$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa File: 223C39C88DCB11EA86CF4C13C4F9AE02.roa (raw, json) Hash identifier: riLWOWO/deYxMXMkhh5v+eSjQhyrP/JNsTw+intwghY= Subject key identifier: A4:F0:ED:FD:E3:16:E5:14:85:98:64:15:CD:07:5F:BC:4A:49:6A:FC Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 453A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:52 +0000 ROA not before: Thu 05 Sep 2024 03:31:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131380 IP address blocks: 103.248.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17722 (0x453a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:52 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d92628-e620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b3:dc:47:1a:42:cc:56:6f:0b:14:31:d0:01: b6:d5:04:5e:d4:b6:a0:79:b9:b1:41:61:43:81:40: d2:6a:cf:d4:43:cb:75:03:55:7c:03:fa:5d:b7:4e: c3:bd:9b:ec:57:70:0b:14:39:ae:11:48:92:14:a4: 04:31:ba:96:ae:b4:38:80:53:a4:83:a0:ef:72:6a: 31:e8:01:ef:10:d6:f3:43:48:76:9f:e8:97:86:68: ce:ac:b4:e8:3c:a1:a6:9c:a7:4e:70:e8:8e:b9:7f: 55:a5:7f:94:4a:a1:6d:d5:18:7d:c0:3b:ff:c4:d3: 84:33:b2:9f:ad:55:38:a2:f8:7e:95:fb:2b:21:ab: 60:6a:74:b7:58:de:7e:d3:f2:2a:1b:44:08:b3:a3: c3:57:48:f7:f5:d0:c0:56:b4:be:1d:4a:8b:1f:af: 2e:f4:fe:2e:db:77:77:59:a8:73:c6:1f:d6:3a:05: e6:76:0a:da:69:10:e5:7a:76:51:ad:30:d0:57:12: ec:3e:2a:59:61:02:3a:06:2a:6c:bf:ef:26:16:dd: 26:aa:f1:8c:75:e1:38:d8:52:e4:88:8f:bc:80:b8: e4:31:d8:4c:ed:cd:0e:01:a3:3a:f6:33:01:86:0b: 4a:d2:d6:20:bc:7f:b7:4d:ea:2e:52:e1:6b:93:0c: 49:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F0:ED:FD:E3:16:E5:14:85:98:64:15:CD:07:5F:BC:4A:49:6A:FC X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/223C39C88DCB11EA86CF4C13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.164.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:b7:fd:8b:3e:d5:ce:4c:fc:8b:c0:df:70:2a:56:11:e4:93: bf:6b:5f:a1:94:ca:10:39:94:12:e9:35:ec:01:53:cc:87:7c: 1e:4c:c2:20:8f:98:eb:65:c7:c5:2c:3e:97:5b:0f:58:5b:f4: 86:34:fd:85:6c:47:2c:20:3c:27:fe:ef:d9:10:3b:dd:dc:67: 18:46:df:ac:59:e0:50:00:46:18:c2:ef:48:90:09:dc:04:85: 83:cd:92:b2:23:85:c7:70:8e:c5:e5:03:a2:66:47:47:ec:be: 54:c5:ae:21:a6:ac:a3:93:d3:b0:83:c2:d0:80:66:0c:75:c5: b2:b4:56:7e:f2:40:b7:67:2a:50:1e:47:c2:0f:e0:72:2f:da: ca:85:54:d3:95:71:b2:55:a7:0a:19:84:0c:98:e0:64:de:9a: 16:98:d9:eb:9a:bc:26:8b:72:39:84:d3:5f:79:56:22:33:4c: 2b:da:88:11:55:b6:19:bc:94:b4:d2:69:06:9f:a9:1e:2d:f7: f9:0a:03:06:be:df:04:72:75:f3:c7:ab:07:53:5d:6c:ba:e2: 8a:b0:c5:7c:c3:2d:92:d6:8e:05:1e:83:dc:5e:83:0e:8f:59: c2:b3:06:24:d2:66:4d:ad:c0:de:9a:0b:b2:18:e3:b7:2b:b3: dc:55:89:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyOC1lNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bPcRxpCzFZvCxQx0AG21QRe1LagebmxQWFDgUDSas/UQ8t1A1V8A/pdt07D vZvsV3ALFDmuEUiSFKQEMbqWrrQ4gFOkg6Dvcmox6AHvENbzQ0h2n+iXhmjOrLTo PKGmnKdOcOiOuX9VpX+USqFt1Rh9wDv/xNOEM7KfrVU4ovh+lfsrIatganS3WN5+ 0/IqG0QIs6PDV0j39dDAVrS+HUqLH68u9P4u23d3Wahzxh/WOgXmdgraaRDlenZR rTDQVxLsPipZYQI6Bipsv+8mFt0mqvGMdeE42FLkiI+8gLjkMdhM7c0OAaM69jMB hgtK0tYgvH+3TeouUuFrkwxJIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKTw7f3j FuUUhZhkFc0HX7xKSWr8MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjIzQzM5Qzg4 RENCMTFFQTg2Q0Y0QzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn+KQwDQYJKoZIhvcNAQELBQADggEBAFy3/Ys+1c5M/IvA 33AqVhHkk79rX6GUyhA5lBLpNewBU8yHfB5MwiCPmOtlx8UsPpdbD1hb9IY0/YVs RywgPCf+79kQO93cZxhG36xZ4FAARhjC70iQCdwEhYPNkrIjhcdwjsXlA6JmR0fs vlTFriGmrKOT07CDwtCAZgx1xbK0Vn7yQLdnKlAeR8IP4HIv2sqFVNOVcbJVpwoZ hAyY4GTemhaY2euavCaLcjmE0195ViIzTCvaiBFVthm8lLTSaQafqR4t9/kKAwa+ 3wRydfPHqwdTXWy64oqwxXzDLZLWjgUeg9xegw6PWcKzBiTSZk2twN6aC7IY47cr s9xViQg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:32 2024 by rpki-client on console-ams.rpki-client.org