$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa File: 67624B6088B611EFA5F28A68C4F9AE02.roa (raw, json) Hash identifier: 323i9pL5yCtaBj88xS1UHgMbO3eo112xNP4z6u7enrE= Subject key identifier: CA:0F:C9:DF:04:03:D0:73:62:82:48:25:D3:0E:B6:08:B7:53:E4:63 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 0473 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa Signing time: Sat 12 Oct 2024 16:26:17 +0000 ROA not before: Sat 12 Oct 2024 16:26:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 151106 IP address blocks: 103.204.20.0/24 maxlen: 24 103.204.21.0/24 maxlen: 24 103.204.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Oct 12 16:26:17 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=670aa329-7782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a9:15:31:5c:f4:38:a3:8a:7b:59:e1:2a:ff: 22:2c:c8:24:8f:d2:64:f8:45:53:08:51:2b:bc:91: e6:6c:33:f1:29:f7:c4:37:14:09:9d:2b:76:66:81: 29:a7:09:de:82:bb:b7:c3:95:63:13:b6:a0:26:d8: 29:62:d8:60:66:2f:9d:7f:9b:44:5a:25:7e:03:33: da:9c:67:ee:6b:5d:c2:96:22:44:fe:a3:5a:42:2e: db:82:dd:44:4d:76:b1:b4:f8:23:a8:92:52:d0:94: fe:86:d3:38:f4:92:15:ae:b3:5d:e9:13:fe:51:5c: dc:7a:49:a3:09:99:6c:19:58:28:98:f9:d5:aa:4a: 5c:ea:1e:8e:fa:17:76:a4:56:40:b1:c2:cd:56:2b: d2:85:11:6b:60:aa:59:bd:6c:53:9f:37:51:c1:f2: 47:33:1a:9b:03:f2:e6:a0:c5:c5:36:d9:64:78:69: cd:0c:cb:9f:e2:f6:b5:90:4f:c6:18:d2:5b:f9:c4: a2:22:0e:d5:23:a4:c2:d6:96:49:42:1e:78:c0:f2: 15:a4:9c:e7:e8:8d:0b:ab:35:9a:92:68:22:b4:64: 26:4e:c1:25:07:a1:a2:4b:f0:fa:3a:53:1c:25:b2: ec:30:73:3f:9e:c7:a6:9f:de:61:09:61:a3:1d:aa: e8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:0F:C9:DF:04:03:D0:73:62:82:48:25:D3:0E:B6:08:B7:53:E4:63 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.20.0/23 103.204.23.0/24 Signature Algorithm: sha256WithRSAEncryption 25:ce:0a:40:a3:85:03:97:e7:b2:9e:cf:f8:a3:dc:02:d5:67: be:80:4d:b4:b5:27:5c:45:26:8a:65:d4:33:49:c2:73:3d:3b: a7:7c:f9:35:88:c8:bd:d2:32:64:36:a0:6e:4c:0d:9a:11:ea: 44:8a:74:09:4c:7a:18:b5:0e:11:9c:b2:27:53:85:09:a5:81: ec:ff:f0:ef:1d:9d:80:05:c5:1e:7c:98:4d:2e:4c:cf:ac:0f: 12:f2:bf:11:57:cc:31:90:f9:1e:19:ac:4f:46:2a:97:ed:b2: 18:a4:3b:20:66:1d:eb:d0:a4:bc:8e:8b:f9:47:0f:56:0f:bd: ee:94:f5:1d:f0:48:22:c0:0e:bb:e3:2e:d1:5f:89:93:4b:28: 27:b6:4d:41:66:f1:9f:ac:42:ec:b8:71:13:77:8c:41:05:e6: c2:d8:43:ad:f4:20:21:c3:68:b6:e4:4d:73:f1:82:60:af:7a: 9a:93:3a:20:65:1a:a0:6a:d5:e0:b9:20:56:54:4c:a9:06:93: 07:23:a0:e5:f0:ae:4e:30:91:c6:59:af:26:03:39:df:c9:2b: c6:99:fc:96:d0:81:db:0a:6f:50:91:b9:9a:39:0e:86:1c:7b: a7:74:17:4c:c2:12:4a:2a:9f:76:87:41:d6:06:29:65:75:8e: 68:a9:87:21 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjQxMDEyMTYyNjE3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBhYTMyOS03NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKkVMVz0OKOKe1nhKv8iLMgkj9Jk+EVTCFErvJHmbDPxKffENxQJnSt2ZoEp pwnegru3w5VjE7agJtgpYthgZi+df5tEWiV+AzPanGfua13CliJE/qNaQi7bgt1E TXaxtPgjqJJS0JT+htM49JIVrrNd6RP+UVzcekmjCZlsGVgomPnVqkpc6h6O+hd2 pFZAscLNVivShRFrYKpZvWxTnzdRwfJHMxqbA/LmoMXFNtlkeGnNDMuf4va1kE/G GNJb+cSiIg7VI6TC1pZJQh54wPIVpJzn6I0LqzWakmgitGQmTsElB6GiS/D6OlMc JbLsMHM/nsemn95hCWGjHaro9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMoPyd8E A9BzYoJIJdMOtgi3U+RjMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEODcvRjY4M0NFRjIyMUVCMTFFQzkyNTAxODE5QzRGOUFFMDIvNjc2MjRCNjA4 OEI2MTFFRkE1RjI4QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnzBQDBABnzBcwDQYJKoZIhvcNAQELBQADggEBACXOCkCj hQOX57Kez/ij3ALVZ76ATbS1J1xFJopl1DNJwnM9O6d8+TWIyL3SMmQ2oG5MDZoR 6kSKdAlMehi1DhGcsidThQmlgez/8O8dnYAFxR58mE0uTM+sDxLyvxFXzDGQ+R4Z rE9GKpftshikOyBmHevQpLyOi/lHD1YPve6U9R3wSCLADrvjLtFfiZNLKCe2TUFm 8Z+sQuy4cRN3jEEF5sLYQ630ICHDaLbkTXPxgmCvepqTOiBlGqBq1eC5IFZUTKkG kwcjoOXwrk4wkcZZryYDOd/JK8aZ/JbQgdsKb1CRuZo5DoYce6d0F0zCEkoqn3aH QdYGKWV1jmiphyE= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:33 2024 by rpki-client on console-fra.rpki-client.org