$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa File: D5D64BB0FB6811EC863B8150C4F9AE02.roa (raw, json) Hash identifier: 65F2G59MHFVGLVKd/ikA3cZL7cCRB1lDJX3oDcAILQw= Subject key identifier: 37:50:F0:AC:D9:68:98:37:F3:D8:1C:65:9C:7D:F2:A7:3A:02:B7:42 Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 01C8 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa Signing time: Thu 07 Mar 2024 04:16:33 +0000 ROA not before: Thu 07 Mar 2024 04:16:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133212 IP address blocks: 103.224.104.0/24 maxlen: 24 2001:df0:ed40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Mar 7 04:16:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e93fa1-7fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:61:72:ad:a7:72:ba:0b:42:7a:58:17:e6:a7: ba:43:3b:be:9c:4d:ad:4b:51:d7:df:f9:b5:47:d4: 80:b3:0b:14:c2:d1:fe:59:57:38:0a:ef:a9:07:56: 2b:37:ea:66:7e:1c:fc:58:d5:47:ea:e5:56:52:ff: ea:4a:58:b6:e2:3d:75:73:d0:27:e0:53:19:c2:aa: ae:52:71:9d:c3:cf:69:c8:15:18:96:6a:fc:74:2d: 52:5f:53:09:6d:68:32:07:b9:4a:27:c4:26:2a:a5: bf:06:17:91:65:54:38:96:94:a1:0e:88:9d:22:fe: 9a:93:36:ce:29:22:9c:5e:81:ec:56:a0:12:96:ba: fd:26:0c:5a:36:77:e6:f8:8a:f1:46:6f:7f:e3:56: 99:c4:30:c3:86:bc:5e:57:e8:76:6f:01:64:9e:40: b0:0c:49:1d:84:1b:f5:6e:cf:cc:c8:c1:26:83:cc: 25:94:ce:3f:22:e6:9c:a2:67:05:44:88:0b:8a:a8: c2:75:09:05:90:8e:32:2e:f7:04:7a:9a:ab:f7:05: 2b:3e:09:cd:39:c0:ee:2c:3b:e0:df:4d:85:07:d9: 89:5b:ec:96:6b:da:54:5f:6f:f9:5c:18:b2:1f:06: f9:f1:22:44:c7:ff:a1:6d:d7:a2:ef:cc:00:85:ef: 52:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:50:F0:AC:D9:68:98:37:F3:D8:1C:65:9C:7D:F2:A7:3A:02:B7:42 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.104.0/24 IPv6: 2001:df0:ed40::/48 Signature Algorithm: sha256WithRSAEncryption 65:f9:d4:d3:2c:5e:bd:c8:5f:c1:55:f6:a4:7e:08:99:bb:1e: 20:6f:76:c3:09:6f:0c:f1:3a:f0:bc:17:e2:c5:eb:53:a5:11: 19:5d:05:00:c5:30:25:3c:a9:09:45:0b:9d:05:a9:41:92:8f: 46:e8:13:c9:89:c1:b9:71:b1:26:58:9f:e7:c7:b2:e0:5a:a0: 47:32:f6:7f:3d:c6:02:58:85:d7:03:98:e3:ac:6e:9d:c1:7b: 80:2a:4c:26:c4:89:c9:b1:07:8b:f2:8c:04:1a:a4:44:c0:1e: 90:5d:8c:26:03:5e:c5:1b:11:b0:8d:33:64:d9:5f:e1:2e:c5: 68:7c:6a:29:70:e1:e3:f1:0a:b8:00:6d:18:45:6c:f7:54:b2: 0a:2d:a6:5f:85:1a:eb:b8:60:b5:69:96:16:42:7d:6e:d7:0a: db:36:e6:a3:13:e5:5b:ae:94:8d:9f:4e:d9:4f:0b:e3:7a:12: b8:47:d5:44:06:a6:e2:3b:1e:42:aa:a0:dc:8c:97:01:4c:4b: 36:fd:0a:7b:aa:75:11:5c:04:65:5a:7e:ff:76:48:0d:fb:e7: 02:c9:6c:4f:42:ea:86:9d:c9:7c:40:53:9b:b1:af:73:b2:40: 30:78:7c:ed:6d:1c:7b:81:34:5a:f0:03:6b:1b:fd:ff:ee:8c: a5:62:2f:d4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjQwMzA3MDQxNjMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU5M2ZhMS03ZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GFyradyugtCelgX5qe6Qzu+nE2tS1HX3/m1R9SAswsUwtH+WVc4Cu+pB1Yr N+pmfhz8WNVH6uVWUv/qSli24j11c9An4FMZwqquUnGdw89pyBUYlmr8dC1SX1MJ bWgyB7lKJ8QmKqW/BheRZVQ4lpShDoidIv6akzbOKSKcXoHsVqASlrr9JgxaNnfm +IrxRm9/41aZxDDDhrxeV+h2bwFknkCwDEkdhBv1bs/MyMEmg8wllM4/IuacomcF RIgLiqjCdQkFkI4yLvcEepqr9wUrPgnNOcDuLDvg302FB9mJW+yWa9pUX2/5XBiy Hwb58SJEx/+hbdei78wAhe9S3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDdQ8KzZ aJg389gcZZx98qc6ArdCMB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk3OEQvNjdCNDQ4MjhGQjY2MTFFQ0FCQTEwMTRGQzRGOUFFMDIvRDVENjRCQjBG QjY4MTFFQzg2M0I4MTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn4GgwDwQCAAIwCQMHACABDfDtQDANBgkqhkiG9w0BAQsF AAOCAQEAZfnU0yxevchfwVX2pH4ImbseIG92wwlvDPE68LwX4sXrU6URGV0FAMUw JTypCUULnQWpQZKPRugTyYnBuXGxJlif58ey4FqgRzL2fz3GAliF1wOY46xuncF7 gCpMJsSJybEHi/KMBBqkRMAekF2MJgNexRsRsI0zZNlf4S7FaHxqKXDh4/EKuABt GEVs91SyCi2mX4Ua67hgtWmWFkJ9btcK2zbmoxPlW66UjZ9O2U8L43oSuEfVRAam 4jseQqqg3IyXAUxLNv0Ke6p1EVwEZVp+/3ZIDfvnAslsT0Lqhp3JfEBTm7Gvc7JA MHh87W0ce4E0WvADaxv9/+6MpWIv1A== -----END CERTIFICATE-----Generated at Sun May 19 05:08:06 2024 by rpki-client on console-ams.rpki-client.org