$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/8B1BDC14EA3911EDB91E190BC4F9AE02.roa File: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (raw, json) Hash identifier: Fb+sAlO981Q8IszvJ9e3FZrhvTZMZ9fTATHnLpoxBL8= Subject key identifier: 95:F6:4A:48:29:FC:9B:A7:8B:91:99:E2:10:3D:28:71:93:15:86:3B Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 9F Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/8B1BDC14EA3911EDB91E190BC4F9AE02.roa Signing time: Fri 01 Mar 2024 06:47:40 +0000 ROA not before: Fri 01 Mar 2024 06:47:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 10143 IP address blocks: 103.67.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Mar 1 06:47:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e17a0b-288e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6e:8d:8a:13:c5:7d:b5:68:0d:ca:89:af:51: 17:06:98:1d:84:e5:fb:71:f1:38:4a:ed:2a:ae:ac: 68:1c:f5:5a:11:65:5a:d7:86:e1:af:17:12:2e:7a: 87:40:a6:c1:6b:b5:b7:77:62:77:53:35:f2:b4:42: 5a:15:3b:c4:82:f7:4f:95:c3:55:93:1b:14:5c:e0: 2a:76:a6:35:a6:6d:d6:b9:e6:5d:46:2d:de:4e:3c: 25:7b:47:94:ce:cf:2f:04:aa:8d:24:fb:b5:44:cc: f4:92:a6:02:09:a1:1c:5b:57:25:81:0c:e5:c5:05: 99:d2:2d:37:9e:28:d4:b6:34:58:98:ab:c5:12:25: a6:7e:6e:c4:76:22:81:90:93:76:00:31:36:83:e5: cd:cc:b5:30:f4:4e:30:cb:95:d0:fc:54:d4:3b:0f: a2:58:ea:16:b3:f6:80:74:f5:fc:ad:b0:73:e4:94: 85:e6:8c:e6:1d:2e:a6:89:d3:cd:59:5c:67:c3:23: d1:41:af:8e:26:6c:22:0d:c4:c9:57:b9:db:ad:44: 08:a8:bd:2e:7a:ec:35:a2:af:ff:f6:4a:ed:2b:5c: 09:86:f4:39:cf:9d:e7:ab:29:e0:e7:43:ae:5a:75: d5:19:48:bb:39:29:1e:07:1f:9e:2f:10:9e:69:7b: f2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F6:4A:48:29:FC:9B:A7:8B:91:99:E2:10:3D:28:71:93:15:86:3B X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/8B1BDC14EA3911EDB91E190BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.21.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:17:5a:71:52:d6:3c:5f:18:da:df:f4:ca:be:77:e7:bd:1b: b4:9c:85:9c:e3:ef:86:99:31:85:d9:3e:3e:c8:ec:74:81:3b: c1:0f:f6:0c:9e:97:c8:da:0f:cc:e3:23:58:78:3b:61:10:bc: 05:e5:8a:05:41:30:51:f8:4d:ce:38:4b:5d:69:b4:3a:69:55: 35:ef:3e:2e:e9:54:4f:4f:07:99:eb:ed:08:71:1e:6a:a3:91: 6c:04:35:38:f8:a7:51:f4:17:63:96:d2:fe:ae:20:2d:ee:2b: 17:22:a1:df:1e:60:bd:94:50:1a:c0:22:d0:de:28:cd:62:45: d6:08:3a:4b:8f:12:0c:01:78:31:d9:46:ea:07:3a:ff:68:fb: 9c:1c:ca:96:5c:a5:bc:72:15:f3:78:7f:7e:25:46:e1:f8:05: 6d:f6:fd:ed:d0:69:8f:f5:9c:4f:73:97:3c:4c:d6:a6:65:c9: e6:31:b0:c0:92:7b:b9:cd:37:b8:fe:58:33:14:57:35:62:81: ec:aa:0a:64:63:32:a5:a5:a8:3a:f8:6e:da:1c:f7:c9:33:42: b0:e5:c4:83:22:3d:7e:66:c6:14:89:ba:5f:c4:52:a0:77:0a: c7:a3:c4:bb:2a:ba:08:c2:e7:76:12:71:38:ee:55:64:57:0f: 84:fc:40:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjQwMzAxMDY0NzQwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxN2EwYi0yODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl26NihPFfbVoDcqJr1EXBpgdhOX7cfE4Su0qrqxoHPVaEWVa14bhrxcSLnqH QKbBa7W3d2J3UzXytEJaFTvEgvdPlcNVkxsUXOAqdqY1pm3WueZdRi3eTjwle0eU zs8vBKqNJPu1RMz0kqYCCaEcW1clgQzlxQWZ0i03nijUtjRYmKvFEiWmfm7EdiKB kJN2ADE2g+XNzLUw9E4wy5XQ/FTUOw+iWOoWs/aAdPX8rbBz5JSF5ozmHS6midPN WVxnwyPRQa+OJmwiDcTJV7nbrUQIqL0ueuw1oq//9krtK1wJhvQ5z53nqyng50Ou WnXVGUi7OSkeBx+eLxCeaXvyBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJX2Skgp /Juni5GZ4hA9KHGTFYY7MB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFENDMvODkyOURGREVFQTI4MTFFREI3REQwMTE4QzRGOUFFMDIvOEIxQkRDMTRF QTM5MTFFREI5MUUxOTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQxUwDQYJKoZIhvcNAQELBQADggEBAH8XWnFS1jxfGNrf 9Mq+d+e9G7SchZzj74aZMYXZPj7I7HSBO8EP9gyel8jaD8zjI1h4O2EQvAXligVB MFH4Tc44S11ptDppVTXvPi7pVE9PB5nr7QhxHmqjkWwENTj4p1H0F2OW0v6uIC3u Kxciod8eYL2UUBrAItDeKM1iRdYIOkuPEgwBeDHZRuoHOv9o+5wcypZcpbxyFfN4 f34lRuH4BW32/e3QaY/1nE9zlzxM1qZlyeYxsMCSe7nNN7j+WDMUVzVigeyqCmRj MqWlqDr4btoc98kzQrDlxIMiPX5mxhSJul/EUqB3CsejxLsqugjC53YScTjuVWRX D4T8QIU= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org