$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/A9204F96917F11EDA5B26357C4F9AE02.roa File: A9204F96917F11EDA5B26357C4F9AE02.roa (raw, json) Hash identifier: tWTho3aXOfmUFjTTDFR6B98CoHeEv+Tq3wQD28el+4I= Subject key identifier: 9F:21:6B:15:C0:C6:86:4A:B3:8D:1F:6F:BD:BE:25:DA:2B:97:C0:9A Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 101E Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/A9204F96917F11EDA5B26357C4F9AE02.roa Signing time: Tue 09 Apr 2024 08:02:36 +0000 ROA not before: Tue 09 Apr 2024 08:02:36 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 147314 IP address blocks: 103.86.192.0/24 maxlen: 24 220.152.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4126 (0x101e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 9 08:02:36 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6614f61b-3a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:fe:f3:ac:5b:47:e0:6e:89:f0:08:56:2a: 7b:01:54:dc:2a:41:c3:2a:54:12:4e:2b:4b:94:e6: a5:3d:89:ad:4e:33:26:71:36:12:b0:a8:13:20:00: 15:85:45:f5:54:cc:0f:12:01:e9:4a:8e:e6:55:c6: 8d:1d:69:e2:87:5e:b2:e4:2d:a9:4c:60:39:7e:48: 52:ee:35:06:f4:17:c5:a4:f7:87:fa:41:0a:b2:9d: 09:79:c0:df:24:36:c7:87:9d:3e:3b:29:57:74:44: 7a:ce:e6:bb:d1:af:46:9a:cf:c8:58:c5:21:55:94: 79:cb:4d:fc:3b:c5:1c:b7:39:15:40:2c:d5:31:97: 98:6b:df:b1:5c:a4:8c:ff:ea:2d:a8:b9:b9:55:06: 63:69:bb:3a:35:5a:fc:71:2f:43:4a:88:aa:c2:ca: 3a:75:61:15:ba:d7:7c:bb:93:1f:53:62:fc:2e:bc: be:34:e1:cb:26:27:29:69:4e:ff:34:15:4c:19:a8: 8e:3b:2d:aa:af:7c:bd:63:c9:13:7c:52:bd:52:29: 7c:4e:fa:28:b3:50:51:9c:97:ea:6e:0c:31:e1:43: 1d:59:fe:c9:12:79:d2:1f:66:a7:fb:b4:49:93:a9: c0:10:4d:d1:6f:86:b0:0b:2b:fe:86:3e:22:fd:0c: 06:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:21:6B:15:C0:C6:86:4A:B3:8D:1F:6F:BD:BE:25:DA:2B:97:C0:9A X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/A9204F96917F11EDA5B26357C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.192.0/24 220.152.115.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:1c:17:6f:f2:93:71:f2:49:e1:ae:7a:d0:e1:fd:78:2a:6f: 82:46:08:44:b9:5a:9f:1a:6c:f0:53:d1:ed:45:c8:57:d3:97: 85:3e:85:95:c4:fc:9b:85:4e:a5:c5:c3:4e:6e:29:b0:1d:2f: f7:e1:7a:8e:4c:7d:f2:94:49:74:5b:f9:90:4b:10:95:94:81: 1e:42:de:a2:56:58:a9:66:3a:62:3d:6a:c7:f5:9b:2f:09:31: 15:97:45:f8:67:31:3f:ba:4b:46:2b:9e:e9:93:f2:6a:b6:b0: 29:47:a5:0c:0b:92:eb:df:e5:ee:09:7c:8c:33:54:9b:b4:28: 4a:bb:5a:83:22:37:f6:56:fb:6d:71:9c:db:61:eb:87:d6:ec: 14:9d:4b:28:c6:6e:39:57:39:38:f4:71:4d:c6:aa:fb:c6:dc: 77:60:7f:5b:e7:6b:e6:85:56:42:cb:15:b8:1f:1c:77:b2:51: 8f:26:3f:80:b0:eb:7e:7d:e7:74:ab:82:4c:73:af:93:2d:19: c7:fc:78:42:bd:12:0a:67:cc:4a:41:3c:6c:ee:65:3c:b4:53: 64:2d:cb:83:a8:b6:b7:4f:46:da:48:7c:48:32:9d:cd:ae:5f: a7:29:7f:a0:eb:a1:69:70:26:e0:8f:43:61:d1:5b:6b:38:8e: 4b:77:38:8c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjQwNDA5MDgwMjM2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0ZjYxYi0zYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnT+86xbR+BuifAIVip7AVTcKkHDKlQSTitLlOalPYmtTjMmcTYSsKgTIAAV hUX1VMwPEgHpSo7mVcaNHWnih16y5C2pTGA5fkhS7jUG9BfFpPeH+kEKsp0JecDf JDbHh50+OylXdER6zua70a9Gms/IWMUhVZR5y038O8UctzkVQCzVMZeYa9+xXKSM /+otqLm5VQZjabs6NVr8cS9DSoiqwso6dWEVutd8u5MfU2L8Lry+NOHLJicpaU7/ NBVMGaiOOy2qr3y9Y8kTfFK9Uil8Tvoos1BRnJfqbgwx4UMdWf7JEnnSH2an+7RJ k6nAEE3Rb4awCyv+hj4i/QwG9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ8haxXA xoZKs40fb72+Jdorl8CaMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvQTkyMDRGOTY5 MTdGMTFFREE1QjI2MzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnVsADBADcmHMwDQYJKoZIhvcNAQELBQADggEBAA0cF2/y k3HySeGuetDh/Xgqb4JGCES5Wp8abPBT0e1FyFfTl4U+hZXE/JuFTqXFw05uKbAd L/fheo5MffKUSXRb+ZBLEJWUgR5C3qJWWKlmOmI9asf1my8JMRWXRfhnMT+6S0Yr numT8mq2sClHpQwLkuvf5e4JfIwzVJu0KEq7WoMiN/ZW+21xnNth64fW7BSdSyjG bjlXOTj0cU3GqvvG3Hdgf1vna+aFVkLLFbgfHHeyUY8mP4Cw635953Srgkxzr5Mt Gcf8eEK9EgpnzEpBPGzuZTy0U2Qty4OotrdPRtpIfEgync2uX6cpf6DroWlwJuCP Q2HRW2s4jkt3OIw= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:09 2024 by rpki-client on console-ams.rpki-client.org