$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/0BC9660CE3AC11EAAAC85761C4F9AE02.roa File: 0BC9660CE3AC11EAAAC85761C4F9AE02.roa (raw, json) Hash identifier: B/DuXQToKy4NJJ+8lbA6TjX/A2qM6LHM64/A3YRX7ts= Subject key identifier: F1:B3:8D:42:6E:A6:68:3F:B6:37:93:8C:B4:6E:C7:89:22:40:D4:B3 Certificate issuer: /CN=A91C9702/serialNumber=9E6376A5F2AA3E2C7FF552AFB8AF50DAC13D49B7 Certificate serial: 0736 Authority key identifier: 9E:63:76:A5:F2:AA:3E:2C:7F:F5:52:AF:B8:AF:50:DA:C1:3D:49:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/0BC9660CE3AC11EAAAC85761C4F9AE02.roa Signing time: Thu 02 May 2024 22:41:54 +0000 ROA not before: Thu 02 May 2024 22:41:54 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 200077 IP address blocks: 103.214.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.crl rsync://rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1846 (0x736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9702/serialNumber=9E6376A5F2AA3E2C7FF552AFB8AF50DAC13D49B7 Validity Not Before: May 2 22:41:54 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663416b2-bc86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3d:ba:b3:ba:c6:74:0b:bb:d4:82:a9:f5:40: c7:38:1e:41:1d:69:01:61:c6:58:3a:7a:86:16:c8: 35:43:d5:52:66:87:f0:16:d5:fd:58:c1:60:81:64: e1:24:d4:27:92:81:5a:1c:93:41:7e:c1:85:ce:4f: 32:68:3a:8e:24:ab:18:48:93:ac:bf:f0:98:5c:3a: c8:e4:3e:a9:31:2a:d3:de:6b:24:ff:b7:98:d7:b6: 50:53:37:18:82:7a:5e:8d:c8:03:3f:f9:61:5e:5a: cf:8d:28:bc:c4:b1:06:3b:8f:e5:f9:0e:ba:1b:d4: 97:24:20:73:99:6a:0e:44:97:8b:a7:3c:59:5d:41: d4:91:b7:6a:3f:b5:97:f9:33:15:30:78:6f:f4:b7: 78:6c:49:c2:62:6a:a9:7f:2c:dd:75:44:45:85:3e: 81:0e:94:15:49:f1:a1:7f:7c:fb:74:23:0e:2c:44: b7:ba:53:62:c0:fa:35:d5:61:13:71:69:12:14:51: a4:1c:da:97:89:94:03:b9:57:66:ea:6d:37:0f:c6: af:79:80:9e:99:e8:5a:0f:e4:ca:9a:2c:b6:77:0d: fc:90:6a:23:eb:12:8d:a1:ee:05:8f:95:ed:7b:46: e9:03:30:f8:0e:3d:8c:92:be:e4:75:8b:b7:ae:81: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B3:8D:42:6E:A6:68:3F:B6:37:93:8C:B4:6E:C7:89:22:40:D4:B3 X509v3 Authority Key Identifier: keyid:9E:63:76:A5:F2:AA:3E:2C:7F:F5:52:AF:B8:AF:50:DA:C1:3D:49:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmN2pfKqPix_9VKvuK9Q2sE9Sbc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9702/EF913D26E3AA11EA88F49560C4F9AE02/0BC9660CE3AC11EAAAC85761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.228.0/24 Signature Algorithm: sha256WithRSAEncryption 08:21:b2:db:a6:f6:32:58:21:34:a8:10:e7:a5:09:af:42:ec: bc:5d:ae:91:2a:01:04:1d:2b:ad:14:34:10:16:ee:a9:4f:66: b3:a4:3f:f4:a5:b9:06:a7:3c:71:28:8e:24:03:38:54:c2:9c: af:a6:fa:98:95:d2:15:75:c3:41:b4:a6:5e:e8:f9:6d:88:94: c9:91:49:15:52:86:77:6a:e7:5e:0d:ec:26:7f:b5:57:60:a3: 48:09:64:c2:18:02:7e:59:d0:9a:04:f0:54:a6:fe:f6:40:d4: 0e:cb:15:1f:5d:0a:21:cd:05:21:cc:c8:a6:79:7b:fe:fe:86: 21:c6:5a:a0:99:bb:23:66:0c:e3:00:6c:7a:7b:3a:08:10:27: 37:08:d9:bc:f7:6d:9d:af:db:55:80:6d:ce:6c:5d:9f:bd:3f: 31:fe:6e:d2:fd:36:67:71:4a:38:6c:04:b8:7a:17:c0:b9:73: 51:6a:bc:a6:62:06:b1:91:79:3b:73:06:6f:66:99:0e:5c:00: 80:be:76:a8:fa:63:5e:dd:84:61:ed:dc:52:c1:b1:c0:77:37: cd:7e:06:dd:47:2e:50:55:e7:04:2b:62:8c:c5:6f:52:ba:ce: 71:b2:4a:27:aa:b8:a2:72:74:b3:52:94:e0:ee:f4:db:c7:92: ac:a8:43:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk3MDIxMTAvBgNVBAUTKDlFNjM3NkE1RjJBQTNFMkM3RkY1NTJBRkI4QUY1MERB QzEzRDQ5QjcwHhcNMjQwNTAyMjI0MTU0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MTZiMi1iYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz26s7rGdAu71IKp9UDHOB5BHWkBYcZYOnqGFsg1Q9VSZofwFtX9WMFggWTh JNQnkoFaHJNBfsGFzk8yaDqOJKsYSJOsv/CYXDrI5D6pMSrT3msk/7eY17ZQUzcY gnpejcgDP/lhXlrPjSi8xLEGO4/l+Q66G9SXJCBzmWoORJeLpzxZXUHUkbdqP7WX +TMVMHhv9Ld4bEnCYmqpfyzddURFhT6BDpQVSfGhf3z7dCMOLES3ulNiwPo11WET cWkSFFGkHNqXiZQDuVdm6m03D8aveYCemehaD+TKmiy2dw38kGoj6xKNoe4Fj5Xt e0bpAzD4Dj2Mkr7kdYu3roFTpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPGzjUJu pmg/tjeTjLRux4kiQNSzMB8GA1UdIwQYMBaAFJ5jdqXyqj4sf/VSr7ivUNrBPUm3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTcwMi9FRjkxM0QyNkUz QUExMUVBODhGNDk1NjBDNEY5QUUwMi9ubU4ycGZLcVBpeF85Vkt2dUs5UTJzRTlT YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tTjJwZktxUGl4XzlWS3Z1SzlRMnNFOVNiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk3MDIvRUY5MTNEMjZFM0FBMTFFQTg4RjQ5NTYwQzRGOUFFMDIvMEJDOTY2MENF M0FDMTFFQUFBQzg1NzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1uQwDQYJKoZIhvcNAQELBQADggEBAAghstum9jJYITSo EOelCa9C7LxdrpEqAQQdK60UNBAW7qlPZrOkP/SluQanPHEojiQDOFTCnK+m+piV 0hV1w0G0pl7o+W2IlMmRSRVShndq514N7CZ/tVdgo0gJZMIYAn5Z0JoE8FSm/vZA 1A7LFR9dCiHNBSHMyKZ5e/7+hiHGWqCZuyNmDOMAbHp7OggQJzcI2bz3bZ2v21WA bc5sXZ+9PzH+btL9NmdxSjhsBLh6F8C5c1FqvKZiBrGReTtzBm9mmQ5cAIC+dqj6 Y17dhGHt3FLBscB3N81+Bt1HLlBV5wQrYozFb1K6znGySiequKJydLNSlODu9NvH kqyoQ3o= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org