$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa File: A074721624CA11EF93486579C4F9AE02.roa (raw, json) Hash identifier: nXKONamo5/7dl+zwjVR7iORbBvzEbVNG55VrJso28jc= Subject key identifier: BA:F6:42:25:C1:AD:43:55:C4:C4:FF:8B:CF:B7:56:F8:61:5E:ED:EC Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 02 Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa Signing time: Fri 07 Jun 2024 12:36:57 +0000 ROA not before: Fri 07 Jun 2024 12:36:57 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134165 IP address blocks: 103.37.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Jun 7 12:36:57 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6662fee8-d500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:87:57:84:38:33:1d:a8:7b:24:a6:41:0e:85: e0:21:ed:57:dc:f1:36:d7:3e:d4:95:da:d7:82:d9: 12:85:2e:39:75:85:68:0d:d3:f8:94:14:98:95:15: 36:16:be:e6:b6:5c:94:f1:c8:93:ca:51:e6:83:8a: 60:96:46:27:32:c4:57:29:9b:0f:65:d1:cd:da:0a: dc:72:e9:70:b2:ce:4c:44:e4:a3:01:9e:00:61:e2: b0:f4:be:91:a4:0e:ce:d5:a9:46:9a:ab:03:64:f3: d3:ba:07:c6:21:42:51:b6:c7:82:30:d6:f5:db:26: 82:8c:c3:ec:22:6f:90:08:a9:30:0d:f7:95:5c:83: 8c:3c:56:94:e9:89:8e:1f:ea:96:65:8d:35:cb:59: 42:dc:2a:62:f5:95:a0:2b:90:b8:3c:dc:30:3b:61: 4a:69:7f:91:78:45:de:1f:de:31:a8:ee:cf:a3:84: d8:04:6b:5c:00:51:d1:9a:02:45:6e:f2:15:41:05: 2c:81:50:92:60:67:95:e9:cc:48:1d:aa:c5:47:a5: e4:35:31:60:f8:92:45:40:9d:d5:56:bd:48:da:df: 2a:84:51:ad:84:21:cb:5e:00:2e:e5:cf:34:9f:89: 40:a4:36:5c:e6:17:1a:0b:68:33:c4:fb:81:85:2e: 70:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:F6:42:25:C1:AD:43:55:C4:C4:FF:8B:CF:B7:56:F8:61:5E:ED:EC X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/A074721624CA11EF93486579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:54:54:03:9c:e4:40:f3:28:6d:cc:85:bc:cc:90:e8:d7:50: 43:dd:b9:86:a0:6f:49:6c:db:a2:59:30:69:ab:6f:78:e7:9f: dc:7c:78:19:74:bd:60:3c:6d:b6:bb:cf:5f:ce:23:2b:b6:55: 8e:27:22:53:50:ff:a3:ce:46:7e:72:a4:ce:21:a1:c8:e4:b3: 89:d9:60:2c:39:79:30:77:cd:0c:cb:78:0a:37:2a:30:87:c6: 95:4d:71:c9:b7:c1:ac:e0:35:e0:14:5d:30:a3:5c:b5:91:50: cb:06:84:a7:b6:b0:24:16:1c:81:00:6c:82:3e:cb:d2:be:15: 0e:4e:8e:dd:5b:07:33:75:a9:6a:0b:43:e4:2f:7d:af:f6:0a: fd:b7:5b:ad:c1:4b:c2:99:51:66:99:39:99:97:35:c6:ab:ab: fe:46:0e:e6:ec:0f:da:df:af:7a:6c:02:e9:fc:8f:83:e3:d4: b8:8c:34:80:1e:59:02:9b:dd:51:b8:b6:81:ca:cc:02:fb:83: 01:1f:18:cd:ab:ef:42:44:c4:19:be:3c:c2:d8:01:f5:55:a3: 06:02:1c:bb:70:74:2b:de:96:f0:82:42:12:02:17:40:0e:d5: 3d:0f:94:f5:51:61:9d:c9:9c:fa:ee:13:5b:bf:5a:c4:51:96: e2:b6:d9:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDA2MDcxMjM2NTdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjJmZWU4LWQ1MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxh1eEODMdqHskpkEOheAh7Vfc8TbXPtSV2teC2RKFLjl1hWgN0/iUFJiVFTYW vua2XJTxyJPKUeaDimCWRicyxFcpmw9l0c3aCtxy6XCyzkxE5KMBngBh4rD0vpGk Ds7VqUaaqwNk89O6B8YhQlG2x4Iw1vXbJoKMw+wib5AIqTAN95Vcg4w8VpTpiY4f 6pZljTXLWULcKmL1laArkLg83DA7YUppf5F4Rd4f3jGo7s+jhNgEa1wAUdGaAkVu 8hVBBSyBUJJgZ5XpzEgdqsVHpeQ1MWD4kkVAndVWvUja3yqEUa2EIcteAC7lzzSf iUCkNlzmFxoLaDPE+4GFLnDpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuvZCJcGt Q1XExP+Lz7dW+GFe7ewwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9BMDc0NzIxNjI0 Q0ExMUVGOTM0ODY1NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcl5DANBgkqhkiG9w0BAQsFAAOCAQEAWlRUA5zkQPMobcyF vMyQ6NdQQ925hqBvSWzbolkwaatveOef3Hx4GXS9YDxttrvPX84jK7ZVjiciU1D/ o85GfnKkziGhyOSzidlgLDl5MHfNDMt4CjcqMIfGlU1xybfBrOA14BRdMKNctZFQ ywaEp7awJBYcgQBsgj7L0r4VDk6O3VsHM3WpagtD5C99r/YK/bdbrcFLwplRZpk5 mZc1xqur/kYO5uwP2t+vemwC6fyPg+PUuIw0gB5ZApvdUbi2gcrMAvuDAR8Yzavv QkTEGb48wtgB9VWjBgIcu3B0K96W8IJCEgIXQA7VPQ+U9VFhncmc+u4TW79axFGW 4rbZCA== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:29 2024 by rpki-client on console-ams.rpki-client.org