$ rpki-client -vvf rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/55F7C16CABDE11EEA9B44639C4F9AE02.roa File: 55F7C16CABDE11EEA9B44639C4F9AE02.roa (raw, json) Hash identifier: LRgZIPAfyXWSZXYxQKmagPCwrYM4gPhtoJaJVDq8z0c= Subject key identifier: 14:5F:06:AE:2A:7F:F8:29:40:B5:C7:72:1A:BE:1F:49:4E:A6:F7:24 Certificate issuer: /CN=A914B089/serialNumber=548C3C00BE290C1673DB669998520D72378445CB Certificate serial: A0 Authority key identifier: 54:8C:3C:00:BE:29:0C:16:73:DB:66:99:98:52:0D:72:37:84:45:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIw8AL4pDBZz22aZmFINcjeERcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/55F7C16CABDE11EEA9B44639C4F9AE02.roa Signing time: Thu 07 Nov 2024 04:18:24 +0000 ROA not before: Thu 07 Nov 2024 04:18:24 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151982 IP address blocks: 103.250.102.0/24 maxlen: 24 2001:df3:1140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/VIw8AL4pDBZz22aZmFINcjeERcs.crl rsync://rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/VIw8AL4pDBZz22aZmFINcjeERcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIw8AL4pDBZz22aZmFINcjeERcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B089/serialNumber=548C3C00BE290C1673DB669998520D72378445CB Validity Not Before: Nov 7 04:18:24 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672c3f90-c992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:7e:58:2d:72:1e:74:88:fc:60:32:df:63: d9:84:0f:0c:28:c1:86:fe:cf:d0:44:ef:ff:95:0b: 62:3f:c1:1a:7d:b0:a5:84:b4:de:39:79:55:53:44: 5d:21:82:40:29:ac:d5:72:c6:79:68:e9:1b:30:96: 69:4d:57:40:41:ce:b5:27:64:61:1b:c7:10:19:f8: cc:d2:2d:af:d2:76:81:7a:ca:3b:b5:68:b1:f8:ed: c3:e5:3f:00:74:f0:1e:20:a6:56:25:eb:aa:f8:68: e6:1c:f1:cb:1b:60:34:49:b6:b0:f0:88:19:60:ba: 8b:00:14:88:97:d4:32:bb:c4:5d:4f:23:ee:f0:20: 5e:bf:0a:a5:a3:22:9b:5b:a5:15:e5:62:db:be:01: d1:00:15:f3:22:74:5f:f3:87:11:75:e1:90:bf:51: a7:0b:5b:71:ab:0d:9a:b2:67:34:42:40:8f:e1:02: 0c:57:da:af:d3:d5:5f:7e:5c:2e:63:35:dc:08:a3: 64:bf:7f:90:1e:25:4c:57:10:e4:3c:ae:24:29:33: 20:b9:ea:27:2c:cb:03:35:2b:af:76:e6:a2:36:88: 53:f3:54:de:05:dc:1d:b4:1a:49:22:13:1c:4a:11: 98:85:f6:12:b6:0d:af:ee:ad:38:74:6d:df:4f:6d: 4c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5F:06:AE:2A:7F:F8:29:40:B5:C7:72:1A:BE:1F:49:4E:A6:F7:24 X509v3 Authority Key Identifier: keyid:54:8C:3C:00:BE:29:0C:16:73:DB:66:99:98:52:0D:72:37:84:45:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/VIw8AL4pDBZz22aZmFINcjeERcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIw8AL4pDBZz22aZmFINcjeERcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B089/0F896AFAABDE11EE9EF0DF38C4F9AE02/55F7C16CABDE11EEA9B44639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.102.0/24 IPv6: 2001:df3:1140::/48 Signature Algorithm: sha256WithRSAEncryption 97:ff:65:05:d1:f5:c4:8b:d9:03:e0:e3:6a:40:76:2c:72:0f: be:f4:c6:c9:9c:e9:87:b0:14:d7:be:f3:a5:f2:3d:30:3d:25: 9c:3b:84:18:27:f8:65:1c:0c:a2:cf:61:82:8a:d4:f0:5c:ad: df:a2:b7:ee:33:88:b7:bb:20:f8:21:8a:66:b8:b0:f1:7c:ed: ea:60:64:b1:73:46:52:ec:56:cd:95:47:56:72:97:f4:4a:27: 91:25:09:cb:b8:b4:9f:af:2b:dc:d3:48:93:de:a9:dc:8b:bd: 37:ff:89:70:0f:af:bd:f7:7f:86:0e:2e:72:a5:94:42:26:74: 5b:b5:36:ba:45:2d:6f:c0:97:54:a3:7d:69:0d:ca:de:42:04: 6c:a6:b5:cd:b9:f3:c1:f2:9b:75:a8:63:c1:11:71:96:68:85: 3a:e6:83:83:24:66:47:e4:08:42:ff:f1:c6:22:d8:a8:0d:46: d8:99:67:f6:18:9e:c1:bd:ad:9c:30:3b:45:f5:d8:3b:ae:d1: 87:f9:91:95:6b:6b:06:c0:77:b5:be:b5:e7:0c:7a:41:68:a4: 95:1f:e1:05:ee:e3:e8:4f:49:10:78:aa:b0:7e:d5:eb:dc:e1: 2a:0d:9e:d0:f8:3e:94:b1:0b:0a:a9:0e:f5:34:d1:83:e4:2b: 4d:41:86:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwODkxMTAvBgNVBAUTKDU0OEMzQzAwQkUyOTBDMTY3M0RCNjY5OTk4NTIwRDcy Mzc4NDQ1Q0IwHhcNMjQxMTA3MDQxODI0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjM2Y5MC1jOTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ1+WC1yHnSI/GAy32PZhA8MKMGG/s/QRO//lQtiP8EafbClhLTeOXlVU0Rd IYJAKazVcsZ5aOkbMJZpTVdAQc61J2RhG8cQGfjM0i2v0naBeso7tWix+O3D5T8A dPAeIKZWJeuq+GjmHPHLG2A0Sbaw8IgZYLqLABSIl9Qyu8RdTyPu8CBevwqloyKb W6UV5WLbvgHRABXzInRf84cRdeGQv1GnC1txqw2asmc0QkCP4QIMV9qv09Vfflwu YzXcCKNkv3+QHiVMVxDkPK4kKTMgueonLMsDNSuvduaiNohT81TeBdwdtBpJIhMc ShGYhfYStg2v7q04dG3fT21MnwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBRfBq4q f/gpQLXHchq+H0lOpvckMB8GA1UdIwQYMBaAFFSMPAC+KQwWc9tmmZhSDXI3hEXL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjA4OS8wRjg5NkFGQUFC REUxMUVFOUVGMERGMzhDNEY5QUUwMi9WSXc4QUw0cERCWnoyMmFabUZJTmNqZUVS Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJdzhBTDRwREJaejIyYVptRklOY2plRVJjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIwODkvMEY4OTZBRkFBQkRFMTFFRTlFRjBERjM4QzRGOUFFMDIvNTVGN0MxNkNB QkRFMTFFRUE5QjQ0NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+mYwDwQCAAIwCQMHACABDfMRQDANBgkqhkiG9w0BAQsF AAOCAQEAl/9lBdH1xIvZA+DjakB2LHIPvvTGyZzph7AU177zpfI9MD0lnDuEGCf4 ZRwMos9hgorU8Fyt36K37jOIt7sg+CGKZriw8Xzt6mBksXNGUuxWzZVHVnKX9Eon kSUJy7i0n68r3NNIk96p3Iu9N/+JcA+vvfd/hg4ucqWUQiZ0W7U2ukUtb8CXVKN9 aQ3K3kIEbKa1zbnzwfKbdahjwRFxlmiFOuaDgyRmR+QIQv/xxiLYqA1G2Jln9hie wb2tnDA7RfXYO67Rh/mRlWtrBsB3tb615wx6QWiklR/hBe7j6E9JEHiqsH7V69zh Kg2e0Pg+lLELCqkO9TTRg+QrTUGGEg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org