$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa File: D7FC7B4C217A11EE8C2D2243C4F9AE02.roa (raw, json) Hash identifier: Bz/Ejq1tEuz4EVJF91Xaku+18lMYhCoYHiQXonf6xO8= Subject key identifier: B0:E9:49:40:EF:0A:34:AD:E9:02:B2:30:F8:A0:29:7B:A9:59:AB:96 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: BC Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa Signing time: Sat 29 Jun 2024 06:08:23 +0000 ROA not before: Sat 29 Jun 2024 06:08:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24499 IP address blocks: 103.229.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: Jun 29 06:08:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=667fa4d6-5423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:60:aa:ac:91:ea:96:2a:1a:ff:7e:a6:0e:d8: f2:97:45:a1:e1:71:7c:00:5a:c0:56:6c:81:de:49: 17:13:2a:52:5a:4c:82:1c:13:48:30:db:05:c2:1f: f9:7d:ac:52:5c:78:eb:d9:44:e9:b2:5b:ee:66:fa: f5:a5:71:a2:90:3c:f6:1b:cb:8d:0b:13:55:b9:7e: 57:fb:2e:94:5c:e5:27:e7:e4:11:92:b1:4b:55:d1: 18:9c:6e:ba:80:8c:50:7c:3d:49:58:36:81:9d:3a: b7:3a:d0:7d:d8:a7:7e:60:16:bb:16:f4:5c:af:d9: ed:75:87:a1:c7:77:51:8a:ae:b8:3f:15:3e:34:82: 40:e1:3d:73:a5:6c:2e:5d:7b:48:dd:35:6f:1a:11: 4e:a4:d2:26:65:8a:78:1f:62:aa:5c:02:66:ef:6e: d8:f6:a7:a6:53:ed:54:97:36:b4:7a:f4:dc:5a:7a: 58:64:8f:25:c8:de:8e:aa:21:12:a4:d3:7f:97:0e: f1:77:02:40:d9:37:07:d7:a3:a6:fe:2c:2e:68:6a: d3:c4:01:44:f6:7a:7f:f3:88:cd:3d:3e:b8:7b:9d: d3:52:d8:57:43:41:44:db:6e:ec:23:e6:c7:60:06: 10:01:ef:7d:dd:02:54:37:92:46:7f:d2:40:b8:fd: 60:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E9:49:40:EF:0A:34:AD:E9:02:B2:30:F8:A0:29:7B:A9:59:AB:96 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/D7FC7B4C217A11EE8C2D2243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.191.0/24 Signature Algorithm: sha256WithRSAEncryption 58:fe:52:b0:a3:b2:0c:d5:34:f4:00:65:16:cf:68:35:b8:6e: 6f:17:a0:a8:29:2d:37:c5:cc:10:20:8e:6a:fc:56:40:85:01: cc:2a:77:cc:6e:bf:aa:e0:8b:18:2c:4e:b3:05:40:1f:b8:16: dc:bb:2b:44:3d:84:4e:93:34:0e:af:3e:28:83:50:9b:3b:82: 8c:39:19:f8:95:83:dc:f1:86:b0:6f:a3:f8:b2:42:27:41:33: f1:4c:cf:d0:56:05:d6:a8:30:ef:6c:ac:cb:69:8e:eb:26:64: 94:67:c9:38:4c:22:fd:45:94:67:f3:9f:79:82:31:ad:c9:57: 39:da:fa:d1:22:5c:78:17:3b:4e:c6:bd:b5:1a:74:21:82:e7: 6b:a2:ff:d1:ed:5b:8f:71:1d:e0:aa:96:30:02:c8:f0:06:9e: 43:75:a8:e7:59:ba:3c:3b:98:92:77:ca:7d:32:e7:95:b7:39: 1c:6e:bc:00:40:15:a9:b0:0d:30:fe:00:47:78:a2:d8:45:f6: ea:9a:b5:3e:f8:ce:ae:01:46:46:54:34:57:76:e5:28:1d:3b: 0d:af:16:84:0c:d8:d9:5f:46:47:54:f3:a4:75:b6:47:f6:9c: df:55:30:3c:c3:ea:79:59:84:94:94:6a:85:54:28:aa:4d:7c: e8:ff:8a:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjQwNjI5MDYwODIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmYTRkNi01NDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWCqrJHqlioa/36mDtjyl0Wh4XF8AFrAVmyB3kkXEypSWkyCHBNIMNsFwh/5 faxSXHjr2UTpslvuZvr1pXGikDz2G8uNCxNVuX5X+y6UXOUn5+QRkrFLVdEYnG66 gIxQfD1JWDaBnTq3OtB92Kd+YBa7FvRcr9ntdYehx3dRiq64PxU+NIJA4T1zpWwu XXtI3TVvGhFOpNImZYp4H2KqXAJm727Y9qemU+1Ulza0evTcWnpYZI8lyN6OqiES pNN/lw7xdwJA2TcH16Om/iwuaGrTxAFE9np/84jNPT64e53TUthXQ0FE227sI+bH YAYQAe993QJUN5JGf9JAuP1gjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLDpSUDv CjSt6QKyMPigKXupWauWMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvRDdGQzdCNEMy MTdBMTFFRThDMkQyMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5b8wDQYJKoZIhvcNAQELBQADggEBAFj+UrCjsgzVNPQA ZRbPaDW4bm8XoKgpLTfFzBAgjmr8VkCFAcwqd8xuv6rgixgsTrMFQB+4Fty7K0Q9 hE6TNA6vPiiDUJs7gow5GfiVg9zxhrBvo/iyQidBM/FMz9BWBdaoMO9srMtpjusm ZJRnyThMIv1FlGfzn3mCMa3JVzna+tEiXHgXO07GvbUadCGC52ui/9HtW49xHeCq ljACyPAGnkN1qOdZujw7mJJ3yn0y55W3ORxuvABAFamwDTD+AEd4othF9uqatT74 zq4BRkZUNFd25SgdOw2vFoQM2NlfRkdU86R1tkf2nN9VMDzD6nlZhJSUaoVUKKpN fOj/ipE= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:27 2024 by rpki-client on console-ams.rpki-client.org