$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/55D339CA493411EF859C1D49C4F9AE02.roa File: 55D339CA493411EF859C1D49C4F9AE02.roa (raw, json) Hash identifier: kZY0gEYojacBpy6Flxbc6cWYiWfgAwQSMnYX8MagWhA= Subject key identifier: C7:33:57:2A:04:48:D4:3E:DC:46:11:17:42:9B:33:A9:53:12:05:3D Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 3416 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/55D339CA493411EF859C1D49C4F9AE02.roa Signing time: Sat 14 Sep 2024 15:00:37 +0000 ROA not before: Sat 14 Sep 2024 15:00:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135291 IP address blocks: 103.212.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13334 (0x3416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350 Validity Not Before: Sep 14 15:00:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e5a514-15c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:8b:5e:81:ef:d2:03:b0:28:d6:b6:00:d2: 29:45:e7:0c:79:01:8e:1e:b4:de:06:e2:0e:ac:37: 39:80:a6:8a:03:a9:b6:89:d0:3e:ac:2e:3a:d8:6f: 4a:33:9b:c2:95:33:3c:fa:36:cb:ae:42:c2:5f:87: 78:27:1e:0f:b6:c8:9d:23:d8:13:65:30:b8:01:e8: 7e:40:cf:8e:ca:6b:a8:e2:f8:51:98:77:f8:8e:ce: d4:d1:64:75:43:3a:b2:db:e9:c7:c5:2f:1f:61:9a: 6c:fa:13:b7:6f:46:4b:e3:5c:86:0d:5d:a8:29:9f: e7:d0:32:13:d2:04:12:aa:fb:b5:9f:ae:4b:68:3c: af:7c:de:10:a9:23:63:a9:85:eb:dc:87:05:a6:a5: 1b:06:b8:e0:00:97:a8:70:39:a7:3e:cb:4b:66:ff: bf:d3:1e:ef:c5:ab:fc:e0:94:c9:14:ef:02:cb:78: 3a:bf:08:11:96:bd:e4:7a:4d:93:4c:ea:6c:d2:14: c0:bf:3d:10:d9:06:ae:ed:8c:79:d0:f6:ce:0a:1b: 29:eb:8e:88:c9:77:d8:38:2d:9b:e5:b6:e3:b9:df: d0:bc:2c:64:f1:ff:39:52:48:30:9a:d6:9b:bf:cd: e6:9b:10:aa:88:6c:06:dc:c9:24:b5:98:56:f1:57: e7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:33:57:2A:04:48:D4:3E:DC:46:11:17:42:9B:33:A9:53:12:05:3D X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/55D339CA493411EF859C1D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.168.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:18:c8:72:61:5d:95:a4:28:21:6e:19:3a:14:63:60:4f:15: 7c:91:cb:f2:8d:ed:d6:5f:de:be:01:8e:09:38:23:9d:7a:5d: 80:f8:0b:f4:68:71:73:37:16:c7:41:1d:eb:c8:29:7b:4e:2a: f2:cf:42:c9:43:d7:35:49:d0:43:82:a1:ff:cd:9f:b3:93:03: e7:d1:93:7c:16:df:8c:b9:97:5b:4c:99:c2:58:68:fa:67:27: ff:6a:b2:a9:bc:a5:02:ef:48:71:ff:6b:97:9f:25:5a:68:85: 7e:a7:ec:b1:07:6f:88:9a:6d:a3:52:5f:1d:4f:1b:93:00:15: 52:9d:f3:a0:de:71:eb:5f:5c:ee:74:44:98:06:59:a1:4e:44: e1:0a:80:92:b4:a8:cf:64:d2:09:9b:f6:8d:13:6d:e3:fc:61: 8f:3a:d6:ba:fd:5e:9f:d1:4b:97:fa:89:1a:63:af:25:bd:a0: 6a:e8:e0:77:00:59:61:3d:c4:af:1e:b6:68:b4:79:a9:17:7d: 33:fc:e7:a7:8a:55:43:52:f0:ea:7a:ff:37:b8:03:37:75:12: c6:96:7a:0b:25:50:82:a1:94:bd:ea:1a:60:50:bf:e3:78:d5: f6:6c:de:d8:12:5b:fd:ab:10:a2:e8:23:58:75:bd:2a:78:c7: 55:cf:5d:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjQwOTE0MTUwMDM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU1YTUxNC0xNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6GLXoHv0gOwKNa2ANIpRecMeQGOHrTeBuIOrDc5gKaKA6m2idA+rC462G9K M5vClTM8+jbLrkLCX4d4Jx4PtsidI9gTZTC4Aeh+QM+Oymuo4vhRmHf4js7U0WR1 Qzqy2+nHxS8fYZps+hO3b0ZL41yGDV2oKZ/n0DIT0gQSqvu1n65LaDyvfN4QqSNj qYXr3IcFpqUbBrjgAJeocDmnPstLZv+/0x7vxav84JTJFO8Cy3g6vwgRlr3kek2T TOps0hTAvz0Q2Qau7Yx50PbOChsp646IyXfYOC2b5bbjud/QvCxk8f85Ukgwmtab v83mmxCqiGwG3MkktZhW8VfncwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMczVyoE SNQ+3EYRF0KbM6lTEgU9MB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvNTVEMzM5Q0E0 OTM0MTFFRjg1OUMxRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1KgwDQYJKoZIhvcNAQELBQADggEBAB8YyHJhXZWkKCFu GToUY2BPFXyRy/KN7dZf3r4Bjgk4I516XYD4C/RocXM3FsdBHevIKXtOKvLPQslD 1zVJ0EOCof/Nn7OTA+fRk3wW34y5l1tMmcJYaPpnJ/9qsqm8pQLvSHH/a5efJVpo hX6n7LEHb4iabaNSXx1PG5MAFVKd86DecetfXO50RJgGWaFOROEKgJK0qM9k0gmb 9o0TbeP8YY861rr9Xp/RS5f6iRpjryW9oGro4HcAWWE9xK8etmi0eakXfTP856eK VUNS8Op6/ze4Azd1EsaWegslUIKhlL3qGmBQv+N41fZs3tgSW/2rEKLoI1h1vSp4 x1XPXRE= -----END CERTIFICATE-----Generated at Sun Feb 16 20:52:07 2025 by rpki-client