$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/0CE58260355D11EC96291331C4F9AE02.roa File: 0CE58260355D11EC96291331C4F9AE02.roa (raw, json) Hash identifier: fY0jZ+fjDvyJatv+//KtopLNXgNgnHXGLgwTeyK1ivE= Subject key identifier: 24:D6:A0:58:EF:C6:B1:7C:11:F4:99:92:CD:F1:E7:6A:A0:31:B5:51 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 0627 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/0CE58260355D11EC96291331C4F9AE02.roa Signing time: Tue 16 Jan 2024 23:21:27 +0000 ROA not before: Tue 16 Jan 2024 23:21:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.106.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Jan 16 23:21:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a70f77-c4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:c7:a5:fc:e8:b6:25:2e:ab:87:3f:7d:52: d4:67:8e:5c:a2:d5:29:41:f9:38:e6:30:d1:b3:21: 16:b9:0f:d0:f0:fa:82:7b:45:a3:8f:84:06:20:30: 24:61:21:54:8e:af:3f:84:47:52:03:30:f7:98:fa: 11:df:00:7a:29:0f:d8:c3:42:71:f8:61:df:d4:80: cb:33:ef:dc:08:28:39:58:d3:93:b9:bb:ee:8e:d9: b5:e3:d4:d1:31:67:e5:b3:1c:8f:14:0b:77:30:14: 71:af:0d:1e:22:be:1a:55:d2:08:62:6a:0e:65:f2: 13:07:a8:cf:0f:4e:57:a7:8d:11:c6:9c:2e:50:b2: db:d8:76:38:4f:cc:93:d9:97:51:5a:b1:8e:26:90: cf:7c:73:52:31:77:3f:a4:d1:71:c8:8d:4c:4e:fd: ac:f2:f3:f5:e7:17:7a:29:05:78:85:9c:fd:96:f7: e7:f8:dd:26:37:46:0e:1e:49:42:f1:d9:72:60:b5: 12:a0:b1:82:c8:21:dc:2f:b0:cf:02:63:45:87:cb: a8:76:d9:df:a5:97:06:8a:87:45:8a:6c:42:09:ad: 07:d1:cf:ca:65:ac:2e:3b:bc:04:ed:e6:13:cf:ca: 4b:e7:88:bf:34:c7:7c:6b:59:eb:b6:82:0d:a2:09: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:D6:A0:58:EF:C6:B1:7C:11:F4:99:92:CD:F1:E7:6A:A0:31:B5:51 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/0CE58260355D11EC96291331C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.166.0/23 Signature Algorithm: sha256WithRSAEncryption b8:66:10:0b:9e:7f:3c:3e:9e:19:2f:03:94:83:49:3e:43:e9: 9b:f6:d5:c0:dd:79:0c:a1:77:3d:8f:5b:f6:8d:dd:f2:f3:81: 56:18:9b:3a:a5:a3:b4:45:04:c6:c0:35:9f:f9:41:b9:b4:19: 6d:e7:0c:e3:b3:a2:48:6f:e1:77:76:be:80:62:dd:76:54:cb: 69:ce:c2:1a:ef:37:6e:0d:d2:f4:27:39:72:3d:43:81:fb:2a: f2:38:0a:f2:2d:ae:b3:16:c0:b0:69:62:5c:f9:54:01:01:fd: 85:b6:f0:2e:63:88:9f:66:13:f9:f3:3b:99:86:3f:78:fe:a4: fd:a2:94:dc:84:30:19:a2:78:b6:3f:bf:78:93:38:35:60:28: ab:87:25:c8:8d:34:6d:20:4b:84:4f:c9:bc:10:c9:94:23:43: 2a:b3:7a:e0:5e:f9:a2:0a:9d:66:4c:00:b3:5e:72:99:19:02: cc:b3:68:80:f5:af:34:c9:04:c9:b6:85:e9:1f:8e:7a:b9:8f: 71:46:7b:2c:be:d2:21:32:66:bb:9d:d5:d4:89:c9:5e:a9:a6: a7:3a:93:00:13:ab:31:e1:53:9d:8a:34:0a:11:39:b5:dc:59: bf:c7:8d:ed:dd:1e:d1:18:85:7b:96:c7:0a:aa:3b:72:55:9e: 9f:09:a4:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjQwMTE2MjMyMTI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MGY3Ny1jNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZDHpfzotiUuq4c/fVLUZ45cotUpQfk45jDRsyEWuQ/Q8PqCe0Wjj4QGIDAk YSFUjq8/hEdSAzD3mPoR3wB6KQ/Yw0Jx+GHf1IDLM+/cCCg5WNOTubvujtm149TR MWflsxyPFAt3MBRxrw0eIr4aVdIIYmoOZfITB6jPD05Xp40RxpwuULLb2HY4T8yT 2ZdRWrGOJpDPfHNSMXc/pNFxyI1MTv2s8vP15xd6KQV4hZz9lvfn+N0mN0YOHklC 8dlyYLUSoLGCyCHcL7DPAmNFh8uodtnfpZcGiodFimxCCa0H0c/KZawuO7wE7eYT z8pL54i/NMd8a1nrtoINogkTjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCTWoFjv xrF8EfSZks3x52qgMbVRMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzUwMjEvOUFGRDQ4NkMzQkJDMTFFQkE3NzZGMTYxQzRGOUFFMDIvMENFNTgyNjAz NTVEMTFFQzk2MjkxMzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnaqYwDQYJKoZIhvcNAQELBQADggEBALhmEAuefzw+nhkv A5SDST5D6Zv21cDdeQyhdz2PW/aN3fLzgVYYmzqlo7RFBMbANZ/5Qbm0GW3nDOOz okhv4Xd2voBi3XZUy2nOwhrvN24N0vQnOXI9Q4H7KvI4CvItrrMWwLBpYlz5VAEB /YW28C5jiJ9mE/nzO5mGP3j+pP2ilNyEMBmieLY/v3iTODVgKKuHJciNNG0gS4RP ybwQyZQjQyqzeuBe+aIKnWZMALNecpkZAsyzaID1rzTJBMm2hekfjnq5j3FGeyy+ 0iEyZrud1dSJyV6ppqc6kwATqzHhU52KNAoRObXcWb/Hje3dHtEYhXuWxwqqO3JV np8JpGU= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org