$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa File: 204E25DADE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: lpn3iJcIxHaHhOivQ0V5OIa9XZf5fOxSNOm7e/UeYag= Subject key identifier: AF:45:E6:EA:F4:EE:BC:89:45:98:B1:A8:4D:E0:D7:D2:01:18:1D:16 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 03D8 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa Signing time: Sat 09 Nov 2024 13:07:37 +0000 ROA not before: Sat 09 Nov 2024 13:07:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 205960 IP address blocks: 103.254.73.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 192.197.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 984 (0x3d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Nov 9 13:07:37 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=672f5e99-6043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8d:ca:86:79:de:1f:8f:fe:45:e0:f0:18:51: 66:5c:91:a9:20:28:70:e4:1d:30:7f:30:03:08:c6: 81:c9:99:94:c4:07:e9:98:32:c7:bf:1f:3e:e9:3a: cd:6b:61:b8:3f:6a:fe:98:9c:fd:14:e1:c9:3c:5d: 95:1d:b5:e0:13:3f:7b:e1:0a:04:21:68:70:18:ba: 85:51:93:b0:21:7f:34:36:11:d2:d5:27:0e:b4:d8: 76:3a:88:44:8a:9d:55:1d:34:dc:93:b5:8c:34:e6: 47:d2:48:f8:68:08:5d:92:52:17:55:b8:c1:af:1e: fe:78:6c:ec:8c:50:40:a2:1a:c1:de:83:8f:fb:a6: ad:11:e6:35:6d:d1:f5:7c:76:fc:2c:87:5e:f2:3e: 36:9e:cf:08:c5:3e:64:a2:c6:05:c1:59:9b:7e:bf: 58:4c:92:e7:7e:7c:27:17:4a:63:7d:9c:d6:dc:bf: 33:50:cb:f8:15:52:8f:fc:74:87:1f:66:3d:90:13: 44:16:4f:0b:20:de:b7:fb:26:d0:ab:c6:e4:66:ca: c2:eb:56:09:cb:4a:99:e0:bb:1a:4a:e8:bd:db:5a: 02:d6:2b:18:43:e6:09:dd:81:ee:b3:f5:60:8c:fe: 89:40:9e:39:4a:e6:4c:87:a3:cc:22:df:d0:97:5f: 62:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:45:E6:EA:F4:EE:BC:89:45:98:B1:A8:4D:E0:D7:D2:01:18:1D:16 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.73.0/24 192.51.188.0/24 192.197.113.0/24 Signature Algorithm: sha256WithRSAEncryption 84:7d:33:76:9b:a7:a4:d6:6d:7f:f1:92:bc:87:05:9f:82:7a: 93:6a:62:a9:d5:53:b2:41:5b:16:10:3d:2a:42:f3:b2:e4:f4: a0:e1:5d:75:6d:1c:58:13:bd:69:83:48:8c:01:8e:69:47:80: f6:a6:64:f2:ca:5b:c1:fc:9b:96:b5:6e:17:cf:4d:55:82:80: 7e:e1:d3:f6:d5:21:88:0f:3c:d4:fe:b9:7b:7c:29:1c:d0:ec: d1:98:ac:1d:93:5c:c6:ca:1e:af:75:51:94:65:b9:14:03:9e: 83:d9:98:28:9b:75:bd:c5:37:03:9f:14:55:1f:ac:f6:d3:22: 8b:b6:e2:48:b6:e0:95:95:15:ce:b3:75:47:bf:e8:bf:0a:a4: 07:c6:44:7c:3f:26:fe:43:12:03:c4:6f:7b:54:47:35:eb:70: 34:cf:a4:27:82:6c:28:8f:94:db:5c:e3:18:bd:bc:2a:cd:48: 67:ab:4e:5c:b6:fb:d9:f5:d2:54:3b:d5:71:9f:70:86:68:de: 11:3b:c8:c2:63:42:50:56:a1:03:24:0e:ae:55:22:8c:d0:62: f9:cd:e6:dd:a6:26:42:91:55:95:da:87:1d:de:47:da:fc:c4: 83:1f:af:59:93:4c:a9:8f:c4:c5:cc:79:69:cf:b2:a4:7f:1f: 06:16:2b:88 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjQxMTA5MTMwNzM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJmNWU5OS02MDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY3KhnneH4/+ReDwGFFmXJGpIChw5B0wfzADCMaByZmUxAfpmDLHvx8+6TrN a2G4P2r+mJz9FOHJPF2VHbXgEz974QoEIWhwGLqFUZOwIX80NhHS1ScOtNh2OohE ip1VHTTck7WMNOZH0kj4aAhdklIXVbjBrx7+eGzsjFBAohrB3oOP+6atEeY1bdH1 fHb8LIde8j42ns8IxT5kosYFwVmbfr9YTJLnfnwnF0pjfZzW3L8zUMv4FVKP/HSH H2Y9kBNEFk8LIN63+ybQq8bkZsrC61YJy0qZ4LsaSui921oC1isYQ+YJ3YHus/Vg jP6JQJ45SuZMh6PMIt/Ql19i2wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFK9F5ur0 7ryJRZixqE3g19IBGB0WMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMjA0RTI1REFE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABn/kkDBADAM7wDBADAxXEwDQYJKoZIhvcNAQELBQADggEB AIR9M3abp6TWbX/xkryHBZ+CepNqYqnVU7JBWxYQPSpC87Lk9KDhXXVtHFgTvWmD SIwBjmlHgPamZPLKW8H8m5a1bhfPTVWCgH7h0/bVIYgPPNT+uXt8KRzQ7NGYrB2T XMbKHq91UZRluRQDnoPZmCibdb3FNwOfFFUfrPbTIou24ki24JWVFc6zdUe/6L8K pAfGRHw/Jv5DEgPEb3tURzXrcDTPpCeCbCiPlNtc4xi9vCrNSGerTly2+9n10lQ7 1XGfcIZo3hE7yMJjQlBWoQMkDq5VIozQYvnN5t2mJkKRVZXahx3eR9r8xIMfr1mT TKmPxMXMeWnPsqR/HwYWK4g= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org