$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa File: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (raw, json) Hash identifier: E7aUJSWkWctXuYXSTwS30+xAR7ERalIEla2LT/i5k8k= Subject key identifier: 07:8B:B6:93:FF:BE:23:4F:1A:AB:F8:6E:A0:0B:0B:EC:52:91:68:F3 Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 06E1 Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa Signing time: Sun 28 Jul 2024 22:40:12 +0000 ROA not before: Sun 28 Jul 2024 22:40:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.60.108.0/24 maxlen: 24 103.60.109.0/24 maxlen: 24 103.60.110.0/24 maxlen: 24 103.60.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Jul 28 22:40:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a6c8cc-7f23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:45:c7:32:6c:91:28:41:5a:10:39:06:91: 00:5b:28:a3:92:a8:ac:37:f7:97:95:96:dd:d6:bc: ae:f1:98:21:af:71:d6:8b:8c:48:ea:11:87:36:13: 91:64:a5:69:11:b2:4f:f7:d4:e3:4a:95:44:be:60: 0d:d4:09:32:7b:c5:43:28:c5:5c:26:73:56:f8:41: c1:6b:87:5a:a2:c9:5f:ad:10:5b:d9:59:e0:fe:c6: 59:74:3a:b7:b1:12:d3:5f:b8:b5:fc:49:7a:c5:e5: 47:9c:41:7d:8c:fd:0a:5d:40:6f:82:c9:2e:d9:47: eb:bc:03:53:6d:32:2c:e2:15:32:80:f5:03:c1:c0: 76:7e:a3:84:49:6f:c0:61:d8:21:8c:b2:0a:0b:0a: 12:e1:a2:9d:1c:b7:b4:a9:15:e7:2d:0f:e1:5f:27: ee:3a:13:5f:2e:a0:a9:c1:bb:97:10:6a:45:47:fd: 58:47:9f:f2:2d:89:28:13:88:d4:87:2e:b4:ae:6f: e9:40:ac:06:ad:b2:0a:dc:0e:e1:7a:b1:5d:f3:44: 9d:a3:19:76:d7:3d:59:60:b4:5b:65:d6:77:b8:bf: a8:4b:d2:d0:47:08:05:1c:b2:ca:79:8b:b3:47:46: 9a:21:e4:e4:24:2e:0a:c1:db:b7:f9:26:82:c2:da: 02:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8B:B6:93:FF:BE:23:4F:1A:AB:F8:6E:A0:0B:0B:EC:52:91:68:F3 X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.108.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:59:57:76:d0:35:b2:b5:2d:da:4b:38:44:2d:40:09:e5:c4: 33:72:ae:40:a4:51:ef:97:9f:64:71:0e:74:1b:e7:58:10:c7: df:a1:a4:8b:c1:bc:80:55:25:52:23:8b:1f:29:b9:96:a9:82: b8:83:08:92:66:a2:cc:58:5d:bb:54:2b:32:70:a2:76:84:6e: 37:a2:fd:b9:d6:cf:cf:e9:48:ca:f6:0c:1e:aa:08:03:c9:d8: e5:8c:9e:24:5a:0c:dc:02:66:be:e2:0e:f0:23:ee:df:88:38: da:f6:ae:12:0c:af:6f:a8:21:94:84:46:b4:5c:98:c7:51:50: 17:15:43:ad:06:3e:0f:c8:a3:e2:f3:af:1d:0c:7c:83:92:1a: d8:73:4a:2c:12:2f:a5:c5:cd:af:57:d2:18:23:e4:f5:f5:14: 47:17:3c:38:e8:6b:8c:53:51:38:76:20:f5:a7:c1:37:a3:9b: e1:96:a1:38:9f:55:ae:98:1f:9a:ce:1b:4a:98:95:db:24:0b: 50:0d:61:eb:42:b8:ca:72:39:42:6d:4f:39:47:db:0a:d4:ae: 88:67:74:f0:ff:56:e4:04:84:3a:de:28:1f:98:04:21:27:c5: 3a:e2:d4:6e:66:e2:d1:92:19:8f:ff:5f:dc:35:c1:3c:72:ef: 0b:91:b9:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjQwNzI4MjI0MDEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE2YzhjYy03ZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqz1FxzJskShBWhA5BpEAWyijkqisN/eXlZbd1ryu8Zghr3HWi4xI6hGHNhOR ZKVpEbJP99TjSpVEvmAN1Akye8VDKMVcJnNW+EHBa4daoslfrRBb2Vng/sZZdDq3 sRLTX7i1/El6xeVHnEF9jP0KXUBvgsku2UfrvANTbTIs4hUygPUDwcB2fqOESW/A YdghjLIKCwoS4aKdHLe0qRXnLQ/hXyfuOhNfLqCpwbuXEGpFR/1YR5/yLYkoE4jU hy60rm/pQKwGrbIK3A7herFd80Sdoxl21z1ZYLRbZdZ3uL+oS9LQRwgFHLLKeYuz R0aaIeTkJC4Kwdu3+SaCwtoCmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAeLtpP/ viNPGqv4bqALC+xSkWjzMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDk1OUYvMDY4MTAwRUExM0YxMTFFQjk3NEQ5NzRFQzRGOUFFMDIvRjc1QUVBOEEx M0YxMTFFQjk1MERCQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnPGwwDQYJKoZIhvcNAQELBQADggEBACpZV3bQNbK1LdpL OEQtQAnlxDNyrkCkUe+Xn2RxDnQb51gQx9+hpIvBvIBVJVIjix8puZapgriDCJJm osxYXbtUKzJwonaEbjei/bnWz8/pSMr2DB6qCAPJ2OWMniRaDNwCZr7iDvAj7t+I ONr2rhIMr2+oIZSERrRcmMdRUBcVQ60GPg/Io+Lzrx0MfIOSGthzSiwSL6XFza9X 0hgj5PX1FEcXPDjoa4xTUTh2IPWnwTejm+GWoTifVa6YH5rOG0qYldskC1ANYetC uMpyOUJtTzlH2wrUrohndPD/VuQEhDreKB+YBCEnxTri1G5m4tGSGY//X9w1wTxy 7wuRuQ4= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:00 2024 by rpki-client on console-ams.rpki-client.org