$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa File: D933655E23B511EBA7BDD50FC4F9AE02.roa (raw, json) Hash identifier: 54RasFpInkk46NqANXGRnQQRyrIL2lzCqTjJuJoAKLM= Subject key identifier: CF:34:D4:FE:C7:93:BD:30:21:AB:B5:9D:39:FD:76:38:42:69:9E:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 06A9 Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa Signing time: Tue 14 May 2024 23:33:30 +0000 ROA not before: Tue 14 May 2024 23:33:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136488 IP address blocks: 103.90.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 14 23:33:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6643f4ca-59d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b4:06:f4:68:fa:55:cb:a1:fe:24:42:36:a6: c2:8b:79:02:12:73:a0:d8:f3:93:cd:36:d2:14:4d: f4:ac:8d:e2:d4:04:a6:f9:35:66:72:98:70:7f:d0: 54:99:ff:1c:a1:d7:70:e4:40:2b:bf:70:6d:46:e0: 2a:e3:b1:ea:ab:70:55:09:8d:0d:1e:88:e0:3e:a0: 33:61:14:37:9e:d9:a2:e8:5c:db:82:d1:55:33:c5: 72:cc:3d:d6:0f:f8:24:30:e4:6e:0d:68:d0:61:c0: b7:d6:27:29:d1:59:7f:08:b1:bf:c4:01:4a:ef:b1: a5:8d:79:81:66:42:c8:78:c1:66:a1:20:be:da:d5: 9d:05:e3:11:4d:63:49:21:f3:1e:bd:7e:ee:b8:1b: 09:05:92:97:49:c2:71:a1:d5:64:e3:ce:4c:8b:4e: 4b:a8:a1:a1:ca:7f:cb:fd:28:fb:c0:84:a5:d6:6a: b8:9a:80:db:65:41:37:7d:bf:23:9c:49:4c:9d:bc: f4:35:42:48:0a:82:bc:18:6d:0f:b3:57:31:53:6f: 7c:cd:a4:93:f8:96:c7:17:0d:00:a0:75:39:8a:26: c7:36:71:ec:5c:82:bb:c1:fa:a7:39:a0:fa:69:ba: b7:fd:ba:2d:a1:90:f5:9a:e9:cb:55:f4:b4:96:92: c2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:34:D4:FE:C7:93:BD:30:21:AB:B5:9D:39:FD:76:38:42:69:9E:2D X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:e5:cd:d9:29:e3:0a:c0:d8:c8:3e:d4:33:f7:cc:b1:c4:b2: 1a:54:88:61:5c:24:d2:0e:ff:21:1e:89:0f:f4:43:3a:48:cb: 58:c8:20:d7:62:4a:90:75:5e:a9:51:12:20:10:95:de:21:52: bc:36:41:6e:4a:48:c8:a7:32:70:c5:5e:47:66:e9:4a:ad:ce: 27:27:98:04:66:7f:45:ab:97:c8:e3:ab:e7:0c:40:17:2f:e4: ae:98:38:4a:a5:db:c9:7b:f0:e8:61:99:f1:f0:6b:70:b3:2f: 25:fc:7e:ee:87:3b:af:5a:2b:d7:f7:c7:79:03:a6:97:29:33: 77:4f:bd:e4:dc:6c:e4:ed:f1:53:9e:9e:c4:7a:13:22:3e:ac: f6:e3:72:a2:a8:4d:a6:a6:b5:e0:33:bf:f2:a0:81:a7:8c:0a: 75:63:88:da:b6:56:02:4d:fd:cf:4f:cd:1a:1c:82:c5:b0:6d: 25:e6:17:f8:ec:e3:d6:8c:6b:57:d5:1e:b0:a6:07:c9:b7:49: 08:3d:3b:60:8e:93:7e:5e:9d:80:93:d8:7d:e7:50:25:07:4d: 83:88:59:5e:88:89:43:d8:41:b5:78:9d:fd:2a:1d:b1:23:fa: ad:d8:8e:50:b2:21:5f:33:ca:6d:b8:8a:e4:5c:8b:d4:99:1f: 16:f6:d8:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjQwNTE0MjMzMzMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzZjRjYS01OWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbQG9Gj6Vcuh/iRCNqbCi3kCEnOg2POTzTbSFE30rI3i1ASm+TVmcphwf9BU mf8coddw5EArv3BtRuAq47Hqq3BVCY0NHojgPqAzYRQ3ntmi6FzbgtFVM8VyzD3W D/gkMORuDWjQYcC31icp0Vl/CLG/xAFK77GljXmBZkLIeMFmoSC+2tWdBeMRTWNJ IfMevX7uuBsJBZKXScJxodVk485Mi05LqKGhyn/L/Sj7wISl1mq4moDbZUE3fb8j nElMnbz0NUJICoK8GG0Ps1cxU298zaST+JbHFw0AoHU5iibHNnHsXIK7wfqnOaD6 abq3/botoZD1munLVfS0lpLCmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM801P7H k70wIau1nTn9djhCaZ4tMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3RTQvMzZGQjExNDQxRDVBMTFFQkI3OTg4RDE3QzRGOUFFMDIvRDkzMzY1NUUy M0I1MTFFQkE3QkRENTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWg4wDQYJKoZIhvcNAQELBQADggEBAG/lzdkp4wrA2Mg+ 1DP3zLHEshpUiGFcJNIO/yEeiQ/0QzpIy1jIINdiSpB1XqlREiAQld4hUrw2QW5K SMinMnDFXkdm6UqtzicnmARmf0Wrl8jjq+cMQBcv5K6YOEql28l78OhhmfHwa3Cz LyX8fu6HO69aK9f3x3kDppcpM3dPveTcbOTt8VOensR6EyI+rPbjcqKoTaamteAz v/KggaeMCnVjiNq2VgJN/c9PzRocgsWwbSXmF/js49aMa1fVHrCmB8m3SQg9O2CO k35enYCT2H3nUCUHTYOIWV6IiUPYQbV4nf0qHbEj+q3YjlCyIV8zym24iuRci9SZ Hxb22AE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org