$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa File: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (raw, json) Hash identifier: P441cSLHyLoUjwh77ci4OGTBUeTeIRb4uG1co2Vb+f8= Subject key identifier: 8D:0B:45:89:63:1D:F3:4C:CE:3A:FA:65:E5:56:28:CB:E3:91:7B:F8 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 07A8 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa Signing time: Thu 22 Aug 2024 21:40:00 +0000 ROA not before: Thu 22 Aug 2024 21:40:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140954 IP address blocks: 103.153.185.0/24 maxlen: 24 103.157.253.0/24 maxlen: 24 2001:df4:5980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Aug 22 21:40:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7b030-9fb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b1:a0:7c:b5:0e:b6:4c:e0:79:a9:ca:1c:ff: 77:f7:93:29:1c:7a:83:bc:d7:78:86:6b:da:11:0c: d7:a8:c5:3d:97:7f:2b:a2:db:55:70:7f:01:35:ac: 0f:1c:a9:80:3f:e0:88:00:c0:aa:a6:13:1e:ef:b1: 93:68:98:2a:18:bd:06:28:0d:08:28:56:83:64:50: 8e:5b:3e:13:9c:a2:87:f4:85:0f:ef:41:03:b0:f2: 81:25:6c:82:d1:b8:bf:3c:67:5a:c4:46:20:86:32: f2:e8:2e:b1:e0:08:e2:c6:fe:f6:56:b2:81:43:61: 9d:4a:3b:9b:b5:f4:74:37:39:4c:2c:4e:98:a7:17: 6e:db:7e:ed:71:71:5a:9d:29:71:6b:8f:20:98:55: b0:22:ad:19:6f:cf:95:fe:dc:58:bb:08:11:e6:1d: b2:6a:9b:5a:1a:67:85:72:93:58:91:91:4d:c0:fa: 74:ba:62:38:dd:1b:e2:c8:1e:41:ec:42:52:cf:e8: 0d:a1:af:80:18:1b:4a:b5:26:4d:89:da:c0:47:70: 30:ca:03:e3:56:95:39:1f:fd:17:49:f3:9f:29:2d: 36:5c:53:e5:05:5f:8c:0f:34:6f:c5:63:3e:fe:06: d2:7f:0d:1f:6e:2d:92:c4:01:ae:a8:ff:2a:d9:a0: 7e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0B:45:89:63:1D:F3:4C:CE:3A:FA:65:E5:56:28:CB:E3:91:7B:F8 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/DF3136A2CFF011EAB2F1D086C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.185.0/24 103.157.253.0/24 IPv6: 2001:df4:5980::/48 Signature Algorithm: sha256WithRSAEncryption 17:15:e9:da:e6:ab:90:c4:07:71:10:33:4c:80:fc:5c:ba:a3: 1b:c7:7c:30:e4:e1:61:8f:7a:1c:b2:af:03:2e:ce:4b:a7:5d: 2c:3f:2e:ac:a4:ca:23:02:98:64:75:43:45:74:cf:8c:3a:4c: 27:4d:8e:54:93:dd:88:71:17:d5:e8:9f:d4:bb:08:a0:21:60: 2c:a8:45:78:dd:8f:04:43:e5:3a:08:f7:8e:8f:93:c0:fe:2b: 5c:27:be:b6:c3:8b:d7:72:b6:4f:1d:4e:27:4e:92:5f:80:5f: 4c:77:b7:f0:14:4c:2d:75:09:11:dc:15:f4:5e:eb:30:2b:bd: da:e7:73:c4:0b:6c:3e:f9:c1:cc:fc:7c:ef:32:df:89:97:36: c0:49:2a:85:ab:45:37:83:76:8e:ca:78:40:79:57:c7:13:16: da:a3:93:89:0d:2f:08:c7:34:ef:02:e4:8a:44:7b:54:38:05: c0:49:6b:27:5d:30:2b:e1:f4:39:a8:a9:68:a1:40:7a:76:4c: d3:82:e6:14:f2:bd:57:9f:a6:94:0c:6a:1b:27:46:b3:aa:58: 6a:5d:6b:1c:17:ea:95:00:55:ff:66:cf:09:7c:f6:9b:a1:f4: 54:17:43:5a:5d:23:2d:2c:90:1b:87:6f:ad:65:70:7f:79:5c: 9b:53:c3:cb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjQwODIyMjE0MDAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3YjAzMC05ZmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77GgfLUOtkzgeanKHP9395MpHHqDvNd4hmvaEQzXqMU9l38rottVcH8BNawP HKmAP+CIAMCqphMe77GTaJgqGL0GKA0IKFaDZFCOWz4TnKKH9IUP70EDsPKBJWyC 0bi/PGdaxEYghjLy6C6x4Ajixv72VrKBQ2GdSjubtfR0NzlMLE6Ypxdu237tcXFa nSlxa48gmFWwIq0Zb8+V/txYuwgR5h2yaptaGmeFcpNYkZFNwPp0umI43RviyB5B 7EJSz+gNoa+AGBtKtSZNidrAR3AwygPjVpU5H/0XSfOfKS02XFPlBV+MDzRvxWM+ /gbSfw0fbi2SxAGuqP8q2aB+HwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFI0LRYlj HfNMzjr6ZeVWKMvjkXv4MB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEwMjIvOUQ4RDk0NThDRkVGMTFFQUIyQ0I4ODg1QzRGOUFFMDIvREYzMTM2QTJD RkYwMTFFQUIyRjFEMDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnmbkDBABnnf0wDwQCAAIwCQMHACABDfRZgDANBgkqhkiG 9w0BAQsFAAOCAQEAFxXp2uarkMQHcRAzTID8XLqjG8d8MOThYY96HLKvAy7OS6dd LD8urKTKIwKYZHVDRXTPjDpMJ02OVJPdiHEX1eif1LsIoCFgLKhFeN2PBEPlOgj3 jo+TwP4rXCe+tsOL13K2Tx1OJ06SX4BfTHe38BRMLXUJEdwV9F7rMCu92udzxAts PvnBzPx87zLfiZc2wEkqhatFN4N2jsp4QHlXxxMW2qOTiQ0vCMc07wLkikR7VDgF wElrJ10wK+H0OaipaKFAenZM04LmFPK9V5+mlAxqGydGs6pYal1rHBfqlQBV/2bP CXz2m6H0VBdDWl0jLSyQG4dvrWVwf3lcm1PDyw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org