$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/50A5B1ACC75911EDBFF7200BC4F9AE02.roa File: 50A5B1ACC75911EDBFF7200BC4F9AE02.roa (raw, json) Hash identifier: 8u6b4a4SL7qo5uF/JaMZJ60i8FGnfKqe4W4pbpnaB3k= Subject key identifier: A9:AC:F7:64:87:AD:E2:00:B8:39:54:5B:FA:8C:51:9F:2A:F3:74:EE Certificate issuer: /CN=A91FB880/serialNumber=598C5FCEA555AE595CC9E9761C0FB2DEAEA4451F Certificate serial: 8A Authority key identifier: 59:8C:5F:CE:A5:55:AE:59:5C:C9:E9:76:1C:0F:B2:DE:AE:A4:45:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYxfzqVVrllcyel2HA-y3q6kRR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/50A5B1ACC75911EDBFF7200BC4F9AE02.roa Signing time: Mon 11 Dec 2023 05:35:45 +0000 ROA not before: Mon 11 Dec 2023 05:35:45 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 140728 IP address blocks: 103.79.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/WYxfzqVVrllcyel2HA-y3q6kRR8.crl rsync://rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/WYxfzqVVrllcyel2HA-y3q6kRR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYxfzqVVrllcyel2HA-y3q6kRR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB880/serialNumber=598C5FCEA555AE595CC9E9761C0FB2DEAEA4451F Validity Not Before: Dec 11 05:35:45 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65769fb1-1ab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a2:9f:67:11:2f:68:2c:29:cd:3c:af:5a:45: aa:17:c0:b6:0b:d6:f7:c2:75:ce:fd:58:25:f6:81: ba:c9:0a:a2:52:36:49:3e:d5:78:3a:42:1d:12:bb: 23:30:53:2e:47:a2:68:87:cc:85:79:13:e6:05:31: 18:a7:72:72:fa:6d:80:a8:3b:4a:77:b9:c5:cf:0b: 48:c5:4f:de:52:66:dc:6f:12:b3:82:a2:cf:14:d9: db:b3:32:70:d2:3f:04:58:54:62:9a:e5:a6:8d:83: 27:d7:1b:e8:ce:67:35:eb:1e:b0:c8:51:84:12:1f: fd:0e:e9:0d:9c:c0:e4:77:d5:81:8a:9c:14:58:3c: ca:14:db:f7:45:96:37:e6:0e:a2:0e:52:ad:4f:c6: fa:9f:7d:e3:5a:9d:3a:f4:e7:a5:c4:2a:1c:c3:b1: 30:fb:8d:43:80:c7:ae:de:ca:a2:fe:84:1a:03:f4: b8:f6:22:1e:22:ce:c9:9f:db:d1:be:20:c2:5e:75: 25:7e:7b:da:c9:7f:46:12:de:8d:8b:7d:00:9b:f8: c3:0a:71:90:08:39:bb:af:b7:21:6b:70:ae:2d:5a: 33:9a:ab:e8:b9:09:3d:67:b0:ef:d5:2b:11:04:c6: 88:e6:26:85:f6:4b:c1:b2:22:4d:37:61:bc:b7:d7: dd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:AC:F7:64:87:AD:E2:00:B8:39:54:5B:FA:8C:51:9F:2A:F3:74:EE X509v3 Authority Key Identifier: keyid:59:8C:5F:CE:A5:55:AE:59:5C:C9:E9:76:1C:0F:B2:DE:AE:A4:45:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/WYxfzqVVrllcyel2HA-y3q6kRR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYxfzqVVrllcyel2HA-y3q6kRR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB880/C1903E62C75611EDB28A7F0AC4F9AE02/50A5B1ACC75911EDBFF7200BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.159.0/24 Signature Algorithm: sha256WithRSAEncryption 96:2f:08:ae:df:72:4f:73:35:b6:ea:f9:2d:75:9e:13:1b:a2: 5a:d1:3f:18:6f:67:2f:a8:ac:c3:1b:79:1e:d2:db:6e:50:91: 9d:ef:ea:28:62:c4:60:d8:54:f9:95:cf:9d:69:df:92:ec:e5: 74:37:36:d8:d5:25:bd:95:d0:cb:5b:77:b5:72:bf:fa:57:df: b9:04:dd:cc:9f:c6:09:3d:d1:65:6d:4b:80:3c:67:3b:60:c0: 02:7f:0f:c5:96:97:cc:a7:b4:89:a4:55:0c:5e:f3:48:3b:cd: 8c:7e:3a:cf:82:9e:95:7e:70:30:75:97:84:64:76:46:57:5e: ad:ca:28:97:8e:06:93:85:3c:88:39:29:12:b3:4c:91:fb:ba: 71:27:45:a9:2e:32:52:06:c0:57:d9:ee:70:f6:12:8d:3e:b0: d9:db:0b:11:ed:a7:36:64:c0:bf:64:49:68:37:ac:1a:a2:19: 0c:29:ad:18:34:d4:26:63:9d:45:33:01:79:5d:c1:22:1b:bd: e2:70:ca:2d:d0:6a:3a:6a:44:f6:7a:2f:8d:f5:99:53:23:c4: 94:e6:10:f9:0d:86:74:97:40:09:2b:54:f3:c8:ba:f7:80:6f: f3:e6:ce:cd:bf:92:ba:70:15:bf:8f:5e:15:d6:19:4f:f9:1f: 37:bd:9f:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4ODAxMTAvBgNVBAUTKDU5OEM1RkNFQTU1NUFFNTk1Q0M5RTk3NjFDMEZCMkRF QUVBNDQ1MUYwHhcNMjMxMjExMDUzNTQ1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc2OWZiMS0xYWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qKfZxEvaCwpzTyvWkWqF8C2C9b3wnXO/Vgl9oG6yQqiUjZJPtV4OkIdErsj MFMuR6Joh8yFeRPmBTEYp3Jy+m2AqDtKd7nFzwtIxU/eUmbcbxKzgqLPFNnbszJw 0j8EWFRimuWmjYMn1xvozmc16x6wyFGEEh/9DukNnMDkd9WBipwUWDzKFNv3RZY3 5g6iDlKtT8b6n33jWp069OelxCocw7Ew+41DgMeu3sqi/oQaA/S49iIeIs7Jn9vR viDCXnUlfnvayX9GEt6Ni30Am/jDCnGQCDm7r7cha3CuLVozmqvouQk9Z7Dv1SsR BMaI5iaF9kvBsiJNN2G8t9fdjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKms92SH reIAuDlUW/qMUZ8q83TuMB8GA1UdIwQYMBaAFFmMX86lVa5ZXMnpdhwPst6upEUf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjg4MC9DMTkwM0U2MkM3 NTYxMUVEQjI4QTdGMEFDNEY5QUUwMi9XWXhmenFWVnJsbGN5ZWwySEEteTNxNmtS UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZeGZ6cVZWcmxsY3llbDJIQS15M3E2a1JSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI4ODAvQzE5MDNFNjJDNzU2MTFFREIyOEE3RjBBQzRGOUFFMDIvNTBBNUIxQUND NzU5MTFFREJGRjcyMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnT58wDQYJKoZIhvcNAQELBQADggEBAJYvCK7fck9zNbbq +S11nhMbolrRPxhvZy+orMMbeR7S225QkZ3v6ihixGDYVPmVz51p35Ls5XQ3NtjV Jb2V0Mtbd7Vyv/pX37kE3cyfxgk90WVtS4A8ZztgwAJ/D8WWl8yntImkVQxe80g7 zYx+Os+CnpV+cDB1l4RkdkZXXq3KKJeOBpOFPIg5KRKzTJH7unEnRakuMlIGwFfZ 7nD2Eo0+sNnbCxHtpzZkwL9kSWg3rBqiGQwprRg01CZjnUUzAXldwSIbveJwyi3Q ajpqRPZ6L431mVMjxJTmEPkNhnSXQAkrVPPIuveAb/Pmzs2/krpwFb+PXhXWGU/5 Hze9nwU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org