$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/9A735F54EBE611EC82C08A11C4F9AE02.roa File: 9A735F54EBE611EC82C08A11C4F9AE02.roa (raw, json) Hash identifier: dYlMryTZgDYlMwbzeqzaAmjgFNBL4klqki3/QbfzqsI= Subject key identifier: 05:7F:12:C0:C7:12:66:C5:0F:D1:00:01:2C:EF:0C:57:93:D2:CC:41 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0C50 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/9A735F54EBE611EC82C08A11C4F9AE02.roa Signing time: Thu 02 May 2024 19:07:54 +0000 ROA not before: Thu 02 May 2024 19:07:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 204677 IP address blocks: 103.214.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3152 (0xc50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: May 2 19:07:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633e489-e956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fd:8e:e6:9f:b0:8e:ae:29:f1:26:ae:93:40: 05:8f:5b:4c:1b:4c:d2:ba:a7:e2:b2:99:1b:39:39: 25:cc:27:fd:81:d4:39:35:01:7e:f0:02:a5:6f:f7: db:f7:2a:15:fd:56:e1:f1:21:d4:5f:b3:2b:dd:c3: 87:8a:79:81:87:d7:75:9c:65:98:0b:53:4a:ea:4b: 4c:44:68:50:44:a3:1c:58:d8:9c:90:ca:b3:7e:29: 7f:f6:e9:73:e7:77:f9:64:ac:65:0e:ac:4d:48:a4: 43:7a:e0:3f:b2:f4:c6:31:09:5f:83:85:8b:01:97: e0:6c:a2:67:52:0b:df:c9:1c:47:50:c3:7b:6d:31: 53:25:81:a9:ee:43:7b:95:2c:b8:48:15:41:57:be: d3:b5:0d:1b:df:cb:17:51:d8:e6:dd:13:17:59:fe: 37:2b:6e:50:09:80:6d:84:2d:ec:67:01:3c:ac:59: 1b:bb:de:04:99:0a:38:f3:be:b6:1a:63:9b:b7:43: c8:87:3b:80:cb:fe:77:b2:0c:c1:c9:49:45:1c:be: ab:20:61:e9:46:47:51:09:ad:f2:13:b9:60:4c:af: 88:bd:5b:b1:41:fc:a8:ec:d7:6b:75:15:d3:c6:65: 41:ec:5c:14:2f:3e:2a:04:db:6f:eb:84:d5:a4:1e: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:7F:12:C0:C7:12:66:C5:0F:D1:00:01:2C:EF:0C:57:93:D2:CC:41 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/9A735F54EBE611EC82C08A11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.16.0/24 Signature Algorithm: sha256WithRSAEncryption 94:b0:0b:e7:7c:62:4a:fe:2d:62:d5:ce:40:48:d8:b5:21:b4: d3:3d:b9:5e:5d:d0:21:1d:22:1f:34:eb:e6:c4:ff:fd:13:75: 33:ac:8e:9f:c7:43:e6:d1:3e:c0:86:94:0c:86:87:08:bb:0f: f3:9d:48:74:73:1e:47:b9:6d:9f:fd:c1:46:32:b5:1f:f6:41: 61:97:cb:5c:53:09:40:10:bf:17:7b:ca:cc:72:26:23:80:2b: 7f:b3:c5:79:7b:a3:6d:35:e6:e1:fa:88:4a:f2:51:20:f6:62: 2c:07:b5:49:b7:cb:72:48:80:01:96:51:2a:30:ed:50:dd:a8: 80:ba:87:0c:99:9e:aa:a6:7d:d8:1d:94:7d:10:24:0c:37:b7: dc:29:92:97:c1:ec:47:c1:be:52:fe:61:c1:35:4d:93:cb:42: 7d:80:41:c5:ac:f7:da:40:4d:34:eb:e8:00:24:77:87:6f:d7: 4c:1f:f2:67:4a:da:76:54:65:3e:70:09:c8:3a:91:f9:a1:87: cb:05:e1:3c:3a:28:a8:7e:32:8b:e1:30:68:71:3f:52:48:5a: 92:39:d4:62:7f:d8:43:b5:19:94:0e:4f:58:6d:a9:20:d7:4f: 2d:20:ea:e6:92:6f:9d:ac:62:82:a0:34:81:51:96:26:64:f4: 61:95:d3:ec -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjQwNTAyMTkwNzUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZTQ4OS1lOTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2/2O5p+wjq4p8Sauk0AFj1tMG0zSuqfispkbOTklzCf9gdQ5NQF+8AKlb/fb 9yoV/Vbh8SHUX7Mr3cOHinmBh9d1nGWYC1NK6ktMRGhQRKMcWNickMqzfil/9ulz 53f5ZKxlDqxNSKRDeuA/svTGMQlfg4WLAZfgbKJnUgvfyRxHUMN7bTFTJYGp7kN7 lSy4SBVBV77TtQ0b38sXUdjm3RMXWf43K25QCYBthC3sZwE8rFkbu94EmQo48762 GmObt0PIhzuAy/53sgzByUlFHL6rIGHpRkdRCa3yE7lgTK+IvVuxQfyo7NdrdRXT xmVB7FwULz4qBNtv64TVpB4IcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAV/EsDH EmbFD9EAASzvDFeT0sxBMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFOEIvRUMyNTdDQzZFMDI1MTFFOTkxQTk3NzREQzRGOUFFMDIvOUE3MzVGNTRF QkU2MTFFQzgyQzA4QTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1hAwDQYJKoZIhvcNAQELBQADggEBAJSwC+d8Ykr+LWLV zkBI2LUhtNM9uV5d0CEdIh806+bE//0TdTOsjp/HQ+bRPsCGlAyGhwi7D/OdSHRz Hke5bZ/9wUYytR/2QWGXy1xTCUAQvxd7ysxyJiOAK3+zxXl7o2015uH6iEryUSD2 YiwHtUm3y3JIgAGWUSow7VDdqIC6hwyZnqqmfdgdlH0QJAw3t9wpkpfB7EfBvlL+ YcE1TZPLQn2AQcWs99pATTTr6AAkd4dv10wf8mdK2nZUZT5wCcg6kfmhh8sF4Tw6 KKh+MovhMGhxP1JIWpI51GJ/2EO1GZQOT1htqSDXTy0g6uaSb52sYoKgNIFRliZk 9GGV0+w= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:56 2024 by rpki-client on console-ams.rpki-client.org