$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa File: 377B6620506B11EBAD849641C4F9AE02.roa (raw, json) Hash identifier: kG/awft1YnlMUcGo/TLCAbm8s2p3POH5kub747SVbDc= Subject key identifier: 85:F8:70:9E:3C:DB:3C:4E:06:BA:66:11:C3:A2:52:83:D7:2C:5D:C8 Certificate issuer: /CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Certificate serial: 066F Authority key identifier: 28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa Signing time: Sat 28 Sep 2024 20:09:41 +0000 ROA not before: Sat 28 Sep 2024 20:09:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133957 IP address blocks: 103.129.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Validity Not Before: Sep 28 20:09:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f86284-b348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5d:54:14:09:41:c4:1c:74:9e:03:78:a3:23: ca:ea:53:34:20:88:36:f2:d7:b3:45:5e:f3:a1:d3: 6d:78:6d:b5:9d:6b:f3:44:80:bc:20:cb:33:a3:14: 91:83:81:d7:df:38:90:d0:23:0c:c2:7f:d6:ad:3a: 47:be:b0:3b:79:98:6d:ae:23:33:b4:d4:77:09:35: 96:eb:4e:a0:33:9f:3e:94:58:6e:19:97:ad:30:3d: 80:43:48:6a:32:74:2e:bc:d3:ea:54:f1:e3:a1:34: 38:70:0d:76:6d:00:2c:71:8a:5d:66:f8:bf:d5:05: 22:1a:e0:9b:9d:ba:81:fd:bb:96:99:3c:ea:3d:3b: 04:9a:07:be:f4:3f:b4:4e:e8:33:70:d4:4a:af:cf: 82:66:36:a8:15:7a:72:88:da:83:ee:b7:7d:72:8e: ee:2c:ec:c6:f7:3b:27:9b:e7:75:58:5b:fb:37:4e: 70:ec:57:bc:ca:64:ff:86:68:5e:17:d5:9e:06:6f: 93:67:10:34:d9:7d:3f:f9:80:87:9c:1d:1e:78:cd: 01:8a:27:e0:a0:8e:15:9f:67:67:a4:be:af:9e:01: 8a:50:46:4a:26:a7:3a:75:1b:93:8a:25:f2:e8:61: 91:b1:b2:9f:83:d9:53:f2:e4:0e:b3:db:84:e7:f7: 2c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F8:70:9E:3C:DB:3C:4E:06:BA:66:11:C3:A2:52:83:D7:2C:5D:C8 X509v3 Authority Key Identifier: keyid:28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/377B6620506B11EBAD849641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.153.0/24 Signature Algorithm: sha256WithRSAEncryption 59:f7:02:9e:a8:a7:ab:ce:3e:34:f3:fc:7d:2a:26:a7:bf:63: e8:30:9f:c6:ad:3f:2f:e9:f5:d7:13:7e:c5:de:0f:4d:0b:08: 50:d6:7d:56:8c:e4:b2:f2:95:aa:dc:e6:8c:2d:c4:de:f6:5e: ac:9f:6c:26:64:e9:98:3e:a3:02:23:59:69:5e:91:7f:0d:78: 5d:26:2b:1e:a2:e7:00:2d:0b:ff:b2:4f:f2:9a:e8:56:15:6a: cc:60:5e:3a:98:3d:1e:c1:79:cf:44:7e:75:c9:45:67:84:b1: dd:51:14:1b:ff:55:8b:a5:97:a7:34:b6:a0:29:f4:1e:d1:a7: 9d:ad:60:42:36:c3:3a:9a:be:54:a9:dd:e7:ec:e0:15:11:a7: b8:c6:3e:db:27:ca:36:ca:4f:2f:86:72:3d:f7:06:02:72:37: 8a:d7:d7:32:aa:3e:44:b9:02:8f:77:01:93:42:dc:fc:2b:58: 25:d8:15:bd:10:ae:00:28:20:8a:43:c9:b9:18:32:94:24:46: e9:e9:b4:63:d3:c7:28:2b:b6:3b:58:25:4e:27:91:6a:39:80: f9:70:5a:5e:11:1d:b7:2b:e0:29:50:10:67:23:7e:0e:48:86: c2:d5:cb:56:16:45:e2:1b:4b:00:24:54:99:f4:eb:c4:30:de: bd:38:ad:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRjYxMTAvBgNVBAUTKDI4Q0FFRTg0OTY1NjlDNTczQzNFNUIxODkwQzVBMUIz NENGQzhFMzAwHhcNMjQwOTI4MjAwOTQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4NjI4NC1iMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx11UFAlBxBx0ngN4oyPK6lM0IIg28tezRV7zodNteG21nWvzRIC8IMszoxSR g4HX3ziQ0CMMwn/WrTpHvrA7eZhtriMztNR3CTWW606gM58+lFhuGZetMD2AQ0hq MnQuvNPqVPHjoTQ4cA12bQAscYpdZvi/1QUiGuCbnbqB/buWmTzqPTsEmge+9D+0 TugzcNRKr8+CZjaoFXpyiNqD7rd9co7uLOzG9zsnm+d1WFv7N05w7Fe8ymT/hmhe F9WeBm+TZxA02X0/+YCHnB0eeM0BiifgoI4Vn2dnpL6vngGKUEZKJqc6dRuTiiXy 6GGRsbKfg9lT8uQOs9uE5/csGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIX4cJ48 2zxOBrpmEcOiUoPXLF3IMB8GA1UdIwQYMBaAFCjK7oSWVpxXPD5bGJDFobNM/I4w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVGNi85MzgwMDc4RTYx RDYxMUVBQjhEMDE1NUJDNEY5QUUwMi9LTXJ1aEpaV25GYzhQbHNZa01XaHMwejhq akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNcnVoSlpXbkZjOFBsc1lrTVdoczB6OGpqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFRjYvOTM4MDA3OEU2MUQ2MTFFQUI4RDAxNTVCQzRGOUFFMDIvMzc3QjY2MjA1 MDZCMTFFQkFEODQ5NjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngZkwDQYJKoZIhvcNAQELBQADggEBAFn3Ap6op6vOPjTz /H0qJqe/Y+gwn8atPy/p9dcTfsXeD00LCFDWfVaM5LLylarc5owtxN72XqyfbCZk 6Zg+owIjWWlekX8NeF0mKx6i5wAtC/+yT/Ka6FYVasxgXjqYPR7Bec9EfnXJRWeE sd1RFBv/VYull6c0tqAp9B7Rp52tYEI2wzqavlSp3efs4BURp7jGPtsnyjbKTy+G cj33BgJyN4rX1zKqPkS5Ao93AZNC3PwrWCXYFb0QrgAoIIpDybkYMpQkRunptGPT xygrtjtYJU4nkWo5gPlwWl4RHbcr4ClQEGcjfg5IhsLVy1YWReIbSwAkVJn068Qw 3r04rfA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org