$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/57D28CCA853E11EB9D9E2D39C4F9AE02.roa File: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (raw, json) Hash identifier: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ= Subject key identifier: 5A:90:EB:C0:24:50:CE:A2:B6:F7:82:EF:27:26:07:6D:62:F4:9E:C4 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 0604 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/57D28CCA853E11EB9D9E2D39C4F9AE02.roa Signing time: Thu 14 Nov 2024 22:41:42 +0000 ROA not before: Thu 14 Nov 2024 22:41:42 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 1221 IP address blocks: 103.198.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1540 (0x604) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Nov 14 22:41:42 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67367ca6-4f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4f:a0:71:20:06:77:13:2a:10:54:21:b7:f7: 6c:d9:cd:77:0a:26:34:db:c8:7d:80:50:d5:8e:1b: 34:cf:45:3b:b6:b4:4e:39:5e:ad:6f:46:56:80:6e: 55:28:b5:f0:91:ae:83:ec:5e:70:c8:67:41:31:ae: c7:ed:b5:b7:cb:a5:2b:c7:93:46:88:f5:7b:7f:6e: 6c:ee:2e:96:46:fb:73:30:36:f7:9a:59:fd:2f:2c: bd:8c:bb:25:63:33:43:ad:f8:2b:89:86:ed:91:ba: 99:06:63:6f:85:5c:d4:fd:8d:f8:ce:fc:98:48:4d: 32:4b:2f:ce:0d:66:97:66:ea:fb:06:0a:d5:74:13: 06:f8:7a:14:65:c9:87:ca:a1:e4:4c:23:e3:c1:66: 4c:3e:e6:59:95:ec:8a:7a:f0:22:84:13:7e:16:40: 32:b1:64:21:38:88:00:a3:64:03:c3:5d:19:0e:71: 5b:cd:1f:4c:dd:bc:39:b7:98:4a:47:80:82:bb:59: b1:06:17:cf:83:ca:01:53:20:5e:5a:ac:22:fd:f8: b0:3b:be:5f:5b:f3:32:79:76:c3:d8:25:a4:f6:08: 99:b3:4a:e8:8a:27:7e:81:22:ac:cb:86:9a:b5:86: 1f:1a:c9:1a:ee:a0:e8:25:8a:df:22:49:d6:27:88: 0e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:90:EB:C0:24:50:CE:A2:B6:F7:82:EF:27:26:07:6D:62:F4:9E:C4 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/57D28CCA853E11EB9D9E2D39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.92.0/24 Signature Algorithm: sha256WithRSAEncryption d2:ca:64:d4:47:e5:c3:b8:10:53:8e:ff:03:46:5f:53:1d:df: 3c:57:14:e2:8f:14:47:e6:8c:5d:5a:65:bb:bf:cf:35:c7:95: 00:e6:d8:f2:ee:11:f7:ea:ba:31:c7:f3:3d:f1:8d:dd:83:2f: 91:29:33:95:58:ff:43:c1:cb:97:e8:aa:82:d8:4d:5e:47:dd: d2:52:b1:5f:1d:fb:24:5f:7e:42:c9:44:e7:18:18:7b:40:8e: a0:61:22:59:d6:43:6d:71:b4:f5:04:61:0b:c8:3a:31:8d:1f: ab:de:79:a4:b2:a4:3a:16:30:7f:9f:ab:c2:da:9d:b2:cc:a2: 5a:52:d4:23:07:58:c2:e8:e2:92:54:05:93:c3:3b:2f:ed:7d: 9e:a0:ee:3b:17:32:41:24:3d:47:e4:b8:84:aa:27:d5:f8:d5: fa:de:70:1a:79:3d:2f:3f:b3:ea:4b:11:79:3a:7d:69:bc:09: f6:e5:e0:2a:74:a3:38:da:0d:3e:fe:2b:99:1d:b4:c8:1c:7a: 6f:52:8f:a3:8c:ad:bc:aa:92:7e:4f:f0:44:e3:c4:77:6e:b4: 03:6d:5c:cd:87:c5:1a:8b:cb:83:d5:b7:6f:7c:8f:9b:d7:bb: 4a:41:b5:03:30:8c:9e:90:40:86:e5:7e:f1:50:65:c2:73:3f: 7c:2b:37:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjQxMTE0MjI0MTQyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2N2NhNi00ZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0U+gcSAGdxMqEFQht/ds2c13CiY028h9gFDVjhs0z0U7trROOV6tb0ZWgG5V KLXwka6D7F5wyGdBMa7H7bW3y6Urx5NGiPV7f25s7i6WRvtzMDb3mln9Lyy9jLsl YzNDrfgriYbtkbqZBmNvhVzU/Y34zvyYSE0ySy/ODWaXZur7BgrVdBMG+HoUZcmH yqHkTCPjwWZMPuZZleyKevAihBN+FkAysWQhOIgAo2QDw10ZDnFbzR9M3bw5t5hK R4CCu1mxBhfPg8oBUyBeWqwi/fiwO75fW/MyeXbD2CWk9giZs0roiid+gSKsy4aa tYYfGska7qDoJYrfIknWJ4gO+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFqQ68Ak UM6itveC7ycmB21i9J7EMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0QjcvRTE4MENFN0E4NTFFMTFFQjg0MTlCMzI3QzRGOUFFMDIvNTdEMjhDQ0E4 NTNFMTFFQjlEOUUyRDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxlwwDQYJKoZIhvcNAQELBQADggEBANLKZNRH5cO4EFOO /wNGX1Md3zxXFOKPFEfmjF1aZbu/zzXHlQDm2PLuEffqujHH8z3xjd2DL5EpM5VY /0PBy5foqoLYTV5H3dJSsV8d+yRffkLJROcYGHtAjqBhIlnWQ21xtPUEYQvIOjGN H6veeaSypDoWMH+fq8LanbLMolpS1CMHWMLo4pJUBZPDOy/tfZ6g7jsXMkEkPUfk uISqJ9X41frecBp5PS8/s+pLEXk6fWm8Cfbl4Cp0ozjaDT7+K5kdtMgcem9Sj6OM rbyqkn5P8ETjxHdutANtXM2HxRqLy4PVt298j5vXu0pBtQMwjJ6QQIblfvFQZcJz P3wrN9g= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:44 2024 by rpki-client on console-ams.rpki-client.org