$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/F8400A20C80811ED9ADBA05EC4F9AE02.roa File: F8400A20C80811ED9ADBA05EC4F9AE02.roa (raw, json) Hash identifier: x3rm2lsdWCq5H1iFBJa/qGikKwjQx3i5zJC/7qUndDc= Subject key identifier: 3C:1C:D7:61:EE:E0:A7:83:A0:3B:48:C9:88:64:61:C7:60:47:F4:07 Certificate issuer: /CN=A91B4DC7/serialNumber=B88911178068D575DFDDF84940CABEAF451C8C2B Certificate serial: 025F Authority key identifier: B8:89:11:17:80:68:D5:75:DF:DD:F8:49:40:CA:BE:AF:45:1C:8C:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/F8400A20C80811ED9ADBA05EC4F9AE02.roa Signing time: Thu 01 Feb 2024 03:35:20 +0000 ROA not before: Thu 01 Feb 2024 03:35:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134599 IP address blocks: 103.177.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.crl rsync://rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4DC7/serialNumber=B88911178068D575DFDDF84940CABEAF451C8C2B Validity Not Before: Feb 1 03:35:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65bb1178-53a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:68:d1:c7:10:80:fc:72:e9:06:c2:b6:3a: 58:e1:1c:86:3a:62:09:2f:1d:51:f5:fd:69:37:74: b7:d3:d5:c3:2f:c6:82:c8:0d:36:78:d1:2d:9a:30: 80:65:bb:2d:02:35:8c:2f:35:8d:75:4d:bd:c7:45: 9d:92:52:7b:ec:4a:1e:e9:88:c3:69:7a:44:07:5e: ae:09:b3:8d:48:9a:54:41:76:56:4f:cd:fd:20:bc: a5:33:35:63:1e:1e:ee:ac:fa:ac:a8:49:c3:01:0b: 94:8d:11:f9:34:5f:9d:3f:8a:37:05:ef:54:a2:f2: 84:3e:02:30:85:8b:a6:a9:10:31:1a:0b:8a:3d:79: d3:be:7b:46:fe:08:64:a7:8c:c7:a1:28:b5:dd:7d: 90:7c:54:0a:7d:df:0b:56:b3:77:79:27:bc:52:44: 17:bc:2c:49:90:37:59:42:e8:cb:8b:a1:c6:45:a2: c7:15:56:6c:14:a0:e1:a9:ff:88:57:5d:77:f3:7a: 11:4e:f6:63:6a:69:7b:a3:c3:d1:00:28:f3:7e:ef: f2:69:a8:48:e2:5b:45:83:44:41:4d:aa:be:d7:3e: f1:f0:d5:e1:92:2a:6f:86:83:1b:7c:f0:87:9b:5a: d1:04:06:27:6c:0f:13:37:4b:2d:b1:70:e9:95:09: ba:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:1C:D7:61:EE:E0:A7:83:A0:3B:48:C9:88:64:61:C7:60:47:F4:07 X509v3 Authority Key Identifier: keyid:B8:89:11:17:80:68:D5:75:DF:DD:F8:49:40:CA:BE:AF:45:1C:8C:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uIkRF4Bo1XXf3fhJQMq-r0UcjCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4DC7/F3F1020EBB1011ECB675EF51C4F9AE02/F8400A20C80811ED9ADBA05EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.139.0/24 Signature Algorithm: sha256WithRSAEncryption 50:75:46:09:8c:a6:ec:24:c4:e1:5b:96:ad:d0:05:30:de:4d: a2:f8:0a:e4:0e:3c:e5:e4:18:df:c5:ca:f7:74:72:05:64:26: 00:bd:3d:06:80:8c:fc:81:cb:19:16:9c:80:79:eb:76:e5:cf: dd:c8:e3:ea:d9:66:12:72:16:29:eb:df:8e:61:3d:54:1d:4a: 5f:62:66:b1:90:d1:25:9f:98:d0:7e:12:79:ec:d2:d5:af:99: 2c:9c:d2:ef:aa:97:e3:49:93:55:08:ea:2f:f9:09:56:ca:3f: 7c:52:57:a2:5a:75:0f:a5:0b:cb:20:d9:5a:c3:35:51:81:a4: 39:5f:2c:a8:a3:eb:65:4b:7a:01:f6:1b:fe:9d:37:43:0a:c4: 8e:31:20:64:19:fc:53:8c:d1:c4:65:1b:f1:e0:f7:6a:d2:63: 71:d6:9d:ed:9a:6e:94:bf:c9:a2:58:21:b7:a8:36:f7:26:db: d7:59:64:7d:cb:c8:72:96:dc:a0:a6:49:e4:1e:12:c9:0c:99: ff:b3:a9:1d:7f:f7:05:91:e8:23:ca:41:ca:fa:b3:cb:51:1e: 96:c1:b5:e4:9e:cf:6b:82:a7:78:29:28:83:53:66:b6:03:65: 32:87:fd:26:ae:a2:40:5a:99:06:13:3c:23:46:ff:36:2f:16: f0:f2:2f:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjREQzcxMTAvBgNVBAUTKEI4ODkxMTE3ODA2OEQ1NzVERkRERjg0OTQwQ0FCRUFG NDUxQzhDMkIwHhcNMjQwMjAxMDMzNTIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMTE3OC01M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymho0ccQgPxy6QbCtjpY4RyGOmIJLx1R9f1pN3S309XDL8aCyA02eNEtmjCA ZbstAjWMLzWNdU29x0WdklJ77Eoe6YjDaXpEB16uCbONSJpUQXZWT839ILylMzVj Hh7urPqsqEnDAQuUjRH5NF+dP4o3Be9UovKEPgIwhYumqRAxGguKPXnTvntG/ghk p4zHoSi13X2QfFQKfd8LVrN3eSe8UkQXvCxJkDdZQujLi6HGRaLHFVZsFKDhqf+I V11383oRTvZjaml7o8PRACjzfu/yaahI4ltFg0RBTaq+1z7x8NXhkipvhoMbfPCH m1rRBAYnbA8TN0stsXDplQm6IwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwc12Hu 4KeDoDtIyYhkYcdgR/QHMB8GA1UdIwQYMBaAFLiJEReAaNV13934SUDKvq9FHIwr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNERDNy9GM0YxMDIwRUJC MTAxMUVDQjY3NUVGNTFDNEY5QUUwMi91SWtSRjRCbzFYWGYzZmhKUU1xLXIwVWNq Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VJa1JGNEJvMVhYZjNmaEpRTXEtcjBVY2pDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjREQzcvRjNGMTAyMEVCQjEwMTFFQ0I2NzVFRjUxQzRGOUFFMDIvRjg0MDBBMjBD ODA4MTFFRDlBREJBMDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsYswDQYJKoZIhvcNAQELBQADggEBAFB1RgmMpuwkxOFb lq3QBTDeTaL4CuQOPOXkGN/Fyvd0cgVkJgC9PQaAjPyByxkWnIB563blz93I4+rZ ZhJyFinr345hPVQdSl9iZrGQ0SWfmNB+Enns0tWvmSyc0u+ql+NJk1UI6i/5CVbK P3xSV6JadQ+lC8sg2VrDNVGBpDlfLKij62VLegH2G/6dN0MKxI4xIGQZ/FOM0cRl G/Hg92rSY3HWne2abpS/yaJYIbeoNvcm29dZZH3LyHKW3KCmSeQeEskMmf+zqR1/ 9wWR6CPKQcr6s8tRHpbBteSez2uCp3gpKINTZrYDZTKH/SauokBamQYTPCNG/zYv FvDyLx4= -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org