$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa File: 7321413EC22511E99FB7F225C4F9AE02.roa (raw, json) Hash identifier: Z6lmT51OP+45EouSJ7OPnhCtkGwpN+kuXARe/mt1yM4= Subject key identifier: FE:CB:C2:1A:42:EB:90:60:7C:25:39:E1:11:22:E1:19:F0:57:32:FC Certificate issuer: /CN=A91B0367/serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Certificate serial: 0CEF Authority key identifier: E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa Signing time: Fri 28 Jun 2024 18:39:52 +0000 ROA not before: Fri 28 Jun 2024 18:39:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58625 IP address blocks: 103.14.36.0/22 maxlen: 22 103.14.36.0/24 maxlen: 24 103.14.37.0/24 maxlen: 24 103.14.38.0/24 maxlen: 24 103.14.39.0/24 maxlen: 24 2404:2700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3311 (0xcef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0367/serialNumber=E15A360372DDAF1C5B218E8C4CF69F6F8BD7F59A Validity Not Before: Jun 28 18:39:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f0378-1ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e6:9d:1c:d8:ac:ba:5c:0f:a4:f1:4e:3a:87: f0:af:9d:8b:27:33:a3:01:27:b8:c4:e9:22:ab:bf: 58:db:2f:74:57:fe:54:24:e4:89:6c:e2:08:d6:c0: ae:00:6f:6c:1a:04:b3:cd:f4:20:43:d3:e4:e2:03: 89:1d:ea:cb:2f:45:cb:7b:5a:96:1c:9b:47:8f:c5: e5:d5:c9:78:84:e9:d2:9f:80:e5:3d:44:73:b5:56: ff:cc:f3:e3:86:92:ec:0b:97:a6:c8:bc:cc:0a:fc: 3f:bb:9d:70:0f:d8:34:79:fe:9d:fc:d6:3c:89:3a: 53:c8:7c:53:68:50:dc:4b:8a:7d:70:4c:9a:1e:c0: d7:f5:62:f6:76:13:3f:c9:47:b7:eb:8f:5e:54:bc: a5:cc:c3:44:a8:c7:9a:b4:57:64:21:0a:57:62:c7: 8c:fc:25:ea:7d:56:a6:48:94:c9:d8:fe:c3:ca:8f: f4:c9:64:89:a9:ec:e6:fb:39:9f:4c:c0:59:9e:04: 31:a3:de:07:d4:c5:cd:76:bf:dd:18:4f:80:d2:57: ac:d6:38:8d:cd:76:b9:43:2e:f5:d3:d2:51:24:59: c0:c6:7b:47:93:41:98:7b:ca:11:ba:36:ef:6d:d4: b3:64:5a:9d:7f:ef:4e:c5:95:fe:17:7f:26:4e:56: 08:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CB:C2:1A:42:EB:90:60:7C:25:39:E1:11:22:E1:19:F0:57:32:FC X509v3 Authority Key Identifier: keyid:E1:5A:36:03:72:DD:AF:1C:5B:21:8E:8C:4C:F6:9F:6F:8B:D7:F5:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Vo2A3LdrxxbIY6MTPafb4vX9Zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0367/08C3D28EC22511E9A367D325C4F9AE02/7321413EC22511E99FB7F225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.36.0/22 IPv6: 2404:2700::/32 Signature Algorithm: sha256WithRSAEncryption 41:00:fe:11:26:9c:b3:a0:f9:8d:47:c7:e6:8a:16:54:48:26: b5:57:16:33:60:16:3d:cb:89:5c:be:ad:c4:ec:46:cd:bf:5a: 58:e4:d6:ff:32:49:95:bb:97:dd:08:20:bd:13:f6:d0:13:f0: 79:57:fd:70:55:16:58:00:34:8c:97:d9:03:ce:5e:c0:66:d7: 84:82:ba:91:4a:25:15:e8:1f:dc:d8:45:38:5b:a5:d8:d9:15: c8:bf:ec:df:b5:53:fd:f0:53:70:17:1a:59:d5:18:ec:79:ff: 59:b7:13:32:e5:dd:cb:ab:79:5b:79:02:45:d8:10:14:87:13: fa:66:8e:6e:c8:03:3b:bb:b9:69:84:ad:a4:d8:db:43:f0:d3: 74:25:8e:63:65:6b:a6:4e:93:50:97:d1:43:b0:96:48:e4:1e: 27:f5:45:c6:56:c6:80:cd:2c:7f:86:0a:82:4a:8c:37:09:68: 3d:8d:3a:12:5d:a0:0f:d4:d0:05:17:4c:85:7b:30:e7:8c:21: c8:9b:05:38:04:34:d6:18:b9:20:65:ef:c3:b6:25:90:da:4c: 0e:b3:1a:9d:9b:31:06:5e:cb:ce:c4:81:6d:d3:57:ca:aa:08: 5b:cc:75:30:2c:ad:cd:88:2c:37:08:13:7e:72:cb:0c:2c:6d: 04:63:b6:90 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAzNjcxMTAvBgNVBAUTKEUxNUEzNjAzNzJEREFGMUM1QjIxOEU4QzRDRjY5RjZG OEJEN0Y1OUEwHhcNMjQwNjI4MTgzOTUyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmMDM3OC0xZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeadHNisulwPpPFOOofwr52LJzOjASe4xOkiq79Y2y90V/5UJOSJbOII1sCu AG9sGgSzzfQgQ9Pk4gOJHerLL0XLe1qWHJtHj8Xl1cl4hOnSn4DlPURztVb/zPPj hpLsC5emyLzMCvw/u51wD9g0ef6d/NY8iTpTyHxTaFDcS4p9cEyaHsDX9WL2dhM/ yUe3649eVLylzMNEqMeatFdkIQpXYseM/CXqfVamSJTJ2P7Dyo/0yWSJqezm+zmf TMBZngQxo94H1MXNdr/dGE+A0les1jiNzXa5Qy7109JRJFnAxntHk0GYe8oRujbv bdSzZFqdf+9OxZX+F38mTlYIGwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP7LwhpC 65BgfCU54REi4RnwVzL8MB8GA1UdIwQYMBaAFOFaNgNy3a8cWyGOjEz2n2+L1/Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDM2Ny8wOEMzRDI4RUMy MjUxMUU5QTM2N0QzMjVDNEY5QUUwMi80Vm8yQTNMZHJ4eGJJWTZNVFBhZmI0dlg5 Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWbzJBM0xkcnh4YklZNk1UUGFmYjR2WDlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAzNjcvMDhDM0QyOEVDMjI1MTFFOUEzNjdEMzI1QzRGOUFFMDIvNzMyMTQxM0VD MjI1MTFFOTlGQjdGMjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnDiQwDQQCAAIwBwMFACQEJwAwDQYJKoZIhvcNAQELBQAD ggEBAEEA/hEmnLOg+Y1Hx+aKFlRIJrVXFjNgFj3LiVy+rcTsRs2/Wljk1v8ySZW7 l90IIL0T9tAT8HlX/XBVFlgANIyX2QPOXsBm14SCupFKJRXoH9zYRThbpdjZFci/ 7N+1U/3wU3AXGlnVGOx5/1m3EzLl3cureVt5AkXYEBSHE/pmjm7IAzu7uWmEraTY 20Pw03QljmNla6ZOk1CX0UOwlkjkHif1RcZWxoDNLH+GCoJKjDcJaD2NOhJdoA/U 0AUXTIV7MOeMIcibBTgENNYYuSBl78O2JZDaTA6zGp2bMQZey87EgW3TV8qqCFvM dTAsrc2ILDcIE35yywwsbQRjtpA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org