$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa File: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (raw, json) Hash identifier: JKakG9b3XVmkk3cxf1Vx97SVOH3cZkhGMhy0iHgzcqA= Subject key identifier: C9:24:10:81:22:4B:11:0E:02:7E:8D:68:64:8F:02:EE:40:43:0C:FE Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: 45 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa Signing time: Mon 11 Nov 2024 05:28:22 +0000 ROA not before: Mon 11 Nov 2024 05:28:22 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136557 IP address blocks: 103.26.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Nov 11 05:28:22 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673195f5-a2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:04:45:a8:fb:7c:8f:c7:af:33:34:e0:39:19: b0:85:6a:c1:69:fb:09:16:82:d2:8d:7d:e0:a0:67: 15:01:12:89:51:3b:29:19:b6:fc:88:29:3d:82:76: 8d:08:15:6b:ff:0b:6a:d8:e2:04:3c:11:07:c1:75: 4f:6e:f3:43:1e:d9:b3:4f:47:ef:18:1d:55:40:39: c9:28:93:0a:1f:aa:aa:95:8b:77:6d:ce:7c:22:da: 25:14:a2:a9:34:fd:1d:06:d3:39:bf:86:5e:46:cd: 53:b1:56:02:fc:93:a8:26:48:cf:9b:97:2a:de:16: f0:2d:c0:20:fe:ce:26:ba:39:49:47:1f:76:81:23: 6e:81:ff:e5:c4:34:3a:23:10:fd:cb:28:a1:1b:41: 37:c0:d9:5a:d0:16:de:40:82:de:32:85:df:6d:87: 52:97:8b:2f:68:98:fd:94:90:d3:25:ef:7b:96:75: 4b:3c:24:1e:7b:59:a4:0a:7e:58:49:1e:ca:68:df: 24:14:7a:a2:06:b8:b7:6b:ea:2d:67:c4:57:7c:8b: cc:9a:d1:c4:7f:4e:0e:8e:fa:3f:69:eb:c1:7f:6e: 0d:7e:ee:c6:9b:cf:a4:bb:47:4b:73:91:3c:c3:9c: aa:59:43:ed:bb:76:b1:9e:d7:6e:cc:11:e8:99:66: aa:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:24:10:81:22:4B:11:0E:02:7E:8D:68:64:8F:02:EE:40:43:0C:FE X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/621428CE3CFB11EFB0BF040BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.237.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:88:5a:0d:28:ed:f9:50:61:b3:6c:c5:3a:34:3f:3d:b9:79: 69:0e:ee:79:6d:e5:e1:c1:67:b9:28:7d:a2:96:e8:c1:e7:b6: d7:99:4d:33:8b:f7:2a:72:a9:5a:c0:68:b5:53:73:bb:cd:62: 51:22:64:d2:41:32:00:8f:64:d2:5b:a9:54:5e:da:20:15:f0: 18:78:e1:3c:dc:7e:d6:9c:c0:6d:d6:6e:15:21:82:ca:96:f9: 31:bf:9a:cb:f4:aa:c6:93:92:3d:be:28:eb:7e:bc:2a:96:c5: 68:67:c8:94:30:8f:10:cb:ad:ce:58:a2:f9:06:a8:83:a8:4d: 3b:f0:75:20:03:71:61:8c:2a:e1:9c:5c:fb:41:a2:2c:9d:7b: 2f:e2:33:f0:46:98:46:11:51:84:08:38:15:f7:6b:05:4c:38: 86:35:3e:32:d7:58:df:62:24:5c:9c:dd:27:ca:5c:08:fc:08: 76:91:df:e2:bd:80:08:d5:0b:38:75:c4:1b:08:1a:3c:81:a1: 47:ba:91:53:a9:55:db:39:e6:43:82:ca:d7:69:13:9c:a6:fc: 73:04:f8:6e:67:c3:63:72:9c:8e:70:6e:8f:65:b9:eb:c9:ac: a9:61:d2:94:03:a5:60:0a:46:a5:b1:4f:b7:64:d2:76:8e:7b: 15:1f:e3:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Mzc5RjExMC8GA1UEBRMoODJCNEQyNzFERTIxMkUwNjMzNUMwQjQ1RTY2NTE3QjUw OEI4MzUxNjAeFw0yNDExMTEwNTI4MjJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzE5NWY1LWEyZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuBEWo+3yPx68zNOA5GbCFasFp+wkWgtKNfeCgZxUBEolROykZtvyIKT2Cdo0I FWv/C2rY4gQ8EQfBdU9u80Me2bNPR+8YHVVAOckokwofqqqVi3dtznwi2iUUoqk0 /R0G0zm/hl5GzVOxVgL8k6gmSM+blyreFvAtwCD+zia6OUlHH3aBI26B/+XENDoj EP3LKKEbQTfA2VrQFt5Agt4yhd9th1KXiy9omP2UkNMl73uWdUs8JB57WaQKflhJ Hspo3yQUeqIGuLdr6i1nxFd8i8ya0cR/Tg6O+j9p68F/bg1+7sabz6S7R0tzkTzD nKpZQ+27drGe127MEeiZZqpNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUySQQgSJL EQ4Cfo1oZI8C7kBDDP4wHwYDVR0jBBgwFoAUgrTScd4hLgYzXAtF5mUXtQi4NRYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNzlGLzZGOTlENEYwM0NG OTExRUZBMEEwNkY4NkM0RjlBRTAyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5S WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3JUU2NkNGhMZ1l6WEF0RjVtVVh0UWk0TlJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi82MjE0MjhDRTND RkIxMUVGQjBCRjA0MEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGca7TANBgkqhkiG9w0BAQsFAAOCAQEAXYhaDSjt+VBhs2zF OjQ/Pbl5aQ7ueW3l4cFnuSh9opbowee215lNM4v3KnKpWsBotVNzu81iUSJk0kEy AI9k0lupVF7aIBXwGHjhPNx+1pzAbdZuFSGCypb5Mb+ay/SqxpOSPb4o6368KpbF aGfIlDCPEMutzlii+Qaog6hNO/B1IANxYYwq4Zxc+0GiLJ17L+Iz8EaYRhFRhAg4 FfdrBUw4hjU+MtdY32IkXJzdJ8pcCPwIdpHf4r2ACNULOHXEGwgaPIGhR7qRU6lV 2znmQ4LK12kTnKb8cwT4bmfDY3KcjnBuj2W568msqWHSlAOlYApGpbFPt2TSdo57 FR/j5Q== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org