$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa File: 354314309C0F11EBAEFB6225C4F9AE02.roa (raw, json) Hash identifier: CosMJfW0j7STaofSkcaa5EBV8a+jVXJeWSFvGAhmxCM= Subject key identifier: 66:0E:F0:EA:49:F1:28:9E:C5:59:6D:F7:E7:5E:16:AA:E0:34:94:F2 Certificate issuer: /CN=A91F59DF/serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Certificate serial: 0598 Authority key identifier: 60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa Signing time: Mon 12 Aug 2024 23:42:06 +0000 ROA not before: Mon 12 Aug 2024 23:42:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135345 IP address blocks: 103.214.12.0/24 maxlen: 24 103.214.13.0/24 maxlen: 24 103.214.14.0/24 maxlen: 24 103.214.15.0/24 maxlen: 24 115.42.120.0/24 maxlen: 24 115.42.121.0/24 maxlen: 24 115.42.122.0/24 maxlen: 24 115.42.123.0/24 maxlen: 24 115.42.124.0/24 maxlen: 24 115.42.125.0/24 maxlen: 24 115.42.126.0/24 maxlen: 24 115.42.127.0/24 maxlen: 24 144.48.28.0/24 maxlen: 24 144.48.29.0/24 maxlen: 24 144.48.30.0/24 maxlen: 24 144.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59DF/serialNumber=609A3126E2369A97D47FD64498D8165E21E525C5 Validity Not Before: Aug 12 23:42:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ba9dce-5cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:e0:45:19:df:d3:b6:66:21:47:48:d7:b5: f6:20:0d:a6:9c:46:38:7e:fd:5a:34:04:a9:0e:0d: ad:15:e4:ac:27:af:26:c4:77:c1:90:de:3d:76:03: ce:29:db:0a:fe:57:74:98:db:d7:9c:ee:cb:6d:3c: 82:e6:6b:f5:a2:c3:a6:9a:26:aa:61:92:41:02:d0: c1:80:be:b3:02:14:fd:4e:ef:dd:60:43:91:f4:93: 36:de:48:f4:31:a2:cc:44:6b:46:4e:d2:0c:25:0e: 09:d4:c1:0d:b0:e9:75:6a:b9:bc:03:1a:39:b1:a9: 01:5b:76:09:fc:f8:6b:71:a5:31:36:2d:93:98:6d: 0b:c5:c7:aa:5f:cd:ac:14:f7:19:7a:67:26:86:7c: c7:2f:ab:01:e2:18:57:e0:3e:de:13:16:91:5e:57: c3:6e:31:3b:ea:1c:c4:61:50:b5:07:1c:71:73:09: 2c:6e:c1:28:ec:14:2c:b2:06:35:b5:a4:57:a1:ee: 34:e1:46:aa:42:33:2c:46:5d:de:6c:d7:9b:f5:51: 1e:a7:80:1b:a8:e0:46:aa:a8:c8:44:71:bb:e4:b9: 50:50:af:c6:9d:03:7e:44:d3:6f:60:ee:47:e9:05: 29:02:74:a2:59:14:f4:12:b9:da:bc:da:42:aa:56: 51:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0E:F0:EA:49:F1:28:9E:C5:59:6D:F7:E7:5E:16:AA:E0:34:94:F2 X509v3 Authority Key Identifier: keyid:60:9A:31:26:E2:36:9A:97:D4:7F:D6:44:98:D8:16:5E:21:E5:25:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJoxJuI2mpfUf9ZEmNgWXiHlJcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59DF/BB52F4AC9C0D11EBAED84B24C4F9AE02/354314309C0F11EBAEFB6225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.12.0/22 115.42.120.0/21 144.48.28.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:e4:d3:c3:67:b5:2d:6a:21:65:60:e8:59:45:22:0c:02:e2: cc:6e:14:4a:f3:29:e8:88:84:93:b4:84:3c:49:d1:09:2b:d1: a5:32:1b:19:ea:ed:93:78:58:e6:94:0d:aa:4a:66:86:62:91: bf:28:ad:e8:b6:01:fb:84:f4:a9:1a:e4:d3:a0:9b:de:ec:83: bc:59:89:cb:fd:a0:58:ba:37:d7:5a:4b:34:1c:b7:31:91:f1: 34:69:80:32:6d:ca:0f:ae:c4:38:f9:8a:d4:f3:87:5d:c8:b5: 67:61:63:6d:93:5a:1c:1f:cd:ca:60:3e:6a:43:e1:44:ef:9d: 42:ea:0a:62:eb:63:92:d5:5b:96:b6:e2:8e:e9:9f:73:94:a1: ef:fe:60:ca:7e:0a:1c:2a:61:8a:91:aa:c5:0c:a7:c7:f0:4a: 25:db:db:bf:08:16:f9:be:8d:c2:30:7f:47:c2:95:26:1c:56: 38:79:b0:57:0a:53:89:82:51:96:c1:a3:59:cb:d5:99:a9:ff: c4:17:42:aa:47:86:6e:ca:d8:de:ce:e0:47:36:1c:3d:65:97: 17:4b:ce:a0:36:1e:85:25:c2:96:90:31:37:c4:72:b2:f1:16: 0f:a1:ad:53:9b:9c:b8:03:71:36:12:69:a7:0c:95:ae:ca:7d: 85:15:98:92 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5REYxMTAvBgNVBAUTKDYwOUEzMTI2RTIzNjlBOTdENDdGRDY0NDk4RDgxNjVF MjFFNTI1QzUwHhcNMjQwODEyMjM0MjA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhOWRjZS01Y2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4rgRRnf07ZmIUdI17X2IA2mnEY4fv1aNASpDg2tFeSsJ68mxHfBkN49dgPO KdsK/ld0mNvXnO7LbTyC5mv1osOmmiaqYZJBAtDBgL6zAhT9Tu/dYEOR9JM23kj0 MaLMRGtGTtIMJQ4J1MENsOl1arm8Axo5sakBW3YJ/PhrcaUxNi2TmG0LxceqX82s FPcZemcmhnzHL6sB4hhX4D7eExaRXlfDbjE76hzEYVC1BxxxcwksbsEo7BQssgY1 taRXoe404UaqQjMsRl3ebNeb9VEep4AbqOBGqqjIRHG75LlQUK/GnQN+RNNvYO5H 6QUpAnSiWRT0ErnavNpCqlZRkQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGYO8OpJ 8SiexVlt9+deFqrgNJTyMB8GA1UdIwQYMBaAFGCaMSbiNpqX1H/WRJjYFl4h5SXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlERi9CQjUyRjRBQzlD MEQxMUVCQUVEODRCMjRDNEY5QUUwMi9ZSm94SnVJMm1wZlVmOVpFbU5nV1hpSGxK Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKb3hKdUkybXBmVWY5WkVtTmdXWGlIbEpjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5REYvQkI1MkY0QUM5QzBEMTFFQkFFRDg0QjI0QzRGOUFFMDIvMzU0MzE0MzA5 QzBGMTFFQkFFRkI2MjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn1gwDBANzKngDBAKQMBwwDQYJKoZIhvcNAQELBQADggEB AI3k08NntS1qIWVg6FlFIgwC4sxuFErzKeiIhJO0hDxJ0Qkr0aUyGxnq7ZN4WOaU DapKZoZikb8orei2AfuE9Kka5NOgm97sg7xZicv9oFi6N9daSzQctzGR8TRpgDJt yg+uxDj5itTzh13ItWdhY22TWhwfzcpgPmpD4UTvnULqCmLrY5LVW5a24o7pn3OU oe/+YMp+ChwqYYqRqsUMp8fwSiXb278IFvm+jcIwf0fClSYcVjh5sFcKU4mCUZbB o1nL1Zmp/8QXQqpHhm7K2N7O4Ec2HD1llxdLzqA2HoUlwpaQMTfEcrLxFg+hrVOb nLgDcTYSaacMla7KfYUVmJI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org