$ rpki-client -vvf rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/C7EAFB5AB62011EC9060CD0FC4F9AE02.roa File: C7EAFB5AB62011EC9060CD0FC4F9AE02.roa (raw, json) Hash identifier: Y2D4bZVCWRU0pKNmh7gUDg+LE8MSxtojGL7g4PBL1wE= Subject key identifier: 1B:27:4A:3C:3C:49:A8:E4:66:E3:08:CD:FB:E9:88:FC:9A:48:91:32 Certificate issuer: /CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Certificate serial: 0398 Authority key identifier: 18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/C7EAFB5AB62011EC9060CD0FC4F9AE02.roa Signing time: Sun 23 Jun 2024 02:01:41 +0000 ROA not before: Sun 23 Jun 2024 02:01:41 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 131316 IP address blocks: 103.50.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A09DE/serialNumber=183988FC0DEE9DBB81115E82BFDC95412561413C Validity Not Before: Jun 23 02:01:41 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66778205-87cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f7:00:27:8d:a2:ed:fd:84:00:51:92:b7:2e: bd:d7:84:7f:97:5e:ed:bf:2d:ae:6f:c8:76:a3:62: ee:cc:92:e2:12:99:a4:ef:9d:f8:a0:27:be:5c:dc: 01:fe:3f:74:33:f2:ad:33:5c:3c:30:ce:55:8c:e5: 1d:b7:67:08:dd:72:69:63:39:28:9f:39:47:a0:fb: 2f:d4:be:98:47:df:c5:4e:26:60:4c:c2:ef:9a:90: 62:91:db:db:dc:4c:a0:1f:12:8c:68:75:9d:75:0d: bb:a6:f2:a6:ef:16:fa:47:a9:b6:1f:39:f1:0a:f1: 10:b5:aa:cd:07:a5:a9:c1:1b:fc:0a:b1:76:73:69: 76:bb:ef:2a:88:be:4a:39:37:4a:9e:74:6e:2b:54: f0:e7:4d:4c:0d:3f:bf:76:95:68:3f:10:52:de:75: a6:b0:f8:7a:aa:95:13:20:e6:b5:2a:3d:93:27:88: 51:d4:91:fe:66:c8:98:8e:cc:d0:70:af:0a:1e:3d: 3e:97:f0:f2:c6:76:11:fe:d7:ad:a6:29:a2:90:6a: c4:d0:24:08:f3:a3:9d:ed:e4:93:77:c6:b1:6b:37: 85:79:59:a5:93:72:4f:10:65:07:9b:f8:ab:52:40: 89:ba:cf:b9:68:f8:ad:69:b2:92:12:7b:ab:49:5b: 55:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:27:4A:3C:3C:49:A8:E4:66:E3:08:CD:FB:E9:88:FC:9A:48:91:32 X509v3 Authority Key Identifier: keyid:18:39:88:FC:0D:EE:9D:BB:81:11:5E:82:BF:DC:95:41:25:61:41:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/GDmI_A3unbuBEV6Cv9yVQSVhQTw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDmI_A3unbuBEV6Cv9yVQSVhQTw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A09DE/8B32075C597E11EC9A673D0DC4F9AE02/C7EAFB5AB62011EC9060CD0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.50.13.0/24 Signature Algorithm: sha256WithRSAEncryption c4:d5:f5:80:d9:d0:af:81:e8:13:55:47:96:9a:19:65:9c:81: 9f:ad:3d:1a:54:e5:0c:cf:93:f6:1c:76:30:80:27:20:eb:1e: 0f:e3:fd:69:8c:d1:72:ea:39:f3:08:93:d5:7b:c8:0d:ae:08: e0:35:ef:03:f0:6d:9b:3d:d2:49:17:62:79:09:45:51:62:bf: 27:c1:26:c2:d6:6b:8c:e5:db:f1:6a:21:d6:f6:2a:d1:35:78: f1:7e:5d:b2:c0:d0:15:f3:18:c8:d1:f5:4b:1d:2d:57:79:94: e2:45:38:d8:d2:b2:bc:c7:f7:8d:49:a4:dc:db:bb:28:fe:d2: 81:33:fa:13:d5:c0:66:1d:83:5a:b4:ec:7e:07:e8:a7:26:ef: 67:1a:e9:80:3c:78:df:e7:90:72:7f:93:10:fd:fd:94:79:52: c5:c6:33:06:9d:cd:d5:7f:b8:f9:44:56:bc:0a:6f:9d:4f:1e: ea:c7:a0:0d:1f:18:30:2b:e7:be:de:05:91:8c:ce:25:21:02: 9b:6e:89:0c:ba:91:c0:bb:c8:65:a1:12:0d:47:f6:ea:5c:84: a0:1a:79:28:88:b0:39:0f:05:ed:9f:a4:a2:8c:d6:12:ff:3d: d0:54:a5:00:0e:74:69:e1:ca:35:dd:90:97:0d:6b:78:6d:5c: 54:38:7b:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5REUxMTAvBgNVBAUTKDE4Mzk4OEZDMERFRTlEQkI4MTExNUU4MkJGREM5NTQx MjU2MTQxM0MwHhcNMjQwNjIzMDIwMTQxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3ODIwNS04N2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/cAJ42i7f2EAFGSty6914R/l17tvy2ub8h2o2LuzJLiEpmk7534oCe+XNwB /j90M/KtM1w8MM5VjOUdt2cI3XJpYzkonzlHoPsv1L6YR9/FTiZgTMLvmpBikdvb 3EygHxKMaHWddQ27pvKm7xb6R6m2HznxCvEQtarNB6WpwRv8CrF2c2l2u+8qiL5K OTdKnnRuK1Tw501MDT+/dpVoPxBS3nWmsPh6qpUTIOa1Kj2TJ4hR1JH+ZsiYjszQ cK8KHj0+l/DyxnYR/tetpimikGrE0CQI86Od7eSTd8axazeFeVmlk3JPEGUHm/ir UkCJus+5aPitabKSEnurSVtVrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBsnSjw8 SajkZuMIzfvpiPyaSJEyMB8GA1UdIwQYMBaAFBg5iPwN7p27gRFegr/clUElYUE8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDlERS84QjMyMDc1QzU5 N0UxMUVDOUE2NzNEMERDNEY5QUUwMi9HRG1JX0EzdW5idUJFVjZDdjl5VlFTVmhR VHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dEbUlfQTN1bmJ1QkVWNkN2OXlWUVNWaFFUdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA5REUvOEIzMjA3NUM1OTdFMTFFQzlBNjczRDBEQzRGOUFFMDIvQzdFQUZCNUFC NjIwMTFFQzkwNjBDRDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnMg0wDQYJKoZIhvcNAQELBQADggEBAMTV9YDZ0K+B6BNV R5aaGWWcgZ+tPRpU5QzPk/YcdjCAJyDrHg/j/WmM0XLqOfMIk9V7yA2uCOA17wPw bZs90kkXYnkJRVFivyfBJsLWa4zl2/FqIdb2KtE1ePF+XbLA0BXzGMjR9UsdLVd5 lOJFONjSsrzH941JpNzbuyj+0oEz+hPVwGYdg1q07H4H6Kcm72ca6YA8eN/nkHJ/ kxD9/ZR5UsXGMwadzdV/uPlEVrwKb51PHurHoA0fGDAr577eBZGMziUhAptuiQy6 kcC7yGWhEg1H9upchKAaeSiIsDkPBe2fpKKM1hL/PdBUpQAOdGnhyjXdkJcNa3ht XFQ4e7I= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:26 2024 by rpki-client on console-ams.rpki-client.org