$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa File: 8405155C69EB11EF933A993CC4F9AE02.roa (raw, json) Hash identifier: KqMt9phZ8XUUuD0mnBnPJy5s5JnY4AHzIdD5+OAEsY4= Subject key identifier: BB:A0:73:01:32:40:CB:E3:F3:8C:37:DE:56:18:49:9F:12:3E:28:86 Certificate issuer: /CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Certificate serial: F1 Authority key identifier: 1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa Signing time: Tue 03 Sep 2024 12:52:28 +0000 ROA not before: Tue 03 Sep 2024 12:52:28 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 133053 IP address blocks: 103.120.219.0/24 maxlen: 24 103.251.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D22/serialNumber=1DEE17A6A3380EE488EF3B6E2125B878E6407248 Validity Not Before: Sep 3 12:52:28 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66d7068c-395c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:66:bb:18:34:9e:47:1f:86:9a:0b:b8:d1: f9:d4:57:72:ce:87:a4:e2:cf:72:75:31:11:1d:ae: 01:c0:80:26:99:60:74:56:55:13:da:a9:88:9b:43: 33:e5:16:8c:f7:8e:24:0e:05:46:dd:90:73:71:89: 62:71:aa:d2:5d:e9:b8:3c:bd:ab:b3:81:55:97:44: a9:83:48:f5:b6:f9:5f:67:ea:37:d9:7d:28:86:37: 24:35:80:c2:9a:a2:bf:87:c9:35:ea:49:ec:f7:05: ac:cd:1f:50:3c:5a:2c:d9:79:96:61:9c:01:3c:7f: a3:53:1c:58:f1:9b:dc:97:af:cc:19:73:65:3c:12: 60:9a:b0:f5:38:87:24:6b:d3:f6:69:50:5f:fa:f7: 40:f1:83:b5:e7:61:dc:f3:b9:9a:49:1f:3f:35:a3: 8d:13:54:bd:11:e0:8d:17:57:48:7a:9d:7e:f8:3b: 2b:b5:c2:44:c1:86:47:38:44:f0:1a:7c:73:38:be: 8a:6c:58:e4:67:e4:ff:00:62:be:88:a3:f4:de:c7: 6d:a9:a7:e6:9e:18:71:87:db:a0:c2:2a:d7:d9:40: 03:92:00:5b:e7:8f:eb:a6:c7:c6:9c:cf:f1:63:e8: 27:14:ab:ed:74:a9:59:1b:d0:75:d6:83:04:39:a2: f6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A0:73:01:32:40:CB:E3:F3:8C:37:DE:56:18:49:9F:12:3E:28:86 X509v3 Authority Key Identifier: keyid:1D:EE:17:A6:A3:38:0E:E4:88:EF:3B:6E:21:25:B8:78:E6:40:72:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/He4XpqM4DuSI7ztuISW4eOZAckg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/He4XpqM4DuSI7ztuISW4eOZAckg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D22/3F7D68A8FDE511ED87841770C4F9AE02/8405155C69EB11EF933A993CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.219.0/24 103.251.171.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:32:7b:bf:d8:44:63:cf:c6:c0:0c:55:a4:b2:d0:95:59:6f: 9f:1e:07:7d:87:ef:52:e9:63:ac:fa:e6:db:2a:11:c1:7b:ae: f0:cc:8c:94:a9:46:0a:dd:51:11:0c:9e:a6:d1:23:5c:89:75: 5b:9a:62:2a:f5:da:15:d0:61:b0:61:b5:f9:9f:ad:b6:0b:9b: 17:71:b1:8f:98:e6:96:1b:f5:ed:82:5c:8d:17:4f:5b:df:92: db:50:d2:a9:12:d0:26:37:70:3d:fd:15:09:5e:e5:06:89:ee: a9:7d:ba:49:d1:9f:36:18:2c:b8:5d:d6:60:13:04:a0:f3:e7: 2c:9a:5b:f7:eb:af:41:69:da:5a:a0:61:01:e5:cf:3a:31:e7: 87:98:71:c7:53:18:e7:0d:d8:97:45:e7:9e:60:ed:6a:0e:a0: 01:e9:41:2e:71:3b:9e:41:5b:94:c2:73:e0:86:43:91:2f:9e: 82:6e:9d:12:d8:ab:1d:53:d0:35:b7:a0:85:b7:91:07:5f:55: f8:64:01:3e:db:5e:db:32:36:e1:ec:2e:43:94:ab:54:77:99: 71:d9:23:ba:a8:8b:90:88:bb:09:b3:11:9e:e6:d3:a1:18:9f: 6b:f2:eb:79:f6:84:a3:d7:ed:a4:99:12:89:9e:79:4c:12:79: a9:9e:d8:85 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjIxMTAvBgNVBAUTKDFERUUxN0E2QTMzODBFRTQ4OEVGM0I2RTIxMjVCODc4 RTY0MDcyNDgwHhcNMjQwOTAzMTI1MjI4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ3MDY4Yy0zOTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+Rmuxg0nkcfhpoLuNH51Fdyzoek4s9ydTERHa4BwIAmmWB0VlUT2qmIm0Mz 5RaM944kDgVG3ZBzcYlicarSXem4PL2rs4FVl0Spg0j1tvlfZ+o32X0ohjckNYDC mqK/h8k16kns9wWszR9QPFos2XmWYZwBPH+jUxxY8Zvcl6/MGXNlPBJgmrD1OIck a9P2aVBf+vdA8YO152Hc87maSR8/NaONE1S9EeCNF1dIep1++DsrtcJEwYZHOETw GnxzOL6KbFjkZ+T/AGK+iKP03sdtqafmnhhxh9ugwirX2UADkgBb54/rpsfGnM/x Y+gnFKvtdKlZG9B11oMEOaL2hQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLugcwEy QMvj84w33lYYSZ8SPiiGMB8GA1UdIwQYMBaAFB3uF6ajOA7kiO87biEluHjmQHJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyMi8zRjdENjhBOEZE RTUxMUVEODc4NDE3NzBDNEY5QUUwMi9IZTRYcHFNNER1U0k3enR1SVNXNGVPWkFj a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hlNFhwcU00RHVTSTd6dHVJU1c0ZU9aQWNrZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThEMjIvM0Y3RDY4QThGREU1MTFFRDg3ODQxNzcwQzRGOUFFMDIvODQwNTE1NUM2 OUVCMTFFRjkzM0E5OTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneNsDBABn+6swDQYJKoZIhvcNAQELBQADggEBABwye7/Y RGPPxsAMVaSy0JVZb58eB32H71LpY6z65tsqEcF7rvDMjJSpRgrdUREMnqbRI1yJ dVuaYir12hXQYbBhtfmfrbYLmxdxsY+Y5pYb9e2CXI0XT1vfkttQ0qkS0CY3cD39 FQle5QaJ7ql9uknRnzYYLLhd1mATBKDz5yyaW/frr0Fp2lqgYQHlzzox54eYccdT GOcN2JdF555g7WoOoAHpQS5xO55BW5TCc+CGQ5EvnoJunRLYqx1T0DW3oIW3kQdf VfhkAT7bXtsyNuHsLkOUq1R3mXHZI7qoi5CIuwmzEZ7m06EYn2vy63n2hKPX7aSZ EomeeUwSeame2IU= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org