$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/B9F821D4462D11EC93DFE63CC4F9AE02.roa File: B9F821D4462D11EC93DFE63CC4F9AE02.roa (raw, json) Hash identifier: pWdQ4IizlHGhv4v0y1WN27GZONYdZqMGn3TElsSXsH0= Subject key identifier: 40:2B:39:80:EF:26:D0:E5:E6:83:AA:5C:52:1C:AB:6E:75:EA:E4:20 Certificate issuer: /CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Certificate serial: 107F Authority key identifier: CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/B9F821D4462D11EC93DFE63CC4F9AE02.roa Signing time: Fri 16 Feb 2024 18:06:16 +0000 ROA not before: Fri 16 Feb 2024 18:06:16 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 63889 IP address blocks: 103.127.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4223 (0x107f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4FB5/serialNumber=CAFA20A9018095D229F0AC43920DCD43A66BEB52 Validity Not Before: Feb 16 18:06:16 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cfa418-6d42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cd:0e:9d:ea:73:8c:88:9f:c4:99:93:aa:82: 30:50:21:e4:da:e3:0b:fb:22:ad:df:e9:b6:41:5b: 5c:47:2c:59:01:b3:3b:dd:be:d8:36:90:2c:af:f8: 9b:b4:93:6f:91:8a:eb:9c:1e:e3:eb:c8:bb:3e:5c: 63:a2:3d:cd:60:4a:57:cd:09:b9:3f:64:68:f1:b6: 20:e9:fa:54:8f:1a:a1:2f:6e:b5:6f:b7:f9:d6:40: 37:1e:5f:a1:55:a4:97:6e:1a:01:b7:17:38:5d:28: d0:14:8e:bc:8b:87:7e:ed:34:f7:ef:ca:a1:5b:e8: 90:6b:42:63:95:3d:19:00:9f:8f:a4:e4:f1:b1:ea: fe:9c:42:4b:b1:c9:2a:96:2f:f1:1e:77:75:d9:95: dd:5f:ff:4c:31:b2:e0:52:a6:52:c4:38:c0:9c:af: ce:2c:f0:64:da:1f:ae:5e:2f:21:ac:db:93:b1:a4: c5:49:0d:f0:ca:b4:a3:3f:a2:07:86:69:78:05:7d: 92:ab:7a:02:83:dc:87:11:e0:13:fc:8e:fd:11:83: 2f:dd:d2:5b:fa:bc:db:1a:76:26:4a:c1:9d:cd:95: 5d:de:b0:04:fe:54:30:06:b2:83:a6:4b:d6:55:69: 12:6c:c3:22:60:4c:1e:a5:c6:08:91:5e:d9:b6:6c: fd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:2B:39:80:EF:26:D0:E5:E6:83:AA:5C:52:1C:AB:6E:75:EA:E4:20 X509v3 Authority Key Identifier: keyid:CA:FA:20:A9:01:80:95:D2:29:F0:AC:43:92:0D:CD:43:A6:6B:EB:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/yvogqQGAldIp8KxDkg3NQ6Zr61I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yvogqQGAldIp8KxDkg3NQ6Zr61I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4FB5/EF987EE209D111E995607B52C4F9AE02/B9F821D4462D11EC93DFE63CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.248.0/22 Signature Algorithm: sha256WithRSAEncryption 35:a2:dd:1e:a1:c1:9e:34:8b:71:a6:88:19:3b:22:d9:b7:69: c3:8b:16:ad:c8:04:41:39:26:48:d7:01:58:d0:0d:9a:a2:26: 30:53:8e:ce:72:05:59:6b:5d:c1:20:a1:95:17:06:da:b5:9e: c7:d2:13:45:40:ad:0f:44:1e:ba:f7:ff:ce:8a:f7:0a:8f:60: 34:7c:d6:bd:85:cd:ad:27:9a:5b:93:47:3c:5b:3c:d7:ce:f3: d7:9d:a3:14:45:9a:05:0d:e0:3d:ab:7a:42:da:61:98:c5:05: 1e:2b:14:2a:b8:18:bf:0a:86:23:46:2c:1f:ea:23:2d:a9:a2: 9a:c1:bc:50:91:d0:fe:06:90:65:a2:5a:1a:d0:fd:c1:99:66: ff:dc:32:f1:08:69:a3:70:3d:a0:21:ac:64:5d:a7:7b:f2:a6: 9f:74:4c:f6:05:ec:33:81:4a:3d:ba:51:9a:11:f8:10:8a:92: 34:b6:18:8a:5c:c4:62:0a:f8:b2:40:99:ba:ec:e7:1a:70:16: 1e:10:c8:d3:20:b9:62:d9:1c:4e:e7:3d:df:a0:ad:dd:78:6e: ca:dc:2f:4b:c8:af:e6:89:3a:3a:c6:23:e0:18:95:9f:e4:dd: a0:eb:bd:83:ec:9e:5a:75:39:21:a7:57:54:7b:be:6c:b7:93: de:08:19:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGQjUxMTAvBgNVBAUTKENBRkEyMEE5MDE4MDk1RDIyOUYwQUM0MzkyMERDRDQz QTY2QkVCNTIwHhcNMjQwMjE2MTgwNjE2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmYTQxOC02ZDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyM0OnepzjIifxJmTqoIwUCHk2uML+yKt3+m2QVtcRyxZAbM73b7YNpAsr/ib tJNvkYrrnB7j68i7Plxjoj3NYEpXzQm5P2Ro8bYg6fpUjxqhL261b7f51kA3Hl+h VaSXbhoBtxc4XSjQFI68i4d+7TT378qhW+iQa0JjlT0ZAJ+PpOTxser+nEJLsckq li/xHnd12ZXdX/9MMbLgUqZSxDjAnK/OLPBk2h+uXi8hrNuTsaTFSQ3wyrSjP6IH hml4BX2Sq3oCg9yHEeAT/I79EYMv3dJb+rzbGnYmSsGdzZVd3rAE/lQwBrKDpkvW VWkSbMMiYEwepcYIkV7Ztmz9owIDAQABo4IClTCCApEwHQYDVR0OBBYEFEArOYDv JtDl5oOqXFIcq2516uQgMB8GA1UdIwQYMBaAFMr6IKkBgJXSKfCsQ5INzUOma+tS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEZCNS9FRjk4N0VFMjA5 RDExMUU5OTU2MDdCNTJDNEY5QUUwMi95dm9ncVFHQWxkSXA4S3hEa2czTlE2WnI2 MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l2b2dxUUdBbGRJcDhLeERrZzNOUTZacjYxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGQjUvRUY5ODdFRTIwOUQxMTFFOTk1NjA3QjUyQzRGOUFFMDIvQjlGODIxRDQ0 NjJEMTFFQzkzREZFNjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnf/gwDQYJKoZIhvcNAQELBQADggEBADWi3R6hwZ40i3Gm iBk7Itm3acOLFq3IBEE5JkjXAVjQDZqiJjBTjs5yBVlrXcEgoZUXBtq1nsfSE0VA rQ9EHrr3/86K9wqPYDR81r2Fza0nmluTRzxbPNfO89edoxRFmgUN4D2rekLaYZjF BR4rFCq4GL8KhiNGLB/qIy2poprBvFCR0P4GkGWiWhrQ/cGZZv/cMvEIaaNwPaAh rGRdp3vypp90TPYF7DOBSj26UZoR+BCKkjS2GIpcxGIK+LJAmbrs5xpwFh4QyNMg uWLZHE7nPd+grd14bsrcL0vIr+aJOjrGI+AYlZ/k3aDrvYPsnlp1OSGnV1R7vmy3 k94IGeA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org