$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99EEB81A878B11EF865BF077C4F9AE02.roa File: 99EEB81A878B11EF865BF077C4F9AE02.roa (raw, json) Hash identifier: hb3/yo+PAhBe3ET6UpXiTHmasxafzHUJA+X6I+bZYC8= Subject key identifier: C8:6B:15:C4:D6:EA:6D:17:7F:43:27:E9:22:A3:38:2C:2B:06:3C:71 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 17CF Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99EEB81A878B11EF865BF077C4F9AE02.roa Signing time: Fri 11 Oct 2024 04:45:12 +0000 ROA not before: Fri 11 Oct 2024 04:45:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 3561 IP address blocks: 103.11.68.0/22 maxlen: 24 115.167.10.0/24 maxlen: 24 175.110.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6095 (0x17cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Oct 11 04:45:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6708ad58-6a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:eb:a3:4b:e9:e8:15:41:6e:07:55:0a:d7: 5a:ae:56:ab:3f:f4:69:b1:ed:79:c4:7e:1e:59:9a: 49:cd:67:85:19:44:88:f8:ea:71:67:b2:96:93:ab: 1c:62:d7:0f:1b:ce:6e:36:01:4b:93:7d:4e:52:b1: 60:80:68:0b:12:2c:df:0e:7e:a5:1d:8c:f2:82:88: d2:67:b7:af:77:1b:59:16:bc:11:a8:16:65:e2:4f: 0f:ae:65:58:86:17:99:c5:e4:b2:3d:f5:df:15:6a: 5c:33:3e:7a:3b:75:b2:18:73:b6:7a:1e:b7:cc:b9: 29:3a:7f:fc:7a:8a:19:73:0d:57:4d:cd:5f:60:63: f7:3d:06:2d:1e:54:65:01:9e:60:08:76:bb:c0:54: 08:09:11:2c:ed:03:c3:4b:57:10:e7:0b:ca:c2:8c: 44:39:fe:f8:78:80:95:8a:10:71:cd:48:1f:27:51: b6:e6:60:78:d2:04:bd:ae:0d:82:47:6e:1a:13:d4: d7:ed:15:b1:0a:4f:bd:fc:e8:65:a0:95:69:14:91: 9d:d8:12:36:2e:69:72:d8:a0:28:ce:54:b8:6c:7a: 54:9e:02:e4:3c:8e:fd:f1:93:06:cc:7c:7f:a8:0b: 5d:75:a2:90:58:44:10:12:e4:c0:1f:77:90:a7:d4: 27:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6B:15:C4:D6:EA:6D:17:7F:43:27:E9:22:A3:38:2C:2B:06:3C:71 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/99EEB81A878B11EF865BF077C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.68.0/22 115.167.10.0/24 175.110.100.0/22 Signature Algorithm: sha256WithRSAEncryption b8:b2:ee:03:d9:b2:7d:6a:a3:a1:39:54:f1:a5:54:e3:dc:cb: f8:0b:fa:c2:ad:22:43:80:13:b1:15:bb:88:d3:18:b7:ae:f3: d3:8a:96:45:b0:a0:ce:73:01:b5:10:11:02:ee:5c:5c:00:d7: 5c:6b:c1:d3:e5:33:9d:94:48:35:cd:06:72:71:c1:7b:d7:7e: 22:2b:51:8d:32:91:e6:5f:c1:8b:ef:b5:aa:39:51:4f:84:50: f7:06:79:ea:f7:f5:20:b8:eb:33:06:0c:f9:89:5d:c8:2c:ad: ae:4a:73:f2:99:a6:ab:0e:53:f6:16:5e:72:2e:26:ec:2b:07: 8f:04:6d:d8:b2:ab:94:1d:ad:e1:d5:c1:84:be:26:6b:2c:24: 64:3d:0a:7d:92:59:95:08:e0:4d:83:3c:66:44:7c:ce:fe:d4: b2:48:b6:32:05:60:6a:d3:87:7b:8f:ec:9f:07:87:9c:24:53: a7:5f:5a:ae:f4:63:3f:e2:ae:c5:00:5f:b7:24:5b:46:b0:f3: 6f:48:31:82:a2:0d:e1:ae:63:33:75:64:41:a1:75:05:38:90: 83:54:9c:42:c2:b7:93:74:5f:e8:1e:5d:e6:20:e4:88:2d:fe: 7f:fb:f8:4a:7e:e0:9f:7c:ab:31:80:76:6b:34:32:57:50:81: 99:e7:8f:4a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICF88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjQxMDExMDQ0NTEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4YWQ1OC02YTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXPro0vp6BVBbgdVCtdarlarP/Rpse15xH4eWZpJzWeFGUSI+OpxZ7KWk6sc YtcPG85uNgFLk31OUrFggGgLEizfDn6lHYzygojSZ7evdxtZFrwRqBZl4k8PrmVY hheZxeSyPfXfFWpcMz56O3WyGHO2eh63zLkpOn/8eooZcw1XTc1fYGP3PQYtHlRl AZ5gCHa7wFQICREs7QPDS1cQ5wvKwoxEOf74eICVihBxzUgfJ1G25mB40gS9rg2C R24aE9TX7RWxCk+9/OhloJVpFJGd2BI2Lmly2KAozlS4bHpUngLkPI798ZMGzHx/ qAtddaKQWEQQEuTAH3eQp9QnbwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMhrFcTW 6m0Xf0Mn6SKjOCwrBjxxMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvOTlFRUI4MUE4 NzhCMTFFRjg2NUJGMDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnC0QDBABzpwoDBAKvbmQwDQYJKoZIhvcNAQELBQADggEB ALiy7gPZsn1qo6E5VPGlVOPcy/gL+sKtIkOAE7EVu4jTGLeu89OKlkWwoM5zAbUQ EQLuXFwA11xrwdPlM52USDXNBnJxwXvXfiIrUY0ykeZfwYvvtao5UU+EUPcGeer3 9SC46zMGDPmJXcgsra5Kc/KZpqsOU/YWXnIuJuwrB48Ebdiyq5QdreHVwYS+Jmss JGQ9Cn2SWZUI4E2DPGZEfM7+1LJItjIFYGrTh3uP7J8Hh5wkU6dfWq70Yz/irsUA X7ckW0aw829IMYKiDeGuYzN1ZEGhdQU4kINUnELCt5N0X+geXeYg5Igt/n/7+Ep+ 4J98qzGAdms0MldQgZnnj0o= -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:28 2024 by rpki-client on console-ams.rpki-client.org