$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa File: FF723568A0F311EBA4E4D83CC4F9AE02.roa (raw, json) Hash identifier: WLUNLYOe6u3RXulXjPlFaJ14QsR/ucoW6q6I048by4U= Subject key identifier: 44:FD:BE:56:24:43:43:58:80:F0:51:31:3D:1D:22:B0:63:AE:9E:8F Certificate issuer: /CN=A91A5E1F/serialNumber=0BBD705890F278E1D593E98A74F03470F794FE5C Certificate serial: 09EC Authority key identifier: 0B:BD:70:58:90:F2:78:E1:D5:93:E9:8A:74:F0:34:70:F7:94:FE:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa Signing time: Thu 16 May 2024 20:59:58 +0000 ROA not before: Thu 16 May 2024 20:59:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140229 IP address blocks: 103.148.210.0/23 maxlen: 23 103.148.210.0/24 maxlen: 24 103.148.211.0/24 maxlen: 24 2001:df2:ec80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.crl rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2540 (0x9ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5E1F/serialNumber=0BBD705890F278E1D593E98A74F03470F794FE5C Validity Not Before: May 16 20:59:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=664673ce-e29c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:81:35:f1:fd:0a:20:89:91:c4:7f:99:8e: 66:22:21:db:d3:46:11:a4:9f:ca:3e:7c:80:db:04: 58:eb:b5:b2:3e:71:72:35:a1:92:f5:db:ff:8c:40: 32:2c:bd:ce:33:b2:38:41:83:5d:a7:9d:3f:96:c1: 89:5f:7e:64:b0:25:87:5e:38:fe:8e:2e:9d:43:85: 5e:67:89:02:db:56:b4:ca:38:38:fc:7c:e0:60:62: 16:31:4b:94:fc:9a:d8:e7:c0:fc:99:84:1b:27:96: 68:62:8a:5e:3b:29:96:af:06:55:8e:19:85:53:a0: f3:d7:9c:ce:30:00:06:ea:47:25:c6:8a:cb:d0:c1: de:6a:01:45:c8:19:63:86:93:34:85:5a:3f:9e:eb: bd:86:14:c2:74:e9:34:7f:7e:e3:30:30:0d:78:53: 53:2a:88:c8:3e:61:88:a2:6b:24:cf:62:4b:d6:6f: 33:e9:2a:15:d8:df:fa:94:a9:98:a1:34:8c:46:47: a2:51:a3:32:f9:89:80:5c:cc:82:90:94:6e:90:00: f6:f9:52:54:30:85:0c:2c:94:7e:d4:47:42:1b:8d: f2:fa:13:16:1c:21:a2:e6:66:fa:8d:4c:34:cd:90: 94:a3:78:d4:19:b7:c8:81:c8:1d:e3:ed:f2:b1:46: a5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FD:BE:56:24:43:43:58:80:F0:51:31:3D:1D:22:B0:63:AE:9E:8F X509v3 Authority Key Identifier: keyid:0B:BD:70:58:90:F2:78:E1:D5:93:E9:8A:74:F0:34:70:F7:94:FE:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/C71wWJDyeOHVk-mKdPA0cPeU_lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C71wWJDyeOHVk-mKdPA0cPeU_lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5E1F/01F7D6CA586211EA814D8459C4F9AE02/FF723568A0F311EBA4E4D83CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.210.0/23 IPv6: 2001:df2:ec80::/48 Signature Algorithm: sha256WithRSAEncryption 98:01:b1:06:77:14:8a:dd:62:92:89:51:7a:11:f3:eb:90:77: 05:78:fa:88:91:2d:07:65:f4:25:fa:39:65:70:c3:4c:92:95: be:c5:02:79:0a:e8:33:f7:d9:77:c1:d1:f3:c6:c8:07:3a:6a: 98:26:5f:5f:99:64:8e:59:51:1f:05:07:65:6a:bb:78:2c:a9: 59:cd:fc:14:be:47:e4:5b:02:0d:f7:2a:96:97:11:71:ec:1d: cc:45:54:f2:40:69:db:d2:4f:71:b1:91:0a:50:21:e8:3e:34: 47:e5:01:a5:f4:15:32:9d:2a:60:68:d5:6f:d6:4d:25:38:82: cb:6a:73:9d:0a:49:14:1a:d5:96:8e:2b:1c:e7:91:2d:1e:2b: 5b:b4:98:86:7f:e4:86:13:35:92:a2:fb:48:25:33:4b:c4:6a: 71:f8:e1:5c:80:02:d3:04:48:d6:57:5c:92:14:d9:b6:01:08: 6c:0a:81:f0:27:21:e8:94:da:b8:b5:8b:38:fc:ad:22:8b:c6: 64:cd:ca:bb:95:c5:b0:d2:8d:71:6a:b8:52:3f:2f:f3:ac:f8: 3a:65:d5:8d:d6:41:d8:23:fa:91:78:c4:72:03:ff:ff:12:6f: 34:95:d2:e3:49:68:9f:f6:a0:e0:57:28:4c:e4:41:95:79:99: e8:41:db:e4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFMUYxMTAvBgNVBAUTKDBCQkQ3MDU4OTBGMjc4RTFENTkzRTk4QTc0RjAzNDcw Rjc5NEZFNUMwHhcNMjQwNTE2MjA1OTU4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2NzNjZS1lMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYiBNfH9CiCJkcR/mY5mIiHb00YRpJ/KPnyA2wRY67WyPnFyNaGS9dv/jEAy LL3OM7I4QYNdp50/lsGJX35ksCWHXjj+ji6dQ4VeZ4kC21a0yjg4/HzgYGIWMUuU /JrY58D8mYQbJ5ZoYopeOymWrwZVjhmFU6Dz15zOMAAG6kclxorL0MHeagFFyBlj hpM0hVo/nuu9hhTCdOk0f37jMDANeFNTKojIPmGIomskz2JL1m8z6SoV2N/6lKmY oTSMRkeiUaMy+YmAXMyCkJRukAD2+VJUMIUMLJR+1EdCG43y+hMWHCGi5mb6jUw0 zZCUo3jUGbfIgcgd4+3ysUalIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFET9vlYk Q0NYgPBRMT0dIrBjrp6PMB8GA1UdIwQYMBaAFAu9cFiQ8njh1ZPpinTwNHD3lP5c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUUxRi8wMUY3RDZDQTU4 NjIxMUVBODE0RDg0NTlDNEY5QUUwMi9DNzF3V0pEeWVPSFZrLW1LZFBBMGNQZVVf bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3MXdXSkR5ZU9IVmstbUtkUEEwY1BlVV9sdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFMUYvMDFGN0Q2Q0E1ODYyMTFFQTgxNEQ4NDU5QzRGOUFFMDIvRkY3MjM1NjhB MEYzMTFFQkE0RTREODNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlNIwDwQCAAIwCQMHACABDfLsgDANBgkqhkiG9w0BAQsF AAOCAQEAmAGxBncUit1ikolRehHz65B3BXj6iJEtB2X0Jfo5ZXDDTJKVvsUCeQro M/fZd8HR88bIBzpqmCZfX5lkjllRHwUHZWq7eCypWc38FL5H5FsCDfcqlpcRcewd zEVU8kBp29JPcbGRClAh6D40R+UBpfQVMp0qYGjVb9ZNJTiCy2pznQpJFBrVlo4r HOeRLR4rW7SYhn/khhM1kqL7SCUzS8RqcfjhXIAC0wRI1ldckhTZtgEIbAqB8Cch 6JTauLWLOPytIovGZM3Ku5XFsNKNcWq4Uj8v86z4OmXVjdZB2CP6kXjEcgP//xJv NJXS40lon/ag4FcoTORBlXmZ6EHb5A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:37 2024 by rpki-client on console-ams.rpki-client.org