$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa File: 0D09EE14D79411EC955CCA68C4F9AE02.roa (raw, json) Hash identifier: C0oMAxQHsYdHAGjubReHZgymtUaTL7q6qGZom3tg5Ac= Subject key identifier: 17:DA:EB:FF:2D:DF:14:DD:A2:DF:79:6F:95:6E:AA:23:30:A5:C9:AA Certificate issuer: /CN=A91DD112/serialNumber=36E4E359E20DDA65133E121A92D6D6ACB1E53123 Certificate serial: 0253 Authority key identifier: 36:E4:E3:59:E2:0D:DA:65:13:3E:12:1A:92:D6:D6:AC:B1:E5:31:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa Signing time: Wed 19 Jun 2024 04:15:05 +0000 ROA not before: Wed 19 Jun 2024 04:15:05 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149831 IP address blocks: 103.187.124.0/23 maxlen: 23 103.187.124.0/24 maxlen: 24 103.187.125.0/24 maxlen: 24 2001:df0:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.crl rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD112/serialNumber=36E4E359E20DDA65133E121A92D6D6ACB1E53123 Validity Not Before: Jun 19 04:15:05 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66725b48-74b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:34:a0:93:61:36:d7:eb:69:d9:59:53:fa:8f: f0:7b:f4:67:7d:5d:b8:49:95:85:c7:14:b1:23:28: 97:f1:23:46:49:02:d3:f0:70:83:09:ad:29:2b:5e: ad:50:48:a1:d9:af:cc:9d:88:f8:e4:91:fe:4f:90: 9c:5f:43:2f:b2:9f:fc:e2:fd:37:b3:39:ca:71:2b: 69:e8:b8:b0:63:bc:27:ae:49:4c:d8:a7:b9:52:f6: 24:55:8f:d4:05:15:2a:52:52:e4:20:e9:37:d9:88: 40:0b:d5:90:bf:a7:44:e4:e5:a9:c0:c8:a1:9e:10: 6c:a0:d2:7e:43:69:63:36:cc:8f:e0:2f:7f:81:5b: 9f:3d:8d:7a:60:82:9b:ea:bf:09:1f:56:31:1c:f7: 77:05:16:2e:c9:fa:d4:c2:e3:e7:90:66:21:e9:ec: 3c:d5:97:7d:9b:9c:62:54:8c:ac:7e:3d:5d:2a:3c: ca:70:6f:c1:21:f9:7b:95:b4:5a:9b:8c:cd:75:0c: 18:ac:69:34:9f:37:04:d1:0c:72:cf:49:41:74:74: 76:69:34:35:ef:79:30:18:14:8a:41:92:1e:45:b9: ab:28:f9:65:eb:6a:ec:1d:98:13:a2:f1:c4:4e:4c: c2:d1:cf:39:47:55:d7:9c:18:1c:6d:60:c4:9d:c9: 09:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DA:EB:FF:2D:DF:14:DD:A2:DF:79:6F:95:6E:AA:23:30:A5:C9:AA X509v3 Authority Key Identifier: keyid:36:E4:E3:59:E2:0D:DA:65:13:3E:12:1A:92:D6:D6:AC:B1:E5:31:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/NuTjWeIN2mUTPhIaktbWrLHlMSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NuTjWeIN2mUTPhIaktbWrLHlMSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD112/DABAB5DCD78F11EC97B59E62C4F9AE02/0D09EE14D79411EC955CCA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.124.0/23 IPv6: 2001:df0:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption 13:57:92:c4:c1:50:8d:93:53:c9:2d:c5:45:f2:45:03:bc:76: 83:07:15:3d:ed:71:e8:4b:c8:b0:8d:8a:54:f1:bd:fb:62:85: ae:29:26:b4:61:13:a7:b7:e8:6a:e0:a5:3f:b6:27:65:bc:1c: 4e:8b:13:27:d1:68:ab:b0:70:fd:f5:a4:12:b1:38:89:50:92: be:ba:2d:3b:eb:89:65:2f:70:a3:0d:80:45:74:00:c5:0f:a2: 21:61:cd:1b:53:a9:5d:52:d2:af:31:63:d6:da:b7:76:da:8c: 39:29:b8:63:4b:81:48:e3:ef:1d:d0:e6:6d:63:f1:72:99:b6: 35:f7:0e:29:94:fb:e0:d2:22:1b:75:c2:30:13:b4:7e:b0:22: b9:24:83:41:cb:7a:d2:d7:5c:47:d1:38:b2:cb:6d:6a:63:91: 90:2d:c7:b4:f2:4a:1e:96:6b:e4:4e:d8:84:50:03:74:f9:c7: c9:d4:c4:40:0d:43:89:34:30:44:87:df:ac:a4:da:10:c7:04: d7:fb:92:1d:29:85:10:62:fd:51:7d:2d:8a:72:97:2f:7c:d1: d0:5d:69:02:a9:66:7a:94:22:b6:2b:00:b2:aa:f9:55:28:8d: aa:66:ca:44:f4:df:90:39:80:24:86:c7:63:f3:b4:66:21:4d: a5:27:58:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxMTIxMTAvBgNVBAUTKDM2RTRFMzU5RTIwRERBNjUxMzNFMTIxQTkyRDZENkFD QjFFNTMxMjMwHhcNMjQwNjE5MDQxNTA1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyNWI0OC03NGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTSgk2E21+tp2VlT+o/we/RnfV24SZWFxxSxIyiX8SNGSQLT8HCDCa0pK16t UEih2a/MnYj45JH+T5CcX0Mvsp/84v03sznKcStp6LiwY7wnrklM2Ke5UvYkVY/U BRUqUlLkIOk32YhAC9WQv6dE5OWpwMihnhBsoNJ+Q2ljNsyP4C9/gVufPY16YIKb 6r8JH1YxHPd3BRYuyfrUwuPnkGYh6ew81Zd9m5xiVIysfj1dKjzKcG/BIfl7lbRa m4zNdQwYrGk0nzcE0Qxyz0lBdHR2aTQ173kwGBSKQZIeRbmrKPll62rsHZgTovHE TkzC0c85R1XXnBgcbWDEnckJVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBfa6/8t 3xTdot95b5VuqiMwpcmqMB8GA1UdIwQYMBaAFDbk41niDdplEz4SGpLW1qyx5TEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDExMi9EQUJBQjVEQ0Q3 OEYxMUVDOTdCNTlFNjJDNEY5QUUwMi9OdVRqV2VJTjJtVVRQaElha3RiV3JMSGxN U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051VGpXZUlOMm1VVFBoSWFrdGJXckxIbE1TTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQxMTIvREFCQUI1RENENzhGMTFFQzk3QjU5RTYyQzRGOUFFMDIvMEQwOUVFMTRE Nzk0MTFFQzk1NUNDQTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnu3wwDwQCAAIwCQMHACABDfC8wDANBgkqhkiG9w0BAQsF AAOCAQEAE1eSxMFQjZNTyS3FRfJFA7x2gwcVPe1x6EvIsI2KVPG9+2KFrikmtGET p7foauClP7YnZbwcTosTJ9Foq7Bw/fWkErE4iVCSvrotO+uJZS9wow2ARXQAxQ+i IWHNG1OpXVLSrzFj1tq3dtqMOSm4Y0uBSOPvHdDmbWPxcpm2NfcOKZT74NIiG3XC MBO0frAiuSSDQct60tdcR9E4ssttamORkC3HtPJKHpZr5E7YhFADdPnHydTEQA1D iTQwRIffrKTaEMcE1/uSHSmFEGL9UX0tinKXL3zR0F1pAqlmepQitisAsqr5VSiN qmbKRPTfkDmAJIbHY/O0ZiFNpSdYFA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org