$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa File: 4FFFD8D41D7211EFA095B25AC4F9AE02.roa (raw, json) Hash identifier: nq8ODXuG2X1On3FZK6D1Ybw7+HTqr1F1kxAZ6zyabRU= Subject key identifier: 6F:ED:A5:3D:3E:DF:55:D1:86:19:20:58:6A:0D:04:8D:A0:1B:9B:7F Certificate issuer: /CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Certificate serial: 13 Authority key identifier: 0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa Signing time: Sat 15 Jun 2024 10:29:35 +0000 ROA not before: Sat 15 Jun 2024 10:29:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152730 IP address blocks: 203.14.108.0/24 maxlen: 24 2001:df0:c340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03FC/serialNumber=0F5914CBB96A70DA06B11EF3DD2B63C9E407B31C Validity Not Before: Jun 15 10:29:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666d6d0f-5f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:01:5a:8a:95:78:9f:a7:84:6b:6e:e1:59: 0c:23:49:e1:a6:71:46:16:fe:0f:cc:8f:a3:18:d9: 07:81:0c:6d:76:38:99:b0:66:19:74:19:25:fe:48: 99:1d:91:9f:3d:d7:22:d2:63:4b:96:c9:cf:f3:7f: 7c:08:2e:1e:cc:f9:8e:5e:89:0c:ae:75:e1:27:dd: 0a:1c:e2:4b:2f:da:6c:37:d2:5f:1f:8f:e7:9e:d5: e6:63:f5:cf:77:8c:97:7a:0e:f6:45:91:e8:18:e2: 60:24:cf:9c:89:d6:e9:18:ea:ab:e1:17:4b:e0:42: 71:37:f4:6c:e6:21:ae:03:ab:7a:38:51:58:04:a0: 51:85:36:c4:77:29:a7:a7:f5:47:49:25:22:54:ee: a2:01:dd:2c:23:73:1f:d6:28:19:ab:a3:f2:64:19: 7f:48:32:1e:e1:05:11:a3:85:43:0d:88:5d:53:4d: 16:a3:53:49:4a:73:1f:f5:10:83:31:77:7a:62:0a: b6:56:e1:e7:5f:2e:3d:4a:b9:f0:cd:3e:a7:d8:e4: b0:b7:cb:26:63:7e:0c:d6:84:e9:bc:6e:ae:90:4d: f5:97:1b:64:06:94:db:16:56:ca:7e:5c:45:4a:e5: 34:98:a5:1f:66:da:63:8e:6e:39:d8:e5:6a:50:42: c4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:ED:A5:3D:3E:DF:55:D1:86:19:20:58:6A:0D:04:8D:A0:1B:9B:7F X509v3 Authority Key Identifier: keyid:0F:59:14:CB:B9:6A:70:DA:06:B1:1E:F3:DD:2B:63:C9:E4:07:B3:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/D1kUy7lqcNoGsR7z3StjyeQHsxw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1kUy7lqcNoGsR7z3StjyeQHsxw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03FC/C7B093561D7111EF95E26840C4F9AE02/4FFFD8D41D7211EFA095B25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.14.108.0/24 IPv6: 2001:df0:c340::/48 Signature Algorithm: sha256WithRSAEncryption 41:84:8e:92:13:2e:d4:2f:61:be:f6:93:36:90:dc:d7:f7:8b: 90:51:24:d6:4b:59:5b:d0:9d:f0:9c:1f:8d:bf:c0:92:b9:fb: e5:a3:44:95:8b:c6:27:80:d0:33:f2:62:fb:b6:90:a2:94:a7: 5c:25:42:30:4e:3f:dc:54:c1:9e:c7:a5:47:02:33:2b:11:44: df:41:e8:36:54:b3:21:12:53:64:d0:9f:2a:c9:90:11:f9:c8: e6:8a:76:9d:06:20:e9:79:2c:f2:e8:92:8e:de:f2:74:f6:ff: 9c:1d:8f:dd:9e:b6:47:20:02:1d:14:ab:95:06:c9:42:75:5d: 7a:14:3b:5d:24:ef:e0:c2:78:af:53:66:52:4a:8e:f0:1d:7d: 72:76:c3:c3:e8:32:e2:88:4e:d1:81:dd:77:36:74:48:c1:d0: 54:2b:54:31:66:61:ab:11:16:32:03:3d:fd:fa:90:55:c7:ed: 1a:4f:eb:b9:e4:05:0d:69:9d:8f:fd:cc:f3:9d:d8:d8:37:d2: 87:5d:8f:c3:0c:7a:7a:e1:90:b3:d6:b8:a5:12:8e:10:24:8e: 4a:8c:98:58:66:f8:20:4b:1c:9e:54:1b:ea:01:53:08:22:0d: fa:e1:1d:3f:1e:f6:9d:65:46:e0:bc:0f:bc:b2:1b:5a:6c:39: 9f:ce:9f:f7 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDNGQzExMC8GA1UEBRMoMEY1OTE0Q0JCOTZBNzBEQTA2QjExRUYzREQyQjYzQzlF NDA3QjMxQzAeFw0yNDA2MTUxMDI5MzVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmQ2ZDBmLTVmMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAOgFaipV4n6eEa27hWQwjSeGmcUYW/g/Mj6MY2QeBDG12OJmwZhl0GSX+SJkd kZ891yLSY0uWyc/zf3wILh7M+Y5eiQyudeEn3Qoc4ksv2mw30l8fj+ee1eZj9c93 jJd6DvZFkegY4mAkz5yJ1ukY6qvhF0vgQnE39GzmIa4Dq3o4UVgEoFGFNsR3Kaen 9UdJJSJU7qIB3Swjcx/WKBmro/JkGX9IMh7hBRGjhUMNiF1TTRajU0lKcx/1EIMx d3piCrZW4edfLj1KufDNPqfY5LC3yyZjfgzWhOm8bq6QTfWXG2QGlNsWVsp+XEVK 5TSYpR9m2mOObjnY5WpQQsSxAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUb+2lPT7f VdGGGSBYag0EjaAbm38wHwYDVR0jBBgwFoAUD1kUy7lqcNoGsR7z3StjyeQHsxww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwM0ZDL0M3QjA5MzU2MUQ3 MTExRUY5NUUyNjg0MEM0RjlBRTAyL0Qxa1V5N2xxY05vR3NSN3ozU3RqeWVRSHN4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDFrVXk3bHFjTm9Hc1I3ejNTdGp5ZVFIc3h3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDNGQy9DN0IwOTM1NjFENzExMUVGOTVFMjY4NDBDNEY5QUUwMi80RkZGRDhENDFE NzIxMUVGQTA5NUIyNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsObDAPBAIAAjAJAwcAIAEN8MNAMA0GCSqGSIb3DQEBCwUA A4IBAQBBhI6SEy7UL2G+9pM2kNzX94uQUSTWS1lb0J3wnB+Nv8CSufvlo0SVi8Yn gNAz8mL7tpCilKdcJUIwTj/cVMGex6VHAjMrEUTfQeg2VLMhElNk0J8qyZAR+cjm inadBiDpeSzy6JKO3vJ09v+cHY/dnrZHIAIdFKuVBslCdV16FDtdJO/gwnivU2ZS So7wHX1ydsPD6DLiiE7Rgd13NnRIwdBUK1QxZmGrERYyAz39+pBVx+0aT+u55AUN aZ2P/czzndjYN9KHXY/DDHp64ZCz1rilEo4QJI5KjJhYZvggSxyeVBvqAVMIIg36 4R0/HvadZUbgvA+8shtabDmfzp/3 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:23 2024 by rpki-client on console-ams.rpki-client.org