$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa File: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (raw, json) Hash identifier: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8= Subject key identifier: FE:71:64:28:0D:A2:45:57:4D:6B:72:7A:EE:FE:94:23:C7:42:18:20 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 12F0 Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa Signing time: Sat 18 May 2024 17:55:52 +0000 ROA not before: Sat 18 May 2024 17:55:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135375 IP address blocks: 103.63.190.0/24 maxlen: 24 103.216.48.0/22 maxlen: 22 103.216.48.0/24 maxlen: 24 103.216.49.0/24 maxlen: 24 103.216.50.0/24 maxlen: 24 103.216.51.0/24 maxlen: 24 203.95.196.0/22 maxlen: 22 203.95.196.0/24 maxlen: 24 203.95.197.0/24 maxlen: 24 203.95.198.0/24 maxlen: 24 203.95.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4848 (0x12f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: May 18 17:55:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6648eba8-5c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:db:ab:5b:ef:70:93:09:65:ee:82:9f:69:60: 0f:c9:3e:66:0e:b2:e7:17:3a:ab:21:3a:8e:21:2c: a3:2b:3d:aa:00:c8:b5:77:d7:a5:29:f4:8b:c3:39: be:08:31:c1:4a:55:9e:57:4e:09:c8:65:35:1b:25: 5e:f6:49:a6:56:6c:e7:82:9e:42:2f:dc:b2:98:51: 09:c4:b3:09:4c:7c:3d:90:b6:b1:ae:a6:e9:09:a3: 1f:a6:a4:22:67:6e:8e:1d:97:58:26:71:55:17:03: 0a:3f:01:40:30:16:eb:06:22:9d:bf:d0:f7:9b:b1: 5f:80:a1:4f:9e:44:c7:9d:cc:13:cf:a3:11:c1:93: e9:da:9a:23:7c:1b:1b:c2:5c:25:36:6b:5d:d0:76: f1:56:51:87:56:68:15:2b:f3:02:43:af:46:c1:ca: 21:fe:0d:36:74:43:90:a7:8b:1a:35:72:a2:5e:a7: a0:cb:01:a8:df:df:1b:64:8b:6c:a5:ba:1a:95:b5: 6d:0f:35:75:2d:b8:0b:a5:d0:d1:a4:bf:6d:e8:c2: 97:4d:2b:26:74:73:f8:c9:46:52:d4:77:04:97:6c: fe:cf:79:06:37:d4:87:95:0d:fc:b8:d1:fd:d0:c6: 1a:6f:3b:3c:1c:16:d4:ee:5f:a0:21:5a:eb:5c:13: df:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:71:64:28:0D:A2:45:57:4D:6B:72:7A:EE:FE:94:23:C7:42:18:20 X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/9D1CF15E90EE11E8960E8480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.190.0/24 103.216.48.0/22 203.95.196.0/22 Signature Algorithm: sha256WithRSAEncryption 72:95:e3:fe:de:10:92:cc:c7:1e:af:40:a4:ff:ab:89:f1:e8: eb:96:d5:e1:ff:b5:9d:b2:ef:be:36:d3:4d:dd:98:0f:ac:3b: f9:f3:a6:a9:7f:6c:9d:76:48:7a:69:d9:cc:dd:72:e5:a6:5c: 82:6f:5e:88:09:76:81:d5:89:36:b5:d6:b8:5e:9d:50:6f:09: 13:c0:7e:fc:f2:53:cb:66:e5:4b:e4:3a:a7:ef:87:a4:de:17: 4c:50:f0:ea:fe:fa:20:40:7c:c4:94:33:c8:2c:4f:a5:26:e1: ea:6b:42:7a:23:e0:ab:8e:f5:96:72:3d:1c:bd:8b:71:5f:09: 97:08:b6:3f:f1:e6:79:e7:c5:49:f6:82:d4:c6:99:20:db:5b: 5a:13:e5:38:47:c8:9d:be:3d:f1:17:38:a5:46:43:74:af:de: 3f:c0:56:b9:6a:d2:8c:26:2e:a9:f5:c0:7e:4c:f4:5d:74:b0: 85:5b:26:8f:f9:7e:62:35:8c:b4:ed:39:32:2c:7c:85:4d:13: 39:8c:25:49:f6:12:43:20:89:5a:55:cb:be:83:5a:97:f5:79: cb:d9:1f:b5:82:fa:5d:73:64:fa:72:4e:63:39:2a:16:dc:43: 5c:ba:3c:5b:96:09:2b:83:ab:48:b3:32:42:92:63:9d:9f:64: ff:3a:d9:75 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjQwNTE4MTc1NTUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ4ZWJhOC01YzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNurW+9wkwll7oKfaWAPyT5mDrLnFzqrITqOISyjKz2qAMi1d9elKfSLwzm+ CDHBSlWeV04JyGU1GyVe9kmmVmzngp5CL9yymFEJxLMJTHw9kLaxrqbpCaMfpqQi Z26OHZdYJnFVFwMKPwFAMBbrBiKdv9D3m7FfgKFPnkTHncwTz6MRwZPp2pojfBsb wlwlNmtd0HbxVlGHVmgVK/MCQ69Gwcoh/g02dEOQp4saNXKiXqegywGo398bZIts pboalbVtDzV1LbgLpdDRpL9t6MKXTSsmdHP4yUZS1HcEl2z+z3kGN9SHlQ38uNH9 0MYabzs8HBbU7l+gIVrrXBPf6wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFP5xZCgN okVXTWtyeu7+lCPHQhggMB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY2MzkvQUVGMDY4Qjg5MEVDMTFFODgzQzNENDdCQzRGOUFFMDIvOUQxQ0YxNUU5 MEVFMTFFODk2MEU4NDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnP74DBAJn2DADBALLX8QwDQYJKoZIhvcNAQELBQADggEB AHKV4/7eEJLMxx6vQKT/q4nx6OuW1eH/tZ2y7742003dmA+sO/nzpql/bJ12SHpp 2czdcuWmXIJvXogJdoHViTa11rhenVBvCRPAfvzyU8tm5UvkOqfvh6TeF0xQ8Or+ +iBAfMSUM8gsT6Um4eprQnoj4KuO9ZZyPRy9i3FfCZcItj/x5nnnxUn2gtTGmSDb W1oT5ThHyJ2+PfEXOKVGQ3Sv3j/AVrlq0owmLqn1wH5M9F10sIVbJo/5fmI1jLTt OTIsfIVNEzmMJUn2EkMgiVpVy76DWpf1ecvZH7WC+l1zZPpyTmM5KhbcQ1y6PFuW CSuDq0izMkKSY52fZP862XU= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:12 2024 by rpki-client on console-ams.rpki-client.org