$ rpki-client -vvf rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa File: 660A349884C511EFB2831C16C4F9AE02.roa (raw, json) Hash identifier: q2RN3xLXUOsYwfNjHGYHuCEJyjXQ1ifjwY5JK1sjpVs= Subject key identifier: D4:27:01:01:D0:3A:A3:31:D2:CC:D8:B6:5D:B0:A2:FB:40:5F:F5:19 Certificate issuer: /CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Certificate serial: 051B Authority key identifier: F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa Signing time: Tue 08 Oct 2024 23:32:46 +0000 ROA not before: Tue 08 Oct 2024 23:32:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 6134 IP address blocks: 43.248.8.0/22 maxlen: 24 103.39.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E094D/serialNumber=F31705E818EA4803B0934193F61FC6E3371772ED Validity Not Before: Oct 8 23:32:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705c11d-53de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2a:2b:3f:ad:c8:40:9b:a8:0d:c9:db:f9:7c: 07:d1:0c:2e:80:ef:a2:3a:6d:1b:5f:66:bb:c1:1c: 10:c2:7b:21:ec:e2:61:90:52:19:ee:57:06:df:fe: 20:1d:eb:89:9c:17:35:5b:b9:68:41:2d:76:6e:ae: 66:af:b3:0b:ad:d3:5d:50:28:a4:c2:6a:a2:7b:7a: 38:07:9e:99:68:5b:d9:1b:88:8b:ca:ca:ef:50:8d: ae:4b:3e:ad:3b:9e:56:25:d0:b8:b0:af:6a:71:a8: 23:fc:08:f8:59:46:20:21:51:18:64:03:f0:9b:84: d2:4b:19:18:35:04:4f:b2:39:a7:f5:2e:ab:91:e6: 3d:af:07:3f:cf:d6:ee:3a:b7:0f:23:36:a0:45:53: 00:95:3f:fe:90:df:2b:0b:43:42:eb:da:94:8a:76: d9:bb:ea:e1:e8:58:85:6b:77:b3:44:83:ca:8c:1a: 08:c2:7b:a4:78:ea:a3:76:28:e7:12:c3:4e:a8:c2: 39:dc:55:92:0c:21:7c:f2:20:c8:19:67:1b:d7:04: 43:2f:f7:bf:0b:6d:df:10:e5:8f:c5:45:7e:80:5a: 89:83:33:48:31:c1:af:91:9a:a6:56:c2:a1:6d:2e: ef:3b:45:4e:a0:59:f9:8a:98:5b:bc:70:cd:37:0b: 86:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:27:01:01:D0:3A:A3:31:D2:CC:D8:B6:5D:B0:A2:FB:40:5F:F5:19 X509v3 Authority Key Identifier: keyid:F3:17:05:E8:18:EA:48:03:B0:93:41:93:F6:1F:C6:E3:37:17:72:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/8xcF6BjqSAOwk0GT9h_G4zcXcu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8xcF6BjqSAOwk0GT9h_G4zcXcu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E094D/40B7386EDE8111EBA9FC7D72C4F9AE02/660A349884C511EFB2831C16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.8.0/22 103.39.76.0/22 Signature Algorithm: sha256WithRSAEncryption 63:8b:57:55:a8:06:64:8d:1b:14:a8:5e:7c:24:a7:29:25:0f: 32:4c:0e:fc:4e:4f:56:f2:8d:59:a8:16:14:df:d3:94:04:2b: 6a:98:09:53:f4:c9:c7:f3:ef:5e:4a:33:a2:d8:dc:14:30:c0: b8:13:cf:f7:11:6e:d8:4a:10:9f:93:03:a5:b3:30:58:a8:50: dc:45:57:7a:46:1b:e9:f6:d4:68:61:5a:ad:d7:9c:9d:25:22: 03:9d:d4:32:6a:0e:43:fc:55:68:10:35:59:d7:ae:20:d5:f1: d0:e9:f7:9f:58:df:65:ca:01:f4:8e:87:b9:17:87:38:e3:d1: 64:92:ca:da:94:9e:54:7b:0b:cd:a2:40:b9:4e:37:4b:fe:23: dc:f9:8a:99:f2:2b:11:8e:17:35:5f:43:fb:5f:d6:9c:7f:80: 29:4f:fb:eb:87:4b:ec:00:67:90:ab:78:f7:46:4f:e6:ba:a2: 4f:31:6d:7f:58:71:9a:35:e8:a7:21:45:60:1d:8b:33:b6:db: 36:e4:41:70:c6:96:78:62:c2:7f:e8:a8:b2:df:2f:fd:0e:4a: 24:c8:14:13:9e:4b:31:43:da:2b:84:53:62:bc:e2:e9:32:5b: 83:d3:39:1c:b9:1d:28:7e:27:e9:00:e4:55:2d:e4:c6:75:82: 2f:e1:88:89 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA5NEQxMTAvBgNVBAUTKEYzMTcwNUU4MThFQTQ4MDNCMDkzNDE5M0Y2MUZDNkUz MzcxNzcyRUQwHhcNMjQxMDA4MjMzMjQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1YzExZC01M2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yorP63IQJuoDcnb+XwH0QwugO+iOm0bX2a7wRwQwnsh7OJhkFIZ7lcG3/4g HeuJnBc1W7loQS12bq5mr7MLrdNdUCikwmqie3o4B56ZaFvZG4iLysrvUI2uSz6t O55WJdC4sK9qcagj/Aj4WUYgIVEYZAPwm4TSSxkYNQRPsjmn9S6rkeY9rwc/z9bu OrcPIzagRVMAlT/+kN8rC0NC69qUinbZu+rh6FiFa3ezRIPKjBoIwnukeOqjdijn EsNOqMI53FWSDCF88iDIGWcb1wRDL/e/C23fEOWPxUV+gFqJgzNIMcGvkZqmVsKh bS7vO0VOoFn5iphbvHDNNwuG+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNQnAQHQ OqMx0szYtl2wovtAX/UZMB8GA1UdIwQYMBaAFPMXBegY6kgDsJNBk/YfxuM3F3Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDk0RC80MEI3Mzg2RURF ODExMUVCQTlGQzdENzJDNEY5QUUwMi84eGNGNkJqcVNBT3drMEdUOWhfRzR6Y1hj dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh4Y0Y2QmpxU0FPd2swR1Q5aF9HNHpjWGN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTA5NEQvNDBCNzM4NkVERTgxMTFFQkE5RkM3RDcyQzRGOUFFMDIvNjYwQTM0OTg4 NEM1MTFFRkIyODMxQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+AgDBAJnJ0wwDQYJKoZIhvcNAQELBQADggEBAGOLV1Wo BmSNGxSoXnwkpyklDzJMDvxOT1byjVmoFhTf05QEK2qYCVP0ycfz715KM6LY3BQw wLgTz/cRbthKEJ+TA6WzMFioUNxFV3pGG+n21GhhWq3XnJ0lIgOd1DJqDkP8VWgQ NVnXriDV8dDp959Y32XKAfSOh7kXhzjj0WSSytqUnlR7C82iQLlON0v+I9z5ipny KxGOFzVfQ/tf1px/gClP++uHS+wAZ5CrePdGT+a6ok8xbX9YcZo16KchRWAdizO2 2zbkQXDGlnhiwn/oqLLfL/0OSiTIFBOeSzFD2iuEU2K84ukyW4PTORy5HSh+J+kA 5FUt5MZ1gi/hiIk= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:33 2024 by rpki-client on console-ams.rpki-client.org