$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa File: CFDF8B8A5B5D11EE967F161DC4F9AE02.roa (raw, json) Hash identifier: /KN4Le3BcyLgzqHmFT/XiG9LlFk89B6INXp50IfH424= Subject key identifier: 2C:91:4B:47:96:EE:A0:DD:E8:AC:01:37:98:5B:FA:55:AE:14:E7:D3 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 0924 Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa Signing time: Thu 04 Jul 2024 20:58:13 +0000 ROA not before: Thu 04 Jul 2024 20:58:13 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9370 IP address blocks: 103.26.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2340 (0x924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Jul 4 20:58:13 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66870ce5-3432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:01:4a:71:90:cb:9d:cd:d9:0f:6e:6f:82:df: 40:01:a0:02:8c:b2:8e:07:4a:1d:43:9f:c3:c4:94: c7:7c:23:31:f6:44:ba:29:d5:e1:af:9e:cc:12:8d: 55:5b:56:07:4d:3c:86:3e:39:f4:9b:97:e6:ad:13: 72:ad:e6:88:01:e6:1b:39:b3:80:f5:ce:39:c5:39: b6:23:8d:8c:c0:bb:49:25:45:bd:97:49:75:a3:7b: 19:8b:c9:f8:ae:1a:b6:17:07:5b:c3:a2:2e:49:0a: 71:b9:1a:ef:ee:e9:b5:1d:93:82:28:e4:a8:a9:d4: c5:fe:2c:b0:a0:54:b4:1d:73:63:56:42:76:40:9c: 1e:b3:26:de:8d:62:b1:92:4c:54:69:36:31:cb:80: c0:a6:f1:f3:fc:ac:8f:a0:2a:c7:67:c1:54:75:63: d6:0c:e1:b9:f4:17:14:b3:0c:4a:d2:22:e4:35:18: 21:3c:2d:37:13:1d:cf:50:85:5b:04:2e:5a:ba:ff: 75:82:75:9e:5f:32:1c:8c:f5:0e:80:17:28:d7:1c: ca:0c:8c:ca:5c:38:99:15:a8:b4:d6:6f:81:62:8f: cf:71:07:82:1d:f9:a3:a1:e5:fc:3c:4f:e5:11:64: 57:6c:9a:95:c0:2f:8d:ee:24:95:71:2f:8c:6f:89: 96:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:91:4B:47:96:EE:A0:DD:E8:AC:01:37:98:5B:FA:55:AE:14:E7:D3 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/24 Signature Algorithm: sha256WithRSAEncryption 17:7f:b2:13:f5:1e:1d:ca:fb:55:91:3a:08:f0:b0:14:f0:ac: f3:4d:d8:92:f3:70:c9:e5:fe:21:67:1f:d8:7c:a8:21:90:f3: 72:05:0a:c7:ce:96:c4:3d:3a:81:bd:c1:8b:32:64:05:5a:75: 78:04:85:09:45:f2:bb:b2:1f:ca:fb:94:ea:bc:56:64:c9:16: 11:83:fb:36:dd:91:42:f6:3d:e8:84:e0:18:67:f8:39:b4:01: c5:f3:5f:5f:08:7d:58:6a:89:1f:8b:18:26:23:b8:f1:fb:a5: 33:be:ca:a5:78:6e:fc:2e:22:b1:7d:c2:23:65:43:bb:89:33: 7f:00:66:33:b1:01:c9:d0:72:fd:19:dc:3b:95:5c:83:32:8a: 59:e9:f2:e4:d9:fb:74:23:7c:5d:68:92:d9:aa:ea:15:64:cb: 1f:4b:96:13:65:a1:15:7e:5f:c2:66:2a:1c:63:ec:dd:6b:98: 99:f7:a3:3a:1e:6b:54:68:26:4a:28:15:37:a1:bc:0a:fa:0a: e6:aa:bf:91:24:d9:e5:38:9f:38:a0:5b:04:63:9a:87:84:ef: 52:2a:a2:73:be:e2:6e:64:77:a9:f3:32:ef:1f:27:b0:60:8b: 35:b6:1f:6a:b8:cf:b3:6c:33:23:10:53:34:b4:5c:be:3c:ce: 43:0f:43:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjQwNzA0MjA1ODEzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3MGNlNS0zNDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9gFKcZDLnc3ZD25vgt9AAaACjLKOB0odQ5/DxJTHfCMx9kS6KdXhr57MEo1V W1YHTTyGPjn0m5fmrRNyreaIAeYbObOA9c45xTm2I42MwLtJJUW9l0l1o3sZi8n4 rhq2Fwdbw6IuSQpxuRrv7um1HZOCKOSoqdTF/iywoFS0HXNjVkJ2QJwesybejWKx kkxUaTYxy4DApvHz/KyPoCrHZ8FUdWPWDOG59BcUswxK0iLkNRghPC03Ex3PUIVb BC5auv91gnWeXzIcjPUOgBco1xzKDIzKXDiZFai01m+BYo/PcQeCHfmjoeX8PE/l EWRXbJqVwC+N7iSVcS+Mb4mWpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCyRS0eW 7qDd6KwBN5hb+lWuFOfTMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQ0ZERjhCOEE1 QjVEMTFFRTk2N0YxNjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGiAwDQYJKoZIhvcNAQELBQADggEBABd/shP1Hh3K+1WR OgjwsBTwrPNN2JLzcMnl/iFnH9h8qCGQ83IFCsfOlsQ9OoG9wYsyZAVadXgEhQlF 8ruyH8r7lOq8VmTJFhGD+zbdkUL2PeiE4Bhn+Dm0AcXzX18IfVhqiR+LGCYjuPH7 pTO+yqV4bvwuIrF9wiNlQ7uJM38AZjOxAcnQcv0Z3DuVXIMyilnp8uTZ+3QjfF1o ktmq6hVkyx9LlhNloRV+X8JmKhxj7N1rmJn3ozoea1RoJkooFTehvAr6Cuaqv5Ek 2eU4nzigWwRjmoeE71IqonO+4m5kd6nzMu8fJ7BgizW2H2q4z7NsMyMQUzS0XL48 zkMPQ4g= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org