$ rpki-client -vvf rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa File: 709F3B2E145C11EC9A902165C4F9AE02.roa (raw, json) Hash identifier: UibVZP54wNfnJM5fmfROJ4sssLQa2oOrL7RimgDBnPw= Subject key identifier: 16:B2:13:9E:A4:E1:1E:66:F2:89:92:D1:DB:8F:DA:CA:C8:99:CA:6F Certificate issuer: /CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Certificate serial: 048E Authority key identifier: 04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa Signing time: Sun 03 Nov 2024 10:25:34 +0000 ROA not before: Sun 03 Nov 2024 10:25:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135615 IP address blocks: 103.172.188.0/23 maxlen: 23 103.172.188.0/24 maxlen: 24 103.172.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E87AB/serialNumber=04A7EB049A937FD9F2B86E159DDDF5D2C99AD41E Validity Not Before: Nov 3 10:25:34 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67274f9e-ea4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2f:76:f3:dd:ec:aa:af:96:b3:88:02:e5:fa: a3:6b:9e:04:1b:ce:35:d3:67:d5:b3:8c:5b:97:ea: ce:8b:e6:14:bc:b1:0e:6d:6e:e5:f8:a2:23:b9:5c: 97:8a:d8:92:26:25:e9:c1:db:73:0c:1d:77:86:2b: d8:10:c0:49:dc:97:c2:18:51:99:ed:25:15:4e:f3: a3:ca:7b:36:10:73:9f:36:3e:da:b4:95:ee:54:6c: 70:0c:84:82:f3:72:b4:82:09:9a:9d:9f:f6:b9:3f: 13:9f:b5:43:2c:d7:0c:5b:7f:e5:47:8e:e2:b7:de: b4:09:d6:ce:04:12:2b:06:f4:f3:70:b9:22:3c:38: f9:f1:a1:29:f6:4f:26:54:2c:21:17:e1:3d:1a:63: d6:b4:63:32:fd:87:df:c7:37:81:e3:e7:0e:4c:1e: d1:30:5a:72:ac:ac:b0:d1:4b:10:3c:1b:1b:d5:c2: a9:2e:4a:96:48:87:44:b0:e5:bf:6b:ae:32:0d:05: 3d:40:a9:c6:49:f0:a9:8a:8c:c1:ec:c5:a5:c9:57: e8:1d:e8:1d:2d:07:fd:2f:14:12:02:17:61:f7:5d: 1c:0b:35:c0:f6:b4:5d:77:ae:77:3d:45:f7:fd:33: 0f:8c:70:62:14:5a:15:56:fe:7d:3e:e9:0b:65:bf: 23:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B2:13:9E:A4:E1:1E:66:F2:89:92:D1:DB:8F:DA:CA:C8:99:CA:6F X509v3 Authority Key Identifier: keyid:04:A7:EB:04:9A:93:7F:D9:F2:B8:6E:15:9D:DD:F5:D2:C9:9A:D4:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/BKfrBJqTf9nyuG4Vnd310sma1B4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKfrBJqTf9nyuG4Vnd310sma1B4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E87AB/916B0666145811EC9ED6C73BC4F9AE02/709F3B2E145C11EC9A902165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.188.0/23 Signature Algorithm: sha256WithRSAEncryption 37:34:b6:50:ce:dd:22:e9:04:3c:3f:c1:dc:2d:d9:c6:2f:45: 37:11:98:da:0d:76:c5:1b:f0:fd:04:aa:a0:55:b5:17:1c:c8: 8a:ac:2d:85:cc:7a:ec:2d:5d:28:92:57:f7:92:6c:24:f0:5c: 06:9b:a3:63:f2:35:9d:f4:ba:10:ac:06:b1:dc:19:fe:1f:03: f9:7e:7f:ed:88:08:cd:ae:ad:d7:6a:f3:78:26:19:40:b5:21: bd:04:f7:67:34:2e:06:2a:dd:7b:57:fc:80:b4:70:5a:de:53: f6:f2:28:d5:f2:11:7d:b4:41:72:46:7c:dd:c9:96:5a:12:df: 3b:40:a0:09:d9:c4:c9:c1:61:86:66:b4:e6:2b:c9:4d:00:49: b9:66:74:72:27:31:8a:f6:af:ed:b8:22:fa:66:a8:33:b9:8b: a1:65:b2:9a:ff:f0:48:64:f2:d3:4d:94:a7:ff:3e:25:23:17: e8:d6:91:51:d4:c7:8a:31:41:22:dc:f4:f9:2a:74:af:c7:4e: 49:75:07:2b:b1:ae:a9:91:bd:e8:a6:9f:e8:fa:18:f4:be:fb: be:27:47:4d:e5:8a:ab:6f:bd:5a:4a:ff:b9:42:22:d8:16:33: af:81:de:64:23:ea:9e:11:4b:af:f4:ef:6f:42:a5:50:e6:4a: 58:89:ee:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg3QUIxMTAvBgNVBAUTKDA0QTdFQjA0OUE5MzdGRDlGMkI4NkUxNTlERERGNUQy Qzk5QUQ0MUUwHhcNMjQxMTAzMTAyNTM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI3NGY5ZS1lYTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2C92893sqq+Ws4gC5fqja54EG84102fVs4xbl+rOi+YUvLEObW7l+KIjuVyX itiSJiXpwdtzDB13hivYEMBJ3JfCGFGZ7SUVTvOjyns2EHOfNj7atJXuVGxwDISC 83K0ggmanZ/2uT8Tn7VDLNcMW3/lR47it960CdbOBBIrBvTzcLkiPDj58aEp9k8m VCwhF+E9GmPWtGMy/YffxzeB4+cOTB7RMFpyrKyw0UsQPBsb1cKpLkqWSIdEsOW/ a64yDQU9QKnGSfCpiozB7MWlyVfoHegdLQf9LxQSAhdh910cCzXA9rRdd653PUX3 /TMPjHBiFFoVVv59PukLZb8jYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBayE56k 4R5m8omS0duP2srImcpvMB8GA1UdIwQYMBaAFASn6wSak3/Z8rhuFZ3d9dLJmtQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODdBQi85MTZCMDY2NjE0 NTgxMUVDOUVENkM3M0JDNEY5QUUwMi9CS2ZyQkpxVGY5bnl1RzRWbmQzMTBzbWEx QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLZnJCSnFUZjlueXVHNFZuZDMxMHNtYTFCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg3QUIvOTE2QjA2NjYxNDU4MTFFQzlFRDZDNzNCQzRGOUFFMDIvNzA5RjNCMkUx NDVDMTFFQzlBOTAyMTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrLwwDQYJKoZIhvcNAQELBQADggEBADc0tlDO3SLpBDw/ wdwt2cYvRTcRmNoNdsUb8P0EqqBVtRccyIqsLYXMeuwtXSiSV/eSbCTwXAabo2Py NZ30uhCsBrHcGf4fA/l+f+2ICM2urddq83gmGUC1Ib0E92c0LgYq3XtX/IC0cFre U/byKNXyEX20QXJGfN3JlloS3ztAoAnZxMnBYYZmtOYryU0ASblmdHInMYr2r+24 IvpmqDO5i6Flspr/8Ehk8tNNlKf/PiUjF+jWkVHUx4oxQSLc9PkqdK/HTkl1Byux rqmRveimn+j6GPS++74nR03liqtvvVpK/7lCItgWM6+B3mQj6p4RS6/0729CpVDm SliJ7qE= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org