$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/CCCA3842714711EDBB61A87FC4F9AE02.roa File: CCCA3842714711EDBB61A87FC4F9AE02.roa (raw, json) Hash identifier: jST31h743fh0G7nQ5yuFvr7M5qlYPELdwHHksCGFGB8= Subject key identifier: 4C:5E:8C:6A:09:04:07:63:7D:9F:B6:CC:BD:01:AF:DC:C4:31:0C:A9 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: CE Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/CCCA3842714711EDBB61A87FC4F9AE02.roa Signing time: Fri 05 Jan 2024 05:06:04 +0000 ROA not before: Fri 05 Jan 2024 05:06:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135425 IP address blocks: 103.99.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Jan 5 05:06:04 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65978e3b-f86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c9:4e:72:69:d0:c4:72:00:89:bc:e4:37:37: b1:27:dc:ee:de:4e:b4:c5:46:43:de:5e:92:25:e3: 82:39:9d:08:6f:73:22:75:20:b8:f6:ba:b4:6c:12: 4c:51:ac:13:5b:53:ae:bc:ea:3c:8b:76:1f:d6:99: 02:a0:5f:ef:ca:83:de:3d:7c:51:00:31:a0:ea:95: 84:cb:03:65:61:82:fa:8d:08:69:21:c1:de:81:fa: 19:ac:0b:fe:f9:99:09:83:d8:38:e5:37:d1:6c:30: 85:7a:49:26:3d:2d:7b:68:56:f4:95:f1:6d:12:e3: e5:83:b6:3c:b7:45:79:bd:a8:a0:d4:e2:97:6f:2e: 56:fb:37:bc:1c:5f:02:f0:6d:39:c7:1c:1a:d5:a0: 97:12:60:fa:12:a5:73:fe:c0:e5:02:2d:e5:24:2d: 31:db:22:46:86:9c:cc:c5:93:9e:e3:1c:14:e3:05: 1c:3d:a3:68:67:6c:7e:0d:4c:dc:5b:28:15:69:20: a1:99:99:14:a0:c2:02:fa:de:52:da:fd:9f:ba:9a: 34:62:88:7e:37:4f:b8:a0:85:f2:56:7f:bc:3b:ec: 9e:ea:39:14:fb:30:c8:22:5c:7a:14:6f:c0:d1:1e: 53:02:59:2d:cd:74:b5:62:6f:43:13:34:ee:02:48: aa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5E:8C:6A:09:04:07:63:7D:9F:B6:CC:BD:01:AF:DC:C4:31:0C:A9 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/CCCA3842714711EDBB61A87FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.20.0/23 Signature Algorithm: sha256WithRSAEncryption 05:e4:e4:20:89:9e:70:a5:5a:d5:2e:3c:0b:88:28:cd:d6:2f: 6f:88:4e:fa:1c:28:c7:fd:cc:19:16:0b:43:c9:29:4f:50:60: c1:14:4e:8b:5e:a1:0f:b1:06:2f:32:d1:98:37:2d:72:e8:10: 60:10:28:a5:0b:c2:ad:69:81:34:3a:5b:2c:82:b7:1f:15:16: e0:71:19:83:ff:a9:79:68:5e:8b:43:e7:d7:43:74:a6:50:42: c5:d0:22:ec:08:fa:49:84:1c:14:84:76:e4:1b:e0:29:b1:80: df:d1:2b:43:0e:8b:39:29:f1:b6:8c:a2:49:af:28:bf:b3:58: 82:9f:c8:d2:dc:33:e6:33:d3:47:14:47:d4:f5:10:56:22:21: d1:0c:54:28:b9:97:be:4e:1b:5e:a4:dc:e9:17:dd:6b:88:3e: 00:82:74:cc:b0:13:26:30:81:0a:63:0e:9c:53:f5:89:69:1d: 5b:fc:25:34:ac:e9:14:7e:6e:0d:b9:02:18:e3:30:7f:f0:fb: e0:6f:db:94:85:a4:03:25:d8:78:87:26:1c:36:47:d0:1c:ea: 9b:62:1e:b3:2a:c2:d8:7e:67:d8:d6:41:3c:f5:4b:38:0e:78: 1c:20:01:66:ab:75:54:03:53:b6:77:0a:bf:67:5c:03:84:8f: 62:d0:7d:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjQwMTA1MDUwNjA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3OGUzYi1mODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqslOcmnQxHIAibzkNzexJ9zu3k60xUZD3l6SJeOCOZ0Ib3MidSC49rq0bBJM UawTW1OuvOo8i3Yf1pkCoF/vyoPePXxRADGg6pWEywNlYYL6jQhpIcHegfoZrAv+ +ZkJg9g45TfRbDCFekkmPS17aFb0lfFtEuPlg7Y8t0V5vaig1OKXby5W+ze8HF8C 8G05xxwa1aCXEmD6EqVz/sDlAi3lJC0x2yJGhpzMxZOe4xwU4wUcPaNoZ2x+DUzc WygVaSChmZkUoMIC+t5S2v2fupo0Yoh+N0+4oIXyVn+8O+ye6jkU+zDIIlx6FG/A 0R5TAlktzXS1Ym9DEzTuAkiqnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFExejGoJ BAdjfZ+2zL0Br9zEMQypMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEY2QUYvRjZEOERBOUM3MTQ0MTFFRDlGREYzRDEyQzRGOUFFMDIvQ0NDQTM4NDI3 MTQ3MTFFREJCNjFBODdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnYxQwDQYJKoZIhvcNAQELBQADggEBAAXk5CCJnnClWtUu PAuIKM3WL2+ITvocKMf9zBkWC0PJKU9QYMEUToteoQ+xBi8y0Zg3LXLoEGAQKKUL wq1pgTQ6WyyCtx8VFuBxGYP/qXloXotD59dDdKZQQsXQIuwI+kmEHBSEduQb4Cmx gN/RK0MOizkp8baMokmvKL+zWIKfyNLcM+Yz00cUR9T1EFYiIdEMVCi5l75OG16k 3OkX3WuIPgCCdMywEyYwgQpjDpxT9YlpHVv8JTSs6RR+bg25AhjjMH/w++Bv25SF pAMl2HiHJhw2R9Ac6ptiHrMqwth+Z9jWQTz1SzgOeBwgAWardVQDU7Z3Cr9nXAOE j2LQfcU= -----END CERTIFICATE-----Generated at Fri May 17 06:46:22 2024 by rpki-client on console-ams.rpki-client.org