$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/128651089A4C11EEBA49A012C4F9AE02.roa File: 128651089A4C11EEBA49A012C4F9AE02.roa (raw, json) Hash identifier: 7eyQ3NplMfQ7NeH3lqRBvpOppo5UvSFwpAIlHW8sg/M= Subject key identifier: 00:BE:51:E5:AF:BA:8D:57:96:60:95:26:02:37:F1:32:CD:37:6A:B0 Certificate issuer: /CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Certificate serial: 09B0 Authority key identifier: AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/128651089A4C11EEBA49A012C4F9AE02.roa Signing time: Thu 18 Apr 2024 20:59:17 +0000 ROA not before: Thu 18 Apr 2024 20:59:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58470 IP address blocks: 103.149.32.0/24 maxlen: 24 103.149.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2480 (0x9b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Validity Not Before: Apr 18 20:59:17 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662189a5-7493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:83:49:3c:fe:12:0f:57:31:56:c9:31:c3:89: f8:79:d1:55:e9:d8:d6:c7:c1:f1:f5:b1:3a:15:39: 19:1f:a0:79:eb:00:19:d7:09:b6:1e:38:e1:f5:78: ec:0e:5c:d3:a3:bd:3c:a4:1d:19:fe:77:3f:7f:e6: eb:66:b6:9c:2b:15:a1:e0:1e:e7:28:60:8e:5d:a2: cc:38:26:71:13:8f:cd:d0:ac:0d:7b:af:06:5d:47: 8d:9c:19:0e:f0:a5:72:43:ec:c6:90:e1:f5:d6:75: 4b:9b:f5:ab:18:86:b7:43:cf:90:42:c6:a8:19:08: 12:d8:32:88:14:71:7d:9e:40:5e:cd:36:fc:ea:f9: 5b:ce:ba:3d:ae:f0:7f:96:dd:10:68:fd:91:29:1d: d9:63:81:6a:fe:08:8f:95:c0:b2:ff:d7:ad:5e:72: 6e:8c:6d:fd:ea:b9:a5:ae:77:8e:50:c9:61:33:2e: a3:b8:49:02:83:44:6e:62:55:09:a4:c8:6c:8c:5f: 92:7d:e0:6c:e7:fb:bf:85:8c:89:c0:a9:af:88:26: 85:8b:91:9e:6c:59:1b:73:47:fc:09:96:a0:1f:79: fc:08:16:1c:33:38:a5:2c:b0:7a:19:cd:2a:84:32: 5c:f3:ab:62:d9:f4:27:39:91:81:f3:3c:fc:7f:31: 9b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BE:51:E5:AF:BA:8D:57:96:60:95:26:02:37:F1:32:CD:37:6A:B0 X509v3 Authority Key Identifier: keyid:AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/128651089A4C11EEBA49A012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.32.0/23 Signature Algorithm: sha256WithRSAEncryption 93:ef:76:48:76:cf:9a:20:7a:af:5e:00:50:82:18:c0:28:b6: 74:38:f8:0b:18:14:2e:89:0f:2c:04:9f:f3:0a:67:4d:7f:90: 53:12:f1:62:6f:cb:dc:dc:76:23:87:33:a4:90:fb:4e:a2:d6: a5:e8:c9:9d:ff:8d:69:4a:70:09:d4:09:11:1c:62:e8:aa:f8: 17:50:7b:58:65:85:b1:0d:3a:db:48:a2:ce:38:7b:d9:0d:c8: 40:f7:ea:1e:d8:1b:bb:d7:04:be:14:21:46:9c:b4:ff:eb:10: 49:fb:32:ee:53:22:6e:07:ab:3c:29:68:08:25:5d:e0:77:62: 60:7a:5a:b4:96:c1:49:d2:0f:0b:1f:4e:c3:41:3c:c6:af:27: 6d:7a:40:9d:4a:ec:d2:ca:09:0a:aa:2c:17:8a:77:2a:ee:25: 86:79:d8:21:1a:17:9e:e6:19:d9:83:b4:af:d9:81:fd:95:ac: 5a:a6:81:91:ce:18:9b:5a:c5:f3:0a:7c:02:fb:6e:88:32:8e: db:fb:b8:8e:5a:f5:75:65:cb:39:b3:19:91:62:5e:79:cf:ba: 0f:9a:10:4a:03:20:c1:2c:62:77:69:12:8e:77:97:b3:b5:b7: c0:0b:65:c5:71:24:d7:14:1e:98:ce:54:fb:ac:39:21:cc:1d: 01:06:c7:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZCRkExMTAvBgNVBAUTKEFBNjJDNzlGRTE4NDM5NDEyQzVCMDJDRjRCRUI1NEFC MkVCQkUxODgwHhcNMjQwNDE4MjA1OTE3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxODlhNS03NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlINJPP4SD1cxVskxw4n4edFV6djWx8Hx9bE6FTkZH6B56wAZ1wm2Hjjh9Xjs DlzTo708pB0Z/nc/f+brZracKxWh4B7nKGCOXaLMOCZxE4/N0KwNe68GXUeNnBkO 8KVyQ+zGkOH11nVLm/WrGIa3Q8+QQsaoGQgS2DKIFHF9nkBezTb86vlbzro9rvB/ lt0QaP2RKR3ZY4Fq/giPlcCy/9etXnJujG396rmlrneOUMlhMy6juEkCg0RuYlUJ pMhsjF+SfeBs5/u/hYyJwKmviCaFi5GebFkbc0f8CZagH3n8CBYcMzilLLB6Gc0q hDJc86ti2fQnOZGB8zz8fzGbSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAC+UeWv uo1XlmCVJgI38TLNN2qwMB8GA1UdIwQYMBaAFKpix5/hhDlBLFsCz0vrVKsuu+GI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkJGQS80MEQ0QjdFQzY2 MDMxMUVBOTlBRDRGNDZDNEY5QUUwMi9xbUxIbi1HRU9VRXNXd0xQUy10VXF5Njc0 WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FtTEhuLUdFT1VFc1d3TFBTLXRVcXk2NzRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZCRkEvNDBENEI3RUM2NjAzMTFFQTk5QUQ0RjQ2QzRGOUFFMDIvMTI4NjUxMDg5 QTRDMTFFRUJBNDlBMDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlSAwDQYJKoZIhvcNAQELBQADggEBAJPvdkh2z5ogeq9e AFCCGMAotnQ4+AsYFC6JDywEn/MKZ01/kFMS8WJvy9zcdiOHM6SQ+06i1qXoyZ3/ jWlKcAnUCREcYuiq+BdQe1hlhbENOttIos44e9kNyED36h7YG7vXBL4UIUactP/r EEn7Mu5TIm4HqzwpaAglXeB3YmB6WrSWwUnSDwsfTsNBPMavJ216QJ1K7NLKCQqq LBeKdyruJYZ52CEaF57mGdmDtK/Zgf2VrFqmgZHOGJtaxfMKfAL7bogyjtv7uI5a 9XVlyzmzGZFiXnnPug+aEEoDIMEsYndpEo53l7O1t8ALZcVxJNcUHpjOVPusOSHM HQEGx4s= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org