$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa File: 1C43D57EAE3711ECB61BED46C4F9AE02.roa (raw, json) Hash identifier: PpnJ+skHtxU80Y62k+Cdmycu9izolR2+X8heLZ727nU= Subject key identifier: B4:FC:B3:24:34:B1:D9:9F:B9:BC:DF:FF:D3:E3:68:BC:94:7F:7B:99 Certificate issuer: /CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Certificate serial: 02D9 Authority key identifier: 96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa Signing time: Sat 03 Aug 2024 03:07:33 +0000 ROA not before: Sat 03 Aug 2024 03:07:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.30.253.0/24 maxlen: 24 103.30.255.0/24 maxlen: 24 103.70.181.0/24 maxlen: 24 103.70.182.0/24 maxlen: 24 103.70.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Validity Not Before: Aug 3 03:07:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad9ef4-2871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:f8:ac:44:60:0f:b8:55:a8:8f:a4:c2:d3: 15:9e:4e:0c:13:15:b2:12:be:40:20:c2:76:47:21: d7:a4:bf:23:21:97:51:11:5a:24:18:e8:6e:1a:6b: 50:05:71:8b:b3:36:5e:c9:9a:33:da:b3:36:0f:2b: e3:30:90:bc:d6:a5:7d:b3:e6:9c:5a:ff:d4:00:0b: 7f:9f:f6:c4:96:28:6e:e7:da:0f:63:48:1a:cf:66: 93:78:01:00:ce:13:67:bb:5b:30:3a:a7:7d:ec:0a: b5:44:80:1d:2b:d8:67:f1:e1:bd:52:6c:1d:57:cb: 3d:43:21:46:d9:06:e9:db:34:84:1b:47:d6:dc:bc: 80:bb:4b:55:f5:ed:ad:56:bd:87:34:dd:1b:1c:bd: f0:d2:8b:4b:f7:e0:d1:1b:6a:01:56:6c:8c:95:06: bf:2e:dc:29:c0:ae:cb:cb:a1:54:39:c7:ce:9d:b7: 94:bc:15:fe:1f:ab:6f:7b:8f:b6:cb:6b:96:b8:8a: 20:e9:c5:ea:d3:58:be:60:14:fe:99:2f:65:f9:2f: f2:56:8c:9c:5f:a8:a1:5a:a1:d6:3b:c2:e0:98:6a: d5:1f:06:c7:61:e4:3f:63:da:63:ce:5a:5b:68:ef: d3:23:ea:e1:52:ee:c6:b3:62:2b:51:0f:b5:d8:fd: e6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:FC:B3:24:34:B1:D9:9F:B9:BC:DF:FF:D3:E3:68:BC:94:7F:7B:99 X509v3 Authority Key Identifier: keyid:96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1C43D57EAE3711ECB61BED46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.253.0/24 103.30.255.0/24 103.70.181.0-103.70.183.255 Signature Algorithm: sha256WithRSAEncryption 9d:5d:71:39:25:df:ac:52:55:c0:2c:44:86:83:03:2b:9e:ff: 59:d8:3d:71:d4:81:0a:87:fd:0c:59:ce:74:ef:b8:c5:eb:27: 4f:77:1b:dd:75:bb:1c:03:a4:9d:fa:01:cc:a9:be:9d:19:17: a8:05:00:fb:e3:31:3f:97:bd:7b:8e:3d:3d:41:85:c4:05:3f: 87:c8:33:12:82:9f:dc:fc:6a:b2:78:03:b9:54:e7:20:60:25: 91:40:39:0c:7f:5b:f6:b0:d3:03:b4:e3:8c:80:30:41:d2:6b: 25:b0:ac:a4:b9:03:78:1b:75:65:a1:3e:c4:54:44:bc:b7:f7: 12:4a:42:c4:34:23:7e:07:f5:db:f4:28:bb:cb:c3:bb:b8:90: 03:e5:e6:98:4e:89:47:8f:31:ff:cb:56:00:d8:0a:2d:dc:fa: c9:9b:2a:51:4a:7e:2e:ae:f4:ba:18:f0:4c:1f:33:a8:92:4a: 70:68:69:e5:39:4f:bd:20:7a:e0:78:32:e3:c7:a1:ac:c4:0e: ac:41:fa:ac:a9:52:bc:a5:1d:45:51:08:9e:6c:80:e6:88:8e: ea:12:56:2e:20:d0:a4:77:21:2c:95:a9:15:a6:a0:c2:66:a7: 31:47:59:47:c2:fd:c3:3b:3d:30:15:48:46:81:95:31:df:49: dd:7a:25:e0 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTkxMTAvBgNVBAUTKDk2NUQ3OUI4ODk2N0UyODdFNkE1MTUzQTEwNEZDMTRF QzExODVCMTEwHhcNMjQwODAzMDMwNzMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkOWVmNC0yODcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxab4rERgD7hVqI+kwtMVnk4MExWyEr5AIMJ2RyHXpL8jIZdREVokGOhuGmtQ BXGLszZeyZoz2rM2DyvjMJC81qV9s+acWv/UAAt/n/bElihu59oPY0gaz2aTeAEA zhNnu1swOqd97Aq1RIAdK9hn8eG9UmwdV8s9QyFG2Qbp2zSEG0fW3LyAu0tV9e2t Vr2HNN0bHL3w0otL9+DRG2oBVmyMlQa/LtwpwK7Ly6FUOcfOnbeUvBX+H6tve4+2 y2uWuIog6cXq01i+YBT+mS9l+S/yVoycX6ihWqHWO8LgmGrVHwbHYeQ/Y9pjzlpb aO/TI+rhUu7Gs2IrUQ+12P3mOwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLT8syQ0 sdmfubzf/9PjaLyUf3uZMB8GA1UdIwQYMBaAFJZdebiJZ+KH5qUVOhBPwU7BGFsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1OS9DMTRGNTVDRUFF MzMxMUVDOUZBNjBGNDNDNEY5QUUwMi9sbDE1dUlsbjRvZm1wUlU2RUVfQlRzRVlX eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsMTV1SWxuNG9mbXBSVTZFRV9CVHNFWVd4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NTkvQzE0RjU1Q0VBRTMzMTFFQzlGQTYwRjQzQzRGOUFFMDIvMUM0M0Q1N0VB RTM3MTFFQ0I2MUJFRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnHv0DBABnHv8wDAMEAGdGtQMEA2dGsDANBgkqhkiG9w0B AQsFAAOCAQEAnV1xOSXfrFJVwCxEhoMDK57/Wdg9cdSBCof9DFnOdO+4xesnT3cb 3XW7HAOknfoBzKm+nRkXqAUA++MxP5e9e449PUGFxAU/h8gzEoKf3PxqsngDuVTn IGAlkUA5DH9b9rDTA7TjjIAwQdJrJbCspLkDeBt1ZaE+xFREvLf3EkpCxDQjfgf1 2/Qou8vDu7iQA+XmmE6JR48x/8tWANgKLdz6yZsqUUp+Lq70uhjwTB8zqJJKcGhp 5TlPvSB64Hgy48ehrMQOrEH6rKlSvKUdRVEInmyA5oiO6hJWLiDQpHchLJWpFaag wmanMUdZR8L9wzs9MBVIRoGVMd9J3Xol4A== -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org