$ rpki-client -vvf rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa File: F561A3BE935811EF97E1194EC4F9AE02.roa (raw, json) Hash identifier: aPfjmDHXujlDq60sfxkeUX3+9b02nUsv2TYNf5bZEBw= Subject key identifier: F0:FA:11:30:E6:39:E5:3E:2B:33:FE:21:84:3C:92:CC:75:4F:76:4C Certificate issuer: /CN=A914A554/serialNumber=7920F8CA84EC913C69A98D54371209B434C33191 Certificate serial: 04 Authority key identifier: 79:20:F8:CA:84:EC:91:3C:69:A9:8D:54:37:12:09:B4:34:C3:31:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa Signing time: Sat 26 Oct 2024 05:12:55 +0000 ROA not before: Sat 26 Oct 2024 05:12:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 62654 IP address blocks: 203.104.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.crl rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A554/serialNumber=7920F8CA84EC913C69A98D54371209B434C33191 Validity Not Before: Oct 26 05:12:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=671c7a57-e049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:16:cd:2b:b7:e8:bb:9f:0b:bc:79:62:13:57: 42:60:d5:55:b1:30:af:63:93:f9:e8:6b:b1:00:77: 04:54:6c:5b:1d:f3:67:20:cd:e0:3b:9a:2a:83:4a: b6:e5:75:80:2d:c4:fa:48:d5:25:ea:a8:81:39:cd: fc:16:64:88:a8:2b:c9:05:ad:03:a4:3c:1f:69:8f: 00:27:f4:7c:28:0a:31:b9:3a:8d:4f:df:d8:d3:f5: 9d:af:c0:d7:93:4e:64:ea:e8:77:ea:d9:29:5b:f4: 51:1e:2d:46:24:81:be:57:5b:e7:13:e4:34:7e:4a: 5e:6c:ad:6a:33:ce:fd:4d:37:86:54:57:c5:f6:05: 95:a4:6d:e4:e6:c9:56:91:bb:c5:3b:3d:ce:d9:86: a4:0a:82:71:46:ed:fe:03:78:93:c1:af:9f:63:88: 51:17:b2:d1:0c:ae:66:f1:fb:c6:0e:58:ba:57:15: 85:87:09:58:80:b0:e7:86:fb:b4:eb:46:92:5b:f5: 90:a9:98:5e:f6:f3:cc:2e:a7:75:1d:d0:fa:6b:ef: 36:38:f1:e5:7a:03:7d:80:6f:da:f9:58:13:f1:ab: ae:dd:15:5d:8c:e8:c2:19:34:2b:15:c4:63:6d:92: 10:32:c9:91:04:87:89:ea:57:46:1d:bc:7f:76:98: 83:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FA:11:30:E6:39:E5:3E:2B:33:FE:21:84:3C:92:CC:75:4F:76:4C X509v3 Authority Key Identifier: keyid:79:20:F8:CA:84:EC:91:3C:69:A9:8D:54:37:12:09:B4:34:C3:31:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.70.0/24 Signature Algorithm: sha256WithRSAEncryption 77:47:bb:69:1a:94:63:26:66:a4:85:c7:59:70:52:f7:13:e5: 57:77:87:47:a1:4f:12:c3:fe:77:5c:11:ac:cc:ec:0b:ea:74: b3:98:a6:08:c1:5c:c5:8d:66:74:df:d7:5c:bd:53:c3:c8:30: 95:d6:06:d0:1e:c9:98:2b:1e:c5:b8:0c:61:1a:c1:dd:c8:18: 14:a6:a1:cf:96:f2:a9:59:20:41:52:8a:3d:58:b3:77:92:51: 38:c6:84:59:d7:43:cd:b0:e5:fc:7a:c2:0e:84:db:a4:0d:7f: 32:37:b9:90:97:44:3e:4c:e2:83:92:3e:3b:a5:0c:20:dc:10: 57:42:94:d9:fe:4a:3b:92:09:c7:8c:ce:57:d7:87:f9:01:f6: 86:d0:e6:c1:2a:23:79:ed:c1:17:59:9c:c5:6c:c8:90:f1:dc: a2:c6:92:80:fd:d5:ae:28:19:82:bb:26:2d:a5:10:8b:9a:e2: f1:63:72:3b:0b:cb:59:f1:ed:cc:b7:47:95:16:08:68:5d:8b: 0a:39:1f:df:8b:19:76:65:60:e9:a3:c7:21:f9:37:24:2b:0c: 43:9b:9c:89:25:ac:2d:0c:27:ad:d0:e1:ad:a0:c2:a4:df:24: 13:d4:0f:05:53:d8:71:84:fa:eb:6b:b0:23:18:51:38:90:17: 57:6f:dd:4a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTU1NDExMC8GA1UEBRMoNzkyMEY4Q0E4NEVDOTEzQzY5QTk4RDU0MzcxMjA5QjQz NEMzMzE5MTAeFw0yNDEwMjYwNTEyNTVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MWM3YTU3LWUwNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Fs0rt+i7nwu8eWITV0Jg1VWxMK9jk/noa7EAdwRUbFsd82cgzeA7miqDSrbl dYAtxPpI1SXqqIE5zfwWZIioK8kFrQOkPB9pjwAn9HwoCjG5Oo1P39jT9Z2vwNeT TmTq6Hfq2Slb9FEeLUYkgb5XW+cT5DR+Sl5srWozzv1NN4ZUV8X2BZWkbeTmyVaR u8U7Pc7ZhqQKgnFG7f4DeJPBr59jiFEXstEMrmbx+8YOWLpXFYWHCViAsOeG+7Tr RpJb9ZCpmF7288wup3Ud0Ppr7zY48eV6A32Ab9r5WBPxq67dFV2M6MIZNCsVxGNt khAyyZEEh4nqV0YdvH92mIORAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8PoRMOY5 5T4rM/4hhDySzHVPdkwwHwYDVR0jBBgwFoAUeSD4yoTskTxpqY1UNxIJtDTDMZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNTU0Lzc5Rjg5OTgyOTM1 NjExRUZBOEVERUIzM0M0RjlBRTAyL2VTRDR5b1Rza1R4cHFZMVVOeElKdERURE1a RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZVNENHlvVHNrVHhwcVkxVU54SUp0RFRETVpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTU1NC83OUY4OTk4MjkzNTYxMUVGQThFREVCMzNDNEY5QUUwMi9GNTYxQTNCRTkz NTgxMUVGOTdFMTE5NEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMtoRjANBgkqhkiG9w0BAQsFAAOCAQEAd0e7aRqUYyZmpIXH WXBS9xPlV3eHR6FPEsP+d1wRrMzsC+p0s5imCMFcxY1mdN/XXL1Tw8gwldYG0B7J mCsexbgMYRrB3cgYFKahz5byqVkgQVKKPVizd5JROMaEWddDzbDl/HrCDoTbpA1/ Mje5kJdEPkzig5I+O6UMINwQV0KU2f5KO5IJx4zOV9eH+QH2htDmwSojee3BF1mc xWzIkPHcosaSgP3VrigZgrsmLaUQi5ri8WNyOwvLWfHtzLdHlRYIaF2LCjkf34sZ dmVg6aPHIfk3JCsMQ5uciSWsLQwnrdDhraDCpN8kE9QPBVPYcYT662uwIxhROJAX V2/dSg== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org