$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/E14490BE9C9511ED8014F84CC4F9AE02.roa File: E14490BE9C9511ED8014F84CC4F9AE02.roa (raw, json) Hash identifier: yIhHBUsSlf0ICdfFTknapFp3nWFmuwzWUa+01ysRpJs= Subject key identifier: C0:72:FC:3E:64:80:45:F3:4D:C4:19:F7:96:C0:A0:BB:E9:64:C9:B1 Certificate issuer: /CN=A91C9670/serialNumber=F766DE5ECBCA7967052B96DB6F1782BD8FDA6D74 Certificate serial: 04C5 Authority key identifier: F7:66:DE:5E:CB:CA:79:67:05:2B:96:DB:6F:17:82:BD:8F:DA:6D:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92beXsvKeWcFK5bbbxeCvY_abXQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/E14490BE9C9511ED8014F84CC4F9AE02.roa Signing time: Sat 31 Aug 2024 01:34:24 +0000 ROA not before: Sat 31 Aug 2024 01:34:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135098 IP address blocks: 103.170.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/92beXsvKeWcFK5bbbxeCvY_abXQ.crl rsync://rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/92beXsvKeWcFK5bbbxeCvY_abXQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92beXsvKeWcFK5bbbxeCvY_abXQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9670/serialNumber=F766DE5ECBCA7967052B96DB6F1782BD8FDA6D74 Validity Not Before: Aug 31 01:34:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d27320-0c78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:53:72:7b:2e:2f:82:45:28:96:f7:13:a4:7a: 12:e1:6a:0a:9e:ef:bf:94:03:4a:ad:14:4c:5c:d3: 0b:a6:06:87:01:eb:09:32:3e:39:35:81:c6:01:0d: c7:02:86:b9:85:fa:ec:82:21:e5:fb:82:fa:3e:7b: 38:af:69:ea:48:32:24:44:66:3b:75:97:cb:9b:0b: b9:ce:ba:21:18:38:2e:2d:a4:d7:e2:3a:d8:dc:df: 79:33:7c:77:95:87:0d:90:05:21:ac:73:3d:58:40: 02:d3:0f:6a:99:0a:17:87:ff:86:87:f9:eb:09:9f: 5a:3b:26:8c:99:31:e3:4b:86:99:5e:0a:06:1d:32: 86:b3:f5:9a:88:4d:82:b5:eb:a6:8a:ae:39:9e:5a: ae:74:84:65:de:23:7f:15:df:21:68:23:86:08:5e: 5d:f1:0c:c1:be:9c:b8:27:7a:37:27:75:ca:8e:a8: 40:e7:15:7b:ac:2f:8b:d2:38:84:df:35:6e:4d:09: 7b:e6:a5:d1:e6:6b:e1:e6:09:7c:e3:49:df:92:d8: 08:ae:46:bd:77:a2:0f:4f:1d:df:45:23:60:28:8c: 31:81:f7:40:9e:c1:80:58:28:2b:34:8c:c6:6a:e2: 2c:df:cc:38:94:ca:0b:fe:6a:c8:2c:dd:ce:82:4b: 1b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:72:FC:3E:64:80:45:F3:4D:C4:19:F7:96:C0:A0:BB:E9:64:C9:B1 X509v3 Authority Key Identifier: keyid:F7:66:DE:5E:CB:CA:79:67:05:2B:96:DB:6F:17:82:BD:8F:DA:6D:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/92beXsvKeWcFK5bbbxeCvY_abXQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92beXsvKeWcFK5bbbxeCvY_abXQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9670/5940489CF38711EB872C012BC4F9AE02/E14490BE9C9511ED8014F84CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.184.0/24 Signature Algorithm: sha256WithRSAEncryption 97:a0:e3:97:40:e1:2f:53:62:35:90:06:4d:d0:fe:ad:58:67: 57:a7:47:02:37:36:1a:be:25:cf:d8:83:ea:84:0c:34:56:e6: 29:cd:d3:c4:1a:da:80:b3:25:3c:73:61:08:bb:98:41:3a:a3: 1e:fe:99:54:58:eb:6c:d2:2e:43:9d:20:a0:d2:a1:c9:86:25: 9a:9a:43:9f:8c:b1:29:78:c5:92:76:b9:99:7a:52:86:c4:3f: 52:7e:3c:5e:56:68:72:c2:aa:54:57:de:17:e0:85:e1:be:f6: 1b:fa:f0:ad:1c:af:75:9f:45:c3:fa:03:58:d4:a4:66:31:3b: a1:c7:3c:b7:98:4f:0f:5d:5e:76:81:57:a5:f6:dc:f2:00:b8: f7:8e:c8:2b:33:c7:6d:6c:c3:dc:14:2d:d7:27:05:7a:74:2e: 9f:80:d4:5f:46:52:9f:95:c1:28:8b:1d:3f:1c:9d:73:c2:92: 39:c9:e6:f1:b3:0f:14:35:fd:ef:80:67:3c:8d:df:86:a2:fd: 8d:d5:69:07:cf:09:bc:8b:5e:96:e0:f8:3a:1d:d1:90:e0:dc: 96:4b:80:54:c7:29:81:dd:8c:e1:58:7b:ea:05:ea:e5:6e:05: 67:4e:b9:c1:79:ef:de:12:6b:a1:9d:e2:35:b3:a6:cf:00:ad: db:f8:34:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2NzAxMTAvBgNVBAUTKEY3NjZERTVFQ0JDQTc5NjcwNTJCOTZEQjZGMTc4MkJE OEZEQTZENzQwHhcNMjQwODMxMDEzNDI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNzMyMC0wYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11Nyey4vgkUolvcTpHoS4WoKnu+/lANKrRRMXNMLpgaHAesJMj45NYHGAQ3H Aoa5hfrsgiHl+4L6Pns4r2nqSDIkRGY7dZfLmwu5zrohGDguLaTX4jrY3N95M3x3 lYcNkAUhrHM9WEAC0w9qmQoXh/+Gh/nrCZ9aOyaMmTHjS4aZXgoGHTKGs/WaiE2C teumiq45nlqudIRl3iN/Fd8haCOGCF5d8QzBvpy4J3o3J3XKjqhA5xV7rC+L0jiE 3zVuTQl75qXR5mvh5gl840nfktgIrka9d6IPTx3fRSNgKIwxgfdAnsGAWCgrNIzG auIs38w4lMoL/mrILN3OgksbOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMBy/D5k gEXzTcQZ95bAoLvpZMmxMB8GA1UdIwQYMBaAFPdm3l7LynlnBSuW228Xgr2P2m10 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTY3MC81OTQwNDg5Q0Yz ODcxMUVCODcyQzAxMkJDNEY5QUUwMi85MmJlWHN2S2VXY0ZLNWJiYnhlQ3ZZX2Fi WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkyYmVYc3ZLZVdjRks1YmJieGVDdllfYWJYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2NzAvNTk0MDQ4OUNGMzg3MTFFQjg3MkMwMTJCQzRGOUFFMDIvRTE0NDkwQkU5 Qzk1MTFFRDgwMTRGODRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqrgwDQYJKoZIhvcNAQELBQADggEBAJeg45dA4S9TYjWQ Bk3Q/q1YZ1enRwI3Nhq+Jc/Yg+qEDDRW5inN08Qa2oCzJTxzYQi7mEE6ox7+mVRY 62zSLkOdIKDSocmGJZqaQ5+MsSl4xZJ2uZl6UobEP1J+PF5WaHLCqlRX3hfgheG+ 9hv68K0cr3WfRcP6A1jUpGYxO6HHPLeYTw9dXnaBV6X23PIAuPeOyCszx21sw9wU LdcnBXp0Lp+A1F9GUp+VwSiLHT8cnXPCkjnJ5vGzDxQ1/e+AZzyN34ai/Y3VaQfP CbyLXpbg+Dod0ZDg3JZLgFTHKYHdjOFYe+oF6uVuBWdOucF5794Sa6Gd4jWzps8A rdv4NEQ= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org