$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa File: 86F9BD94674311EA8AB4D96BC4F9AE02.roa (raw, json) Hash identifier: ISGTVPaDSy80xCA34yyD1yreZg8c/egSeWgOcnZdCwU= Subject key identifier: 5A:5D:D5:26:2A:BE:70:F9:9B:77:02:FC:5B:A4:8C:95:44:44:BF:97 Certificate issuer: /CN=A914BAE3/serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Certificate serial: 0998 Authority key identifier: 8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa Signing time: Tue 28 May 2024 21:31:06 +0000 ROA not before: Tue 28 May 2024 21:31:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135336 IP address blocks: 103.114.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2456 (0x998) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAE3/serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Validity Not Before: May 28 21:31:06 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66564d1a-fbb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:e7:5e:f3:86:38:f8:6c:0a:c5:f9:d6:91: 6d:b3:08:a8:f5:30:0e:6c:2e:2f:d6:e6:ce:f6:a5: 24:39:3d:c7:0f:28:52:6b:fe:32:d9:c5:de:83:c6: 8c:21:2c:39:31:1e:e0:a0:b9:1f:92:17:2d:53:e1: 20:95:3c:ec:88:dc:84:e8:5c:e8:a5:01:d3:e8:f9: e1:46:f2:df:2b:81:25:18:17:13:9f:46:d0:af:d7: ba:fd:27:5a:69:93:4b:d5:3e:91:82:fd:ba:82:50: e8:47:63:c1:67:aa:0d:cd:2f:2f:f4:dd:09:75:c8: 82:33:a7:17:f9:fc:cc:bc:b1:77:10:3c:7e:bc:07: ad:d9:2c:67:85:19:d8:e8:00:bb:be:28:12:18:97: 0e:c2:72:53:69:43:cf:3e:0e:2c:5c:a6:f8:4d:b0: ae:25:72:9d:18:fe:75:9b:37:fa:24:e6:68:7f:6c: a8:82:5e:47:61:8f:be:62:46:4f:87:35:ac:bd:e1: 48:00:38:f4:8d:ae:33:1d:be:93:da:ff:8b:dc:90: cc:68:ad:1a:33:ee:30:7d:54:2d:7e:93:20:e3:c2: 4d:d1:b2:f8:df:a6:24:da:c4:68:40:82:87:62:85: 27:61:3a:a0:55:66:ef:2f:2d:b8:46:28:5d:ab:82: 15:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:5D:D5:26:2A:BE:70:F9:9B:77:02:FC:5B:A4:8C:95:44:44:BF:97 X509v3 Authority Key Identifier: keyid:8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.145.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:1c:af:37:84:c1:23:12:49:5a:90:37:a2:10:b2:ae:27:f0: 0b:7a:2b:46:eb:8b:9a:1b:e3:58:85:ed:46:ea:02:26:d7:8e: 16:97:db:9c:a3:0d:78:03:a8:78:fe:3b:b0:0e:65:5d:07:dc: e5:f4:51:7c:da:74:c2:07:95:1e:9a:bd:50:84:74:1b:a1:27: b3:1e:7b:96:6c:a7:87:85:f7:f6:04:1c:5c:7a:83:47:67:3d: 61:91:a6:85:af:49:cf:a7:ba:a3:0f:ac:fa:f5:53:bd:bc:27: a6:aa:b2:b6:07:4a:57:18:0a:d8:b2:19:30:b9:7d:b4:93:3a: 0d:ec:30:d8:2e:2d:f4:67:c9:76:18:90:7f:4f:d5:62:a9:28: c2:bd:50:0f:5d:25:1e:eb:00:0c:56:e5:34:5a:99:14:ee:d4: 23:82:fc:1c:e9:79:01:1e:2f:09:de:82:21:52:c5:be:86:75: 5b:0c:1b:4c:d2:ba:0c:0f:f8:75:d4:6e:04:e6:b9:84:29:5b: 20:b2:97:c7:b3:74:c9:26:c9:1e:28:9a:c2:f1:b3:53:fe:b9: a5:ec:86:e5:e6:ab:7a:0f:2d:ef:79:72:4c:74:59:59:83:30: 59:fc:b1:cc:1c:b7:d7:3e:15:0e:5e:28:80:29:79:2b:5c:7e: 39:f3:74:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJBRTMxMTAvBgNVBAUTKDhGMkJFRkQ1NTgxMzA4MjRFMDFFQkExNUFGODlFRDVE REM5RUI2MUEwHhcNMjQwNTI4MjEzMTA2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NGQxYS1mYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW7nXvOGOPhsCsX51pFtswio9TAObC4v1ubO9qUkOT3HDyhSa/4y2cXeg8aM ISw5MR7goLkfkhctU+EglTzsiNyE6FzopQHT6PnhRvLfK4ElGBcTn0bQr9e6/Sda aZNL1T6Rgv26glDoR2PBZ6oNzS8v9N0JdciCM6cX+fzMvLF3EDx+vAet2SxnhRnY 6AC7vigSGJcOwnJTaUPPPg4sXKb4TbCuJXKdGP51mzf6JOZof2yogl5HYY++YkZP hzWsveFIADj0ja4zHb6T2v+L3JDMaK0aM+4wfVQtfpMg48JN0bL436Yk2sRoQIKH YoUnYTqgVWbvLy24Rihdq4IVqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFpd1SYq vnD5m3cC/FukjJVERL+XMB8GA1UdIwQYMBaAFI8r79VYEwgk4B66Fa+J7V3cnrYa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkFFMy8yQUVCMDczRTY3 NDIxMUVBQjAxRUFDNjlDNEY5QUUwMi9qeXZ2MVZnVENDVGdIcm9WcjRudFhkeWV0 aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dnYxVmdUQ0NUZ0hyb1ZyNG50WGR5ZXRoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJBRTMvMkFFQjA3M0U2NzQyMTFFQUIwMUVBQzY5QzRGOUFFMDIvODZGOUJEOTQ2 NzQzMTFFQThBQjREOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncpEwDQYJKoZIhvcNAQELBQADggEBAD0crzeEwSMSSVqQ N6IQsq4n8At6K0bri5ob41iF7UbqAibXjhaX25yjDXgDqHj+O7AOZV0H3OX0UXza dMIHlR6avVCEdBuhJ7Mee5Zsp4eF9/YEHFx6g0dnPWGRpoWvSc+nuqMPrPr1U728 J6aqsrYHSlcYCtiyGTC5fbSTOg3sMNguLfRnyXYYkH9P1WKpKMK9UA9dJR7rAAxW 5TRamRTu1COC/BzpeQEeLwnegiFSxb6GdVsMG0zSugwP+HXUbgTmuYQpWyCyl8ez dMkmyR4omsLxs1P+uaXshuXmq3oPLe95ckx0WVmDMFn8scwct9c+FQ5eKIApeStc fjnzdJY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org