$ rpki-client -vvf rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C54C42C04D7611EEA69CE262C4F9AE02.roa File: C54C42C04D7611EEA69CE262C4F9AE02.roa (raw, json) Hash identifier: 3vGbgZeBX2ux3qD/sA/eOOnJkTBw50rlrCAjdQKlgEE= Subject key identifier: 6C:24:64:02:8A:D9:EA:26:36:D3:BA:E1:52:0D:72:D5:24:FA:0C:3F Certificate issuer: /CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Certificate serial: 04FE Authority key identifier: 45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C54C42C04D7611EEA69CE262C4F9AE02.roa Signing time: Wed 06 Nov 2024 23:22:12 +0000 ROA not before: Wed 06 Nov 2024 23:22:12 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 35478 IP address blocks: 103.31.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E5DC/serialNumber=452FABBDF09DDF7E55FD0F9DBDDD4278F44FB881 Validity Not Before: Nov 6 23:22:12 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bfa24-a2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:26:c6:2e:7b:09:22:b6:f3:08:19:de:6b:04: c5:02:f1:00:d7:ed:87:f3:95:b1:bf:ae:56:6f:81: 96:67:bf:76:3c:fc:83:b3:7e:24:55:10:04:c1:f5: 54:86:d4:8b:0d:14:1d:00:6c:80:04:a8:68:b8:39: dc:0a:f4:56:bb:dd:fb:67:08:34:0f:a8:19:ad:57: 62:ca:eb:3d:bd:c1:e4:96:35:fc:7b:31:aa:58:18: b9:ed:8d:f6:bd:0f:17:93:9e:cb:2d:e7:8d:0e:7f: 41:63:4a:c6:8b:85:db:09:15:a6:8e:bf:2e:fc:a9: b7:5f:ab:51:bc:71:a3:6a:1a:b6:f0:c5:92:af:bc: f7:74:07:48:dd:86:99:30:10:28:53:8f:6e:ac:74: 4f:9f:69:42:c1:53:19:14:49:39:ee:2b:4a:6f:b7: c0:06:fb:67:8c:07:11:d6:65:74:e0:24:00:0b:5d: eb:a1:9b:7e:22:16:88:75:dc:cd:8d:31:9e:6e:7b: 02:ec:0c:09:8c:42:c6:96:9d:1d:14:94:34:b3:79: fa:08:1d:f4:70:01:eb:c5:2a:67:51:d4:c1:7c:d1: bf:de:43:bd:a1:d9:9a:64:bb:23:a5:8b:1d:90:65: bb:b4:53:40:07:2d:98:eb:06:b5:a0:22:85:b7:23: 39:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:24:64:02:8A:D9:EA:26:36:D3:BA:E1:52:0D:72:D5:24:FA:0C:3F X509v3 Authority Key Identifier: keyid:45:2F:AB:BD:F0:9D:DF:7E:55:FD:0F:9D:BD:DD:42:78:F4:4F:B8:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/RS-rvfCd335V_Q-dvd1CePRPuIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RS-rvfCd335V_Q-dvd1CePRPuIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E5DC/BBE2B502F8EB11EBBEF5AA37C4F9AE02/C54C42C04D7611EEA69CE262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.208.0/24 Signature Algorithm: sha256WithRSAEncryption 00:22:98:8b:1a:4c:9e:9b:81:a7:fe:6c:6a:ea:71:50:94:97: c6:0a:a5:7e:cf:03:60:61:88:e1:bc:9c:4d:8b:b3:2d:8f:6d: 17:d1:62:09:75:43:c9:1e:c4:7f:3a:3f:dc:aa:2f:25:26:fc: 85:b4:9b:87:a1:20:18:64:78:a7:ff:42:22:eb:67:8c:4a:f9: 0b:d8:6c:86:93:5b:75:0a:dd:51:a9:ac:c7:76:ed:53:af:38: 5c:2a:2c:8d:d3:92:42:ac:0d:b2:fa:b5:88:27:e0:cd:f7:88: c4:37:50:5a:4a:54:c3:a9:06:de:93:ef:53:40:76:f3:27:28: b8:12:38:70:5f:08:ef:2a:47:59:59:7c:ac:eb:db:50:b9:2e: 2b:9e:ad:a7:49:5b:d7:4e:52:5c:0c:ff:c3:73:25:1f:e7:43: ee:2e:4f:d5:af:0e:5b:06:54:90:90:18:63:9c:ae:17:16:76: b8:9f:0f:3d:d7:51:6a:b5:ac:ca:6e:1b:f6:5d:a1:15:93:47: eb:10:0d:3c:72:5c:38:e9:78:2c:a2:b7:fd:7d:84:6d:88:f0: e5:20:ea:c4:91:de:04:e7:6f:56:d4:70:08:57:50:20:53:b6: f5:7a:e7:6d:46:b0:95:cb:55:e2:7e:ca:a9:68:b1:4e:26:91: 79:c9:d0:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U1REMxMTAvBgNVBAUTKDQ1MkZBQkJERjA5RERGN0U1NUZEMEY5REJEREQ0Mjc4 RjQ0RkI4ODEwHhcNMjQxMTA2MjMyMjEyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZmEyNC1hMmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8SbGLnsJIrbzCBneawTFAvEA1+2H85Wxv65Wb4GWZ792PPyDs34kVRAEwfVU htSLDRQdAGyABKhouDncCvRWu937Zwg0D6gZrVdiyus9vcHkljX8ezGqWBi57Y32 vQ8Xk57LLeeNDn9BY0rGi4XbCRWmjr8u/Km3X6tRvHGjahq28MWSr7z3dAdI3YaZ MBAoU49urHRPn2lCwVMZFEk57itKb7fABvtnjAcR1mV04CQAC13roZt+IhaIddzN jTGebnsC7AwJjELGlp0dFJQ0s3n6CB30cAHrxSpnUdTBfNG/3kO9odmaZLsjpYsd kGW7tFNABy2Y6wa1oCKFtyM5xQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGwkZAKK 2eomNtO64VINctUk+gw/MB8GA1UdIwQYMBaAFEUvq73wnd9+Vf0Pnb3dQnj0T7iB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTVEQy9CQkUyQjUwMkY4 RUIxMUVCQkVGNUFBMzdDNEY5QUUwMi9SUy1ydmZDZDMzNVZfUS1kdmQxQ2VQUlB1 SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JTLXJ2ZkNkMzM1Vl9RLWR2ZDFDZVBSUHVJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U1REMvQkJFMkI1MDJGOEVCMTFFQkJFRjVBQTM3QzRGOUFFMDIvQzU0QzQyQzA0 RDc2MTFFRUE2OUNFMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnH9AwDQYJKoZIhvcNAQELBQADggEBAAAimIsaTJ6bgaf+ bGrqcVCUl8YKpX7PA2BhiOG8nE2Lsy2PbRfRYgl1Q8kexH86P9yqLyUm/IW0m4eh IBhkeKf/QiLrZ4xK+QvYbIaTW3UK3VGprMd27VOvOFwqLI3TkkKsDbL6tYgn4M33 iMQ3UFpKVMOpBt6T71NAdvMnKLgSOHBfCO8qR1lZfKzr21C5LiueradJW9dOUlwM /8NzJR/nQ+4uT9WvDlsGVJCQGGOcrhcWdrifDz3XUWq1rMpuG/ZdoRWTR+sQDTxy XDjpeCyit/19hG2I8OUg6sSR3gTnb1bUcAhXUCBTtvV6521GsJXLVeJ+yqlosU4m kXnJ0Ps= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:01 2024 by rpki-client on console-ams.rpki-client.org