$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/F585ED70EBB511ECA410BF6DC4F9AE02.roa File: F585ED70EBB511ECA410BF6DC4F9AE02.roa (raw, json) Hash identifier: nnSO9venyDAAa+6GPmHgyrg3uKMxgPIF3inlZFGwpdY= Subject key identifier: 03:F4:F9:39:CE:61:F8:21:A0:3B:EA:B7:1C:12:4E:AB:0D:99:29:05 Certificate issuer: /CN=A91CE1E6/serialNumber=DABC78FC14F30CB872EC00ED6A4FF476D94CB278 Certificate serial: 01EC Authority key identifier: DA:BC:78:FC:14:F3:0C:B8:72:EC:00:ED:6A:4F:F4:76:D9:4C:B2:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rx4_BTzDLhy7ADtak_0dtlMsng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/F585ED70EBB511ECA410BF6DC4F9AE02.roa Signing time: Sat 09 Mar 2024 03:55:43 +0000 ROA not before: Sat 09 Mar 2024 03:55:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135082 IP address blocks: 103.208.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/2rx4_BTzDLhy7ADtak_0dtlMsng.crl rsync://rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/2rx4_BTzDLhy7ADtak_0dtlMsng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rx4_BTzDLhy7ADtak_0dtlMsng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 492 (0x1ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE1E6/serialNumber=DABC78FC14F30CB872EC00ED6A4FF476D94CB278 Validity Not Before: Mar 9 03:55:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65ebddbf-d3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a8:3b:28:25:95:b7:e8:f4:43:91:74:76:93: 70:e3:cb:2e:a4:53:b1:e3:39:34:15:78:8b:fb:11: 84:85:e3:bf:3b:09:22:d5:78:c6:56:a7:ae:c9:38: 5b:b6:25:28:46:bf:53:04:78:2f:0f:52:71:b9:96: 50:6a:60:e7:e9:e4:45:44:95:36:75:60:e0:4a:73: 2e:bf:0a:df:a8:ee:82:25:9a:d6:99:26:87:d1:e3: b6:37:63:f0:4c:61:ce:99:28:54:0a:e3:05:f7:7e: 0e:07:15:f7:48:5c:9d:f2:b0:fd:cb:cf:91:b1:b0: 45:00:7a:bc:51:35:e3:9a:1a:c5:5c:ca:04:66:65: 1a:df:55:e6:00:9d:0f:71:2a:b0:1f:09:3d:e0:92: d7:4e:ad:fe:d9:56:75:7c:7d:37:2f:5b:3f:2e:14: 09:1a:ab:24:ac:e5:97:df:20:da:a8:0d:0e:05:99: e4:19:d5:09:60:f0:83:94:ba:c2:55:6f:41:87:fc: 3c:4e:bf:f2:78:30:76:7c:51:e5:f7:d8:b2:80:05: b4:ee:fd:2b:d3:ab:af:2c:ae:7b:1d:f5:05:83:ca: 74:a4:1d:20:76:6c:eb:96:6b:f6:e5:2e:37:5b:13: 7f:65:dc:19:9b:88:3c:b7:24:20:4f:69:35:1d:59: ed:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F4:F9:39:CE:61:F8:21:A0:3B:EA:B7:1C:12:4E:AB:0D:99:29:05 X509v3 Authority Key Identifier: keyid:DA:BC:78:FC:14:F3:0C:B8:72:EC:00:ED:6A:4F:F4:76:D9:4C:B2:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/2rx4_BTzDLhy7ADtak_0dtlMsng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rx4_BTzDLhy7ADtak_0dtlMsng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE1E6/CD94B8B8EBB111EC9D9B2569C4F9AE02/F585ED70EBB511ECA410BF6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.198.0/24 Signature Algorithm: sha256WithRSAEncryption e9:ae:8b:90:ca:40:bd:ed:e7:a5:14:61:18:ae:a5:11:26:94: ac:5d:a6:aa:de:2b:8d:2f:0d:31:a4:b8:5e:47:de:48:ea:d9: 6e:38:03:43:70:c8:01:bf:af:22:a4:3f:60:6d:42:f9:a9:9a: 6a:72:51:d7:a0:06:44:a6:fc:fa:e8:bc:48:a0:96:9f:af:df: c0:35:a4:9d:33:c2:11:15:5f:a5:22:cb:7d:0f:85:e1:a2:5a: 95:38:ae:9d:25:99:10:db:87:d1:13:92:5b:a6:3d:a9:cf:d2: 40:ab:4d:1c:7f:b5:26:bb:fd:4b:a2:6f:64:30:0f:a0:e2:58: 65:a0:c0:7b:c6:4c:4d:4d:b1:70:6a:e6:de:03:bd:c6:7e:d9: 64:4f:97:19:a8:96:d0:f0:9f:5a:1a:de:14:37:3f:56:a3:a9: 44:70:ef:c6:ab:23:aa:4e:f8:95:c4:95:1e:22:63:4a:38:38: fb:5b:6b:0b:6f:17:18:48:43:e1:3f:93:1e:5c:33:3e:a8:80: f9:0a:78:7a:d1:ab:73:f9:e1:7e:a9:ae:5c:b9:40:51:26:99: 7c:19:b0:e6:96:da:c7:0d:54:3e:d9:54:97:b0:78:a4:ca:de: a4:29:5f:02:50:76:da:79:ff:7d:26:51:85:d0:03:29:33:16: e8:25:f9:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UxRTYxMTAvBgNVBAUTKERBQkM3OEZDMTRGMzBDQjg3MkVDMDBFRDZBNEZGNDc2 RDk0Q0IyNzgwHhcNMjQwMzA5MDM1NTQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWViZGRiZi1kM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36g7KCWVt+j0Q5F0dpNw48supFOx4zk0FXiL+xGEheO/Owki1XjGVqeuyThb tiUoRr9TBHgvD1JxuZZQamDn6eRFRJU2dWDgSnMuvwrfqO6CJZrWmSaH0eO2N2Pw TGHOmShUCuMF934OBxX3SFyd8rD9y8+RsbBFAHq8UTXjmhrFXMoEZmUa31XmAJ0P cSqwHwk94JLXTq3+2VZ1fH03L1s/LhQJGqskrOWX3yDaqA0OBZnkGdUJYPCDlLrC VW9Bh/w8Tr/yeDB2fFHl99iygAW07v0r06uvLK57HfUFg8p0pB0gdmzrlmv25S43 WxN/ZdwZm4g8tyQgT2k1HVntGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAP0+TnO YfghoDvqtxwSTqsNmSkFMB8GA1UdIwQYMBaAFNq8ePwU8wy4cuwA7WpP9HbZTLJ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTFFNi9DRDk0QjhCOEVC QjExMUVDOUQ5QjI1NjlDNEY5QUUwMi8ycng0X0JUekRMaHk3QUR0YWtfMGR0bE1z bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyeDRfQlR6RExoeTdBRHRha18wZHRsTXNuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UxRTYvQ0Q5NEI4QjhFQkIxMTFFQzlEOUIyNTY5QzRGOUFFMDIvRjU4NUVENzBF QkI1MTFFQ0E0MTBCRjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0MYwDQYJKoZIhvcNAQELBQADggEBAOmui5DKQL3t56UU YRiupREmlKxdpqreK40vDTGkuF5H3kjq2W44A0NwyAG/ryKkP2BtQvmpmmpyUdeg BkSm/ProvEiglp+v38A1pJ0zwhEVX6Uiy30PheGiWpU4rp0lmRDbh9ETklumPanP 0kCrTRx/tSa7/Uuib2QwD6DiWGWgwHvGTE1NsXBq5t4DvcZ+2WRPlxmoltDwn1oa 3hQ3P1ajqURw78arI6pO+JXElR4iY0o4OPtbawtvFxhIQ+E/kx5cMz6ogPkKeHrR q3P54X6prly5QFEmmXwZsOaW2scNVD7ZVJeweKTK3qQpXwJQdtp5/30mUYXQAykz Fugl+bE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org