$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/811803C270C111EF8A30EB51C4F9AE02.roa File: 811803C270C111EF8A30EB51C4F9AE02.roa (raw, json) Hash identifier: 89cYcTv3FMM/3M08ZzwOVhAvZtTfzr28mJIgkmfMCvo= Subject key identifier: 16:66:5D:49:A6:A7:78:32:C3:8D:48:21:F9:6E:85:4A:19:5B:42:7B Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 025C Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/811803C270C111EF8A30EB51C4F9AE02.roa Signing time: Thu 12 Sep 2024 04:43:07 +0000 ROA not before: Thu 12 Sep 2024 04:43:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151734 IP address blocks: 103.243.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Validity Not Before: Sep 12 04:43:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66e2715b-0f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6c:19:f4:4b:f3:37:13:d8:c7:cd:4f:03:3b: 1c:d1:8a:20:05:5d:5c:65:e2:d3:b2:ca:a0:14:08: 7a:bc:15:2c:98:22:e8:ef:8f:ab:e3:b5:36:0d:40: 71:00:c4:cd:27:f6:d3:fe:15:99:a8:c8:22:69:16: a7:12:00:47:4d:6e:64:72:fb:8c:47:cc:b9:f3:9e: 94:51:36:c1:cb:85:c3:01:b9:cf:c5:2a:11:1d:56: 1e:75:e5:f5:89:5b:e3:89:6d:3c:89:98:97:7f:e4: 2c:e8:22:d1:bb:67:85:67:ec:c5:c6:7f:1f:36:cd: 51:d0:af:d6:54:03:5a:17:c3:5c:af:7f:4e:9c:2c: 5b:6a:67:aa:71:a6:30:55:7f:72:8e:f5:b3:e2:66: 19:c6:79:ba:ac:7a:ab:6f:04:77:b4:67:19:18:f5: 33:54:53:3a:67:9d:aa:9d:9d:da:28:e4:81:4b:4c: 60:d3:47:53:98:ce:c5:d4:38:61:7a:a3:fd:93:69: 78:87:18:43:24:77:18:c3:fd:42:55:9b:bc:b4:d0: 99:7c:cf:ff:91:97:bc:53:13:35:1b:fe:f8:57:12: 59:fe:a4:d0:75:3f:4d:04:47:7d:bb:76:48:19:87: f7:5c:af:0f:94:23:07:0e:69:3d:96:35:31:2f:a3: e5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:66:5D:49:A6:A7:78:32:C3:8D:48:21:F9:6E:85:4A:19:5B:42:7B X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/811803C270C111EF8A30EB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.119.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:f9:ff:6f:e5:14:7a:f1:10:58:43:d7:d6:ec:a3:15:2e:85: 92:31:02:2c:09:11:02:d0:16:db:a5:2d:2e:99:f0:65:7c:9b: ad:e0:88:30:2c:f0:9b:aa:3e:92:88:cb:70:e8:ba:a7:f5:21: 08:c9:a8:64:6c:fb:89:af:fc:09:5b:9f:78:fb:16:c4:38:86: 62:f5:51:e4:4d:86:94:f8:15:3c:71:b7:d0:62:e8:b8:48:2b: e2:78:3c:14:12:30:5a:1c:23:d9:a0:16:d5:23:53:f8:d6:00: 03:1d:3a:7b:11:84:fb:a4:99:91:ed:30:ca:e2:61:d6:69:de: 3d:42:b1:77:43:23:97:11:c4:cf:8d:23:8c:13:22:6a:e0:98: 86:fe:dc:b0:60:57:83:0f:5b:81:fc:07:0d:c9:fd:45:a6:4a: bf:1f:19:97:42:bb:0e:e5:64:0e:3a:21:22:ba:be:ac:1f:db: 68:57:c8:1a:20:4b:ff:a7:17:c8:f2:43:98:e3:74:c2:8d:fd: 5f:b5:f4:4e:bf:c5:15:3f:f6:1a:c2:62:1f:eb:c9:f1:6e:d6: 97:43:d7:27:fa:1d:1d:22:b0:80:e2:a4:79:bf:b6:5a:fd:1a: c0:c3:86:d7:bc:15:ea:22:e4:1f:58:c1:35:17:e3:86:17:e3: 1f:10:1b:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjQwOTEyMDQ0MzA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUyNzE1Yi0wZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmwZ9EvzNxPYx81PAzsc0YogBV1cZeLTssqgFAh6vBUsmCLo74+r47U2DUBx AMTNJ/bT/hWZqMgiaRanEgBHTW5kcvuMR8y5856UUTbBy4XDAbnPxSoRHVYedeX1 iVvjiW08iZiXf+Qs6CLRu2eFZ+zFxn8fNs1R0K/WVANaF8Ncr39OnCxbameqcaYw VX9yjvWz4mYZxnm6rHqrbwR3tGcZGPUzVFM6Z52qnZ3aKOSBS0xg00dTmM7F1Dhh eqP9k2l4hxhDJHcYw/1CVZu8tNCZfM//kZe8UxM1G/74VxJZ/qTQdT9NBEd9u3ZI GYf3XK8PlCMHDmk9ljUxL6PlSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBZmXUmm p3gyw41IIfluhUoZW0J7MB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvODExODAzQzI3 MEMxMTFFRjhBMzBFQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn83cwDQYJKoZIhvcNAQELBQADggEBAAv5/2/lFHrxEFhD 19bsoxUuhZIxAiwJEQLQFtulLS6Z8GV8m63giDAs8JuqPpKIy3Douqf1IQjJqGRs +4mv/Albn3j7FsQ4hmL1UeRNhpT4FTxxt9Bi6LhIK+J4PBQSMFocI9mgFtUjU/jW AAMdOnsRhPukmZHtMMriYdZp3j1CsXdDI5cRxM+NI4wTImrgmIb+3LBgV4MPW4H8 Bw3J/UWmSr8fGZdCuw7lZA46ISK6vqwf22hXyBogS/+nF8jyQ5jjdMKN/V+19E6/ xRU/9hrCYh/ryfFu1pdD1yf6HR0isIDipHm/tlr9GsDDhte8Feoi5B9YwTUX44YX 4x8QG8E= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org