$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa File: 214233D0E46211EBB880A73AC4F9AE02.roa (raw, json) Hash identifier: 6/QNMRJMfmhsqJ5YbXLDxmEXn/zbT/i6HfO//en54kU= Subject key identifier: 18:CC:E1:17:7C:92:A4:20:3F:9C:A6:F5:38:0A:59:86:87:5C:D9:BE Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1E68 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:34 +0000 ROA not before: Sat 02 Nov 2024 16:23:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.193.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7784 (0x1e68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 2 16:23:34 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67265206-e7b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:14:50:fe:84:29:a8:54:93:4a:76:76:2f:89: db:2c:d4:b1:fc:5f:d8:95:dd:53:1f:2b:62:38:42: 3b:04:fd:68:a0:33:2b:05:c2:ba:c8:92:88:59:ca: 41:cb:9e:c3:fc:04:d1:6c:ab:25:a7:0e:b8:fa:32: 3a:a7:1e:af:5d:64:2f:26:e9:ad:40:25:93:fa:8d: 5e:06:d3:89:83:d8:a0:0b:a8:65:6f:b3:d2:7a:91: c4:4f:f6:68:2c:30:39:8f:bf:17:03:85:c7:39:2b: 1f:e5:37:87:dd:2e:46:43:1f:d8:3f:f0:92:f9:fc: eb:bf:0f:f2:18:d3:f8:fc:a2:a4:d0:c1:95:d7:5f: 19:e6:a6:f1:ce:09:34:d5:07:95:1b:63:0e:81:5f: 97:a2:7a:c4:29:bb:5d:44:98:40:41:e0:50:a9:30: 18:49:bf:9e:cb:f0:e3:82:32:13:da:ce:e1:88:93: fc:66:d8:d3:b1:3e:a2:e5:70:8c:32:cf:c8:c8:c0: a1:37:cf:a7:44:6a:65:5e:09:70:8e:1e:bb:b5:25: d4:b8:1c:e5:27:da:99:f7:8a:1b:27:f6:dd:d6:43: c8:f5:b4:4d:24:9d:3a:d9:65:d8:a8:89:e9:17:96: 94:46:54:5e:15:50:64:4a:bd:20:a4:47:32:8b:ea: ed:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:CC:E1:17:7C:92:A4:20:3F:9C:A6:F5:38:0A:59:86:87:5C:D9:BE X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/214233D0E46211EBB880A73AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.8.0/23 Signature Algorithm: sha256WithRSAEncryption 50:b7:a1:14:80:7a:c7:90:86:33:33:41:e6:f5:cc:ca:a2:be: 8c:bb:d1:07:ea:80:ec:e5:93:1b:f6:1b:a4:82:13:cb:a4:93: 94:55:4c:e6:f1:25:49:1f:2c:2f:de:76:5c:99:56:03:23:09: 99:a9:7e:f2:ff:5e:67:7f:49:c6:c2:fe:cb:88:80:0d:a9:f5: fa:0d:5d:0b:64:64:7b:15:0d:d2:b1:b3:49:0c:da:cb:61:86: dc:65:91:b4:ee:d9:7b:32:aa:7f:e5:f8:60:88:f9:d9:6f:f2: 4b:be:bb:29:ea:03:94:7c:ec:f0:9c:c0:9c:e2:46:d4:2f:18: 34:63:00:ae:33:34:ba:a4:13:b0:17:b2:c9:c5:7a:90:6a:fe: cf:16:60:18:dc:90:04:3e:d7:5b:aa:f5:de:60:b6:3b:15:aa: 0a:c9:19:24:91:97:a9:61:dc:38:88:f9:40:d5:1f:77:9e:ed: 3e:d0:3b:60:d6:03:e9:60:58:2b:a7:eb:fe:29:74:56:fb:c2: 0b:21:ff:90:df:91:17:fa:24:35:58:a5:50:60:73:66:89:40: 54:14:5b:5a:ff:bf:fd:80:fa:8b:52:08:73:4a:16:fa:e4:9b: 68:33:24:20:86:6b:d2:f2:dd:fc:a0:32:c9:54:6a:71:99:bf: 34:60:dd:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjQxMTAyMTYyMzM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIwNi1lN2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hRQ/oQpqFSTSnZ2L4nbLNSx/F/Yld1THytiOEI7BP1ooDMrBcK6yJKIWcpB y57D/ATRbKslpw64+jI6px6vXWQvJumtQCWT+o1eBtOJg9igC6hlb7PSepHET/Zo LDA5j78XA4XHOSsf5TeH3S5GQx/YP/CS+fzrvw/yGNP4/KKk0MGV118Z5qbxzgk0 1QeVG2MOgV+XonrEKbtdRJhAQeBQqTAYSb+ey/DjgjIT2s7hiJP8ZtjTsT6i5XCM Ms/IyMChN8+nRGplXglwjh67tSXUuBzlJ9qZ94obJ/bd1kPI9bRNJJ062WXYqInp F5aURlReFVBkSr0gpEcyi+rtLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjM4Rd8 kqQgP5ym9TgKWYaHXNm+MB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMjE0MjMzRDBF NDYyMTFFQkI4ODBBNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnwQgwDQYJKoZIhvcNAQELBQADggEBAFC3oRSAeseQhjMz Qeb1zMqivoy70QfqgOzlkxv2G6SCE8ukk5RVTObxJUkfLC/edlyZVgMjCZmpfvL/ Xmd/ScbC/suIgA2p9foNXQtkZHsVDdKxs0kM2sthhtxlkbTu2Xsyqn/l+GCI+dlv 8ku+uynqA5R87PCcwJziRtQvGDRjAK4zNLqkE7AXssnFepBq/s8WYBjckAQ+11uq 9d5gtjsVqgrJGSSRl6lh3DiI+UDVH3ee7T7QO2DWA+lgWCun6/4pdFb7wgsh/5Df kRf6JDVYpVBgc2aJQFQUW1r/v/2A+otSCHNKFvrkm2gzJCCGa9Ly3fygMslUanGZ vzRg3Ro= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:00 2024 by rpki-client on console-fra.rpki-client.org