$ rpki-client -vvf rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa File: 8446564EF96611E8BE431B17C4F9AE02.roa (raw, json) Hash identifier: M4Uy68TNp94xFF+NcUEXpxwPGkJfanh0Twj3I7FRSFI= Subject key identifier: 57:C1:91:FD:E8:A7:76:23:EF:C5:07:C0:1F:A6:81:62:61:D9:73:BC Certificate issuer: /CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Certificate serial: 10F5 Authority key identifier: C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa Signing time: Mon 08 Jul 2024 17:54:59 +0000 ROA not before: Mon 08 Jul 2024 17:54:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 38303 IP address blocks: 103.114.174.0/23 maxlen: 23 103.114.174.0/24 maxlen: 24 103.114.175.0/24 maxlen: 24 103.219.114.0/23 maxlen: 23 103.219.114.0/24 maxlen: 24 103.219.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4341 (0x10f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C85E9/serialNumber=C7CF943E3A764F37C003CD435A2B8543BCE47609 Validity Not Before: Jul 8 17:54:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668c27f3-5c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:65:e4:76:63:56:d3:4c:bd:e5:ca:4b:c1:aa: 32:6b:25:14:61:f0:59:4d:f8:8c:9e:8d:09:13:48: 6f:a0:e6:c9:a6:de:de:ce:c0:ce:4c:02:9c:74:04: 58:c6:c7:c5:88:03:ba:35:54:3e:7b:73:f0:90:30: fb:3e:71:74:ac:0e:bf:b5:bd:df:ed:80:d0:ed:04: dc:c8:94:66:3d:0e:81:38:05:3f:ef:53:30:62:69: 74:1c:5b:f3:b3:2a:42:8b:ee:d5:6f:e6:6c:34:b8: df:e6:b2:d1:3c:9c:20:03:c6:74:f2:af:1a:38:9a: 5b:a9:d5:d5:40:a4:c4:60:4f:2a:8e:a9:75:4f:51: 4a:2e:d8:5b:2e:3f:36:3e:16:de:5a:2d:af:db:67: c4:89:10:81:b7:24:aa:59:d2:a5:5e:ed:cb:1e:00: d4:ee:31:74:56:15:8d:65:75:a0:63:97:f8:82:a7: e2:31:fe:15:7a:1a:df:6f:62:21:e4:32:f1:03:6d: b5:02:1d:9b:b7:ed:d5:e8:07:9d:02:8a:8b:08:9d: 91:f4:57:7b:c2:e7:3d:ea:98:e2:d3:a5:64:33:1d: 3f:61:9d:f7:b4:d7:58:dd:7f:bc:ea:3c:0f:64:c5: 01:65:8d:88:ff:61:f7:51:f0:4e:38:f5:84:b4:20: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C1:91:FD:E8:A7:76:23:EF:C5:07:C0:1F:A6:81:62:61:D9:73:BC X509v3 Authority Key Identifier: keyid:C7:CF:94:3E:3A:76:4F:37:C0:03:CD:43:5A:2B:85:43:BC:E4:76:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/x8-UPjp2TzfAA81DWiuFQ7zkdgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8-UPjp2TzfAA81DWiuFQ7zkdgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C85E9/082538ECF96511E8BC052411C4F9AE02/8446564EF96611E8BE431B17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.174.0/23 103.219.114.0/23 Signature Algorithm: sha256WithRSAEncryption a2:78:89:c0:53:a7:61:3f:72:1e:fd:de:28:05:76:7c:c3:59: 2a:d6:6d:d8:50:e3:60:31:1f:2a:30:fe:59:fc:0c:ef:22:a5: ee:ed:ae:79:1b:10:8e:bf:a5:f9:07:7a:44:62:a5:96:e9:09: 4a:b4:f8:c2:58:96:60:92:2d:b2:69:06:6e:ad:c9:61:a0:c3: 16:88:0b:66:62:a3:35:0d:c6:48:ec:0d:06:44:6b:35:d2:ff: 96:2c:b9:7c:aa:57:c4:82:70:49:18:a7:35:b2:de:cc:33:44: 5f:8c:82:fb:13:b7:a9:91:c4:0e:12:f8:e2:aa:e0:1f:57:e9: 16:b7:6a:d3:fa:83:9f:bd:1b:a3:5d:8a:96:70:7a:4e:18:38: 5d:69:94:9c:da:c2:6a:3f:ae:79:9e:58:9a:41:3b:f4:c7:3d: c1:8f:4d:2d:d0:1d:4a:92:d0:7e:07:4b:5d:78:e4:56:6f:62: 7e:96:e0:73:e4:55:09:bd:d2:bf:ac:22:f5:0d:65:13:0e:76: 82:e5:ac:8d:cd:0c:02:cd:85:18:26:7b:cc:0c:3f:5b:cc:55: 4a:91:10:3d:b9:c7:e0:65:61:00:44:3b:94:7d:51:20:4f:8b: 31:99:44:02:cc:3e:25:09:bf:7f:65:7b:94:47:08:b7:84:01: 7c:a7:9d:79 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1RTkxMTAvBgNVBAUTKEM3Q0Y5NDNFM0E3NjRGMzdDMDAzQ0Q0MzVBMkI4NTQz QkNFNDc2MDkwHhcNMjQwNzA4MTc1NDU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjMjdmMy01YzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGXkdmNW00y95cpLwaoyayUUYfBZTfiMno0JE0hvoObJpt7ezsDOTAKcdARY xsfFiAO6NVQ+e3PwkDD7PnF0rA6/tb3f7YDQ7QTcyJRmPQ6BOAU/71MwYml0HFvz sypCi+7Vb+ZsNLjf5rLRPJwgA8Z08q8aOJpbqdXVQKTEYE8qjql1T1FKLthbLj82 PhbeWi2v22fEiRCBtySqWdKlXu3LHgDU7jF0VhWNZXWgY5f4gqfiMf4Vehrfb2Ih 5DLxA221Ah2bt+3V6AedAoqLCJ2R9Fd7wuc96pji06VkMx0/YZ33tNdY3X+86jwP ZMUBZY2I/2H3UfBOOPWEtCDEGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFfBkf3o p3Yj78UHwB+mgWJh2XO8MB8GA1UdIwQYMBaAFMfPlD46dk83wAPNQ1orhUO85HYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODVFOS8wODI1MzhFQ0Y5 NjUxMUU4QkMwNTI0MTFDNEY5QUUwMi94OC1VUGpwMlR6ZkFBODFEV2l1RlE3emtk Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g4LVVQanAyVHpmQUE4MURXaXVGUTd6a2Rnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1RTkvMDgyNTM4RUNGOTY1MTFFOEJDMDUyNDExQzRGOUFFMDIvODQ0NjU2NEVG OTY2MTFFOEJFNDMxQjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFncq4DBAFn23IwDQYJKoZIhvcNAQELBQADggEBAKJ4icBT p2E/ch793igFdnzDWSrWbdhQ42AxHyow/ln8DO8ipe7trnkbEI6/pfkHekRipZbp CUq0+MJYlmCSLbJpBm6tyWGgwxaIC2ZiozUNxkjsDQZEazXS/5YsuXyqV8SCcEkY pzWy3swzRF+MgvsTt6mRxA4S+OKq4B9X6Ra3atP6g5+9G6NdipZwek4YOF1plJza wmo/rnmeWJpBO/THPcGPTS3QHUqS0H4HS1145FZvYn6W4HPkVQm90r+sIvUNZRMO doLlrI3NDALNhRgme8wMP1vMVUqRED25x+BlYQBEO5R9USBPizGZRALMPiUJv39l e5RHCLeEAXynnXk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org