$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa File: FD124A14CC5811EDBE5D203FC4F9AE02.roa (raw, json) Hash identifier: sAfUcNCOt118LSTGd2ByOqCl6kCgTi6ZVqAMUJEtk3c= Subject key identifier: 98:4D:32:D2:8B:55:73:B1:E4:B6:F5:68:5C:20:A5:D4:88:F8:E1:80 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 0242 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:24 +0000 ROA not before: Thu 05 Sep 2024 04:18:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63473 IP address blocks: 103.214.22.0/24 maxlen: 24 103.214.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Sep 5 04:18:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d93110-64eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:8d:85:88:fa:2f:3c:5a:9b:33:6c:8f:97: 55:48:d1:83:f9:80:89:aa:7d:fc:23:fb:48:b6:3b: 37:fd:e8:8c:75:a2:a5:8e:ec:44:27:c5:89:51:63: ef:46:47:5d:06:8e:fa:97:66:5f:09:1a:de:e9:f1: ad:54:17:cf:7b:9c:86:0c:9f:53:c6:49:c3:57:d2: 45:fa:67:19:4b:3a:4f:25:bb:f1:3c:e3:4f:65:1a: 2b:82:d8:7c:78:13:8f:76:34:47:70:53:5a:23:ec: be:c4:68:94:60:87:7e:90:f6:3e:0c:01:55:e6:67: 90:51:21:59:8f:c2:13:81:bc:5c:0f:31:4b:e7:9b: 9b:81:d1:dc:42:9e:fa:a7:bd:48:db:05:b8:09:4f: 22:1f:79:eb:70:5c:fd:9e:7e:14:17:5e:24:5e:6e: d5:16:5e:39:db:38:1d:76:27:99:88:03:54:85:73: e6:59:75:2a:7d:13:3c:b7:de:cd:32:1b:53:ec:4d: 2b:28:09:d8:50:8b:d3:bb:22:ea:e5:54:9d:a2:b3: 17:49:72:ba:12:38:d8:34:b2:dd:5e:89:15:ae:d4: d8:98:1b:fd:6a:56:b9:63:48:7b:9c:96:1f:a2:9a: 81:a3:d5:ee:ef:d2:15:62:0e:dd:bd:a8:28:05:4e: 5a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:4D:32:D2:8B:55:73:B1:E4:B6:F5:68:5C:20:A5:D4:88:F8:E1:80 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/FD124A14CC5811EDBE5D203FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.22.0/23 Signature Algorithm: sha256WithRSAEncryption 16:66:03:e6:52:30:d5:4c:b8:cc:ec:e8:6f:4b:79:3c:da:da: 1c:e9:62:b1:f3:e5:ec:00:0b:9e:c7:05:94:10:9a:b0:58:17: 7e:59:39:71:24:fa:9a:cb:a0:a0:ae:7c:1d:93:bb:f7:40:b3: ab:b2:e0:a5:1d:73:c4:11:3c:64:7c:55:ac:a5:10:19:8f:7e: 05:4d:66:b4:0d:ff:e0:92:81:92:e5:0b:d9:58:d3:79:e6:d7: c0:f5:0e:62:db:1b:bf:69:21:0d:f8:e4:38:70:ac:39:8a:82: 42:d8:1f:40:a4:9f:fe:e2:99:76:78:c6:55:d1:e1:13:c7:c7: 2d:91:a7:ce:45:75:0e:1a:19:94:62:f4:43:43:d9:48:3a:1e: 8e:39:49:dd:4a:e1:50:84:cb:61:7a:d9:df:79:36:83:d8:93: 8e:36:21:28:d6:b0:2b:e0:03:07:8d:35:a5:a3:6a:46:1f:75: ce:d0:f9:ba:0f:65:53:cc:4a:4b:13:be:f4:e7:6a:da:47:86: 0e:6d:86:29:b6:75:12:4d:59:30:58:6b:0b:57:67:d5:0f:7f: bc:6d:48:26:a3:f1:15:a6:bd:cc:77:86:6c:9e:fe:2d:39:82: a5:8e:1f:10:69:d6:75:64:0e:30:12:94:9b:5e:e0:7a:8c:47: 0a:18:8d:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzExMC02NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz6NhYj6LzxamzNsj5dVSNGD+YCJqn38I/tItjs3/eiMdaKljuxEJ8WJUWPv RkddBo76l2ZfCRre6fGtVBfPe5yGDJ9TxknDV9JF+mcZSzpPJbvxPONPZRorgth8 eBOPdjRHcFNaI+y+xGiUYId+kPY+DAFV5meQUSFZj8ITgbxcDzFL55ubgdHcQp76 p71I2wW4CU8iH3nrcFz9nn4UF14kXm7VFl452zgddieZiANUhXPmWXUqfRM8t97N MhtT7E0rKAnYUIvTuyLq5VSdorMXSXK6EjjYNLLdXokVrtTYmBv9ala5Y0h7nJYf opqBo9Xu79IVYg7dvagoBU5axQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJhNMtKL VXOx5Lb1aFwgpdSI+OGAMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRkQxMjRBMTRD QzU4MTFFREJFNUQyMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn1hYwDQYJKoZIhvcNAQELBQADggEBABZmA+ZSMNVMuMzs 6G9LeTza2hzpYrHz5ewAC57HBZQQmrBYF35ZOXEk+prLoKCufB2Tu/dAs6uy4KUd c8QRPGR8VaylEBmPfgVNZrQN/+CSgZLlC9lY03nm18D1DmLbG79pIQ345DhwrDmK gkLYH0Ckn/7imXZ4xlXR4RPHxy2Rp85FdQ4aGZRi9END2Ug6Ho45Sd1K4VCEy2F6 2d95NoPYk442ISjWsCvgAweNNaWjakYfdc7Q+boPZVPMSksTvvTnatpHhg5thim2 dRJNWTBYawtXZ9UPf7xtSCaj8RWmvcx3hmye/i05gqWOHxBp1nVkDjASlJte4HqM RwoYjcQ= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org