$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa File: E10FA0FCB52611EEB3487B5BC4F9AE02.roa (raw, json) Hash identifier: wr5ztPmvZN7s4D2CvOqMN8VnTh99RrNwK0w18m5apNc= Subject key identifier: 88:79:76:DF:44:72:3E:16:C7:18:C4:0D:FF:4C:48:EA:C3:1D:13:9D Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 1116 Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa Signing time: Thu 18 Jan 2024 17:55:31 +0000 ROA not before: Thu 18 Jan 2024 17:55:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 400618 IP address blocks: 103.200.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4374 (0x1116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Jan 18 17:55:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a96613-b9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:40:22:23:9e:9b:d4:09:82:eb:cc:49:40:d4: b6:d4:80:da:d8:54:50:22:e2:91:58:6e:72:43:26: 62:e7:29:b6:01:6f:7f:6d:e2:a5:5b:26:59:37:3e: 61:b3:6e:a6:03:6a:61:cb:ab:95:55:e3:96:e9:a3: ce:c7:aa:67:8f:e7:71:e5:32:a2:22:ad:c2:46:87: bd:ff:b3:e8:d9:ef:0e:9a:7d:df:27:28:b5:57:c6: de:0e:14:54:85:4d:73:a3:18:9b:11:e8:af:7d:4f: 11:be:45:7a:9e:30:5c:7e:5d:fd:65:77:5a:e2:59: 73:62:c0:62:08:b4:e4:31:27:12:f4:8e:e8:28:13: c2:29:39:4e:a4:e2:12:a9:31:84:0f:77:27:77:f0: 29:f8:1e:03:74:7e:cd:87:bc:2a:fb:44:d7:fb:12: 4b:9c:8a:e1:7f:c1:e7:0e:1a:46:ae:2b:53:de:b6: 26:3f:60:54:b8:a5:f9:71:3f:28:cc:11:70:bc:22: 14:a4:7a:97:cd:71:b9:f0:2d:af:4e:c3:16:80:21: fe:53:95:af:cc:ff:ad:8a:83:c2:3b:17:e5:97:d3: 42:de:fe:3a:e1:c4:2f:0f:5c:fb:b9:3c:02:2f:35: ec:aa:32:f4:34:f9:df:ab:aa:0e:a3:67:e2:ff:65: 4b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:79:76:DF:44:72:3E:16:C7:18:C4:0D:FF:4C:48:EA:C3:1D:13:9D X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/E10FA0FCB52611EEB3487B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.114.0/23 Signature Algorithm: sha256WithRSAEncryption 71:fd:50:9b:87:d4:90:3a:91:a5:50:58:f9:03:8b:77:80:af: ec:0a:cb:45:9c:36:1f:ac:a6:c7:be:f9:56:fa:66:2c:85:6a: 75:2a:07:25:eb:a9:22:ee:88:66:16:89:86:4b:82:99:23:7a: 87:f8:78:d5:78:9e:3c:ab:b7:ca:80:48:65:0e:da:99:bf:ad: 3a:39:b1:3b:9e:32:97:8e:47:55:d5:df:f6:bb:05:90:90:92: 04:b7:4b:e6:0a:bf:a3:be:d7:0a:b7:d0:40:64:2a:dd:23:1d: c0:d7:7e:36:e8:f8:10:57:64:5f:a4:d3:19:73:8b:61:dd:1f: 2a:6a:7b:7c:72:07:fb:4f:73:39:ac:cc:fd:29:be:41:34:23: 80:84:e2:f4:29:4e:ae:51:97:31:6b:ec:01:c2:33:ff:6f:3b: 69:66:62:38:16:94:61:2d:2b:69:87:0d:07:eb:41:51:2e:8d: 88:9e:86:3b:45:01:54:59:97:4b:1e:5d:b8:92:2d:6d:b3:24: 8e:ac:cc:42:ba:d7:5f:28:39:48:a1:f8:95:e5:b7:1c:fd:76: 95:01:63:71:91:19:de:e2:fe:90:73:d3:3d:01:7f:41:c6:f9: e0:af:12:42:0c:ac:87:97:3d:67:8c:f6:7e:6f:34:b0:8e:d4: 47:82:3c:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICERYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjQwMTE4MTc1NTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE5NjYxMy1iOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskAiI56b1AmC68xJQNS21IDa2FRQIuKRWG5yQyZi5ym2AW9/beKlWyZZNz5h s26mA2phy6uVVeOW6aPOx6pnj+dx5TKiIq3CRoe9/7Po2e8Omn3fJyi1V8beDhRU hU1zoxibEeivfU8RvkV6njBcfl39ZXda4llzYsBiCLTkMScS9I7oKBPCKTlOpOIS qTGED3cnd/Ap+B4DdH7Nh7wq+0TX+xJLnIrhf8HnDhpGritT3rYmP2BUuKX5cT8o zBFwvCIUpHqXzXG58C2vTsMWgCH+U5WvzP+tioPCOxfll9NC3v464cQvD1z7uTwC LzXsqjL0NPnfq6oOo2fi/2VLfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIh5dt9E cj4WxxjEDf9MSOrDHROdMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvRTEwRkEwRkNC NTI2MTFFRUIzNDg3QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnyHIwDQYJKoZIhvcNAQELBQADggEBAHH9UJuH1JA6kaVQ WPkDi3eAr+wKy0WcNh+spse++Vb6ZiyFanUqByXrqSLuiGYWiYZLgpkjeof4eNV4 njyrt8qASGUO2pm/rTo5sTueMpeOR1XV3/a7BZCQkgS3S+YKv6O+1wq30EBkKt0j HcDXfjbo+BBXZF+k0xlzi2HdHypqe3xyB/tPczmszP0pvkE0I4CE4vQpTq5RlzFr 7AHCM/9vO2lmYjgWlGEtK2mHDQfrQVEujYiehjtFAVRZl0seXbiSLW2zJI6szEK6 118oOUih+JXltxz9dpUBY3GRGd7i/pBz0z0Bf0HG+eCvEkIMrIeXPWeM9n5vNLCO 1EeCPGE= -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:31 2024 by rpki-client on console-ams.rpki-client.org