$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa File: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (raw, json) Hash identifier: 4KhK9kqJTGDPAJOYCa4lEtI9t9APEbxN6UmdidYEYgk= Subject key identifier: 41:52:44:F1:9C:83:29:FD:91:8B:11:D4:EA:1F:FD:38:A0:17:AF:32 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 056F Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa Signing time: Thu 29 Feb 2024 00:42:45 +0000 ROA not before: Thu 29 Feb 2024 00:42:45 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137461 IP address blocks: 103.109.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Feb 29 00:42:45 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dfd304-0204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:56:76:56:ee:1a:56:4e:2b:f1:57:0e:d4:18: 3b:57:bf:cf:22:42:24:77:eb:17:8d:eb:d9:d6:54: 1d:92:4c:9a:aa:8a:84:ca:3d:cc:c4:3a:95:6e:ef: 5f:2c:a2:df:32:a9:86:81:90:8e:d4:d8:b6:65:0b: af:06:a2:78:ac:e9:da:c2:1f:47:6c:9e:e2:37:23: 86:a2:59:d4:19:ab:58:24:aa:d8:c8:5b:7b:a2:45: f8:3c:48:bb:d5:73:ca:97:79:a3:59:cd:c2:44:e5: 9c:41:4b:66:d1:4b:05:d0:ae:29:58:d9:b8:91:e9: 28:13:ab:f5:53:d3:16:f3:60:52:51:f2:6c:ae:46: 8e:8a:d2:4b:f1:f7:50:4b:2c:a8:11:9e:a8:46:1e: 2b:8a:d0:b4:d6:e5:97:ea:62:0d:32:89:d2:9f:9a: 62:f4:24:49:05:e2:60:fe:6c:50:ba:b1:be:c4:50: 09:19:f4:a0:12:50:54:d2:2c:ce:5c:fc:07:1e:50: fa:c1:a7:d2:dc:b7:8b:dd:0d:ef:4d:65:d5:48:55: 20:59:fb:4e:ec:63:38:f6:d0:de:a7:58:0a:86:89: 7a:d8:ea:1f:25:b4:7d:99:a3:8e:36:eb:c0:48:af: 70:c2:12:3f:65:1d:58:33:84:79:58:cd:be:79:bd: 44:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:52:44:F1:9C:83:29:FD:91:8B:11:D4:EA:1F:FD:38:A0:17:AF:32 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.121.0/24 Signature Algorithm: sha256WithRSAEncryption 49:7b:bb:a2:36:d5:99:43:e9:4a:6b:71:b8:52:4f:6e:b0:6f: 4a:b8:95:e7:9c:d6:3d:5f:6b:93:ea:3e:e6:4a:d1:37:68:50: 9c:75:17:d5:ea:c1:26:5b:a8:c4:dd:40:4f:2c:31:7b:54:7a: d9:91:2c:97:31:c1:9e:df:e0:c8:cd:52:71:da:51:ca:bd:00: 6b:12:36:33:4f:8f:cf:d3:e1:10:90:eb:dc:c1:1c:e3:9f:ca: 0c:6b:39:61:bd:26:e2:74:fb:51:62:e8:af:ff:19:7a:58:97: 19:17:e2:f1:92:f8:f3:6c:3f:a7:68:55:e4:5b:59:9c:de:81: f6:b8:32:eb:01:41:bc:e8:5b:38:ef:81:1a:51:e1:e2:d6:c1: c2:f1:17:63:02:61:6e:49:b1:21:60:73:04:55:f4:0f:da:39: 5a:b1:d2:47:5d:07:23:4b:a1:64:ae:28:bb:da:b5:e7:f6:d2: 90:2a:9c:34:24:27:72:89:63:ed:c7:8a:e4:c5:aa:41:4e:a5: 98:db:ef:27:24:cb:38:52:2c:f8:88:40:fb:4a:ef:0e:aa:d9: 11:4a:65:c3:7a:cb:f1:63:4b:d1:62:e0:cc:80:de:09:07:58: 37:41:c4:61:55:6a:e9:50:55:c2:fd:cb:61:84:e4:db:0c:fc: 11:43:8f:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjQwMjI5MDA0MjQ1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmZDMwNC0wMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lZ2Vu4aVk4r8VcO1Bg7V7/PIkIkd+sXjevZ1lQdkkyaqoqEyj3MxDqVbu9f LKLfMqmGgZCO1Ni2ZQuvBqJ4rOnawh9HbJ7iNyOGolnUGatYJKrYyFt7okX4PEi7 1XPKl3mjWc3CROWcQUtm0UsF0K4pWNm4kekoE6v1U9MW82BSUfJsrkaOitJL8fdQ SyyoEZ6oRh4ritC01uWX6mINMonSn5pi9CRJBeJg/mxQurG+xFAJGfSgElBU0izO XPwHHlD6wafS3LeL3Q3vTWXVSFUgWftO7GM49tDep1gKhol62OofJbR9maOONuvA SK9wwhI/ZR1YM4R5WM2+eb1EgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEFSRPGc gyn9kYsR1Oof/TigF68yMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCM0MvM0YzMzYyREE4NkZBMTFFQkIzQzdCQjI5QzRGOUFFMDIvMDBEOEJFNTI4 NkZDMTFFQjhBOTU2NDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbXkwDQYJKoZIhvcNAQELBQADggEBAEl7u6I21ZlD6Upr cbhST26wb0q4leec1j1fa5PqPuZK0TdoUJx1F9XqwSZbqMTdQE8sMXtUetmRLJcx wZ7f4MjNUnHaUcq9AGsSNjNPj8/T4RCQ69zBHOOfygxrOWG9JuJ0+1Fi6K//GXpY lxkX4vGS+PNsP6doVeRbWZzegfa4MusBQbzoWzjvgRpR4eLWwcLxF2MCYW5JsSFg cwRV9A/aOVqx0kddByNLoWSuKLvatef20pAqnDQkJ3KJY+3HiuTFqkFOpZjb7yck yzhSLPiIQPtK7w6q2RFKZcN6y/FjS9Fi4MyA3gkHWDdBxGFVaulQVcL9y2GE5NsM /BFDjyQ= -----END CERTIFICATE-----Generated at Tue May 7 02:01:04 2024 by rpki-client on console-ams.rpki-client.org