$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/993EC4A6053A11EAAC92336CC4F9AE02.roa File: 993EC4A6053A11EAAC92336CC4F9AE02.roa (raw, json) Hash identifier: kw2eNb2EMSu9uzXccFSp6eZwzhS7sBm7WAl3fnQxLVk= Subject key identifier: B7:61:C3:71:71:C3:27:E4:4A:25:E8:C6:C0:3F:61:A8:54:8B:9C:AC Certificate issuer: /CN=A91FE40B/serialNumber=97655E1F45383F9538ADB1518A3486A4602BED44 Certificate serial: 0BBE Authority key identifier: 97:65:5E:1F:45:38:3F:95:38:AD:B1:51:8A:34:86:A4:60:2B:ED:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2VeH0U4P5U4rbFRijSGpGAr7UQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/993EC4A6053A11EAAC92336CC4F9AE02.roa Signing time: Fri 06 Sep 2024 19:08:23 +0000 ROA not before: Fri 06 Sep 2024 19:08:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136911 IP address blocks: 103.98.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/l2VeH0U4P5U4rbFRijSGpGAr7UQ.crl rsync://rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/l2VeH0U4P5U4rbFRijSGpGAr7UQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2VeH0U4P5U4rbFRijSGpGAr7UQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3006 (0xbbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE40B/serialNumber=97655E1F45383F9538ADB1518A3486A4602BED44 Validity Not Before: Sep 6 19:08:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db5326-4d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:51:28:97:23:d1:1f:f0:4d:b4:8e:3c:00: 56:e7:d8:f8:2f:79:ce:cb:c7:48:1b:7d:7e:6c:9d: cc:5c:1d:47:56:fb:7f:bb:33:49:0c:f5:fb:f9:f6: 91:14:3c:41:8b:2c:d5:38:c0:29:e8:57:9b:9b:0e: ce:37:3f:20:18:6b:d9:cf:92:8c:e2:60:46:de:ea: d4:9d:41:14:5e:05:fa:be:98:0d:57:f0:24:5b:d2: f6:3d:84:0c:de:e6:97:6d:b3:07:c1:0b:72:4a:ba: 3c:fc:ad:c6:df:47:a0:91:24:00:85:8a:f7:25:b1: ad:fe:1f:59:76:d8:a2:6f:c3:09:b4:2f:10:0d:b9: 79:93:76:f5:32:cb:d4:5d:e9:89:f9:8a:ce:0f:97: a2:d5:d8:d9:13:7a:6e:40:c9:eb:e9:84:c8:d8:cd: 18:30:d5:1d:f4:38:6a:ad:9f:d0:c8:86:d9:9f:ab: 16:81:88:da:6c:15:a1:cc:fa:4d:c4:c8:1d:55:38: 6b:11:f0:af:5b:83:e8:cf:32:55:fd:16:79:53:9f: 7a:3e:2d:42:31:22:ab:08:04:9a:29:85:33:c5:ba: 0b:0b:2a:29:65:9d:76:ad:e1:dd:77:88:e2:8c:01: a7:d5:70:ed:a5:1d:ca:ea:05:96:87:ff:5b:75:c2: cc:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:61:C3:71:71:C3:27:E4:4A:25:E8:C6:C0:3F:61:A8:54:8B:9C:AC X509v3 Authority Key Identifier: keyid:97:65:5E:1F:45:38:3F:95:38:AD:B1:51:8A:34:86:A4:60:2B:ED:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/l2VeH0U4P5U4rbFRijSGpGAr7UQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l2VeH0U4P5U4rbFRijSGpGAr7UQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE40B/DC5F1ACA053911EAB1742C6BC4F9AE02/993EC4A6053A11EAAC92336CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.135.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:15:72:59:b1:f9:59:52:ac:06:92:eb:b3:e3:cf:ab:d4:29: 48:6c:3c:68:d2:56:cf:a2:f7:38:c2:7d:fd:4d:45:46:07:4e: 40:da:cd:63:45:b3:97:c9:75:34:53:09:b5:40:b9:b1:df:c6: b9:33:00:f1:28:c4:c1:0c:10:df:d8:77:73:df:8d:db:42:36: 48:d7:64:5b:e5:f6:d2:35:68:0e:28:47:e2:64:0c:c2:50:d9: 15:4e:2d:af:15:37:cb:c6:9c:40:84:a1:2b:1f:ef:3f:a3:ed: ab:66:8e:c4:b1:1b:74:09:f8:0a:5e:2c:0c:57:5d:1d:1f:e5: 22:35:8b:5b:8a:a5:f4:e6:d4:90:5e:f6:d1:ff:89:e5:23:a3: 65:b4:4d:9e:59:fb:6e:29:9b:7f:e8:17:82:34:bb:1d:f9:08: d5:94:f3:ac:82:86:87:a6:3b:69:7d:82:02:f7:f7:51:fa:73: 4c:56:52:1f:66:e8:bf:8a:18:e5:d3:46:93:d8:b8:96:b8:12: 34:fa:cc:9e:77:0c:31:9b:96:a1:d7:57:a2:08:f8:0d:56:e2: c4:49:3f:69:db:fa:68:41:61:b0:74:cf:14:fd:48:13:63:45: b3:45:8c:e9:a1:43:dc:be:97:78:67:ea:a2:c8:2c:01:40:b0: ad:79:f7:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU0MEIxMTAvBgNVBAUTKDk3NjU1RTFGNDUzODNGOTUzOEFEQjE1MThBMzQ4NkE0 NjAyQkVENDQwHhcNMjQwOTA2MTkwODIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNTMyNi00ZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwG9RKJcj0R/wTbSOPABW59j4L3nOy8dIG31+bJ3MXB1HVvt/uzNJDPX7+faR FDxBiyzVOMAp6Febmw7ONz8gGGvZz5KM4mBG3urUnUEUXgX6vpgNV/AkW9L2PYQM 3uaXbbMHwQtySro8/K3G30egkSQAhYr3JbGt/h9Zdtiib8MJtC8QDbl5k3b1MsvU XemJ+YrOD5ei1djZE3puQMnr6YTI2M0YMNUd9DhqrZ/QyIbZn6sWgYjabBWhzPpN xMgdVThrEfCvW4PozzJV/RZ5U596Pi1CMSKrCASaKYUzxboLCyopZZ12reHdd4ji jAGn1XDtpR3K6gWWh/9bdcLMdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLdhw3Fx wyfkSiXoxsA/YahUi5ysMB8GA1UdIwQYMBaAFJdlXh9FOD+VOK2xUYo0hqRgK+1E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTQwQi9EQzVGMUFDQTA1 MzkxMUVBQjE3NDJDNkJDNEY5QUUwMi9sMlZlSDBVNFA1VTRyYkZSaWpTR3BHQXI3 VVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wyVmVIMFU0UDVVNHJiRlJpalNHcEdBcjdVUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU0MEIvREM1RjFBQ0EwNTM5MTFFQUIxNzQyQzZCQzRGOUFFMDIvOTkzRUM0QTYw NTNBMTFFQUFDOTIzMzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYocwDQYJKoZIhvcNAQELBQADggEBAHwVclmx+VlSrAaS 67Pjz6vUKUhsPGjSVs+i9zjCff1NRUYHTkDazWNFs5fJdTRTCbVAubHfxrkzAPEo xMEMEN/Yd3PfjdtCNkjXZFvl9tI1aA4oR+JkDMJQ2RVOLa8VN8vGnECEoSsf7z+j 7atmjsSxG3QJ+ApeLAxXXR0f5SI1i1uKpfTm1JBe9tH/ieUjo2W0TZ5Z+24pm3/o F4I0ux35CNWU86yChoemO2l9ggL391H6c0xWUh9m6L+KGOXTRpPYuJa4EjT6zJ53 DDGblqHXV6II+A1W4sRJP2nb+mhBYbB0zxT9SBNjRbNFjOmhQ9y+l3hn6qLILAFA sK1598o= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:23 2024 by rpki-client on console-ams.rpki-client.org