$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/029310329B1911EFA0BD6470C4F9AE02.roa File: 029310329B1911EFA0BD6470C4F9AE02.roa (raw, json) Hash identifier: 4YkPQLkzJHjLhAS1xLyrGvD8ScRYsHoKof9XFhQiB/U= Subject key identifier: 1A:FE:A8:BD:D4:11:82:1F:A7:F1:B8:67:79:F3:BC:7D:6D:26:79:F4 Certificate issuer: /CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Certificate serial: 10 Authority key identifier: 88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/029310329B1911EFA0BD6470C4F9AE02.roa Signing time: Tue 05 Nov 2024 02:21:54 +0000 ROA not before: Tue 05 Nov 2024 02:21:54 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9303 IP address blocks: 103.209.224.0/22 maxlen: 22 203.18.59.0/24 maxlen: 24 203.25.187.0/24 maxlen: 24 203.189.24.0/24 maxlen: 24 203.190.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Validity Not Before: Nov 5 02:21:54 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67298142-4fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:3e:a4:5c:3f:19:5a:b5:fa:b7:ef:b0:f2:f0: 9c:e3:31:15:3f:16:70:5d:92:0a:b4:13:e5:ee:06: 74:a9:43:4a:6b:08:51:38:ae:87:35:2b:52:f4:4f: 56:f2:23:49:c6:aa:7f:6a:15:55:0d:af:6c:45:32: 25:a0:de:da:cc:a7:7e:bd:ab:8d:28:9d:4b:14:f9: be:d4:e8:14:d6:fa:de:2a:27:57:b6:6f:73:a3:a2: 9d:04:4e:b1:81:8d:53:60:b5:70:a9:79:68:bb:65: 03:d9:fb:27:ee:46:ca:fc:29:fa:a4:6e:dc:ae:1e: 09:f2:d9:0b:bc:66:2e:d1:a5:7a:0a:b9:d3:b6:58: e7:8a:d9:6f:34:19:1b:bc:ad:dd:60:52:0e:77:a1: 72:f8:c0:2e:93:c2:30:69:aa:18:19:48:b5:21:86: f4:4a:eb:35:5b:4a:db:32:84:5e:00:ee:d5:ec:d8: df:21:af:03:2f:12:17:a2:81:00:b6:73:8f:e5:bb: 47:5b:cd:a8:93:e5:b9:0c:74:cf:7b:6a:05:c7:9f: 28:ae:3d:3b:26:e8:c2:26:af:43:91:cd:3b:37:90: 02:53:28:08:7c:cb:a6:ca:62:80:77:0a:c1:7c:4f: 8a:d3:62:c6:27:b2:a7:46:1b:de:f5:9e:a3:69:8e: 02:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:A8:BD:D4:11:82:1F:A7:F1:B8:67:79:F3:BC:7D:6D:26:79:F4 X509v3 Authority Key Identifier: keyid:88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/029310329B1911EFA0BD6470C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.224.0/22 203.18.59.0/24 203.25.187.0/24 203.189.24.0/24 203.190.217.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:66:8d:29:93:e1:58:1c:af:95:a6:8b:1d:ae:aa:b0:0c:6d: 63:59:38:82:32:6d:fc:04:35:74:24:a3:fd:05:50:0c:d0:11: f4:3d:7b:ca:65:ae:e6:de:8e:b0:57:fa:16:40:73:96:d7:20: 4d:da:a4:32:5e:c0:71:f7:4d:0c:75:8e:94:73:79:54:00:b3: d8:c3:f5:1e:50:17:d2:64:2c:6d:7c:ed:5f:20:98:c5:98:78: c7:f7:1e:3c:d0:45:16:65:a6:15:42:f0:32:cd:62:53:09:16: f9:ef:7e:e3:be:bf:ff:dc:cc:77:20:b1:e4:fd:f4:4b:10:5f: 7e:31:26:ad:b9:d2:69:f4:02:71:58:3a:f4:01:2f:ee:f0:90: ea:73:bb:7d:4c:03:ed:1b:1c:cf:43:b6:41:80:55:0f:bb:c3: ea:b9:34:e0:25:a7:5c:44:7f:b1:8f:7f:ed:89:ed:3c:0a:86: ff:73:b7:78:08:8c:e8:43:f9:b6:d4:ac:05:db:0e:9b:27:2e: 00:78:58:8e:9d:32:1c:29:9f:34:0b:3b:ac:ae:20:18:ca:8a: fd:38:4b:f3:bc:09:ab:fb:f8:73:f6:d0:9c:cf:51:72:09:85: 75:c0:bf:af:8a:f3:7a:66:15:84:ff:8a:eb:18:0c:22:5c:57: 71:dd:ca:c1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODA0NzExMC8GA1UEBRMoODg0OEFBQ0RGMjk1MTMwM0U3MDk4RjQxOUQ4Q0EwMDQy Mjg5MEM2OTAeFw0yNDExMDUwMjIxNTRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Mjk4MTQyLTRmZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyPqRcPxlatfq377Dy8JzjMRU/FnBdkgq0E+XuBnSpQ0prCFE4roc1K1L0T1by I0nGqn9qFVUNr2xFMiWg3trMp369q40onUsU+b7U6BTW+t4qJ1e2b3Ojop0ETrGB jVNgtXCpeWi7ZQPZ+yfuRsr8KfqkbtyuHgny2Qu8Zi7RpXoKudO2WOeK2W80GRu8 rd1gUg53oXL4wC6TwjBpqhgZSLUhhvRK6zVbStsyhF4A7tXs2N8hrwMvEheigQC2 c4/lu0dbzaiT5bkMdM97agXHnyiuPTsm6MImr0ORzTs3kAJTKAh8y6bKYoB3CsF8 T4rTYsYnsqdGG971nqNpjgLzAgMBAAGjggKtMIICqTAdBgNVHQ4EFgQUGv6ovdQR gh+n8bhnefO8fW0mefQwHwYDVR0jBBgwFoAUiEiqzfKVEwPnCY9BnYygBCKJDGkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MDQ3LzM0NEEwMUEyOUIx NTExRUY4NkVCMzc0NkM0RjlBRTAyL2lFaXF6ZktWRXdQbkNZOUJuWXlnQkNLSkRH ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUVpcXpmS1ZFd1BuQ1k5Qm5ZeWdCQ0tKREdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODA0Ny8zNDRBMDFBMjlCMTUxMUVGODZFQjM3NDZDNEY5QUUwMi8wMjkzMTAzMjlC MTkxMUVGQTBCRDY0NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA3BggrBgEFBQcBBwEB/wQo MCYwJAQCAAEwHgMEAmfR4AMEAMsSOwMEAMsZuwMEAMu9GAMEAMu+2TANBgkqhkiG 9w0BAQsFAAOCAQEAnmaNKZPhWByvlaaLHa6qsAxtY1k4gjJt/AQ1dCSj/QVQDNAR 9D17ymWu5t6OsFf6FkBzltcgTdqkMl7AcfdNDHWOlHN5VACz2MP1HlAX0mQsbXzt XyCYxZh4x/cePNBFFmWmFULwMs1iUwkW+e9+476//9zMdyCx5P30SxBffjEmrbnS afQCcVg69AEv7vCQ6nO7fUwD7Rscz0O2QYBVD7vD6rk04CWnXER/sY9/7YntPAqG /3O3eAiM6EP5ttSsBdsOmycuAHhYjp0yHCmfNAs7rK4gGMqK/ThL87wJq/v4c/bQ nM9RcgmFdcC/r4rzemYVhP+K6xgMIlxXcd3KwQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org