$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa File: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (raw, json) Hash identifier: EG7DAdh62MT15Z2IRnWNBPi8u6Tt+z9LL+klU2Atkq0= Subject key identifier: 0C:5C:16:00:F0:E2:4D:5A:6F:A3:84:77:78:BA:A9:E7:F3:C0:09:42 Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 118D Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa Signing time: Wed 18 Sep 2024 17:35:37 +0000 ROA not before: Wed 18 Sep 2024 17:35:37 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55799 IP address blocks: 103.70.59.0/24 maxlen: 24 103.81.247.0/24 maxlen: 24 103.82.4.0/23 maxlen: 23 103.82.4.0/24 maxlen: 24 103.82.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4493 (0x118d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Sep 18 17:35:37 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66eb0f69-b6e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d3:f8:fd:ef:01:c3:50:c1:05:c5:68:38:ac: fc:a0:d5:43:52:d3:27:d1:fa:5b:4f:09:8e:34:f4: 42:63:70:42:0a:bb:50:d4:69:91:5a:ed:27:6f:2a: 4b:d7:76:d6:f8:a5:17:1c:82:b1:46:bf:34:80:8d: a4:5b:d9:1b:32:37:8f:f7:13:b6:61:a1:e3:49:71: 9a:f3:a3:dc:09:a2:e2:c8:75:d5:2b:59:94:34:be: f3:9d:4b:65:01:7e:fa:aa:15:46:0b:86:93:1b:2f: e8:38:0a:dc:b0:e3:32:f5:28:60:24:52:cf:c9:a7: f5:67:1e:73:93:d0:75:b5:2d:ec:26:84:a2:ec:17: 86:82:ac:f3:ce:a3:30:f8:42:bf:34:8d:48:30:1a: 7a:72:ec:9b:2c:a2:21:6f:8e:ad:26:bc:73:0d:cd: 90:d6:a5:ec:07:e7:8c:ba:57:a4:a1:6b:53:1a:81: fd:07:70:24:fc:4b:71:a2:55:85:c0:5a:f5:2a:4b: fe:4c:66:ef:f3:65:8f:84:04:93:1e:8a:70:81:98: 02:c0:1f:2e:c1:df:77:4a:56:94:a5:1a:ff:af:58: de:9f:61:57:64:d8:30:9f:aa:f3:48:65:f0:17:d6: 78:b5:91:7c:b0:a8:5e:a1:5c:40:5e:cd:52:11:14: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5C:16:00:F0:E2:4D:5A:6F:A3:84:77:78:BA:A9:E7:F3:C0:09:42 X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.59.0/24 103.81.247.0/24 103.82.4.0/23 Signature Algorithm: sha256WithRSAEncryption 49:f0:01:76:f8:2a:fd:05:36:0c:42:19:73:d6:61:93:4d:30: 3f:69:3a:a1:a1:68:51:85:b7:52:ff:57:d2:59:6d:50:0d:8f: 68:f0:3c:94:36:f9:de:20:bf:c7:72:3e:6c:0f:bd:28:ae:68: 2f:7d:27:96:72:4d:5e:33:f6:cf:6c:44:cd:ed:8b:61:74:88: 0e:63:6f:14:b8:aa:d1:70:79:92:f5:d2:12:79:bd:a7:13:89: 99:c2:35:2d:c4:2e:cb:7a:9a:4d:52:76:76:c2:8a:60:a6:54: d9:ec:57:ed:bd:00:4a:c5:68:69:89:50:a8:4a:a9:ad:08:6b: 88:2e:26:38:9d:45:13:c8:24:54:f2:b8:41:1a:19:6a:a3:8d: 94:cb:eb:fd:12:90:52:c6:f4:84:2b:65:70:cb:f9:4a:5b:5e: 7f:00:61:5d:fa:54:ad:23:04:96:7a:c2:68:f1:72:27:6a:63: e9:38:9e:48:db:74:84:66:52:06:cc:36:2e:bb:21:d8:39:86: e5:67:d8:56:48:e3:8a:1a:f5:e3:d3:75:c5:ad:35:42:5f:19: b9:30:eb:51:22:d4:36:25:64:bb:cf:b8:4d:c4:b3:89:97:01: bd:29:4a:cd:27:34:9d:d4:e7:c1:cc:43:e1:42:59:0a:a0:f9: d9:3f:7a:37 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjQwOTE4MTczNTM3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViMGY2OS1iNmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dP4/e8Bw1DBBcVoOKz8oNVDUtMn0fpbTwmONPRCY3BCCrtQ1GmRWu0nbypL 13bW+KUXHIKxRr80gI2kW9kbMjeP9xO2YaHjSXGa86PcCaLiyHXVK1mUNL7znUtl AX76qhVGC4aTGy/oOArcsOMy9ShgJFLPyaf1Zx5zk9B1tS3sJoSi7BeGgqzzzqMw +EK/NI1IMBp6cuybLKIhb46tJrxzDc2Q1qXsB+eMulekoWtTGoH9B3Ak/EtxolWF wFr1Kkv+TGbv82WPhASTHopwgZgCwB8uwd93SlaUpRr/r1jen2FXZNgwn6rzSGXw F9Z4tZF8sKheoVxAXs1SERTGCwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAxcFgDw 4k1ab6OEd3i6qefzwAlCMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMzMvODc3QTc5QjZFOUQxMTFFOEFDODkyNzcwQzRGOUFFMDIvRDBCOEMwOUUx QkJGMTFFQUE2NEVDRjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjsDBABnUfcDBAFnUgQwDQYJKoZIhvcNAQELBQADggEB AEnwAXb4Kv0FNgxCGXPWYZNNMD9pOqGhaFGFt1L/V9JZbVANj2jwPJQ2+d4gv8dy PmwPvSiuaC99J5ZyTV4z9s9sRM3ti2F0iA5jbxS4qtFweZL10hJ5vacTiZnCNS3E Lst6mk1SdnbCimCmVNnsV+29AErFaGmJUKhKqa0Ia4guJjidRRPIJFTyuEEaGWqj jZTL6/0SkFLG9IQrZXDL+UpbXn8AYV36VK0jBJZ6wmjxcidqY+k4nkjbdIRmUgbM Ni67Idg5huVn2FZI44oa9ePTdcWtNUJfGbkw61Ei1DYlZLvPuE3Es4mXAb0pSs0n NJ3U58HMQ+FCWQqg+dk/ejc= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org