$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa File: 14E68648B42D11E9A44FF25BC4F9AE02.roa (raw, json) Hash identifier: 4nKaNnAA+FlebgMH5PkzemVsKEEak9q9/5kaFpxo0dg= Subject key identifier: BA:BF:E3:17:2B:24:CE:DB:01:AF:09:3F:AB:30:60:AB:1F:63:59:8C Certificate issuer: /CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Certificate serial: 0C8E Authority key identifier: 14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa Signing time: Fri 04 Aug 2023 18:36:07 +0000 ROA not before: Fri 04 Aug 2023 18:36:07 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139255 IP address blocks: 103.140.112.0/24 maxlen: 24 103.140.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D9/serialNumber=14838DD8D4E1FE0317142667176E16E0A5B68651 Validity Not Before: Aug 4 18:36:07 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd4517-fcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:70:ab:3c:cd:d4:16:aa:f4:93:82:7d:fa:b4: 03:72:1a:04:3f:1b:e7:7a:bf:a1:6f:ac:4c:75:ff: df:06:2a:28:2f:4e:96:0a:b1:cc:fe:8b:92:40:9a: 91:bb:8f:c3:73:57:40:4a:97:14:97:8c:8b:fa:14: 58:9b:f3:48:99:6c:80:2d:88:6d:ba:a1:b0:3b:2d: f4:27:f6:b0:5e:cf:ec:0f:e1:f4:66:94:aa:93:68: 28:54:1d:51:52:75:02:7f:f6:92:f7:27:a7:a0:ca: 28:06:f7:4d:5d:e7:dd:b1:c0:e4:bd:36:ed:d5:0c: 9f:93:65:a1:62:99:c2:53:b7:f0:91:c2:9f:3c:72: ab:7c:2c:e5:47:66:16:ce:8a:9a:6b:4c:d0:cf:97: 4e:74:c3:cf:51:3f:4c:a7:64:ed:5d:eb:85:97:62: 71:c5:cf:1b:64:e9:82:f7:3a:64:b2:16:dd:de:47: 05:33:c2:2a:73:72:9f:d9:17:5a:87:5b:a7:67:95: 1e:59:68:5c:21:19:bb:7b:2b:38:ac:2f:29:6f:e2: 65:0c:60:00:eb:8f:30:93:0a:0a:e1:06:9d:04:7d: c5:20:82:51:0a:43:35:8d:de:cd:61:7d:df:ce:82: b4:82:8f:41:f2:3a:0b:6f:99:15:7a:55:d3:cf:fa: 45:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:BF:E3:17:2B:24:CE:DB:01:AF:09:3F:AB:30:60:AB:1F:63:59:8C X509v3 Authority Key Identifier: keyid:14:83:8D:D8:D4:E1:FE:03:17:14:26:67:17:6E:16:E0:A5:B6:86:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/FION2NTh_gMXFCZnF24W4KW2hlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FION2NTh_gMXFCZnF24W4KW2hlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D9/1C3DD966B42611E98DE0884AC4F9AE02/14E68648B42D11E9A44FF25BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.112.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:db:3d:98:3a:d9:f5:aa:86:ba:1d:f6:4d:d4:11:f2:c7:37: 0d:ed:42:23:bb:2c:b3:aa:4c:d4:18:4b:6e:dc:91:22:14:7e: b5:22:67:24:a7:38:71:12:26:ae:c2:91:14:dc:ff:66:41:22: fb:d7:c1:91:f3:5e:82:3c:4a:2a:54:35:87:e2:22:ee:26:35: cf:64:e8:53:82:f4:55:81:ae:38:2b:71:42:c9:7e:fa:84:a7: 01:ad:0c:f9:b2:4a:75:78:ec:10:c8:c2:78:10:c6:91:85:ab: e9:3f:66:0a:6c:56:55:3b:57:c6:13:5d:3a:3d:cb:f8:c7:b1: cf:ee:ef:3e:85:49:8a:8d:21:ed:6b:54:b8:fb:ef:7f:7b:25: 1a:48:4d:a4:31:d0:93:29:0e:2a:7e:70:c3:d5:90:90:da:c4: f0:04:dc:19:bf:35:9e:c2:21:21:e6:11:b3:33:32:4b:34:54: 20:72:9e:83:f8:7b:4f:11:0c:ab:82:99:01:ae:e7:56:5c:b6: 1e:a8:ab:98:04:66:f9:59:15:c0:56:12:e7:0f:ad:d4:47:9f: da:ad:95:2d:9e:6e:61:8f:7d:31:f9:28:40:92:e4:f2:50:fb: 9a:ce:f0:2b:aa:7e:e1:da:78:b2:ff:44:70:15:1f:6d:ad:83: 07:65:da:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDkxMTAvBgNVBAUTKDE0ODM4REQ4RDRFMUZFMDMxNzE0MjY2NzE3NkUxNkUw QTVCNjg2NTEwHhcNMjMwODA0MTgzNjA3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNDUxNy1mY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HCrPM3UFqr0k4J9+rQDchoEPxvner+hb6xMdf/fBiooL06WCrHM/ouSQJqR u4/Dc1dASpcUl4yL+hRYm/NImWyALYhtuqGwOy30J/awXs/sD+H0ZpSqk2goVB1R UnUCf/aS9yenoMooBvdNXefdscDkvTbt1Qyfk2WhYpnCU7fwkcKfPHKrfCzlR2YW zoqaa0zQz5dOdMPPUT9Mp2TtXeuFl2Jxxc8bZOmC9zpkshbd3kcFM8Iqc3Kf2Rda h1unZ5UeWWhcIRm7eys4rC8pb+JlDGAA648wkwoK4QadBH3FIIJRCkM1jd7NYX3f zoK0go9B8joLb5kVelXTz/pFRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLq/4xcr JM7bAa8JP6swYKsfY1mMMB8GA1UdIwQYMBaAFBSDjdjU4f4DFxQmZxduFuCltoZR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEOS8xQzNERDk2NkI0 MjYxMUU5OERFMDg4NEFDNEY5QUUwMi9GSU9OMk5UaF9nTVhGQ1puRjI0VzRLVzJo bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZJT04yTlRoX2dNWEZDWm5GMjRXNEtXMmhsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDkvMUMzREQ5NjZCNDI2MTFFOThERTA4ODRBQzRGOUFFMDIvMTRFNjg2NDhC NDJEMTFFOUE0NEZGMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjHAwDQYJKoZIhvcNAQELBQADggEBAI/bPZg62fWqhrod 9k3UEfLHNw3tQiO7LLOqTNQYS27ckSIUfrUiZySnOHESJq7CkRTc/2ZBIvvXwZHz XoI8SipUNYfiIu4mNc9k6FOC9FWBrjgrcULJfvqEpwGtDPmySnV47BDIwngQxpGF q+k/ZgpsVlU7V8YTXTo9y/jHsc/u7z6FSYqNIe1rVLj77397JRpITaQx0JMpDip+ cMPVkJDaxPAE3Bm/NZ7CISHmEbMzMks0VCBynoP4e08RDKuCmQGu51Zcth6oq5gE ZvlZFcBWEucPrdRHn9qtlS2ebmGPfTH5KECS5PJQ+5rO8CuqfuHaeLL/RHAVH22t gwdl2rU= -----END CERTIFICATE-----Generated at Wed May 22 20:09:01 2024 by rpki-client on console-ams.rpki-client.org