$ rpki-client -vvf rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa File: 4214E284606911EFBDF1A71AC4F9AE02.roa (raw, json) Hash identifier: ADxX0D+lzszOhRPseNyCwu5NvY04yEDNXyF78vVWZ4E= Subject key identifier: 4F:FF:6B:17:EC:24:0B:31:8A:8E:5D:43:F8:94:1C:12:40:BF:41:E2 Certificate issuer: /CN=A91D32F4/serialNumber=69C089B7A48E7DA6EE4F01FEC6A98E0AD2FA810B Certificate serial: 016C Authority key identifier: 69:C0:89:B7:A4:8E:7D:A6:EE:4F:01:FE:C6:A9:8E:0A:D2:FA:81:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa Signing time: Fri 23 Aug 2024 06:15:02 +0000 ROA not before: Fri 23 Aug 2024 06:15:02 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 8075 IP address blocks: 103.185.176.0/23 maxlen: 23 103.185.176.0/24 maxlen: 24 103.185.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.crl rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D32F4/serialNumber=69C089B7A48E7DA6EE4F01FEC6A98E0AD2FA810B Validity Not Before: Aug 23 06:15:02 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66c828e5-6fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a7:73:11:70:d4:3d:a6:11:5c:d4:9f:ff:aa: e3:58:73:65:dc:6c:86:bf:ae:e2:df:7c:eb:34:c3: c7:a9:56:f6:62:6a:06:b6:c8:aa:91:4a:41:93:c6: a8:b8:ce:dd:12:24:4a:01:ea:cf:5a:7d:0b:2c:8c: f2:d8:74:fe:9c:e2:e9:d9:3c:50:9d:e2:da:69:93: de:a1:89:40:03:de:04:a6:a2:5c:83:d7:31:eb:ba: 36:9d:0a:18:78:d2:43:fa:ba:20:a3:32:fa:2f:ef: 9f:e5:2e:54:6c:08:b0:ac:7f:ce:00:b1:35:9c:42: 3e:bb:27:ac:fc:aa:14:2f:9c:b7:46:da:87:92:15: 12:bb:d1:80:a4:ee:dd:c9:7e:cc:7c:71:fd:8b:d3: c1:89:d4:02:50:d9:d5:36:b4:d4:53:f2:32:0c:a6: 71:15:4e:c6:6f:40:4a:66:85:18:c3:32:ae:f7:60: a0:61:75:24:0c:f4:48:30:72:03:14:b4:82:a0:a4: 50:76:fe:40:0d:7c:c7:12:c1:c7:40:f3:c8:7d:2e: 77:9a:ab:bc:a0:5f:50:38:ea:ad:ac:33:10:93:d2: d8:1e:a9:29:2b:bf:11:bf:cf:c4:83:6c:bd:36:d2: c3:af:b4:f5:da:c5:92:f0:95:b2:82:c7:e9:f5:a5: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FF:6B:17:EC:24:0B:31:8A:8E:5D:43:F8:94:1C:12:40:BF:41:E2 X509v3 Authority Key Identifier: keyid:69:C0:89:B7:A4:8E:7D:A6:EE:4F:01:FE:C6:A9:8E:0A:D2:FA:81:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/acCJt6SOfabuTwH-xqmOCtL6gQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/acCJt6SOfabuTwH-xqmOCtL6gQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D32F4/B4CA77964DE011EDA6F01048C4F9AE02/4214E284606911EFBDF1A71AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.176.0/23 Signature Algorithm: sha256WithRSAEncryption b5:60:45:46:ed:60:79:8f:38:dd:9a:77:61:c4:01:09:1c:f6: 5d:72:c7:36:9b:de:de:ac:7f:33:4e:da:25:7b:fc:82:e9:ea: 12:ca:a9:bb:c5:a4:83:53:62:82:55:86:53:a9:7c:47:2d:23: 6f:8b:ed:69:f9:0e:ae:6c:4e:d8:aa:0e:7e:c2:2f:1f:e0:3c: e7:38:ba:8b:0e:76:fe:5a:24:b2:42:fb:9b:f6:e1:9b:74:83: 44:36:e5:c5:e7:bc:b2:11:5c:d4:57:33:68:f2:f2:53:64:98: 0f:c2:5b:96:38:48:f0:5d:0e:9f:67:9b:3a:d8:1b:c6:6e:c7: a9:16:17:97:b9:95:33:5c:65:36:af:cf:77:d6:80:11:9d:bb: 6e:8a:0b:1e:f2:eb:59:a7:42:4d:e6:5d:89:c5:3d:b7:12:79: 70:28:72:80:b4:32:47:12:fd:f2:3b:ef:71:97:71:4f:c8:1e: 20:64:dc:42:ef:67:72:52:87:87:b5:90:27:85:02:67:77:19: f9:cd:f6:01:1e:2e:c5:70:52:f3:fc:6e:f2:5f:21:18:fb:16: 28:37:99:b4:b7:e1:6f:5a:6b:87:cf:3e:0a:f3:e2:eb:c6:e3: 83:8f:0c:f8:b4:ab:f4:31:57:1f:ac:e1:bf:0f:8b:a0:d5:64: f3:08:d0:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMyRjQxMTAvBgNVBAUTKDY5QzA4OUI3QTQ4RTdEQTZFRTRGMDFGRUM2QTk4RTBB RDJGQTgxMEIwHhcNMjQwODIzMDYxNTAyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4MjhlNS02ZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6dzEXDUPaYRXNSf/6rjWHNl3GyGv67i33zrNMPHqVb2YmoGtsiqkUpBk8ao uM7dEiRKAerPWn0LLIzy2HT+nOLp2TxQneLaaZPeoYlAA94EpqJcg9cx67o2nQoY eNJD+rogozL6L++f5S5UbAiwrH/OALE1nEI+uyes/KoUL5y3RtqHkhUSu9GApO7d yX7MfHH9i9PBidQCUNnVNrTUU/IyDKZxFU7Gb0BKZoUYwzKu92CgYXUkDPRIMHID FLSCoKRQdv5ADXzHEsHHQPPIfS53mqu8oF9QOOqtrDMQk9LYHqkpK78Rv8/Eg2y9 NtLDr7T12sWS8JWygsfp9aVSgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE//axfs JAsxio5dQ/iUHBJAv0HiMB8GA1UdIwQYMBaAFGnAibekjn2m7k8B/sapjgrS+oEL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzJGNC9CNENBNzc5NjRE RTAxMUVEQTZGMDEwNDhDNEY5QUUwMi9hY0NKdDZTT2ZhYnVUd0gteHFtT0N0TDZn UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FjQ0p0NlNPZmFidVR3SC14cW1PQ3RMNmdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDMyRjQvQjRDQTc3OTY0REUwMTFFREE2RjAxMDQ4QzRGOUFFMDIvNDIxNEUyODQ2 MDY5MTFFRkJERjFBNzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnubAwDQYJKoZIhvcNAQELBQADggEBALVgRUbtYHmPON2a d2HEAQkc9l1yxzab3t6sfzNO2iV7/ILp6hLKqbvFpINTYoJVhlOpfEctI2+L7Wn5 Dq5sTtiqDn7CLx/gPOc4uosOdv5aJLJC+5v24Zt0g0Q25cXnvLIRXNRXM2jy8lNk mA/CW5Y4SPBdDp9nmzrYG8Zux6kWF5e5lTNcZTavz3fWgBGdu26KCx7y61mnQk3m XYnFPbcSeXAocoC0MkcS/fI773GXcU/IHiBk3ELvZ3JSh4e1kCeFAmd3GfnN9gEe LsVwUvP8bvJfIRj7Fig3mbS34W9aa4fPPgrz4uvG44OPDPi0q/QxVx+s4b8Pi6DV ZPMI0LE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:05 2024 by rpki-client on console-fra.rpki-client.org