$ rpki-client -vvf rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/221560BEAF3711E98F7FF448C4F9AE02.roa File: 221560BEAF3711E98F7FF448C4F9AE02.roa (raw, json) Hash identifier: FsaFu6MkjeuiES2KGNl0DOyMgemSFW94x8yOeCJ7jiQ= Subject key identifier: 48:D8:F7:0F:05:82:EA:7B:84:6C:78:F4:48:9F:62:BB:53:C1:AB:29 Certificate issuer: /CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Certificate serial: 16EE Authority key identifier: 4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/221560BEAF3711E98F7FF448C4F9AE02.roa Signing time: Tue 12 Dec 2023 17:04:28 +0000 ROA not before: Tue 12 Dec 2023 17:04:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137042 IP address blocks: 103.102.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5870 (0x16ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Validity Not Before: Dec 12 17:04:28 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6578929b-6bfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5d:be:80:dc:b6:06:5b:12:71:0f:55:7f:47: 4e:01:36:ba:15:c1:0a:ec:f2:1d:c8:21:26:a4:9e: 62:f0:54:11:88:44:a6:ce:da:3e:19:8e:98:ba:28: 3a:c2:7e:68:4d:34:45:23:e9:29:e3:6c:2b:ed:70: 5b:66:cc:dd:d7:17:05:33:d2:8e:68:85:11:b5:c4: 68:fa:de:41:b6:a7:65:72:3b:bf:5a:94:77:31:ff: d4:ff:2d:30:a8:ed:c7:ed:83:e4:60:14:95:67:bb: 1b:d1:b3:a3:0e:41:a8:ca:64:ea:ca:2f:e6:61:3a: 98:7a:c3:ef:7a:da:2e:4d:18:3b:72:c7:bb:61:e0: 19:49:f4:74:13:a1:dd:a2:82:f8:52:9f:eb:fe:b5: 3c:70:c0:c0:e6:12:62:07:b0:57:66:09:30:a8:9d: 9e:a9:98:de:b4:af:66:ec:65:de:d7:70:10:4c:5a: 48:0c:83:fa:e1:89:32:fd:40:01:1d:3b:a5:3d:5c: 4a:f7:4f:ab:f3:6a:88:75:0d:d9:da:43:f1:d6:7d: 9d:e5:3f:9f:57:9a:8c:8f:69:92:6d:13:1b:92:ff: 3c:fc:93:4b:db:37:31:c5:bd:bb:bc:5e:cd:65:79: 8d:ae:56:cc:fa:75:48:f5:c9:2b:8f:4b:75:07:c8: 01:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D8:F7:0F:05:82:EA:7B:84:6C:78:F4:48:9F:62:BB:53:C1:AB:29 X509v3 Authority Key Identifier: keyid:4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/221560BEAF3711E98F7FF448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.222.0/23 Signature Algorithm: sha256WithRSAEncryption 88:2a:8f:65:26:ff:f3:c4:e2:97:5d:86:2d:0e:d9:1b:0a:2d: de:62:59:87:a0:64:8a:8b:33:4d:b4:06:c9:75:4e:8d:8a:9e: f0:63:64:04:68:16:b1:a0:a7:81:d0:b7:72:e3:17:ee:6b:2d: 79:6b:7c:f3:89:0f:5a:51:8b:be:db:31:d2:8c:3b:8d:81:13: aa:3f:3a:4f:ab:fd:af:44:7f:b5:25:0a:ed:96:6b:6c:77:ee: 40:db:f3:82:86:8a:15:ad:88:e7:0a:6c:f4:3d:48:90:5a:88: 64:91:dd:a6:23:a9:ea:66:c2:34:83:82:c2:63:8d:e8:e7:8d: 3d:88:6c:d6:95:22:f0:f5:12:7d:d4:62:24:7c:d8:c2:54:57: bd:07:91:26:b2:09:da:b6:14:13:fc:87:c3:86:9d:94:67:cb: 6d:9f:b7:ae:06:51:4d:5f:82:66:f7:45:59:7c:6a:43:1f:dd: f0:1b:96:c2:17:67:5d:9d:7c:99:7b:cc:2c:3d:8a:75:45:e1: bf:91:a4:5b:03:d7:9f:68:4f:6d:cd:5e:66:39:7a:09:0c:8e: d9:1c:a6:05:5b:6f:a4:52:5e:59:c7:9f:ea:50:c7:17:92:e2: 65:3f:e6:e3:97:80:dd:d6:fb:32:98:d8:df:09:3e:50:eb:b5: a6:7c:52:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEwRTQxMTAvBgNVBAUTKDRDMkU2MjcxNjMyMEFGRDRBMDE3MDA2NzZCRThCRjky NjRGNDVFNDIwHhcNMjMxMjEyMTcwNDI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4OTI5Yi02YmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3F2+gNy2BlsScQ9Vf0dOATa6FcEK7PIdyCEmpJ5i8FQRiESmzto+GY6Yuig6 wn5oTTRFI+kp42wr7XBbZszd1xcFM9KOaIURtcRo+t5Btqdlcju/WpR3Mf/U/y0w qO3H7YPkYBSVZ7sb0bOjDkGoymTqyi/mYTqYesPvetouTRg7cse7YeAZSfR0E6Hd ooL4Up/r/rU8cMDA5hJiB7BXZgkwqJ2eqZjetK9m7GXe13AQTFpIDIP64Yky/UAB HTulPVxK90+r82qIdQ3Z2kPx1n2d5T+fV5qMj2mSbRMbkv88/JNL2zcxxb27vF7N ZXmNrlbM+nVI9ckrj0t1B8gB2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEjY9w8F gup7hGx49EifYrtTwaspMB8GA1UdIwQYMBaAFEwuYnFjIK/UoBcAZ2vov5Jk9F5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTBFNC80NDk4NjhGQ0I4 ODUxMUU3QTQ4Mjg5MUFDNEY5QUUwMi9UQzVpY1dNZ3I5U2dGd0JuYS1pX2ttVDBY a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDNWljV01ncjlTZ0Z3Qm5hLWlfa21UMFhrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTEwRTQvNDQ5ODY4RkNCODg1MTFFN0E0ODI4OTFBQzRGOUFFMDIvMjIxNTYwQkVB RjM3MTFFOThGN0ZGNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZt4wDQYJKoZIhvcNAQELBQADggEBAIgqj2Um//PE4pdd hi0O2RsKLd5iWYegZIqLM020Bsl1To2KnvBjZARoFrGgp4HQt3LjF+5rLXlrfPOJ D1pRi77bMdKMO42BE6o/Ok+r/a9Ef7UlCu2Wa2x37kDb84KGihWtiOcKbPQ9SJBa iGSR3aYjqepmwjSDgsJjjejnjT2IbNaVIvD1En3UYiR82MJUV70HkSayCdq2FBP8 h8OGnZRny22ft64GUU1fgmb3RVl8akMf3fAblsIXZ12dfJl7zCw9inVF4b+RpFsD 159oT23NXmY5egkMjtkcpgVbb6RSXlnHn+pQxxeS4mU/5uOXgN3W+zKY2N8JPlDr taZ8Uj0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org