$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa File: 0D99319006F011EFA8C8D445C4F9AE02.roa (raw, json) Hash identifier: bpom3reAuSH5kWlKjhbxGa+9B3rkP41atXZYS3Vq+Bg= Subject key identifier: 86:3F:35:83:D7:93:BB:6A:01:0A:4F:EF:68:C8:7F:69:2C:3B:A0:81 Certificate issuer: /CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Certificate serial: BC Authority key identifier: 7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa Signing time: Mon 17 Jun 2024 08:15:24 +0000 ROA not before: Mon 17 Jun 2024 08:15:24 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 800 IP address blocks: 103.68.188.0/22 maxlen: 24 103.147.48.0/23 maxlen: 23 203.27.19.0/24 maxlen: 24 2405:a9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77AD/serialNumber=7C9F72229ED112594C7722D3C21B5105E29FC48A Validity Not Before: Jun 17 08:15:24 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=666ff09c-5396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:41:04:f8:20:10:77:56:8c:fe:4a:56:13:2e: 20:b6:3c:ef:79:32:db:60:e5:a0:d8:01:c9:5d:b6: 29:27:ff:b5:20:8a:b0:ed:02:66:3b:6c:1f:87:2b: 4b:bb:e5:42:bd:37:52:4f:c4:58:e6:46:f3:a3:21: 6b:0f:e4:23:a0:7a:14:cc:9e:04:44:9f:8b:41:fb: 1d:5b:73:99:24:2d:da:c8:6b:a6:69:c6:b7:a3:81: 97:f9:ba:5d:64:2b:41:21:a3:55:94:f7:b7:24:2a: af:0c:6d:12:9e:fd:92:9d:a8:d1:ff:61:50:28:36: 5c:1b:82:84:dd:b8:a6:d6:f4:df:3d:9f:4f:c6:86: 53:eb:30:bf:3c:cb:6d:7a:ac:d7:84:d9:5c:fc:c6: df:5e:4e:4e:ab:64:80:7b:75:d2:a5:ec:3b:17:f8: 88:e4:dc:86:f6:f7:3f:33:73:1d:1e:e1:f0:04:58: 5b:98:86:33:69:19:ea:2b:39:2c:a9:7b:c0:b5:33: 6c:74:42:38:46:9b:9a:8d:7d:41:56:1d:37:5a:81: 6d:1a:95:9d:42:2a:d5:38:8a:69:66:6a:41:70:fd: 78:8c:93:0d:c4:5a:6c:b4:18:f9:ba:26:20:3d:61: 9b:7e:3c:50:8b:50:60:00:41:3e:13:47:4c:f6:59: 9b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:3F:35:83:D7:93:BB:6A:01:0A:4F:EF:68:C8:7F:69:2C:3B:A0:81 X509v3 Authority Key Identifier: keyid:7C:9F:72:22:9E:D1:12:59:4C:77:22:D3:C2:1B:51:05:E2:9F:C4:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/fJ9yIp7REllMdyLTwhtRBeKfxIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJ9yIp7REllMdyLTwhtRBeKfxIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77AD/CE6C237A20A811EE98637F23C4F9AE02/0D99319006F011EFA8C8D445C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.188.0/22 103.147.48.0/23 203.27.19.0/24 IPv6: 2405:a9c0::/32 Signature Algorithm: sha256WithRSAEncryption 27:53:1d:e7:74:1d:21:12:8c:c5:ec:57:e0:9b:c1:4e:26:18: e9:96:37:42:fa:ed:5c:b7:f1:85:56:20:d4:fa:00:14:f2:30: e7:fa:2d:9b:b4:0b:4b:1b:04:3b:c2:dc:22:7c:c1:8f:d6:ac: 4a:3b:bf:d1:7c:1d:80:f2:9f:83:f5:cc:23:ca:f6:e7:7e:bd: f5:81:e8:2d:eb:20:b2:fb:4e:d7:39:8a:a6:c8:ea:de:5e:23: 39:4c:cd:b1:7a:96:36:a6:ac:e0:54:2d:c0:27:57:4b:75:90: ac:33:85:a3:58:ec:81:2e:56:f0:95:ed:9d:47:4a:7f:72:85: 37:c2:2e:0a:b6:2c:46:cd:a9:02:2b:f8:52:75:17:b4:af:ec: fd:9f:51:aa:d4:0a:a3:4a:75:16:f6:00:78:86:8e:66:4c:c3: 38:36:ab:f5:17:2e:2a:ad:07:83:82:4e:1b:d3:e8:01:82:3b: a6:0d:a7:f6:32:93:da:c6:ae:2f:01:d5:b0:fd:8b:36:64:29: 8f:9d:ef:45:45:13:a1:d4:5d:46:1c:3f:17:07:91:80:01:73: 20:e0:4e:cf:da:3b:33:2b:a5:7d:88:08:d9:10:d3:8f:f5:6d: 5e:10:5d:08:fc:f7:28:76:93:66:1d:7a:37:d3:5c:fc:77:ac: 72:ce:0f:36 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3QUQxMTAvBgNVBAUTKDdDOUY3MjIyOUVEMTEyNTk0Qzc3MjJEM0MyMUI1MTA1 RTI5RkM0OEEwHhcNMjQwNjE3MDgxNTI0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmZjA5Yy01Mzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUEE+CAQd1aM/kpWEy4gtjzveTLbYOWg2AHJXbYpJ/+1IIqw7QJmO2wfhytL u+VCvTdST8RY5kbzoyFrD+QjoHoUzJ4ERJ+LQfsdW3OZJC3ayGumaca3o4GX+bpd ZCtBIaNVlPe3JCqvDG0Snv2SnajR/2FQKDZcG4KE3bim1vTfPZ9PxoZT6zC/PMtt eqzXhNlc/MbfXk5Oq2SAe3XSpew7F/iI5NyG9vc/M3MdHuHwBFhbmIYzaRnqKzks qXvAtTNsdEI4RpuajX1BVh03WoFtGpWdQirVOIppZmpBcP14jJMNxFpstBj5uiYg PWGbfjxQi1BgAEE+E0dM9lmbFwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIY/NYPX k7tqAQpP72jIf2ksO6CBMB8GA1UdIwQYMBaAFHyfciKe0RJZTHci08IbUQXin8SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdBRC9DRTZDMjM3QTIw QTgxMUVFOTg2MzdGMjNDNEY5QUUwMi9mSjl5SXA3UkVsbE1keUxUd2h0UkJlS2Z4 SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKOXlJcDdSRWxsTWR5TFR3aHRSQmVLZnhJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc3QUQvQ0U2QzIzN0EyMEE4MTFFRTk4NjM3RjIzQzRGOUFFMDIvMEQ5OTMxOTAw NkYwMTFFRkE4QzhENDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnRLwDBAFnkzADBADLGxMwDQQCAAIwBwMFACQFqcAwDQYJ KoZIhvcNAQELBQADggEBACdTHed0HSESjMXsV+CbwU4mGOmWN0L67Vy38YVWINT6 ABTyMOf6LZu0C0sbBDvC3CJ8wY/WrEo7v9F8HYDyn4P1zCPK9ud+vfWB6C3rILL7 Ttc5iqbI6t5eIzlMzbF6ljamrOBULcAnV0t1kKwzhaNY7IEuVvCV7Z1HSn9yhTfC Lgq2LEbNqQIr+FJ1F7Sv7P2fUarUCqNKdRb2AHiGjmZMwzg2q/UXLiqtB4OCThvT 6AGCO6YNp/Yyk9rGri8B1bD9izZkKY+d70VFE6HUXUYcPxcHkYABcyDgTs/aOzMr pX2ICNkQ04/1bV4QXQj89yh2k2YdejfTXPx3rHLODzY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:09 2024 by rpki-client on console-fra.rpki-client.org