$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/E911B9C2AD6211EABEDF046AC4F9AE02.roa File: E911B9C2AD6211EABEDF046AC4F9AE02.roa (raw, json) Hash identifier: QUObNXZOwXzCGPF+2m5s+nGn/9bDkCSMgpOC/MmIYMw= Subject key identifier: F5:EA:B7:B3:EB:B0:18:46:BE:29:AB:76:75:C8:8E:FE:AE:21:2A:7F Certificate issuer: /CN=A914F5BA/serialNumber=51CA0CBA847F9899C9CF5A57A9BE615CFB3A5A50 Certificate serial: 082E Authority key identifier: 51:CA:0C:BA:84:7F:98:99:C9:CF:5A:57:A9:BE:61:5C:FB:3A:5A:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcoMuoR_mJnJz1pXqb5hXPs6WlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/E911B9C2AD6211EABEDF046AC4F9AE02.roa Signing time: Tue 28 May 2024 22:02:33 +0000 ROA not before: Tue 28 May 2024 22:02:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137811 IP address blocks: 103.114.88.0/22 maxlen: 22 103.114.88.0/24 maxlen: 24 103.114.89.0/24 maxlen: 24 103.114.90.0/24 maxlen: 24 103.114.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/UcoMuoR_mJnJz1pXqb5hXPs6WlA.crl rsync://rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/UcoMuoR_mJnJz1pXqb5hXPs6WlA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcoMuoR_mJnJz1pXqb5hXPs6WlA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:33:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA/serialNumber=51CA0CBA847F9899C9CF5A57A9BE615CFB3A5A50 Validity Not Before: May 28 22:02:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66565479-8112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:72:a5:72:76:d9:ba:ab:7e:c8:6d:12:3d: 4e:03:d4:58:2a:c4:cd:3f:f9:88:df:45:13:75:89: 57:06:30:c0:03:2b:f0:07:27:9f:45:f5:ae:7f:29: 4c:4d:f8:24:96:37:fe:7c:84:f9:de:f3:39:fe:1c: 79:d1:51:fb:dc:5c:d2:02:00:f5:e6:db:51:b8:58: 16:a3:56:65:47:e5:29:cf:40:b5:c2:02:0b:9a:ce: 17:6f:79:7e:19:e6:74:02:85:00:8d:41:ae:49:ed: ac:61:18:ab:73:bc:4d:ea:e7:df:f4:ba:1d:59:4c: 5a:73:e5:db:37:45:07:f6:82:29:46:0e:88:9d:b3: b8:92:c4:5d:48:3a:b3:dd:27:69:72:77:2b:46:9d: 1f:c7:c2:40:94:93:d3:80:b8:96:59:2f:18:e2:bb: e0:51:80:08:d8:63:65:b9:6b:41:f9:d1:6b:4a:e5: 81:d2:6a:a7:a7:d9:e2:5e:6a:00:56:a3:dd:f0:b6: 38:68:a1:86:9a:46:a3:92:55:65:bf:5f:10:68:2e: e2:63:fa:9f:c3:50:72:92:7c:40:bf:2d:89:95:fc: 4b:16:03:59:1d:e1:d8:8f:bd:01:c6:7a:8e:b3:ca: 0f:3f:ce:e8:1a:c0:63:9e:e6:4b:44:ed:a9:6e:62: 16:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EA:B7:B3:EB:B0:18:46:BE:29:AB:76:75:C8:8E:FE:AE:21:2A:7F X509v3 Authority Key Identifier: keyid:51:CA:0C:BA:84:7F:98:99:C9:CF:5A:57:A9:BE:61:5C:FB:3A:5A:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/UcoMuoR_mJnJz1pXqb5hXPs6WlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcoMuoR_mJnJz1pXqb5hXPs6WlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/EE22D010AD6011EA8F1A8D63C4F9AE02/E911B9C2AD6211EABEDF046AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.88.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:dd:c7:db:b6:fa:b7:17:ec:ce:b8:4c:8b:c4:8f:66:fb:62: 6a:22:82:74:47:66:04:3c:49:1b:26:18:a6:3e:39:d2:75:2c: ce:48:e2:bd:55:03:3f:ef:80:f3:e4:d6:5d:01:88:3f:e3:47: 94:00:e2:17:8e:5b:1d:05:54:8c:44:c7:14:f7:e3:e2:06:41: 90:9b:3f:8c:7c:12:fa:a0:cf:c5:11:47:6b:e0:f7:90:3a:bb: 85:53:ba:63:a6:a8:42:3a:85:8e:f8:74:24:ad:da:42:19:fc: 37:c2:70:1d:da:5a:79:49:10:cb:bb:cc:7e:cb:1d:60:38:e0: 55:fc:f2:de:78:20:69:ba:15:5b:e4:b8:6e:3e:c5:81:2c:70: e2:85:f5:8c:3a:75:05:fc:60:0c:cc:3a:5a:40:17:ad:00:f9: 2c:4f:94:db:8c:a9:73:0f:29:06:4a:bd:99:9a:73:3c:e4:63: fe:e4:e6:37:c9:a8:fc:7b:71:79:17:92:2a:ea:4b:4e:d8:5b: f6:ec:3d:1f:17:83:8a:0f:bd:65:dc:5f:c7:40:41:d8:db:b2: bf:34:28:c5:3f:dc:07:34:e0:bb:fd:bf:12:32:90:49:0c:58: b3:38:ff:67:8f:75:2c:ab:88:79:4f:f4:91:1a:8a:17:67:06: f4:14:4f:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDUxQ0EwQ0JBODQ3Rjk4OTlDOUNGNUE1N0E5QkU2MTVD RkIzQTVBNTAwHhcNMjQwNTI4MjIwMjMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NTQ3OS04MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEpypXJ22bqrfshtEj1OA9RYKsTNP/mI30UTdYlXBjDAAyvwByefRfWufylM Tfgkljf+fIT53vM5/hx50VH73FzSAgD15ttRuFgWo1ZlR+Upz0C1wgILms4Xb3l+ GeZ0AoUAjUGuSe2sYRirc7xN6uff9LodWUxac+XbN0UH9oIpRg6InbO4ksRdSDqz 3SdpcncrRp0fx8JAlJPTgLiWWS8Y4rvgUYAI2GNluWtB+dFrSuWB0mqnp9niXmoA VqPd8LY4aKGGmkajklVlv18QaC7iY/qfw1ByknxAvy2JlfxLFgNZHeHYj70BxnqO s8oPP87oGsBjnuZLRO2pbmIW7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPXqt7Pr sBhGvimrdnXIjv6uISp/MB8GA1UdIwQYMBaAFFHKDLqEf5iZyc9aV6m+YVz7OlpQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS9FRTIyRDAxMEFE NjAxMUVBOEYxQThENjNDNEY5QUUwMi9VY29NdW9SX21Kbkp6MXBYcWI1aFhQczZX bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Vjb011b1JfbUpuSnoxcFhxYjVoWFBzNldsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEY1QkEvRUUyMkQwMTBBRDYwMTFFQThGMUE4RDYzQzRGOUFFMDIvRTkxMUI5QzJB RDYyMTFFQUJFREYwNDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnclgwDQYJKoZIhvcNAQELBQADggEBAHzdx9u2+rcX7M64 TIvEj2b7YmoignRHZgQ8SRsmGKY+OdJ1LM5I4r1VAz/vgPPk1l0BiD/jR5QA4heO Wx0FVIxExxT34+IGQZCbP4x8Evqgz8URR2vg95A6u4VTumOmqEI6hY74dCSt2kIZ /DfCcB3aWnlJEMu7zH7LHWA44FX88t54IGm6FVvkuG4+xYEscOKF9Yw6dQX8YAzM OlpAF60A+SxPlNuMqXMPKQZKvZmaczzkY/7k5jfJqPx7cXkXkirqS07YW/bsPR8X g4oPvWXcX8dAQdjbsr80KMU/3Ac04Lv9vxIykEkMWLM4/2ePdSyriHlP9JEaihdn BvQUT3M= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:13 2024 by rpki-client on console-ams.rpki-client.org