$ rpki-client -vvf rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa File: CCF39F96D08911EE9B454035C4F9AE02.roa (raw, json) Hash identifier: 9DWJDW9DUoLZqphsh//bTGKOoOf4h3NLDXYTnzCRVnw= Subject key identifier: D9:0D:45:A8:ED:5D:56:3D:3A:36:23:94:5A:8C:11:05:FF:E3:B1:39 Certificate issuer: /CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Certificate serial: 99 Authority key identifier: 66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa Signing time: Sun 30 Jun 2024 19:00:14 +0000 ROA not before: Sun 30 Jun 2024 19:00:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 64072 IP address blocks: 103.139.178.0/23 maxlen: 23 103.139.178.0/24 maxlen: 24 103.139.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jul 2024 19:42:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E923A/serialNumber=6638A604260FCCF2E9D8B20C1792ECA15DC76D5C Validity Not Before: Jun 30 19:00:14 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681ab3d-6790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:3c:ec:29:c1:94:f5:b7:6d:a1:17:65:9c: 62:22:9d:6b:16:5f:fc:4e:77:a7:4b:c7:22:fa:46: a6:fe:a0:06:d9:47:ed:5e:45:3d:d2:71:7f:ef:94: f0:b1:80:a2:a5:f2:c7:77:15:40:b8:84:56:a0:40: 2c:a0:79:55:32:71:69:28:25:f2:04:e3:e3:e4:1b: 15:8c:9b:30:63:90:b7:d5:b0:1b:c3:bd:38:45:c6: e4:1c:4b:c8:c6:8c:4c:97:48:b6:e7:4d:d3:2c:18: 02:0b:e3:ed:bf:9e:de:50:ea:40:c6:ba:a0:13:c3: da:72:97:11:7b:da:b0:4c:23:e8:04:25:34:51:6a: 9c:76:e1:a5:78:d1:bd:54:a7:b4:6d:f6:25:74:75: c1:4b:9d:d8:f4:56:a2:be:15:d9:3b:42:50:2e:91: 95:d4:cb:df:12:c8:76:99:28:2d:90:85:bb:3f:be: 20:54:a1:99:d0:ab:c3:29:67:4d:8c:f6:bc:e0:04: 65:a0:57:f2:d5:38:e7:f4:33:98:dc:f9:f1:aa:a6: e4:80:48:a2:94:1b:44:78:00:90:22:36:6d:fa:50: 74:24:03:62:24:1e:a2:db:b5:c7:56:89:21:5e:51: 35:7d:d6:81:0d:f5:7e:e8:d7:51:aa:92:b2:3e:b6: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0D:45:A8:ED:5D:56:3D:3A:36:23:94:5A:8C:11:05:FF:E3:B1:39 X509v3 Authority Key Identifier: keyid:66:38:A6:04:26:0F:CC:F2:E9:D8:B2:0C:17:92:EC:A1:5D:C7:6D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/ZjimBCYPzPLp2LIMF5LsoV3HbVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZjimBCYPzPLp2LIMF5LsoV3HbVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E923A/C9B3CC54EC1111E98E0F8647C4F9AE02/CCF39F96D08911EE9B454035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.178.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:a7:1d:0e:e1:31:75:67:11:ad:81:9c:0f:e3:7b:9f:b7:2c: f5:65:c7:94:aa:34:1f:8e:87:ef:ac:7e:22:eb:8c:45:ca:61: 54:db:bc:7e:be:6e:d9:ec:f6:c3:81:6a:12:c2:5c:fe:6f:71: eb:0c:04:bb:fd:fb:66:06:22:7d:a4:00:22:62:68:0a:db:8c: 7f:cc:5a:bc:33:af:4c:26:e3:5b:4f:f9:e4:64:71:df:c1:f8: eb:6c:17:76:d3:96:90:13:3e:e9:56:11:34:ce:1e:6b:41:4d: 8b:73:a9:a1:00:f9:26:65:7f:21:49:cc:84:72:dd:39:6f:0d: 8f:ee:8c:b4:86:f8:b4:40:e8:38:c1:6d:3f:66:2b:00:e2:27: 3a:9b:83:56:6f:e4:44:05:63:dc:46:a6:32:2b:07:dd:ed:f0: 18:ed:58:3c:08:1e:98:ec:d4:95:12:40:c3:ca:d0:4f:1f:13: df:61:9d:48:7e:bb:0c:5c:9c:ce:6d:54:32:9d:36:af:12:cf: 34:5f:44:fb:38:08:90:1d:1d:22:57:9e:de:05:32:c5:ae:55: 77:54:82:7e:d2:f2:e6:eb:30:e4:7f:ed:65:a7:37:5f:f4:a6: 69:5d:cd:06:23:18:f4:9c:ad:a3:50:b7:55:30:26:69:94:c7: 2d:8c:7d:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkyM0ExMTAvBgNVBAUTKDY2MzhBNjA0MjYwRkNDRjJFOUQ4QjIwQzE3OTJFQ0Ex NURDNzZENUMwHhcNMjQwNjMwMTkwMDE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxYWIzZC02NzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLA87CnBlPW3baEXZZxiIp1rFl/8TnenS8ci+kam/qAG2UftXkU90nF/75Tw sYCipfLHdxVAuIRWoEAsoHlVMnFpKCXyBOPj5BsVjJswY5C31bAbw704RcbkHEvI xoxMl0i2503TLBgCC+Ptv57eUOpAxrqgE8PacpcRe9qwTCPoBCU0UWqcduGleNG9 VKe0bfYldHXBS53Y9FaivhXZO0JQLpGV1MvfEsh2mSgtkIW7P74gVKGZ0KvDKWdN jPa84ARloFfy1Tjn9DOY3PnxqqbkgEiilBtEeACQIjZt+lB0JANiJB6i27XHVokh XlE1fdaBDfV+6NdRqpKyPrbxXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkNRajt XVY9OjYjlFqMEQX/47E5MB8GA1UdIwQYMBaAFGY4pgQmD8zy6diyDBeS7KFdx21c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTIzQS9DOUIzQ0M1NEVD MTExMUU5OEUwRjg2NDdDNEY5QUUwMi9aamltQkNZUHpQTHAyTElNRjVMc29WM0hi VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pqaW1CQ1lQelBMcDJMSU1GNUxzb1YzSGJWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkyM0EvQzlCM0NDNTRFQzExMTFFOThFMEY4NjQ3QzRGOUFFMDIvQ0NGMzlGOTZE MDg5MTFFRTlCNDU0MDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni7IwDQYJKoZIhvcNAQELBQADggEBAF2nHQ7hMXVnEa2B nA/je5+3LPVlx5SqNB+Oh++sfiLrjEXKYVTbvH6+btns9sOBahLCXP5vcesMBLv9 +2YGIn2kACJiaArbjH/MWrwzr0wm41tP+eRkcd/B+OtsF3bTlpATPulWETTOHmtB TYtzqaEA+SZlfyFJzIRy3TlvDY/ujLSG+LRA6DjBbT9mKwDiJzqbg1Zv5EQFY9xG pjIrB93t8BjtWDwIHpjs1JUSQMPK0E8fE99hnUh+uwxcnM5tVDKdNq8SzzRfRPs4 CJAdHSJXnt4FMsWuVXdUgn7S8ubrMOR/7WWnN1/0pmldzQYjGPScraNQt1UwJmmU xy2MfSg= -----END CERTIFICATE-----Generated at Fri Jul 5 21:11:59 2024 by rpki-client on console-ams.rpki-client.org