$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/F84E14F6F7A411EC88E84259C4F9AE02.roa File: F84E14F6F7A411EC88E84259C4F9AE02.roa (raw, json) Hash identifier: P/auEJgutUVl8dFubgi2n2lxk6hlWtNvdq3SLvKI4fQ= Subject key identifier: 34:E7:50:80:7D:C1:07:48:93:9C:AF:0C:7D:5B:C2:02:7C:CB:BD:55 Certificate issuer: /CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953 Certificate serial: 0843 Authority key identifier: F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/F84E14F6F7A411EC88E84259C4F9AE02.roa Signing time: Sat 28 Sep 2024 20:40:19 +0000 ROA not before: Sat 28 Sep 2024 20:40:19 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9384 IP address blocks: 103.152.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/9h2bowrjVcgD-A3M8sQV3gB9eVM.crl rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/9h2bowrjVcgD-A3M8sQV3gB9eVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC510/serialNumber=F61D9BA30AE355C803F80DCCF2C415DE007D7953 Validity Not Before: Sep 28 20:40:19 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f869b2-2966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8e:c1:db:db:17:a0:4e:d2:11:37:a0:da:c1: 9d:02:75:6d:07:24:95:07:52:d2:84:2b:96:a7:a5: 08:b2:75:c3:6d:d9:a2:34:ad:ea:82:a7:d9:e0:e8: e0:3f:cd:0a:bd:ea:8b:d0:14:8f:44:e7:79:7d:4c: b0:70:55:7f:12:10:b0:27:99:15:37:a6:f7:d4:d7: 7f:c6:25:95:c3:e3:b5:9e:58:d5:6f:ca:d6:72:56: e0:43:16:2d:de:d5:0d:88:8e:9a:97:89:be:47:79: cd:37:46:86:65:90:d2:c3:29:6a:46:6d:72:5f:05: 0b:dc:1e:b0:39:3a:85:48:b6:2d:c2:08:c7:04:2c: 49:ed:db:da:eb:35:e7:fd:93:97:4b:df:04:7e:72: 5e:e6:3e:43:f0:bf:2a:35:1c:2f:21:f7:b3:88:39: be:7d:b1:a2:2c:54:ef:3c:26:37:a8:05:c4:27:b0: cd:47:8d:39:12:82:d8:fb:bf:42:dd:b2:9e:be:0c: 44:e9:d8:93:e6:6a:88:2c:62:d6:d2:2e:ef:d6:df: e6:81:28:42:2a:7d:04:90:1d:8b:8a:5c:90:be:3d: b3:fb:d5:9e:b1:b2:fb:88:7d:67:d4:13:0a:1f:63: 5c:fb:a0:6f:1f:18:d6:ff:b4:cf:ab:9c:3b:66:eb: 36:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E7:50:80:7D:C1:07:48:93:9C:AF:0C:7D:5B:C2:02:7C:CB:BD:55 X509v3 Authority Key Identifier: keyid:F6:1D:9B:A3:0A:E3:55:C8:03:F8:0D:CC:F2:C4:15:DE:00:7D:79:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/9h2bowrjVcgD-A3M8sQV3gB9eVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h2bowrjVcgD-A3M8sQV3gB9eVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC510/EC31E258BD1111EAB380A722C4F9AE02/F84E14F6F7A411EC88E84259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.227.0/24 Signature Algorithm: sha256WithRSAEncryption 14:cd:1e:21:e8:df:30:56:4d:9d:9d:cc:0b:54:c6:e3:b9:12: ce:3b:ab:a9:99:88:fc:a5:da:ef:0f:4e:63:3b:fe:cc:4f:b1: 42:64:4f:3f:3b:06:78:d6:0e:c1:eb:89:24:98:3c:e0:33:a1: 11:f2:bf:07:4d:f4:35:52:b9:7b:f0:e0:e5:99:04:cd:b5:49: 92:02:73:57:b8:e5:bc:f5:82:cd:c3:67:65:d1:64:eb:e9:4a: 4b:41:ea:f3:6d:d7:33:2f:80:a4:00:a1:d4:85:54:f5:85:dc: 45:22:5f:bb:06:26:fe:49:6d:9b:37:32:b9:6e:46:c6:0f:a4: 69:32:ac:82:28:d2:be:83:8f:52:f8:7d:da:ab:f6:68:34:f7: cd:14:39:90:2e:a6:f0:85:25:9b:a4:da:19:75:9e:61:07:03: c5:0e:e2:27:98:08:35:a2:1e:ec:d9:5f:a8:15:0a:4e:e3:58: b5:f3:c6:1b:83:27:e6:26:d1:bd:77:7d:d8:e3:04:59:43:bd: 4b:c8:85:aa:fd:45:e6:95:42:b3:63:58:39:e1:3f:9a:d2:9e: 67:aa:44:e5:86:12:70:80:fa:1e:b5:98:a4:e8:06:c8:43:c4: 3d:4f:76:23:3e:9d:b1:6e:9e:53:af:ab:7e:ef:79:5a:62:de: 7a:3d:86:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1MTAxMTAvBgNVBAUTKEY2MUQ5QkEzMEFFMzU1QzgwM0Y4MERDQ0YyQzQxNURF MDA3RDc5NTMwHhcNMjQwOTI4MjA0MDE5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4NjliMi0yOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA147B29sXoE7SETeg2sGdAnVtBySVB1LShCuWp6UIsnXDbdmiNK3qgqfZ4Ojg P80KveqL0BSPROd5fUywcFV/EhCwJ5kVN6b31Nd/xiWVw+O1nljVb8rWclbgQxYt 3tUNiI6al4m+R3nNN0aGZZDSwylqRm1yXwUL3B6wOTqFSLYtwgjHBCxJ7dva6zXn /ZOXS98EfnJe5j5D8L8qNRwvIfeziDm+fbGiLFTvPCY3qAXEJ7DNR405EoLY+79C 3bKevgxE6diT5mqILGLW0i7v1t/mgShCKn0EkB2LilyQvj2z+9WesbL7iH1n1BMK H2Nc+6BvHxjW/7TPq5w7Zus2DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDTnUIB9 wQdIk5yvDH1bwgJ8y71VMB8GA1UdIwQYMBaAFPYdm6MK41XIA/gNzPLEFd4AfXlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzUxMC9FQzMxRTI1OEJE MTExMUVBQjM4MEE3MjJDNEY5QUUwMi85aDJib3dyalZjZ0QtQTNNOHNRVjNnQjll Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzloMmJvd3JqVmNnRC1BM004c1FWM2dCOWVWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1MTAvRUMzMUUyNThCRDExMTFFQUIzODBBNzIyQzRGOUFFMDIvRjg0RTE0RjZG N0E0MTFFQzg4RTg0MjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmOMwDQYJKoZIhvcNAQELBQADggEBABTNHiHo3zBWTZ2d zAtUxuO5Es47q6mZiPyl2u8PTmM7/sxPsUJkTz87BnjWDsHriSSYPOAzoRHyvwdN 9DVSuXvw4OWZBM21SZICc1e45bz1gs3DZ2XRZOvpSktB6vNt1zMvgKQAodSFVPWF 3EUiX7sGJv5JbZs3MrluRsYPpGkyrIIo0r6Dj1L4fdqr9mg0980UOZAupvCFJZuk 2hl1nmEHA8UO4ieYCDWiHuzZX6gVCk7jWLXzxhuDJ+Ym0b13fdjjBFlDvUvIhar9 ReaVQrNjWDnhP5rSnmeqROWGEnCA+h61mKToBshDxD1PdiM+nbFunlOvq37veVpi 3no9hgA= -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:02 2024 by rpki-client on console-ams.rpki-client.org