjsmn60/o4x9U23KJmbWCVTJNZg5elNGqw5hgGtDOG8b4BeP CNGvkl+X5GSowGk/GfRYYtQFWCZJP8QLOSKdUJIChe0RIu1YXGv4KblscyArjmPO KFVQALxnTF8rEWfzvgvuLf+vltjduITV7+Xx95rHibyxfzGuF4Lycztw+dfZ3Cjm DFNXX3UHn9cnSPwAreiaGpV7e1RzMyG7LUTedAJ3+qDNSfQSdIjJd+sk6h4CLyE2 aDNRlsG1TbwmiVI= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org