$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa File: 4E17ACCEF02511EE94BE6C37C4F9AE02.roa (raw, json) Hash identifier: u1gaPe1rNZR7+OinWikix9cuKzKOycOECZnxKnKlico= Subject key identifier: 51:A4:3F:58:0A:BE:43:00:D9:1D:5D:A6:DB:0E:FB:65:19:12:EF:04 Certificate issuer: /CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Certificate serial: 0531 Authority key identifier: 66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa Signing time: Mon 03 Jun 2024 01:56:34 +0000 ROA not before: Mon 03 Jun 2024 01:56:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132220 IP address blocks: 103.216.164.0/22 maxlen: 22 103.216.165.0/24 maxlen: 24 103.216.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1329 (0x531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF3B6/serialNumber=660EDDBB35D53756C306BD8CD917DACFF7896CBD Validity Not Before: Jun 3 01:56:34 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d22d2-33a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cf:6a:eb:b4:14:6e:b1:bd:8f:3f:1d:9a:de: 55:fa:14:93:5c:08:f7:dd:ce:2f:1c:4f:4f:25:8a: 5e:e3:40:f5:d2:93:46:51:e4:7c:76:7b:64:47:c6: f7:02:22:e7:e0:4d:86:92:73:24:8a:a0:bd:4b:ec: 63:37:3a:26:9f:a7:2b:9b:8d:c0:9a:c1:7f:92:27: 30:d3:97:91:01:6d:6c:36:c1:9d:ac:49:96:9c:5f: 28:b0:89:16:30:1b:7f:d8:5d:5c:58:58:0e:6c:85: c6:ac:10:08:9b:bc:ee:92:68:36:60:dc:3b:aa:e4: b3:ff:3d:01:6f:a3:79:b5:3e:f7:a3:15:e9:5e:21: 2a:4d:ea:ca:b1:14:8e:4e:6b:11:c5:3b:71:d8:a4: 07:be:87:8d:8c:89:af:a6:28:ba:e6:5a:0b:d1:1d: f8:99:57:7b:04:07:28:8c:18:5b:f5:23:10:df:65: 84:10:5e:bf:37:df:3c:cb:b5:62:95:2d:7f:1e:1b: 14:ea:62:8f:d8:6a:77:9a:73:8c:5a:50:a2:3b:44: 20:60:8c:61:2c:4c:80:bd:2b:4b:1b:c2:9e:56:09: d5:9f:0c:fc:23:31:c8:88:fa:a3:db:ec:46:56:17: 4c:bb:0c:d5:ff:ec:c7:38:7c:b1:16:a2:e1:70:39: d9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A4:3F:58:0A:BE:43:00:D9:1D:5D:A6:DB:0E:FB:65:19:12:EF:04 X509v3 Authority Key Identifier: keyid:66:0E:DD:BB:35:D5:37:56:C3:06:BD:8C:D9:17:DA:CF:F7:89:6C:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zg7duzXVN1bDBr2M2Rfaz_eJbL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF3B6/508ACD28BC9911EBA1AB564BC4F9AE02/4E17ACCEF02511EE94BE6C37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.216.164.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:9e:1d:f3:cf:b6:41:36:db:7c:4f:22:25:5d:9e:4b:5c:63: 2f:0d:68:80:78:a1:c2:84:3c:e5:ae:b7:0a:f8:d8:1d:3c:44: 79:66:d8:ab:fb:0a:b8:35:82:9f:66:d0:6e:97:a1:f3:18:29: 53:fc:d4:5e:e5:95:61:d9:14:ee:27:80:57:3f:6e:1c:d6:b4: 59:9f:e2:ef:6f:f1:a5:10:98:5a:8f:28:97:14:cd:98:f7:94: d5:83:ec:93:d2:89:49:99:0d:98:3f:1a:ba:cd:0f:29:3b:76: 89:66:06:23:bc:3f:fb:a4:49:0f:45:82:dc:d3:57:7c:49:0a: a3:dc:83:81:36:43:7d:52:98:52:c4:56:88:ef:5d:6a:2b:a5: d5:f4:62:b9:40:d8:9b:64:e0:cf:c8:ea:09:b1:ef:67:43:2e: 05:58:59:de:66:7e:26:8e:ce:47:0a:1a:fb:13:e8:c5:6f:f7: a3:d1:f9:08:53:84:32:e6:e4:1a:e4:75:b3:fe:08:f2:7a:c0: 08:6a:dd:99:08:00:b9:f7:1b:56:68:f2:d2:ee:19:0e:1e:f7: d7:e0:1c:1a:83:b9:37:9a:2c:22:40:f8:3a:ff:18:4a:3a:8b: 5a:4c:1e:d3:3a:83:3f:8a:61:e5:98:fe:bf:00:89:96:ff:cc: 62:45:00:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYzQjYxMTAvBgNVBAUTKDY2MEVEREJCMzVENTM3NTZDMzA2QkQ4Q0Q5MTdEQUNG Rjc4OTZDQkQwHhcNMjQwNjAzMDE1NjM0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkMjJkMi0zM2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc9q67QUbrG9jz8dmt5V+hSTXAj33c4vHE9PJYpe40D10pNGUeR8dntkR8b3 AiLn4E2GknMkiqC9S+xjNzomn6crm43AmsF/kicw05eRAW1sNsGdrEmWnF8osIkW MBt/2F1cWFgObIXGrBAIm7zukmg2YNw7quSz/z0Bb6N5tT73oxXpXiEqTerKsRSO TmsRxTtx2KQHvoeNjImvpii65loL0R34mVd7BAcojBhb9SMQ32WEEF6/N988y7Vi lS1/HhsU6mKP2Gp3mnOMWlCiO0QgYIxhLEyAvStLG8KeVgnVnwz8IzHIiPqj2+xG VhdMuwzV/+zHOHyxFqLhcDnZ2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFGkP1gK vkMA2R1dptsO+2UZEu8EMB8GA1UdIwQYMBaAFGYO3bs11TdWwwa9jNkX2s/3iWy9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjNCNi81MDhBQ0QyOEJD OTkxMUVCQTFBQjU2NEJDNEY5QUUwMi9aZzdkdXpYVk4xYkRCcjJNMlJmYXpfZUpi TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pnN2R1elhWTjFiREJyMk0yUmZhel9lSmJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkYzQjYvNTA4QUNEMjhCQzk5MTFFQkExQUI1NjRCQzRGOUFFMDIvNEUxN0FDQ0VG MDI1MTFFRTk0QkU2QzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2KQwDQYJKoZIhvcNAQELBQADggEBAH+eHfPPtkE223xP IiVdnktcYy8NaIB4ocKEPOWutwr42B08RHlm2Kv7Crg1gp9m0G6XofMYKVP81F7l lWHZFO4ngFc/bhzWtFmf4u9v8aUQmFqPKJcUzZj3lNWD7JPSiUmZDZg/GrrNDyk7 dolmBiO8P/ukSQ9FgtzTV3xJCqPcg4E2Q31SmFLEVojvXWorpdX0YrlA2Jtk4M/I 6gmx72dDLgVYWd5mfiaOzkcKGvsT6MVv96PR+QhThDLm5BrkdbP+CPJ6wAhq3ZkI ALn3G1Zo8tLuGQ4e99fgHBqDuTeaLCJA+Dr/GEo6i1pMHtM6gz+KYeWY/r8AiZb/ zGJFAHw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:54 2024 by rpki-client on console-ams.rpki-client.org