$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa File: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (raw, json) Hash identifier: A3kThrVaT5oRwxsCsohgrMXC95qG/MeuK1hdFh/7ma0= Subject key identifier: B5:F5:31:EF:E3:85:F7:66:21:8D:C9:05:40:FA:90:70:E4:F0:04:81 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0799 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa Signing time: Tue 28 May 2024 22:33:32 +0000 ROA not before: Tue 28 May 2024 22:33:32 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136014 IP address blocks: 103.138.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1945 (0x799) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 28 22:33:32 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66565bbc-cdaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7e:1f:a6:c3:6f:bf:7d:4f:5b:47:5c:95:0e: 80:f3:72:db:47:3f:21:f3:3d:7f:ae:56:99:47:1e: 9a:3c:69:5b:8a:98:78:c8:b0:a0:82:b8:2f:ec:95: c3:c4:27:16:cd:7e:f7:81:ea:f4:61:ec:a8:ef:30: 86:fd:c1:a5:f5:6a:dd:1e:52:f7:f5:86:d9:7a:4e: a0:30:96:d8:4d:85:73:fb:a9:23:cc:ba:d6:e4:0f: 9c:0c:c4:6f:f8:1c:8e:46:31:ff:00:18:e8:0a:83: ee:61:d3:02:72:3e:bc:6e:c4:75:f3:6e:ad:bc:e1: e7:be:de:df:9e:f4:b6:91:d6:81:14:8b:ca:c6:a7: 72:c1:4d:30:70:54:46:d7:6d:a0:0f:42:ec:76:6d: 56:d9:d9:db:1c:87:44:b8:35:70:1c:47:c0:9e:ff: 90:92:06:93:68:a2:7b:75:7f:3d:62:15:69:86:29: a6:2a:9a:ea:c2:51:f8:0f:06:30:9b:e0:13:18:39: 5b:d7:0a:3a:e7:f5:77:69:bd:2d:05:46:8d:ed:81: 8f:1b:cd:5d:f7:f0:ec:db:17:11:4a:1a:79:ea:6d: 46:bc:26:7e:91:bd:8d:6f:a1:88:30:a0:60:e2:97: da:ca:dd:34:42:e8:34:4b:1c:fd:d0:39:4e:8a:a6: 48:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F5:31:EF:E3:85:F7:66:21:8D:C9:05:40:FA:90:70:E4:F0:04:81 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/8F44F16A4BCC11EDA2E6375FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.214.0/24 Signature Algorithm: sha256WithRSAEncryption 83:c4:19:5f:47:31:a7:c7:8b:e8:27:7a:74:83:ac:3e:7b:bf: 26:e4:a0:bf:56:50:ef:6c:5e:e3:7c:45:0c:7e:f5:86:2e:7d: ed:99:61:ec:16:71:99:94:39:98:c3:6b:59:ec:c2:5c:c6:82: fd:18:d1:29:f9:ea:5e:59:0f:22:9e:35:1f:2a:a7:e4:51:f5: 99:57:38:28:88:ac:46:29:d3:87:2b:e5:ff:92:94:79:ed:9d: 40:d7:38:1c:0c:b2:ed:2c:13:5d:6e:bc:5e:a8:56:dc:e1:df: 8e:2e:c8:91:5a:9c:37:1e:63:0a:aa:96:15:9d:fc:ad:cf:00: 97:0e:17:27:23:be:19:0c:62:86:5e:09:c0:46:65:6b:03:de: e3:8f:f9:3f:6e:90:f1:7f:5e:88:b4:e6:46:18:56:f0:b2:6b: 14:cd:c0:3a:46:a1:42:65:40:6f:c6:de:15:d4:b2:86:d5:37: 1d:ed:1c:25:41:3f:05:8f:97:9f:9b:ab:08:95:f9:b5:ce:c1: 40:53:ab:eb:17:13:15:cc:d3:25:10:c0:77:7f:85:e4:4b:f5: f9:61:8d:fe:db:6d:41:16:f3:b6:21:80:48:ff:3a:f9:ef:ea: f9:09:5e:91:8f:43:6e:90:d1:ab:c1:16:1a:ed:09:ae:39:8b: 40:e4:8b:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjQwNTI4MjIzMzMyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NWJiYy1jZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoX4fpsNvv31PW0dclQ6A83LbRz8h8z1/rlaZRx6aPGlbiph4yLCggrgv7JXD xCcWzX73ger0Yeyo7zCG/cGl9WrdHlL39YbZek6gMJbYTYVz+6kjzLrW5A+cDMRv +ByORjH/ABjoCoPuYdMCcj68bsR1826tvOHnvt7fnvS2kdaBFIvKxqdywU0wcFRG 122gD0Lsdm1W2dnbHIdEuDVwHEfAnv+QkgaTaKJ7dX89YhVphimmKprqwlH4DwYw m+ATGDlb1wo65/V3ab0tBUaN7YGPG81d9/Ds2xcRShp56m1GvCZ+kb2Nb6GIMKBg 4pfayt00Qug0Sxz90DlOiqZInwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLX1Me/j hfdmIY3JBUD6kHDk8ASBMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvOEY0NEYxNkE0 QkNDMTFFREEyRTYzNzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitYwDQYJKoZIhvcNAQELBQADggEBAIPEGV9HMafHi+gn enSDrD57vybkoL9WUO9sXuN8RQx+9YYufe2ZYewWcZmUOZjDa1nswlzGgv0Y0Sn5 6l5ZDyKeNR8qp+RR9ZlXOCiIrEYp04cr5f+SlHntnUDXOBwMsu0sE11uvF6oVtzh 344uyJFanDceYwqqlhWd/K3PAJcOFycjvhkMYoZeCcBGZWsD3uOP+T9ukPF/Xoi0 5kYYVvCyaxTNwDpGoUJlQG/G3hXUsobVNx3tHCVBPwWPl5+bqwiV+bXOwUBTq+sX ExXM0yUQwHd/heRL9flhjf7bbUEW87YhgEj/Ovnv6vkJXpGPQ26Q0avBFhrtCa45 i0DkizI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org