$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa File: E9399E722E7211EDAE100C3DC4F9AE02.roa (raw, json) Hash identifier: M3T7YxDp3PgO3w0LzCsSvdkq+omaAe3UAtVrwbaswoQ= Subject key identifier: F7:4A:70:A2:77:CC:DB:71:16:14:06:30:0F:5F:53:61:83:E2:0D:C9 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 0107 Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa Signing time: Fri 17 Nov 2023 04:25:46 +0000 ROA not before: Fri 17 Nov 2023 04:25:46 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150304 IP address blocks: 103.217.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: Nov 17 04:25:46 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6556eb49-4105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:12:1b:3c:cb:cf:74:4e:35:3e:c3:dc:a0:18: 01:c5:42:6e:42:10:78:ed:d3:9b:49:86:b9:ba:97: 0e:5f:5a:50:a2:78:c1:4d:af:19:fc:fb:87:ab:6d: f6:40:48:b1:6f:a9:0d:df:e2:48:90:8d:c5:a3:85: 44:e0:f6:73:11:00:e1:1c:01:9b:cb:75:73:38:2b: 05:52:cb:1e:1c:55:d0:72:48:cc:c7:57:68:47:c7: 1b:37:d2:29:8b:f4:71:13:e8:25:aa:1b:85:b0:1a: 4e:cd:62:04:bd:9d:10:22:9f:54:dc:3f:99:cd:58: 55:e2:e6:ad:cd:f7:c7:35:65:66:e5:d2:87:e4:00: 82:84:8a:f5:17:4d:b6:5d:ba:e2:e6:f6:bb:c8:fd: e8:db:2a:2a:26:03:92:65:82:33:dd:d7:80:1a:4b: 23:29:03:66:ea:f5:7d:1f:de:e5:79:ea:73:9f:ec: 2c:20:53:51:19:bb:e3:d3:54:2c:8f:4a:39:4f:99: 1b:23:b5:13:1a:48:44:a4:f9:aa:7a:0a:23:a4:bd: 83:22:61:79:91:1d:d2:88:92:4e:2d:7a:d0:65:18: f9:3d:39:25:57:e0:80:71:5f:6e:6b:0f:87:97:6b: de:8b:10:a7:38:23:ec:52:7d:94:e5:f8:74:2c:47: 8a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4A:70:A2:77:CC:DB:71:16:14:06:30:0F:5F:53:61:83:E2:0D:C9 X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/E9399E722E7211EDAE100C3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.250.0/23 Signature Algorithm: sha256WithRSAEncryption a9:ce:1c:f3:f3:ab:f5:d6:11:b8:49:ab:2d:79:d3:86:9b:96: 70:73:02:8a:f0:8a:1e:33:0e:ad:0e:4f:d0:ec:fe:7c:cf:4f: 27:06:0a:1c:a8:c3:82:86:1c:63:55:35:be:67:9b:fe:6e:86: 9c:77:76:a2:fa:04:d7:3c:b5:1d:59:47:c4:5a:d1:15:21:97: 32:9c:c8:8f:aa:dc:54:21:82:aa:cf:60:76:bc:bf:f8:99:a8: cb:f0:1d:93:59:e1:f6:41:cf:09:5b:e5:7a:76:c6:8d:0d:27: 2e:e3:35:72:70:b0:9e:b9:f2:83:49:ee:58:bc:1b:ff:89:f8: 4d:7d:d4:b3:2d:ea:bf:60:a5:bd:16:a8:32:78:a7:01:86:25: 6b:20:e8:f1:df:76:a6:9c:d5:12:92:54:d8:5b:86:71:b4:7a: ae:0f:45:ee:e8:2b:23:e1:42:48:21:59:63:78:c8:0b:7b:53: c8:63:c2:65:fe:b2:e7:15:d7:50:a3:71:6a:15:a6:75:41:17: cf:00:08:ac:4c:d7:1c:f6:a3:40:85:6e:07:bf:ca:e7:2f:d1: de:9a:d6:b5:4a:d7:a2:85:eb:4a:88:a1:cc:c7:8b:77:2e:c5: f9:77:2b:cc:ba:6c:be:15:91:71:78:6e:3d:24:3c:d7:1e:a3: 7a:ba:db:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjMxMTE3MDQyNTQ2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2ZWI0OS00MTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+BIbPMvPdE41PsPcoBgBxUJuQhB47dObSYa5upcOX1pQonjBTa8Z/PuHq232 QEixb6kN3+JIkI3Fo4VE4PZzEQDhHAGby3VzOCsFUsseHFXQckjMx1doR8cbN9Ip i/RxE+glqhuFsBpOzWIEvZ0QIp9U3D+ZzVhV4uatzffHNWVm5dKH5ACChIr1F022 Xbri5va7yP3o2yoqJgOSZYIz3deAGksjKQNm6vV9H97leepzn+wsIFNRGbvj01Qs j0o5T5kbI7UTGkhEpPmqegojpL2DImF5kR3SiJJOLXrQZRj5PTklV+CAcV9uaw+H l2veixCnOCPsUn2U5fh0LEeKTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPdKcKJ3 zNtxFhQGMA9fU2GD4g3JMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y4NDgvQ0FEQUI3QjIyRTZFMTFFREFFQUIzRTM2QzRGOUFFMDIvRTkzOTlFNzIy RTcyMTFFREFFMTAwQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2fowDQYJKoZIhvcNAQELBQADggEBAKnOHPPzq/XWEbhJ qy1504ablnBzAorwih4zDq0OT9Ds/nzPTycGChyow4KGHGNVNb5nm/5uhpx3dqL6 BNc8tR1ZR8Ra0RUhlzKcyI+q3FQhgqrPYHa8v/iZqMvwHZNZ4fZBzwlb5Xp2xo0N Jy7jNXJwsJ658oNJ7li8G/+J+E191LMt6r9gpb0WqDJ4pwGGJWsg6PHfdqac1RKS VNhbhnG0eq4PRe7oKyPhQkghWWN4yAt7U8hjwmX+sucV11CjcWoVpnVBF88ACKxM 1xz2o0CFbge/yucv0d6a1rVK16KF60qIoczHi3cuxfl3K8y6bL4VkXF4bj0kPNce o3q624o= -----END CERTIFICATE-----Generated at Wed May 15 05:28:56 2024 by rpki-client on console-ams.rpki-client.org