$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa File: 504C179A3CDE11EAB553996BC4F9AE02.roa (raw, json) Hash identifier: hdDK9bB387XmiOfI09xup4zeZ5o4crSOg7jbYJEcLb4= Subject key identifier: 15:3F:ED:85:76:A0:C6:02:EC:79:A8:66:34:5F:BD:56:DF:B0:A5:6E Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0B07 Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa Signing time: Wed 20 Dec 2023 19:47:20 +0000 ROA not before: Wed 20 Dec 2023 19:47:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138412 IP address blocks: 103.124.248.0/23 maxlen: 23 103.124.248.0/24 maxlen: 24 103.124.249.0/24 maxlen: 24 103.124.250.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2823 (0xb07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Dec 20 19:47:20 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658344c8-d48b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:8e:67:c2:8a:24:b6:60:7f:ad:c0:36:02: 71:5b:0b:04:09:92:5a:72:78:e3:38:08:a1:ce:cd: 84:ef:0b:42:f1:eb:77:84:9e:cc:eb:e3:46:4d:bf: e8:48:f1:af:0a:cb:b6:60:be:75:da:e4:42:68:b5: 68:23:d9:9b:1a:52:4d:66:d3:fe:c8:e8:cc:d0:5a: 2b:b6:ce:81:91:92:7e:7f:7c:d1:35:4b:c5:ee:4f: 30:90:f5:89:bf:5f:1d:99:83:c2:9b:80:e8:f8:4e: 27:b5:88:48:b2:72:ca:3c:ba:b0:1a:1b:d8:43:8d: 0c:3e:8c:53:99:0a:5a:17:7f:dc:6e:e7:19:88:81: 45:b4:e9:b3:ef:49:ac:9f:e2:cb:39:e9:9e:3a:b9: c0:97:66:e5:99:7f:9d:a3:09:1a:77:b7:1d:0b:95: 3d:d3:81:e1:1f:0f:c1:e2:fa:5b:d6:23:36:89:6c: 87:f4:c6:f5:85:53:81:d5:43:1a:d7:cb:b9:f7:cc: 79:53:1a:be:0d:1b:bd:25:ca:d4:00:ad:e9:b8:31: 58:73:93:23:11:c4:d1:96:9a:50:01:d9:a8:eb:c5: 25:b0:98:e6:7e:f2:c3:59:1d:ac:25:13:bb:5c:11: 01:a4:de:d9:eb:36:a0:9c:2c:0a:b2:36:2d:28:a7: 64:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3F:ED:85:76:A0:C6:02:EC:79:A8:66:34:5F:BD:56:DF:B0:A5:6E X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/504C179A3CDE11EAB553996BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.248.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:29:6f:e6:a1:39:75:06:d7:26:32:d8:f6:2b:94:6d:71:bd: 90:c7:f7:a9:e3:ef:38:45:d7:40:4d:af:b3:c0:92:41:f5:ba: ac:07:42:89:29:30:af:17:d2:68:52:87:9d:9c:20:7e:0a:0a: 79:93:ce:8f:a0:cf:cf:ed:6f:bf:9a:8b:bc:45:b2:2a:05:cd: c2:ae:01:e7:da:5a:ff:6d:95:3f:9c:df:9b:d3:87:e0:48:76: e2:93:eb:7e:37:8f:1b:8c:00:22:29:1a:aa:ee:fc:40:84:63: 16:87:2c:06:d5:e7:74:d8:8c:0b:54:2f:24:15:9f:27:bd:3c: 0c:2c:47:39:8f:1e:d3:3c:a1:36:9a:b7:51:61:e0:97:6b:64: 5d:ff:37:a3:e1:9d:ca:18:d1:8c:1c:eb:13:a2:b9:95:8e:92: 62:1d:c5:5e:ba:33:76:8b:39:9b:8d:8a:92:05:c1:34:16:a5: 48:98:39:b7:b4:45:6d:26:d8:a7:63:e7:5f:78:5e:2a:1a:3f: ca:3f:0c:fa:cc:76:b8:f6:c7:a7:b5:19:05:fe:28:8b:d8:d8: d9:1a:ad:e9:87:cd:5e:25:43:35:56:72:f1:6e:19:ab:10:6b: 34:84:56:d4:dd:0f:70:5d:05:87:42:47:d9:1a:20:ba:3c:45: 18:d1:ef:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjMxMjIwMTk0NzIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNDRjOC1kNDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/uOZ8KKJLZgf63ANgJxWwsECZJacnjjOAihzs2E7wtC8et3hJ7M6+NGTb/o SPGvCsu2YL512uRCaLVoI9mbGlJNZtP+yOjM0Forts6BkZJ+f3zRNUvF7k8wkPWJ v18dmYPCm4Do+E4ntYhIsnLKPLqwGhvYQ40MPoxTmQpaF3/cbucZiIFFtOmz70ms n+LLOemeOrnAl2blmX+dowkad7cdC5U904HhHw/B4vpb1iM2iWyH9Mb1hVOB1UMa 18u598x5Uxq+DRu9JcrUAK3puDFYc5MjEcTRlppQAdmo68UlsJjmfvLDWR2sJRO7 XBEBpN7Z6zagnCwKsjYtKKdkTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBU/7YV2 oMYC7HmoZjRfvVbfsKVuMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJFODcvQTlGM0M2RUUxMjlGMTFFQUFCMjcyMDJGQzRGOUFFMDIvNTA0QzE3OUEz Q0RFMTFFQUI1NTM5OTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfPgwDQYJKoZIhvcNAQELBQADggEBADopb+ahOXUG1yYy 2PYrlG1xvZDH96nj7zhF10BNr7PAkkH1uqwHQokpMK8X0mhSh52cIH4KCnmTzo+g z8/tb7+ai7xFsioFzcKuAefaWv9tlT+c35vTh+BIduKT6343jxuMACIpGqru/ECE YxaHLAbV53TYjAtULyQVnye9PAwsRzmPHtM8oTaat1Fh4JdrZF3/N6PhncoY0Ywc 6xOiuZWOkmIdxV66M3aLOZuNipIFwTQWpUiYObe0RW0m2Kdj5194XioaP8o/DPrM drj2x6e1GQX+KIvY2NkaremHzV4lQzVWcvFuGasQazSEVtTdD3BdBYdCR9kaILo8 RRjR7xU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org