$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/11B634B29DA911EFABD12252C4F9AE02.roa File: 11B634B29DA911EFABD12252C4F9AE02.roa (raw, json) Hash identifier: 0XTh5PFxVrDV0CYZ+Lwz8uM89rS2f7bPWxNA93e0H5k= Subject key identifier: 5E:04:56:95:15:4E:7C:20:47:41:51:59:F6:F3:98:A4:48:B5:49:FF Certificate issuer: /CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986 Certificate serial: 066D Authority key identifier: 85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/11B634B29DA911EFABD12252C4F9AE02.roa Signing time: Fri 08 Nov 2024 08:11:34 +0000 ROA not before: Fri 08 Nov 2024 08:11:34 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 212879 IP address blocks: 103.208.252.0/24 maxlen: 24 103.208.253.0/24 maxlen: 24 103.208.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE1B/serialNumber=85902908828B0331E948D46EDB3825FF603DB986 Validity Not Before: Nov 8 08:11:34 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=672dc7b6-5235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9b:22:a2:f8:81:fb:01:ef:62:28:23:53:99: 9e:ec:5c:a6:fe:85:1d:f4:92:0a:a4:12:31:09:b2: a7:e1:79:0b:c7:36:58:fd:8d:28:e2:07:c4:25:da: b5:dd:79:4d:b7:68:8d:cf:1d:79:45:9e:54:a7:9b: 82:26:52:a3:04:2b:99:66:c2:11:e6:c5:1d:ab:2e: f4:3c:f4:88:05:ca:34:24:12:e4:95:17:ea:cc:f8: 84:06:35:0b:90:f2:7f:74:c2:ec:b9:a8:44:96:fd: 33:fd:0b:68:6e:94:af:9a:14:dc:2d:04:86:39:5c: a7:e1:a9:7f:83:e7:11:1d:a4:57:93:7b:ad:24:06: 36:97:d0:59:a9:c4:33:d3:5c:53:07:17:9a:e9:b1: 46:8e:da:b0:63:38:88:b8:de:3d:c4:93:97:07:40: 91:73:84:9a:63:26:21:c6:47:e4:81:81:b6:8a:5e: 9c:e5:e4:ef:c8:5b:eb:1c:68:18:2d:71:ff:9d:0d: 53:ba:fb:a5:95:6a:3a:47:84:18:88:3c:6e:5f:a3: 96:c9:83:44:6c:14:20:b0:e8:e0:91:5c:1c:44:c1: 8a:0d:09:45:e8:40:ba:93:c4:10:43:60:26:69:e6: 91:52:3d:16:24:41:cb:b0:c2:2e:b5:de:df:a7:13: f4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:04:56:95:15:4E:7C:20:47:41:51:59:F6:F3:98:A4:48:B5:49:FF X509v3 Authority Key Identifier: keyid:85:90:29:08:82:8B:03:31:E9:48:D4:6E:DB:38:25:FF:60:3D:B9:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/hZApCIKLAzHpSNRu2zgl_2A9uYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZApCIKLAzHpSNRu2zgl_2A9uYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE1B/206DFC28643811EB94683B4EC4F9AE02/11B634B29DA911EFABD12252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.252.0-103.208.254.255 Signature Algorithm: sha256WithRSAEncryption 3a:54:7f:75:4e:18:35:76:66:88:c8:50:40:6f:aa:70:a2:ab: c1:4c:b3:90:92:20:f3:10:80:98:15:d6:9b:c3:cf:ea:35:3d: 6b:29:8d:f3:c2:fc:ef:21:19:6c:18:94:20:07:a7:70:79:cb: 10:ef:2d:69:17:13:9c:87:58:ee:57:37:a3:31:52:85:88:2a: 5e:fe:ee:b5:36:da:9d:43:c6:ca:33:6a:24:71:ef:d4:f6:8a: 83:fa:81:65:d4:57:40:ff:19:95:ab:b2:36:b1:3a:43:0c:d3: 37:90:b9:2e:84:42:1f:a8:72:36:73:02:40:38:50:95:c1:ab: a3:f4:3c:2d:46:38:7e:37:36:10:f1:ef:ff:32:3e:54:71:e3: 7a:8b:17:94:88:23:da:35:71:3f:de:af:ac:0f:ab:d7:53:8f: 50:03:6a:67:11:fb:e6:c5:d7:7f:16:f7:b7:68:cc:bd:4e:d6: ef:c3:b9:4a:10:0c:7d:0a:5d:f9:fc:5a:c4:76:c0:e2:18:29: ae:0c:c1:61:ca:a9:3c:98:e4:b7:8f:f0:31:78:02:97:d5:d3: 04:e2:8c:4a:1c:2b:fd:65:57:29:fd:4a:27:d7:a9:1d:2e:a7: 39:58:7f:ac:53:da:bf:da:85:e3:45:d0:9e:0a:c9:32:12:08: b5:4b:e9:0d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMUIxMTAvBgNVBAUTKDg1OTAyOTA4ODI4QjAzMzFFOTQ4RDQ2RURCMzgyNUZG NjAzREI5ODYwHhcNMjQxMTA4MDgxMTM0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJkYzdiNi01MjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0psioviB+wHvYigjU5me7Fym/oUd9JIKpBIxCbKn4XkLxzZY/Y0o4gfEJdq1 3XlNt2iNzx15RZ5Up5uCJlKjBCuZZsIR5sUdqy70PPSIBco0JBLklRfqzPiEBjUL kPJ/dMLsuahElv0z/QtobpSvmhTcLQSGOVyn4al/g+cRHaRXk3utJAY2l9BZqcQz 01xTBxea6bFGjtqwYziIuN49xJOXB0CRc4SaYyYhxkfkgYG2il6c5eTvyFvrHGgY LXH/nQ1TuvullWo6R4QYiDxuX6OWyYNEbBQgsOjgkVwcRMGKDQlF6EC6k8QQQ2Am aeaRUj0WJEHLsMIutd7fpxP05wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFF4EVpUV TnwgR0FRWfbzmKRItUn/MB8GA1UdIwQYMBaAFIWQKQiCiwMx6UjUbts4Jf9gPbmG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUxQi8yMDZERkMyODY0 MzgxMUVCOTQ2ODNCNEVDNEY5QUUwMi9oWkFwQ0lLTEF6SHBTTlJ1MnpnbF8yQTl1 WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haQXBDSUtMQXpIcFNOUnUyemdsXzJBOXVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVFMUIvMjA2REZDMjg2NDM4MTFFQjk0NjgzQjRFQzRGOUFFMDIvMTFCNjM0QjI5 REE5MTFFRkFCRDEyMjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmfQ/AMEAGfQ/jANBgkqhkiG9w0BAQsFAAOCAQEAOlR/ dU4YNXZmiMhQQG+qcKKrwUyzkJIg8xCAmBXWm8PP6jU9aymN88L87yEZbBiUIAen cHnLEO8taRcTnIdY7lc3ozFShYgqXv7utTbanUPGyjNqJHHv1PaKg/qBZdRXQP8Z lauyNrE6QwzTN5C5LoRCH6hyNnMCQDhQlcGro/Q8LUY4fjc2EPHv/zI+VHHjeosX lIgj2jVxP96vrA+r11OPUANqZxH75sXXfxb3t2jMvU7W78O5ShAMfQpd+fxaxHbA 4hgprgzBYcqpPJjkt4/wMXgCl9XTBOKMShwr/WVXKf1KJ9epHS6nOVh/rFPav9qF 40XQngrJMhIItUvpDQ== -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:02 2024 by rpki-client on console-ams.rpki-client.org