$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/89F6EEC4C82711EEBCC49737C4F9AE02.roa File: 89F6EEC4C82711EEBCC49737C4F9AE02.roa (raw, json) Hash identifier: AArq8t/jhxU12JazlbbWzfn6Htlf8feOYH1MiOaqv2s= Subject key identifier: 77:28:61:54:40:58:22:C2:19:67:8B:FA:F7:37:8B:A9:E0:43:8B:D0 Certificate issuer: /CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Certificate serial: 0297 Authority key identifier: C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/89F6EEC4C82711EEBCC49737C4F9AE02.roa Signing time: Fri 29 Mar 2024 03:35:50 +0000 ROA not before: Fri 29 Mar 2024 03:35:50 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149514 IP address blocks: 103.181.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52E8/serialNumber=C7C91D96FA7E8D2D92219522A64044237511E051 Validity Not Before: Mar 29 03:35:50 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66063715-6425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:67:34:a2:6e:da:ea:e8:03:25:66:96:6b: 7a:2d:5d:69:35:35:4f:a7:cc:7b:cf:6e:19:fb:38: 71:8b:0a:50:4e:7d:0b:19:e9:9d:62:46:30:78:21: 56:a9:89:31:9b:e9:87:5c:85:44:0b:4d:1f:fc:cc: 1a:0a:9a:07:cf:3b:7c:c0:c3:68:81:35:e6:0e:25: ef:b1:9a:cd:77:76:a8:69:80:a0:a3:86:b0:65:6a: 32:bd:6e:90:80:d8:6b:50:88:f7:77:d2:59:f2:d1: 06:5f:b3:e6:91:d6:04:7a:31:13:80:de:98:f9:27: 51:19:5e:be:e3:54:ff:0a:5d:a2:38:9e:22:29:70: 62:c6:31:9f:d6:68:01:d4:7b:bd:b1:a6:bf:27:9c: 38:17:43:d1:d4:10:5a:60:ab:df:91:23:98:da:fb: bd:fd:39:80:71:56:eb:5d:3e:45:9f:39:04:b6:1c: e7:57:7e:c1:dd:67:83:54:fa:44:37:33:97:1b:bb: a9:74:91:a8:f3:4d:1a:20:f6:8b:17:d4:fd:04:7f: 19:d1:32:88:45:6d:a1:34:bf:b8:d7:44:90:7d:82: 4a:e8:c0:0d:81:78:03:a3:a1:cd:e4:d8:53:77:e8: e9:a8:eb:77:63:9f:8f:06:f2:71:53:fa:03:1d:fe: 00:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:28:61:54:40:58:22:C2:19:67:8B:FA:F7:37:8B:A9:E0:43:8B:D0 X509v3 Authority Key Identifier: keyid:C7:C9:1D:96:FA:7E:8D:2D:92:21:95:22:A6:40:44:23:75:11:E0:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/x8kdlvp-jS2SIZUipkBEI3UR4FE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8kdlvp-jS2SIZUipkBEI3UR4FE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52E8/1127CD3EAE6511ECBCF8C64CC4F9AE02/89F6EEC4C82711EEBCC49737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.162.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:e3:78:cb:ab:83:cd:4e:2b:0c:2f:e9:89:84:01:bd:b6:c8: ab:c3:7d:2e:bd:42:04:d3:33:f9:20:de:a7:31:7c:af:88:b7: fe:63:73:a4:b1:3e:f0:db:88:45:b6:d8:2a:f5:ab:8a:ca:26: 84:7e:b7:c8:28:bc:40:03:32:67:b8:70:b8:85:1b:6a:ff:e3: c3:92:97:83:56:c9:8a:fb:be:84:50:67:e3:ce:11:b1:29:2e: b9:1b:cb:72:ff:9a:7e:f5:79:b9:55:7b:c0:96:7e:06:0b:1e: 58:f7:ab:db:87:e8:9b:d1:7d:c7:b1:07:6a:2a:ed:98:4b:13: 80:5b:3a:4d:ee:ab:ee:ca:0e:2d:25:d6:50:f7:7f:9d:80:e4: 7f:f9:f4:66:59:30:7c:ef:c1:16:28:01:43:63:81:0d:d9:75: d0:cd:f3:c3:d0:06:08:34:49:12:f2:dc:21:0b:ca:45:ed:74: cf:11:cd:ec:45:51:a5:34:bc:f3:14:68:aa:40:57:c4:cb:b3: 78:2d:49:51:7a:79:2a:dd:c8:52:cf:a4:8f:47:9a:30:53:7e: a3:0f:f0:13:81:04:20:45:70:2c:d5:c0:0f:e5:1b:da:d9:c9: 86:fe:42:81:9f:9d:86:52:e8:2b:dc:1f:d3:51:d8:1e:40:e1: b3:da:b3:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRTgxMTAvBgNVBAUTKEM3QzkxRDk2RkE3RThEMkQ5MjIxOTUyMkE2NDA0NDIz NzUxMUUwNTEwHhcNMjQwMzI5MDMzNTUwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA2MzcxNS02NDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbNnNKJu2uroAyVmlmt6LV1pNTVPp8x7z24Z+zhxiwpQTn0LGemdYkYweCFW qYkxm+mHXIVEC00f/MwaCpoHzzt8wMNogTXmDiXvsZrNd3aoaYCgo4awZWoyvW6Q gNhrUIj3d9JZ8tEGX7PmkdYEejETgN6Y+SdRGV6+41T/Cl2iOJ4iKXBixjGf1mgB 1Hu9saa/J5w4F0PR1BBaYKvfkSOY2vu9/TmAcVbrXT5FnzkEthznV37B3WeDVPpE NzOXG7updJGo800aIPaLF9T9BH8Z0TKIRW2hNL+410SQfYJK6MANgXgDo6HN5NhT d+jpqOt3Y5+PBvJxU/oDHf4ArwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHcoYVRA WCLCGWeL+vc3i6ngQ4vQMB8GA1UdIwQYMBaAFMfJHZb6fo0tkiGVIqZARCN1EeBR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJFOC8xMTI3Q0QzRUFF NjUxMUVDQkNGOEM2NENDNEY5QUUwMi94OGtkbHZwLWpTMlNJWlVpcGtCRUkzVVI0 RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4a2RsdnAtalMyU0laVWlwa0JFSTNVUjRGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUyRTgvMTEyN0NEM0VBRTY1MTFFQ0JDRjhDNjRDQzRGOUFFMDIvODlGNkVFQzRD ODI3MTFFRUJDQzQ5NzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntaIwDQYJKoZIhvcNAQELBQADggEBAH3jeMurg81OKwwv 6YmEAb22yKvDfS69QgTTM/kg3qcxfK+It/5jc6SxPvDbiEW22Cr1q4rKJoR+t8go vEADMme4cLiFG2r/48OSl4NWyYr7voRQZ+POEbEpLrkby3L/mn71eblVe8CWfgYL Hlj3q9uH6JvRfcexB2oq7ZhLE4BbOk3uq+7KDi0l1lD3f52A5H/59GZZMHzvwRYo AUNjgQ3ZddDN88PQBgg0SRLy3CELykXtdM8RzexFUaU0vPMUaKpAV8TLs3gtSVF6 eSrdyFLPpI9HmjBTfqMP8BOBBCBFcCzVwA/lG9rZyYb+QoGfnYZS6CvcH9NR2B5A 4bPas28= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org