$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa File: 1CDBD11CAE3711ECB61BED46C4F9AE02.roa (raw, json) Hash identifier: 2V4s60CBepyFsN4hkIBA1O5APSOWrUwQgr6qjDAHtko= Subject key identifier: 3A:80:02:C9:BB:FC:9E:C2:D7:F3:4F:B7:D5:63:FE:3F:C9:4A:64:3E Certificate issuer: /CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Certificate serial: 02DA Authority key identifier: 96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa Signing time: Sat 03 Aug 2024 03:07:33 +0000 ROA not before: Sat 03 Aug 2024 03:07:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9919 IP address blocks: 103.30.252.0/24 maxlen: 24 103.30.254.0/24 maxlen: 24 103.70.180.0/24 maxlen: 24 103.193.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF859/serialNumber=965D79B88967E287E6A5153A104FC14EC1185B11 Validity Not Before: Aug 3 03:07:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad9ef5-13ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f7:67:01:a3:06:a4:33:42:ce:e5:cf:89:94: de:ba:92:54:a1:ef:7e:63:56:aa:ac:fe:2d:97:77: 24:57:ce:81:d0:a3:3c:9a:5c:aa:b5:64:25:9b:2f: 3b:7e:4e:64:62:64:8d:1b:e7:5e:14:a0:27:a2:42: c1:c6:33:48:7d:c4:ac:47:1c:fc:57:fb:4d:7c:cd: 8a:3d:53:8a:ec:b9:14:40:2d:56:74:3c:a9:98:c0: 2b:70:02:ce:98:3f:21:c4:67:99:c0:39:d2:63:d0: 57:bc:a1:cc:b4:12:2b:fb:a6:32:5d:73:06:1d:3f: 18:6a:ed:1b:af:5f:81:15:11:fd:02:13:de:57:eb: db:e3:72:3c:25:9a:ed:6c:7b:ce:be:16:e3:12:85: 4f:e9:fd:5c:b9:8d:4c:f1:04:bd:22:10:05:7e:dd: 69:c0:be:d4:4d:5e:e9:f3:59:be:cf:01:7b:0c:19: 40:ad:d7:81:be:60:b8:27:91:78:45:b3:2c:f4:91: 07:18:19:0e:b9:2c:21:ad:8b:c5:14:b0:be:e0:15: 5b:4a:67:f5:3d:16:09:cb:e3:64:c9:1d:ba:5a:c3: 65:71:bd:89:d8:86:d9:3f:70:5b:97:e2:5d:10:dc: 83:4b:2e:c0:a3:c9:34:80:dc:5c:af:69:15:3d:ea: 07:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:80:02:C9:BB:FC:9E:C2:D7:F3:4F:B7:D5:63:FE:3F:C9:4A:64:3E X509v3 Authority Key Identifier: keyid:96:5D:79:B8:89:67:E2:87:E6:A5:15:3A:10:4F:C1:4E:C1:18:5B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/ll15uIln4ofmpRU6EE_BTsEYWxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ll15uIln4ofmpRU6EE_BTsEYWxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF859/C14F55CEAE3311EC9FA60F43C4F9AE02/1CDBD11CAE3711ECB61BED46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.252.0/24 103.30.254.0/24 103.70.180.0/24 103.193.184.0/22 Signature Algorithm: sha256WithRSAEncryption b0:56:69:9a:f9:23:b7:60:90:1e:19:d6:26:e4:ea:7f:8c:ca: 49:0a:b9:87:be:12:c8:7a:cc:e2:b9:be:86:02:82:9e:65:a2: 30:27:02:ee:d7:c1:3c:b7:2b:25:f7:1f:fd:fb:1e:9f:71:a8: 2e:fd:cc:62:15:fd:4c:fa:8f:0d:92:47:f7:1b:0b:91:8f:68: 40:05:5d:f8:0b:be:6d:b9:3d:91:13:2d:02:c2:c4:4c:8d:14: 4f:78:78:b5:93:77:db:d5:c2:e1:06:90:73:67:9c:7f:dd:a4: ee:9b:19:04:9a:20:f2:e1:de:1d:7d:45:3a:30:dd:be:ff:e2: 3a:a8:b7:14:18:56:f8:61:b1:32:6f:18:1a:98:74:d8:73:c4: 5f:f9:52:0f:ac:98:42:b8:74:77:eb:e8:06:83:dc:52:bf:d2: 78:b8:84:8c:20:9e:f9:73:c5:2e:11:b1:05:30:07:bf:d2:98: 25:4c:42:87:b2:36:17:3d:28:01:71:38:ce:48:53:ea:97:6c: 76:53:f3:ec:5b:00:d1:f0:46:60:26:66:5d:51:c3:3e:d6:c0: 62:19:30:62:b1:34:53:f4:08:de:48:16:04:d3:cd:ec:e7:8d: 99:a4:35:e0:bc:98:f9:48:ec:fc:5a:80:3f:87:9b:7a:94:9c: 81:12:35:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTkxMTAvBgNVBAUTKDk2NUQ3OUI4ODk2N0UyODdFNkE1MTUzQTEwNEZDMTRF QzExODVCMTEwHhcNMjQwODAzMDMwNzMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkOWVmNS0xM2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvdnAaMGpDNCzuXPiZTeupJUoe9+Y1aqrP4tl3ckV86B0KM8mlyqtWQlmy87 fk5kYmSNG+deFKAnokLBxjNIfcSsRxz8V/tNfM2KPVOK7LkUQC1WdDypmMArcALO mD8hxGeZwDnSY9BXvKHMtBIr+6YyXXMGHT8Yau0br1+BFRH9AhPeV+vb43I8JZrt bHvOvhbjEoVP6f1cuY1M8QS9IhAFft1pwL7UTV7p81m+zwF7DBlArdeBvmC4J5F4 RbMs9JEHGBkOuSwhrYvFFLC+4BVbSmf1PRYJy+NkyR26WsNlcb2J2IbZP3Bbl+Jd ENyDSy7Ao8k0gNxcr2kVPeoHgwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDqAAsm7 /J7C1/NPt9Vj/j/JSmQ+MB8GA1UdIwQYMBaAFJZdebiJZ+KH5qUVOhBPwU7BGFsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1OS9DMTRGNTVDRUFF MzMxMUVDOUZBNjBGNDNDNEY5QUUwMi9sbDE1dUlsbjRvZm1wUlU2RUVfQlRzRVlX eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsMTV1SWxuNG9mbXBSVTZFRV9CVHNFWVd4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NTkvQzE0RjU1Q0VBRTMzMTFFQzlGQTYwRjQzQzRGOUFFMDIvMUNEQkQxMUNB RTM3MTFFQ0I2MUJFRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnHvwDBABnHv4DBABnRrQDBAJnwbgwDQYJKoZIhvcNAQEL BQADggEBALBWaZr5I7dgkB4Z1ibk6n+MykkKuYe+Esh6zOK5voYCgp5lojAnAu7X wTy3KyX3H/37Hp9xqC79zGIV/Uz6jw2SR/cbC5GPaEAFXfgLvm25PZETLQLCxEyN FE94eLWTd9vVwuEGkHNnnH/dpO6bGQSaIPLh3h19RTow3b7/4jqotxQYVvhhsTJv GBqYdNhzxF/5Ug+smEK4dHfr6AaD3FK/0ni4hIwgnvlzxS4RsQUwB7/SmCVMQoey Nhc9KAFxOM5IU+qXbHZT8+xbANHwRmAmZl1Rwz7WwGIZMGKxNFP0CN5IFgTTzezn jZmkNeC8mPlI7PxagD+Hm3qUnIESNTo= -----END CERTIFICATE-----Generated at Mon Nov 25 02:49:05 2024 by rpki-client on console-ams.rpki-client.org