$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa File: 67FF0960076911EF8569F157C4F9AE02.roa (raw, json) Hash identifier: Dvs5DAUQ59zCBbfUhpGLPZgVQyIVukk8Lis+ely0rgs= Subject key identifier: EF:36:46:CD:C8:6F:2B:DD:C7:96:08:0C:3C:D5:9E:80:BC:26:97:8D Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 075D Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa Signing time: Wed 12 Jun 2024 23:00:53 +0000 ROA not before: Wed 12 Jun 2024 23:00:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 18254 IP address blocks: 103.213.244.0/23 maxlen: 23 103.213.245.0/24 maxlen: 24 103.213.246.0/23 maxlen: 23 103.213.246.0/24 maxlen: 24 103.213.247.0/24 maxlen: 24 144.48.4.0/23 maxlen: 24 144.48.6.0/23 maxlen: 23 144.48.6.0/24 maxlen: 24 144.48.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1885 (0x75d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Jun 12 23:00:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666a28a5-82fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:e2:c5:30:04:91:30:46:73:88:19:82:9c: 55:db:f5:fd:b5:b4:1a:5c:5c:2c:2b:39:c9:20:d1: 86:e0:9e:20:4e:92:4d:1d:4e:7d:2b:4e:1c:45:75: 54:77:ad:96:ad:15:14:7e:c6:aa:28:1a:4d:b3:2b: fe:92:7c:e1:cd:9d:73:40:00:4f:32:63:da:de:c1: 4c:a3:9a:ba:c4:d1:41:3a:4b:16:55:c5:bf:c8:9b: 13:93:04:ae:67:ce:b9:ac:d0:3b:ba:ee:a3:1d:f7: 7b:93:60:d2:e7:26:31:ef:20:60:f4:7e:f9:ba:b0: 77:c9:e9:64:b5:00:90:44:6f:07:27:6b:5e:66:23: 4a:5e:65:87:25:be:30:c2:eb:c9:df:b1:27:e1:6d: 34:14:3b:d1:93:6c:e3:d4:aa:a9:49:1f:c5:ce:dc: 72:88:e5:74:b7:9e:d0:3b:a6:45:36:06:09:9c:d9: 22:7e:81:d6:ee:49:28:f0:f2:06:07:86:9e:0c:16: f8:6a:a5:01:be:e6:e8:0b:75:59:a4:f6:c9:ed:62: de:f3:9b:a4:fe:9c:f9:b0:06:47:17:f7:7e:ce:70: d1:5a:d1:4b:f6:5d:e6:67:58:ca:46:0f:c7:91:71: c3:3d:fe:32:24:e5:3d:c2:99:ff:2c:dc:3f:b5:76: 5c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:36:46:CD:C8:6F:2B:DD:C7:96:08:0C:3C:D5:9E:80:BC:26:97:8D X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/67FF0960076911EF8569F157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 Signature Algorithm: sha256WithRSAEncryption 67:47:c2:11:c7:56:70:eb:bc:9e:cd:82:a4:26:ee:9b:e4:31: 3f:3e:88:a0:5d:02:41:db:79:c6:0f:45:d7:7d:1f:7a:91:01: 54:d4:c1:cb:7f:bf:f6:7f:09:32:03:a4:c6:a2:39:73:b7:33: d5:f4:9a:05:9f:11:f4:5a:3a:cb:c8:0a:a2:7d:2f:65:7c:34: 3e:98:64:59:73:bb:22:6d:63:cf:95:ac:c0:ea:e1:47:f1:67: e3:36:e3:f9:a3:19:24:cd:2b:8e:5e:80:24:20:69:3b:67:f8: ca:83:63:36:d2:cc:9c:5d:af:9f:0c:06:84:f6:1c:a9:06:f7: 67:50:f6:a7:de:82:09:c6:d4:1d:a7:e5:71:44:8a:05:72:15: c3:53:40:a0:a4:8c:c2:22:22:2d:5f:b7:b4:5f:85:7b:0f:69: 3e:1f:86:9f:0f:26:5f:c0:47:01:13:d1:29:aa:ad:12:3a:a3: f6:c8:7a:4c:b4:41:ee:61:78:6d:2b:98:a3:86:d5:b6:b9:8e: 4f:5b:7a:2b:9a:e5:44:02:d9:fb:cd:70:43:68:0a:3d:27:00: 1d:8d:30:63:b5:48:53:80:a6:e9:de:9d:dd:e5:e6:b1:91:9e: 9f:7d:e1:36:88:1e:33:48:2c:93:49:79:7d:f8:1e:d0:61:92: dc:27:71:9f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNjEyMjMwMDUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMjhhNS04MmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdTixTAEkTBGc4gZgpxV2/X9tbQaXFwsKznJINGG4J4gTpJNHU59K04cRXVU d62WrRUUfsaqKBpNsyv+knzhzZ1zQABPMmPa3sFMo5q6xNFBOksWVcW/yJsTkwSu Z865rNA7uu6jHfd7k2DS5yYx7yBg9H75urB3yelktQCQRG8HJ2teZiNKXmWHJb4w wuvJ37En4W00FDvRk2zj1KqpSR/FztxyiOV0t57QO6ZFNgYJnNkifoHW7kko8PIG B4aeDBb4aqUBvuboC3VZpPbJ7WLe85uk/pz5sAZHF/d+znDRWtFL9l3mZ1jKRg/H kXHDPf4yJOU9wpn/LNw/tXZcZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO82Rs3I byvdx5YIDDzVnoC8JpeNMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvNjdGRjA5NjAw NzY5MTFFRjg1NjlGMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1fQDBAKQMAQwDQYJKoZIhvcNAQELBQADggEBAGdHwhHH VnDrvJ7NgqQm7pvkMT8+iKBdAkHbecYPRdd9H3qRAVTUwct/v/Z/CTIDpMaiOXO3 M9X0mgWfEfRaOsvICqJ9L2V8ND6YZFlzuyJtY8+VrMDq4UfxZ+M24/mjGSTNK45e gCQgaTtn+MqDYzbSzJxdr58MBoT2HKkG92dQ9qfeggnG1B2n5XFEigVyFcNTQKCk jMIiIi1ft7RfhXsPaT4fhp8PJl/ARwET0SmqrRI6o/bIeky0Qe5heG0rmKOG1ba5 jk9beiua5UQC2fvNcENoCj0nAB2NMGO1SFOApunend3l5rGRnp994TaIHjNILJNJ eX34HtBhktwncZ8= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org