$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa File: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (raw, json) Hash identifier: vYR9SjpP8jHKczAPek7eoEYqF72FxyEH5VDwe9plJnM= Subject key identifier: AB:65:1F:A5:E2:8F:C9:5A:28:8A:FB:EA:7E:35:5F:5F:46:83:F2:6E Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 2A Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa Signing time: Wed 31 Jan 2024 08:08:51 +0000 ROA not before: Wed 31 Jan 2024 08:08:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150714 IP address blocks: 103.66.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: Jan 31 08:08:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65ba0013-a861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:57:07:41:df:ab:d7:54:8f:fa:bf:22:2e: 25:3d:a9:e3:ad:4f:b8:35:30:30:e8:b6:81:c3:54: da:25:e7:8c:75:69:bb:3d:33:9c:9a:bf:e7:a2:a9: 29:be:90:b7:78:f4:c2:50:40:41:f4:69:5c:da:27: ca:bf:0d:36:9e:d0:54:6f:29:b2:ce:0f:b4:08:fa: 59:41:90:28:3b:14:5c:4e:08:05:25:73:81:50:d6: 38:4e:6c:6e:ff:2f:b0:ce:bc:24:62:6f:48:40:f4: 75:a7:aa:f6:08:83:dc:9f:84:93:2a:64:ed:2a:0f: 56:83:80:7d:85:82:4d:73:81:d0:90:ca:d7:c6:54: a1:63:d8:1b:4e:e2:02:c5:37:65:cf:10:c8:db:e1: c0:a0:ff:48:01:46:5f:ef:c6:d0:f7:6f:18:68:08: 36:f4:4f:5d:a6:09:6b:54:46:3c:96:9a:83:36:af: c1:37:6e:b4:21:c5:28:49:65:8e:b4:1d:01:76:4c: 96:f5:90:12:24:e9:90:6d:33:38:6d:0a:66:e9:2a: ba:6e:77:a6:e2:0c:7f:e5:e9:0e:86:0e:18:9f:d7: 45:e4:a8:41:c9:10:63:cc:bb:32:e6:12:10:e4:33: 18:af:96:46:1f:05:0e:67:4d:25:d3:a3:67:2e:d8: 2e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:65:1F:A5:E2:8F:C9:5A:28:8A:FB:EA:7E:35:5F:5F:46:83:F2:6E X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/398B4EEE875E11EEBCAB2514C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.140.0/23 Signature Algorithm: sha256WithRSAEncryption 18:45:00:02:9d:f4:64:33:4a:7a:bc:a1:a6:5e:26:9c:3b:5d: 00:6b:87:0f:f5:a5:35:42:2e:02:c7:13:ce:f4:67:9d:48:5e: f2:da:32:4a:1a:0c:9b:8c:9d:7e:44:d0:ee:cc:89:32:46:c6: 96:4f:d3:e9:83:57:89:47:4b:f4:53:7a:a4:39:c8:69:97:7c: 0b:be:23:9a:f8:cc:16:a3:05:b8:5a:c6:bb:5c:a2:c0:4a:f9: 03:a0:4a:1e:7f:7d:fa:7a:3e:8c:f6:d7:d0:eb:50:03:e3:82: a4:7b:33:7a:cf:bb:29:f3:94:8c:64:29:18:78:18:c4:13:f7: ef:d8:5d:9b:ae:a0:5d:76:57:fd:c0:37:5e:12:ea:d7:7a:58: 4a:cf:c1:20:dc:6e:03:99:0a:4d:e4:ae:e9:63:e1:b4:49:c4: b4:b1:bb:4d:28:d9:a6:d1:93:0f:56:02:9c:e3:6f:b5:00:38: 95:9e:02:d7:36:e4:03:db:99:dc:6f:84:6f:5d:8d:7c:e7:4b: 04:e1:e0:4b:9d:a5:2f:1a:8b:ea:b3:6c:7c:90:27:b6:a1:50: f7:22:7d:96:d9:71:35:cc:55:a5:68:5e:b2:ec:04:f2:63:87: 3b:0c:a3:bb:25:66:e9:ed:23:2e:fd:0d:8e:1b:2a:96:2b:66: 33:cc:ff:ce -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTlGMTExMC8GA1UEBRMoMUE3QjNFQ0Y0NDYzM0UxRUEyNEM5MDYxN0FEMzk3NDU1 RTc0RTZCMjAeFw0yNDAxMzEwODA4NTFaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmEwMDEzLWE4NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyu1cHQd+r11SP+r8iLiU9qeOtT7g1MDDotoHDVNol54x1abs9M5yav+eiqSm+ kLd49MJQQEH0aVzaJ8q/DTae0FRvKbLOD7QI+llBkCg7FFxOCAUlc4FQ1jhObG7/ L7DOvCRib0hA9HWnqvYIg9yfhJMqZO0qD1aDgH2Fgk1zgdCQytfGVKFj2BtO4gLF N2XPEMjb4cCg/0gBRl/vxtD3bxhoCDb0T12mCWtURjyWmoM2r8E3brQhxShJZY60 HQF2TJb1kBIk6ZBtMzhtCmbpKrpud6biDH/l6Q6GDhif10XkqEHJEGPMuzLmEhDk MxivlkYfBQ5nTSXTo2cu2C61AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUq2UfpeKP yVooivvqfjVfX0aD8m4wHwYDVR0jBBgwFoAUGns+z0RjPh6iTJBhetOXRV505rIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFOUYxL0VFNjk1RkU2ODc1 RDExRUU4RjQ4OTkxM0M0RjlBRTAyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR25zLXowUmpQaDZpVEpCaGV0T1hSVjUwNXJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlGMS9FRTY5NUZFNjg3NUQxMUVFOEY0ODk5MTNDNEY5QUUwMi8zOThCNEVFRTg3 NUUxMUVFQkNBQjI1MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdCjDANBgkqhkiG9w0BAQsFAAOCAQEAGEUAAp30ZDNKeryh pl4mnDtdAGuHD/WlNUIuAscTzvRnnUhe8toyShoMm4ydfkTQ7syJMkbGlk/T6YNX iUdL9FN6pDnIaZd8C74jmvjMFqMFuFrGu1yiwEr5A6BKHn99+no+jPbX0OtQA+OC pHszes+7KfOUjGQpGHgYxBP379hdm66gXXZX/cA3XhLq13pYSs/BINxuA5kKTeSu 6WPhtEnEtLG7TSjZptGTD1YCnONvtQA4lZ4C1zbkA9uZ3G+Eb12NfOdLBOHgS52l LxqL6rNsfJAntqFQ9yJ9ltlxNcxVpWhesuwE8mOHOwyjuyVm6e0jLv0Njhsqlitm M8z/zg== -----END CERTIFICATE-----Generated at Fri May 31 10:02:43 2024 by rpki-client on console-ams.rpki-client.org