$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa File: 1F8EE77ECEF111ED9D71580AC4F9AE02.roa (raw, json) Hash identifier: crKetBPw2QbyXxfnCHVX+ZtxC09OD/027xR0uYCQJrY= Subject key identifier: A0:4C:02:ED:49:AA:4F:E4:E4:2C:2B:EF:15:36:4D:35:1D:6C:7D:36 Certificate issuer: /CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Certificate serial: 0575 Authority key identifier: 31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa Signing time: Wed 03 Jan 2024 00:02:09 +0000 ROA not before: Wed 03 Jan 2024 00:02:09 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 200908 IP address blocks: 103.80.84.0/23 maxlen: 23 103.80.84.0/24 maxlen: 24 103.80.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF04/serialNumber=3116E07584056C16F568F0EC6098E7DC4F504A38 Validity Not Before: Jan 3 00:02:09 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594a400-6719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:3d:c4:37:ed:a4:12:7c:ce:7c:ef:70:1a: 08:db:a0:78:49:1e:29:d7:4b:f2:a5:d0:e6:ac:06: b5:98:d6:75:c7:24:a4:ae:ce:23:1c:c1:5a:dd:9d: ce:c6:84:73:c2:e6:b1:76:b6:01:e4:d1:96:5d:27: 9e:51:72:29:96:a1:68:cb:81:e3:3f:f5:ea:55:45: 10:0e:fd:02:d1:38:71:ce:f4:17:6a:4a:39:0a:b8: 6a:ec:29:1d:d6:8b:3c:6f:6b:16:fd:47:f6:1c:80: 35:59:13:67:62:cd:34:fb:54:c0:97:b1:e9:13:2e: 54:94:4f:08:d8:2f:d3:04:27:d8:f1:ac:c0:08:fe: 53:f1:44:00:a7:13:fa:c3:b8:e0:9d:31:d2:a2:3a: 6a:17:c2:c0:d3:ff:49:4a:a7:54:92:04:e4:6d:78: 55:3c:1d:bb:a6:c6:b9:3c:f4:da:70:d9:bc:3e:63: 7a:c8:fa:0e:1a:fa:89:cb:70:c8:60:70:9c:e9:a7: b6:28:a1:56:be:75:64:5f:ff:fc:0f:7e:22:4d:2c: 4e:d2:7b:45:7e:88:99:1b:d8:29:a3:a5:bf:cb:7c: 3a:94:16:93:55:21:48:f0:af:97:70:7a:f7:7c:b2: 5b:fb:ba:60:5c:26:b0:b9:c9:e6:0c:a6:51:f2:56: ef:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4C:02:ED:49:AA:4F:E4:E4:2C:2B:EF:15:36:4D:35:1D:6C:7D:36 X509v3 Authority Key Identifier: keyid:31:16:E0:75:84:05:6C:16:F5:68:F0:EC:60:98:E7:DC:4F:50:4A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/MRbgdYQFbBb1aPDsYJjn3E9QSjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MRbgdYQFbBb1aPDsYJjn3E9QSjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF04/991EB75A7AB011EBA027BB7FC4F9AE02/1F8EE77ECEF111ED9D71580AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.84.0/23 Signature Algorithm: sha256WithRSAEncryption 25:9d:55:6a:67:70:5b:2d:43:96:41:ca:5b:4e:8c:3f:d7:f8: ce:47:a3:6b:fd:7b:d3:e9:5f:c4:83:72:31:82:2c:3e:10:03: b3:bc:7b:30:e1:af:c8:c4:0e:27:34:e5:4e:80:98:3f:a2:35: ca:47:41:09:82:e1:c9:39:ae:c1:0c:b0:16:7b:90:e6:29:0e: e3:4d:d0:ca:5f:12:cc:a5:a9:6e:c5:62:82:e0:3b:94:8d:4a: a1:14:78:8c:f7:0f:63:33:37:ff:f1:0c:dd:e2:a7:69:b0:5e: 33:d5:0d:fd:77:ee:1e:29:09:21:40:3e:2d:71:06:d9:12:43: 68:42:f3:63:cd:7d:26:95:54:1e:ae:2f:37:6b:62:56:9b:04: f0:05:0e:3e:ab:3c:42:3a:9d:ba:35:4a:2f:f5:2f:1e:41:6f: d3:5d:d9:63:d0:b9:11:36:42:33:76:87:df:9b:76:4a:5f:fc: 46:b3:6b:db:e4:c9:9c:27:09:53:e2:23:ea:08:42:62:a5:76: a4:56:0a:90:82:71:b0:67:4a:f4:23:32:74:ca:a4:a7:fc:6a: 05:2c:07:c1:2c:f6:eb:d6:a4:41:95:5d:f2:53:42:d3:62:aa: 2d:78:db:a9:2d:ea:8d:a5:05:42:d1:d0:95:34:20:b9:ca:94: b9:74:fa:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGMDQxMTAvBgNVBAUTKDMxMTZFMDc1ODQwNTZDMTZGNTY4RjBFQzYwOThFN0RD NEY1MDRBMzgwHhcNMjQwMTAzMDAwMjA5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0YTQwMC02NzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfc9xDftpBJ8znzvcBoI26B4SR4p10vypdDmrAa1mNZ1xySkrs4jHMFa3Z3O xoRzwuaxdrYB5NGWXSeeUXIplqFoy4HjP/XqVUUQDv0C0ThxzvQXako5Crhq7Ckd 1os8b2sW/Uf2HIA1WRNnYs00+1TAl7HpEy5UlE8I2C/TBCfY8azACP5T8UQApxP6 w7jgnTHSojpqF8LA0/9JSqdUkgTkbXhVPB27psa5PPTacNm8PmN6yPoOGvqJy3DI YHCc6ae2KKFWvnVkX//8D34iTSxO0ntFfoiZG9gpo6W/y3w6lBaTVSFI8K+XcHr3 fLJb+7pgXCawucnmDKZR8lbv+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKBMAu1J qk/k5Cwr7xU2TTUdbH02MB8GA1UdIwQYMBaAFDEW4HWEBWwW9Wjw7GCY59xPUEo4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUYwNC85OTFFQjc1QTdB QjAxMUVCQTAyN0JCN0ZDNEY5QUUwMi9NUmJnZFlRRmJCYjFhUERzWUpqbjNFOVFT amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SYmdkWVFGYkJiMWFQRHNZSmpuM0U5UVNqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGMDQvOTkxRUI3NUE3QUIwMTFFQkEwMjdCQjdGQzRGOUFFMDIvMUY4RUU3N0VD RUYxMTFFRDlENzE1ODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnUFQwDQYJKoZIhvcNAQELBQADggEBACWdVWpncFstQ5ZB yltOjD/X+M5Ho2v9e9PpX8SDcjGCLD4QA7O8ezDhr8jEDic05U6AmD+iNcpHQQmC 4ck5rsEMsBZ7kOYpDuNN0MpfEsylqW7FYoLgO5SNSqEUeIz3D2MzN//xDN3ip2mw XjPVDf137h4pCSFAPi1xBtkSQ2hC82PNfSaVVB6uLzdrYlabBPAFDj6rPEI6nbo1 Si/1Lx5Bb9Nd2WPQuRE2QjN2h9+bdkpf/Eaza9vkyZwnCVPiI+oIQmKldqRWCpCC cbBnSvQjMnTKpKf8agUsB8Es9uvWpEGVXfJTQtNiqi1426kt6o2lBULR0JU0ILnK lLl0+o0= -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org