$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/4EEEF95AEA4311EE86C1DD73C4F9AE02.roa File: 4EEEF95AEA4311EE86C1DD73C4F9AE02.roa (raw, json) Hash identifier: gRPrkPot7cS4Md/lWHKHiYe/Z/9NwksWhg6tBROLm8I= Subject key identifier: CE:95:F1:73:17:39:F6:5B:26:EE:86:34:D4:BF:41:91:C8:3C:9F:50 Certificate issuer: /CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Certificate serial: 074F Authority key identifier: D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/4EEEF95AEA4311EE86C1DD73C4F9AE02.roa Signing time: Thu 04 Jul 2024 21:59:50 +0000 ROA not before: Thu 04 Jul 2024 21:59:50 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132837 IP address blocks: 103.248.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Validity Not Before: Jul 4 21:59:50 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66871b56-79e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0a:49:61:6c:82:d4:f7:a7:c2:c8:2a:68:67: 42:b5:6d:d0:02:b3:bf:97:d0:8a:95:8f:53:a0:2c: b6:84:6a:54:60:4a:59:4c:2d:1b:ae:2a:f7:b2:3f: 92:27:92:a1:06:84:a1:d5:40:85:b7:74:e4:77:ca: 52:93:73:0b:ab:fe:c3:2d:b4:3e:c0:d3:c9:9c:a1: 8c:21:f6:b9:a4:d0:c7:b6:d0:6b:14:f3:01:af:cc: ec:3d:0e:5d:40:6c:d3:22:6a:15:ec:66:29:16:b5: cc:75:ed:4f:02:87:c4:81:3f:24:68:11:c8:73:17: fe:cf:02:63:e0:dd:8e:c4:f3:31:3b:d1:9c:9e:2a: 43:1d:2f:a3:4b:f5:c3:ca:7d:00:5a:49:6e:fa:b1: e1:80:6c:4b:cb:f0:8d:90:9b:36:04:fd:7e:a8:22: 59:53:74:b8:90:6c:6a:f0:38:58:70:f4:26:f8:90: 4f:c8:89:9d:8c:5a:76:b8:1e:df:05:9f:29:97:f8: 3d:2e:b0:ea:7e:73:72:cd:d1:2e:77:ef:2d:53:88: 74:54:d0:df:f9:41:41:a6:86:93:1c:ab:f8:72:c1: ce:8d:ae:f2:01:d9:5d:eb:80:67:48:c0:48:7c:46: 8f:11:55:13:c0:52:ef:03:6f:90:c8:d1:69:ad:c8: 21:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:95:F1:73:17:39:F6:5B:26:EE:86:34:D4:BF:41:91:C8:3C:9F:50 X509v3 Authority Key Identifier: keyid:D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/4EEEF95AEA4311EE86C1DD73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.108.0/22 Signature Algorithm: sha256WithRSAEncryption 46:e5:ca:0d:d5:67:5c:ef:3a:4e:b7:8f:43:10:4b:95:6e:a9: 6e:4a:ab:04:b2:f7:ed:f5:46:71:ae:82:c4:e9:8c:79:ec:98: a5:0a:94:c4:fa:3d:e1:02:22:9b:2e:71:92:32:0d:54:ce:06: 8a:28:a1:9f:86:ff:ce:ad:da:44:22:13:91:9e:20:01:61:e4: 4a:f4:5c:fa:53:2d:65:d1:e9:bc:54:d4:08:73:df:20:3f:ec: ae:28:3f:51:b1:c1:24:d2:c6:59:f9:45:7e:49:c0:66:80:b3: 36:ea:05:ae:65:c8:05:f5:7b:45:1c:8a:2c:f5:00:9b:ae:b0: 07:b8:9a:71:d0:d8:21:57:bc:8c:5b:9c:75:61:9c:84:de:60: ad:f5:6a:2e:ec:a5:d1:4d:b4:18:15:12:83:5d:db:78:06:2c: 62:17:0d:35:89:7f:0f:03:1a:f0:a5:82:a1:e6:d9:ba:d8:78: ac:9c:7f:13:3c:64:09:82:9e:96:8a:2e:1e:27:a6:84:09:65: a5:19:bb:9a:91:58:9b:a6:d7:c3:25:d4:29:b8:14:e3:a3:28: f3:8d:9b:20:25:06:3a:e8:b0:50:f7:ab:6d:cb:be:5f:5e:33: 2f:df:fd:e9:c4:13:5b:c2:71:d5:d6:4f:cd:e2:69:4f:48:cb: 93:5a:ff:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGMzAxMTAvBgNVBAUTKEQzMjY3QUY5RkI5NjkwODlDM0MxMkFGRUJGRDBGREU5 QkQ4Njc1ODEwHhcNMjQwNzA0MjE1OTUwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3MWI1Ni03OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArwpJYWyC1PenwsgqaGdCtW3QArO/l9CKlY9ToCy2hGpUYEpZTC0brir3sj+S J5KhBoSh1UCFt3Tkd8pSk3MLq/7DLbQ+wNPJnKGMIfa5pNDHttBrFPMBr8zsPQ5d QGzTImoV7GYpFrXMde1PAofEgT8kaBHIcxf+zwJj4N2OxPMxO9GcnipDHS+jS/XD yn0AWklu+rHhgGxLy/CNkJs2BP1+qCJZU3S4kGxq8DhYcPQm+JBPyImdjFp2uB7f BZ8pl/g9LrDqfnNyzdEud+8tU4h0VNDf+UFBpoaTHKv4csHOja7yAdld64BnSMBI fEaPEVUTwFLvA2+QyNFprcghRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM6V8XMX OfZbJu6GNNS/QZHIPJ9QMB8GA1UdIwQYMBaAFNMmevn7lpCJw8Eq/r/Q/em9hnWB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0YzMC8zQjkxMkYxMkYx ODIxMUVBQTUzNzk3MEFDNEY5QUUwMi8weVo2LWZ1V2tJbkR3U3ItdjlEOTZiMkdk WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5WjYtZnVXa0luRHdTci12OUQ5NmIyR2RZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGMzAvM0I5MTJGMTJGMTgyMTFFQUE1Mzc5NzBBQzRGOUFFMDIvNEVFRUY5NUFF QTQzMTFFRTg2QzFERDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn+GwwDQYJKoZIhvcNAQELBQADggEBAEblyg3VZ1zvOk63 j0MQS5VuqW5KqwSy9+31RnGugsTpjHnsmKUKlMT6PeECIpsucZIyDVTOBooooZ+G /86t2kQiE5GeIAFh5Er0XPpTLWXR6bxU1Ahz3yA/7K4oP1GxwSTSxln5RX5JwGaA szbqBa5lyAX1e0Uciiz1AJuusAe4mnHQ2CFXvIxbnHVhnITeYK31ai7spdFNtBgV EoNd23gGLGIXDTWJfw8DGvClgqHm2brYeKycfxM8ZAmCnpaKLh4npoQJZaUZu5qR WJum18Ml1Cm4FOOjKPONmyAlBjrosFD3q23Lvl9eMy/f/enEE1vCcdXWT83iaU9I y5Na//M= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org