$ rpki-client -vvf rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/7A97D2F2174311EFAA4B5762C4F9AE02.roa File: 7A97D2F2174311EFAA4B5762C4F9AE02.roa (raw, json) Hash identifier: qiuU93Lc7YatLMlsGPtovUfT87zuHB3bZX8CwFGs5GE= Subject key identifier: 55:E2:DB:EE:D7:BC:71:16:84:1D:83:13:52:C0:B3:53:C2:B1:6E:7A Certificate issuer: /CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065 Certificate serial: EC Authority key identifier: E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/7A97D2F2174311EFAA4B5762C4F9AE02.roa Signing time: Thu 03 Oct 2024 04:38:29 +0000 ROA not before: Thu 03 Oct 2024 04:38:29 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136557 IP address blocks: 103.72.62.0/24 maxlen: 24 103.72.63.0/24 maxlen: 24 2401:7fa0:1::/48 maxlen: 48 2401:7fa0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F715C/serialNumber=E77132E4FEAD04EED4FE946D607A0DCB57A42065 Validity Not Before: Oct 3 04:38:29 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fe1fc5-c7b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a9:a6:6c:94:e7:18:1e:40:3e:79:4e:c7:79: 88:4b:bf:5f:43:93:9b:c0:0a:89:97:8f:a8:9b:df: ee:a1:56:0a:51:73:46:bd:5d:21:53:0a:17:f8:f6: 61:40:bc:2d:f1:9d:fc:75:6d:48:b5:0d:4b:ed:69: 53:68:68:de:3f:74:9e:d6:e9:4c:ce:a1:eb:99:7b: b1:03:0e:d8:01:b8:3f:54:25:c0:61:67:d4:a4:44: 94:f0:3f:04:3b:0a:e3:a6:55:aa:e6:ea:dd:23:d1: 53:9d:ca:85:c7:53:2c:d3:20:a5:34:71:4a:a2:e4: 58:fe:7d:6d:95:45:17:65:3d:f8:ad:21:48:bd:62: b9:3c:b3:ef:67:14:73:d3:5e:e8:d6:65:53:0a:6a: 76:5c:2e:c0:23:e5:73:10:ca:3a:7d:dc:09:e4:0c: 53:14:43:0d:2f:19:9a:6f:f6:99:f6:70:e4:23:96: b5:f0:0a:08:33:d9:d6:0c:c3:45:86:34:a8:88:28: 6f:fb:20:6d:a9:09:7b:14:84:fb:28:7d:da:de:a4: c8:05:07:b2:0a:b3:1f:ae:d7:62:c6:06:61:01:e7: fb:a5:41:24:88:0a:b2:cd:6a:d5:c2:35:d6:39:ce: 9e:8e:17:4a:b0:75:89:f9:65:dd:df:2e:02:6a:2b: 49:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E2:DB:EE:D7:BC:71:16:84:1D:83:13:52:C0:B3:53:C2:B1:6E:7A X509v3 Authority Key Identifier: keyid:E7:71:32:E4:FE:AD:04:EE:D4:FE:94:6D:60:7A:0D:CB:57:A4:20:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/53Ey5P6tBO7U_pRtYHoNy1ekIGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53Ey5P6tBO7U_pRtYHoNy1ekIGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F715C/5F0726384F3311EE966E0F72C4F9AE02/7A97D2F2174311EFAA4B5762C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.62.0/23 IPv6: 2401:7fa0:1::-2401:7fa0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8c:13:e7:8b:40:1d:fe:bc:53:ba:3f:a6:ce:5b:6a:77:86:d8: 04:e3:4e:eb:30:f1:7c:d0:ae:d6:b7:70:43:8c:02:24:32:c0: a9:7a:86:22:15:41:97:17:57:d9:58:1b:f2:cb:a8:c0:b0:5e: 44:b5:fc:bd:9a:86:29:92:e5:0a:0b:9d:12:d2:a6:be:54:48: 0b:46:85:c2:37:db:91:38:85:1d:33:d6:74:c7:d9:7f:71:ba: 21:83:68:53:76:1d:4a:e0:6d:87:d3:33:87:78:c5:0b:4d:e4: ff:e9:a4:28:51:9f:90:d6:dc:28:9c:00:e2:93:f0:a2:2c:e2: c8:96:a2:c5:12:f3:dd:be:3b:e4:c6:85:a6:e7:71:83:3b:86: 1d:8b:54:fe:ea:52:ed:de:08:e3:97:09:55:1f:b5:be:d6:0c: ab:45:0e:0d:01:9f:67:ee:a1:10:8a:01:e3:0a:eb:fd:3c:54: b4:15:c7:43:7c:f5:84:10:c9:da:6c:af:a2:ed:b0:e7:50:57: 1e:df:19:31:fe:48:cb:e1:73:89:c6:c5:97:5b:f1:09:b1:a8: ca:90:48:58:47:e7:34:ee:8b:08:2a:5e:20:d4:29:f7:f9:aa: c8:43:eb:a1:10:57:f8:85:24:5b:e0:31:68:8b:79:30:50:20: 9c:b9:35:22 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxNUMxMTAvBgNVBAUTKEU3NzEzMkU0RkVBRDA0RUVENEZFOTQ2RDYwN0EwRENC NTdBNDIwNjUwHhcNMjQxMDAzMDQzODI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMWZjNS1jN2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyammbJTnGB5APnlOx3mIS79fQ5ObwAqJl4+om9/uoVYKUXNGvV0hUwoX+PZh QLwt8Z38dW1ItQ1L7WlTaGjeP3Se1ulMzqHrmXuxAw7YAbg/VCXAYWfUpESU8D8E OwrjplWq5urdI9FTncqFx1Ms0yClNHFKouRY/n1tlUUXZT34rSFIvWK5PLPvZxRz 017o1mVTCmp2XC7AI+VzEMo6fdwJ5AxTFEMNLxmab/aZ9nDkI5a18AoIM9nWDMNF hjSoiChv+yBtqQl7FIT7KH3a3qTIBQeyCrMfrtdixgZhAef7pUEkiAqyzWrVwjXW Oc6ejhdKsHWJ+WXd3y4CaitJfwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFFXi2+7X vHEWhB2DE1LAs1PCsW56MB8GA1UdIwQYMBaAFOdxMuT+rQTu1P6UbWB6DctXpCBl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzE1Qy81RjA3MjYzODRG MzMxMUVFOTY2RTBGNzJDNEY5QUUwMi81M0V5NVA2dEJPN1VfcFJ0WUhvTnkxZWtJ R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzRXk1UDZ0Qk83VV9wUnRZSG9OeTFla0lHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjcxNUMvNUYwNzI2Mzg0RjMzMTFFRTk2NkUwRjcyQzRGOUFFMDIvN0E5N0QyRjIx NzQzMTFFRkFBNEI1NzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAFnSD4wGgQCAAIwFDASAwcAJAF/oAABAwcAJAF/oAACMA0G CSqGSIb3DQEBCwUAA4IBAQCME+eLQB3+vFO6P6bOW2p3htgE407rMPF80K7Wt3BD jAIkMsCpeoYiFUGXF1fZWBvyy6jAsF5Etfy9moYpkuUKC50S0qa+VEgLRoXCN9uR OIUdM9Z0x9l/cbohg2hTdh1K4G2H0zOHeMULTeT/6aQoUZ+Q1twonADik/CiLOLI lqLFEvPdvjvkxoWm53GDO4Ydi1T+6lLt3gjjlwlVH7W+1gyrRQ4NAZ9n7qEQigHj Cuv9PFS0FcdDfPWEEMnabK+i7bDnUFce3xkx/kjL4XOJxsWXW/EJsajKkEhYR+c0 7osIKl4g1Cn3+arIQ+uhEFf4hSRb4DFoi3kwUCCcuTUi -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:09 2024 by rpki-client on console-fra.rpki-client.org