$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/B50ECD32A57E11EEB4533738C4F9AE02.roa File: B50ECD32A57E11EEB4533738C4F9AE02.roa (raw, json) Hash identifier: BkdlPGBhBetu9r/R8RI86aafR+sAmMSSEW9hm5cCW00= Subject key identifier: DB:09:93:DD:25:79:88:CA:F7:BE:CD:BD:3F:DB:02:1E:A4:EA:6B:10 Certificate issuer: /CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Certificate serial: D0 Authority key identifier: C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/B50ECD32A57E11EEB4533738C4F9AE02.roa Signing time: Wed 07 Aug 2024 05:26:35 +0000 ROA not before: Wed 07 Aug 2024 05:26:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23688 IP address blocks: 103.230.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB96/serialNumber=C82B7B379D6FED2A3C30C4537E0F87CCB60822EB Validity Not Before: Aug 7 05:26:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b3058b-c3a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:a6:8a:11:f6:8b:7a:e3:41:91:a5:c9:06: 94:ff:7b:19:71:5a:57:2b:00:3a:80:ec:72:bd:f6: 4c:d4:ec:44:b1:39:2a:b0:26:e4:0d:30:68:7f:dc: 8f:68:b6:a8:ee:8d:10:d8:e8:41:5a:77:e2:c4:2c: a0:d9:d5:a6:65:92:ee:f3:99:91:64:93:f1:da:e8: 74:7a:98:fd:56:16:34:81:59:5d:fa:74:33:9b:1b: 09:19:e2:66:21:36:e2:38:3e:63:f4:56:59:4b:7f: 9f:b9:68:dd:ab:12:b9:ed:3a:2c:36:c3:13:2c:8d: 1d:9b:72:f2:9e:09:3b:a2:2e:65:29:b3:c4:84:44: c7:37:77:d9:2f:14:46:b1:a6:41:2f:54:9b:af:3a: ca:c6:ab:31:14:c6:05:6a:f2:88:8b:2c:d3:9a:08: 7a:c3:14:50:20:c0:b4:24:9e:bf:41:49:a7:87:54: 02:59:7e:24:e5:0e:b7:41:06:b0:52:a0:d6:1e:da: ea:14:28:d0:e6:4b:41:af:54:ef:8e:0e:9d:8a:6e: 6f:d6:a0:f0:fa:74:c0:b5:5a:87:31:be:c7:cd:71: 29:c1:03:e4:6d:95:ce:7b:74:43:a4:d1:98:4e:f4: 10:8a:1d:f8:0f:07:02:5c:b1:94:13:eb:1f:64:3c: c9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:09:93:DD:25:79:88:CA:F7:BE:CD:BD:3F:DB:02:1E:A4:EA:6B:10 X509v3 Authority Key Identifier: keyid:C8:2B:7B:37:9D:6F:ED:2A:3C:30:C4:53:7E:0F:87:CC:B6:08:22:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/yCt7N51v7So8MMRTfg-HzLYIIus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCt7N51v7So8MMRTfg-HzLYIIus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB96/64D6BDCC1C2911EE9D06F90AC4F9AE02/B50ECD32A57E11EEB4533738C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.40.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:18:9b:aa:b4:03:ae:bd:c7:79:36:b1:db:08:73:b0:ef:76: f5:f8:36:66:62:10:a5:47:fd:aa:1d:4d:48:e0:78:19:a4:e3: dd:69:9e:84:63:8f:b0:b8:8b:b1:12:00:5c:79:38:5a:1e:26: e0:56:21:96:9b:d4:af:85:16:df:11:c2:54:7f:16:41:ab:b1: df:f6:82:32:cd:a0:a2:2f:7c:cf:38:a7:90:bb:52:fb:da:1e: 66:2a:2e:f5:c6:01:bd:57:11:27:a3:53:3d:35:d7:a1:9d:6b: a7:d3:fb:bd:ad:45:8a:9f:c0:23:4f:d5:00:ff:26:16:e4:42: fa:e2:68:f2:81:4e:05:63:70:2b:81:9b:35:53:88:f8:d8:78: e5:a2:c0:77:e2:a5:57:bb:93:e7:9d:4c:41:ce:d1:dd:a6:26: 72:92:b4:28:9c:07:e9:83:b2:c8:39:4b:3e:f5:53:ce:2f:11: bc:8d:46:57:a1:0f:80:98:b1:66:4e:cf:a4:70:1e:ee:2b:10: f8:16:55:f2:07:ac:83:84:4f:07:ab:2f:8d:7f:fd:93:0a:17: c1:7f:ae:ae:32:c5:d4:bb:eb:fe:c0:f8:a7:7b:c1:30:b2:55: 04:2a:40:df:b4:32:2f:c6:5f:7d:17:20:35:58:85:5f:d0:b3: d5:cb:b9:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCOTYxMTAvBgNVBAUTKEM4MkI3QjM3OUQ2RkVEMkEzQzMwQzQ1MzdFMEY4N0ND QjYwODIyRUIwHhcNMjQwODA3MDUyNjM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzMDU4Yi1jM2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0CmihH2i3rjQZGlyQaU/3sZcVpXKwA6gOxyvfZM1OxEsTkqsCbkDTBof9yP aLao7o0Q2OhBWnfixCyg2dWmZZLu85mRZJPx2uh0epj9VhY0gVld+nQzmxsJGeJm ITbiOD5j9FZZS3+fuWjdqxK57TosNsMTLI0dm3Lyngk7oi5lKbPEhETHN3fZLxRG saZBL1SbrzrKxqsxFMYFavKIiyzTmgh6wxRQIMC0JJ6/QUmnh1QCWX4k5Q63QQaw UqDWHtrqFCjQ5ktBr1Tvjg6dim5v1qDw+nTAtVqHMb7HzXEpwQPkbZXOe3RDpNGY TvQQih34DwcCXLGUE+sfZDzJ+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNsJk90l eYjK977NvT/bAh6k6msQMB8GA1UdIwQYMBaAFMgrezedb+0qPDDEU34Ph8y2CCLr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUI5Ni82NEQ2QkRDQzFD MjkxMUVFOUQwNkY5MEFDNEY5QUUwMi95Q3Q3TjUxdjdTbzhNTVJUZmctSHpMWUlJ dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDdDdONTF2N1NvOE1NUlRmZy1IekxZSUl1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VCOTYvNjRENkJEQ0MxQzI5MTFFRTlEMDZGOTBBQzRGOUFFMDIvQjUwRUNEMzJB NTdFMTFFRUI0NTMzNzM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5igwDQYJKoZIhvcNAQELBQADggEBACoYm6q0A669x3k2 sdsIc7DvdvX4NmZiEKVH/aodTUjgeBmk491pnoRjj7C4i7ESAFx5OFoeJuBWIZab 1K+FFt8RwlR/FkGrsd/2gjLNoKIvfM84p5C7UvvaHmYqLvXGAb1XESejUz0116Gd a6fT+72tRYqfwCNP1QD/JhbkQvriaPKBTgVjcCuBmzVTiPjYeOWiwHfipVe7k+ed TEHO0d2mJnKStCicB+mDssg5Sz71U84vEbyNRlehD4CYsWZOz6RwHu4rEPgWVfIH rIOETwerL41//ZMKF8F/rq4yxdS76/7A+Kd7wTCyVQQqQN+0Mi/GX30XIDVYhV/Q s9XLuRE= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org