$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa File: F8B64B2A97BB11EF9D4C9647C4F9AE02.roa (raw, json) Hash identifier: 61jykwbjSWlecTxQbXexQrYBIHCiEouIxmqT8SrgbD0= Subject key identifier: B0:CA:B5:48:E5:D4:1F:3C:A9:E6:ED:66:8A:F1:B6:C9:1B:EC:80:68 Certificate issuer: /CN=A91D3F8E/serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Certificate serial: 012B Authority key identifier: D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa Signing time: Thu 31 Oct 2024 19:11:46 +0000 ROA not before: Thu 31 Oct 2024 19:11:46 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150774 IP address blocks: 103.238.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3F8E/serialNumber=D40051BC8DDA60C932EE07769AB867BEFA8D42F6 Validity Not Before: Oct 31 19:11:46 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6723d672-68db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:19:f7:49:e9:6d:6d:10:60:bd:bc:9b:59:ef: c9:36:2d:86:ea:e8:f0:a8:e6:b5:5f:48:f4:e6:b9: 05:f8:53:3d:89:8c:86:41:57:a9:10:1d:82:d9:7c: 05:7d:9a:25:79:fd:e8:8a:4f:bb:4a:76:b6:e9:5f: b8:94:1a:74:47:0b:4e:77:e6:f2:2c:d9:d9:55:08: 7f:08:5d:67:02:cb:c0:26:bc:1c:9a:97:9e:a0:4d: 74:1c:54:bb:9e:be:1c:69:82:c7:10:83:dc:c5:27: 15:ab:a5:54:3a:93:9e:f4:ec:22:3f:c4:80:45:cf: 7a:34:c9:36:60:ba:74:df:6b:ce:f6:19:43:15:21: b1:39:2e:9b:5a:3c:09:b5:ad:c9:3c:0d:4a:14:90: 19:f2:2b:c4:d1:71:a8:45:02:72:0e:a5:06:98:71: 55:51:75:12:8e:8a:50:0f:38:45:4e:60:0f:45:d9: a6:53:66:4f:f3:4a:ca:f6:44:11:39:78:37:b7:51: 5a:7e:c6:ee:41:95:78:56:8d:99:66:58:dc:e6:8e: 3e:12:10:1b:97:0f:5a:e4:61:8c:98:49:07:b7:f2: 2a:f9:cc:35:30:26:de:99:a3:b9:76:49:b6:97:49: 01:bf:4f:58:01:21:68:db:b0:06:45:d8:9b:d7:96: 3e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:CA:B5:48:E5:D4:1F:3C:A9:E6:ED:66:8A:F1:B6:C9:1B:EC:80:68 X509v3 Authority Key Identifier: keyid:D4:00:51:BC:8D:DA:60:C9:32:EE:07:76:9A:B8:67:BE:FA:8D:42:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/1ABRvI3aYMky7gd2mrhnvvqNQvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ABRvI3aYMky7gd2mrhnvvqNQvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3F8E/6C4089BA216C11EEB28BF24CC4F9AE02/F8B64B2A97BB11EF9D4C9647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.114.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c3:57:3d:69:7d:a3:93:3b:19:e0:9b:d3:1d:fa:6b:20:aa: c4:14:6b:01:69:eb:a1:1c:4a:39:c8:95:f9:a2:73:6a:42:e8: 79:3b:e2:5e:a1:24:99:53:1f:83:71:4b:cf:49:f8:7e:dd:56: fb:7a:34:ba:87:e1:28:4f:cc:c6:a9:a5:35:18:3b:77:64:66: 93:97:67:74:52:51:35:be:ba:cf:bb:93:e9:91:3f:c5:1c:d7: c4:2d:f2:34:da:54:fd:6b:49:70:5a:8a:39:93:b4:f5:53:e0: f8:af:11:e1:7c:9c:06:c9:9f:36:d4:4e:98:aa:a6:bc:41:ac: 50:47:1a:62:57:36:72:ca:01:b7:a3:c1:12:39:90:7b:0d:d6: 19:d1:3a:7f:a8:7e:5f:2d:4c:3b:cd:54:76:89:b1:c1:0c:61: e1:a7:9a:f1:cb:70:a1:94:26:da:2f:fa:42:3c:03:15:05:25: cd:18:77:98:65:a9:4b:9b:9d:3e:71:88:a4:b0:c9:73:6c:8f: 9e:50:97:04:1a:bf:14:79:a4:84:1f:34:cd:60:5e:da:be:54: 74:d6:75:bd:38:c0:12:d0:20:0b:74:07:64:92:ef:1f:ee:5a: 16:ba:d8:a6:71:73:f9:e0:b0:ab:1b:78:73:bf:5b:44:28:9c: e1:a0:49:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNGOEUxMTAvBgNVBAUTKEQ0MDA1MUJDOEREQTYwQzkzMkVFMDc3NjlBQjg2N0JF RkE4RDQyRjYwHhcNMjQxMDMxMTkxMTQ2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzZDY3Mi02OGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Bn3SeltbRBgvbybWe/JNi2G6ujwqOa1X0j05rkF+FM9iYyGQVepEB2C2XwF fZolef3oik+7Sna26V+4lBp0RwtOd+byLNnZVQh/CF1nAsvAJrwcmpeeoE10HFS7 nr4caYLHEIPcxScVq6VUOpOe9OwiP8SARc96NMk2YLp032vO9hlDFSGxOS6bWjwJ ta3JPA1KFJAZ8ivE0XGoRQJyDqUGmHFVUXUSjopQDzhFTmAPRdmmU2ZP80rK9kQR OXg3t1FafsbuQZV4Vo2ZZljc5o4+EhAblw9a5GGMmEkHt/Iq+cw1MCbemaO5dkm2 l0kBv09YASFo27AGRdib15Y+gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLDKtUjl 1B88qebtZorxtskb7IBoMB8GA1UdIwQYMBaAFNQAUbyN2mDJMu4Hdpq4Z776jUL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Y4RS82QzQwODlCQTIx NkMxMUVFQjI4QkYyNENDNEY5QUUwMi8xQUJSdkkzYVlNa3k3Z2QybXJobnZ2cU5R dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBQlJ2STNhWU1reTdnZDJtcmhudnZxTlF2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNGOEUvNkM0MDg5QkEyMTZDMTFFRUIyOEJGMjRDQzRGOUFFMDIvRjhCNjRCMkE5 N0JCMTFFRjlENEM5NjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn7nIwDQYJKoZIhvcNAQELBQADggEBALjDVz1pfaOTOxng m9Md+msgqsQUawFp66EcSjnIlfmic2pC6Hk74l6hJJlTH4NxS89J+H7dVvt6NLqH 4ShPzMappTUYO3dkZpOXZ3RSUTW+us+7k+mRP8Uc18Qt8jTaVP1rSXBaijmTtPVT 4PivEeF8nAbJnzbUTpiqprxBrFBHGmJXNnLKAbejwRI5kHsN1hnROn+ofl8tTDvN VHaJscEMYeGnmvHLcKGUJtov+kI8AxUFJc0Yd5hlqUubnT5xiKSwyXNsj55QlwQa vxR5pIQfNM1gXtq+VHTWdb04wBLQIAt0B2SS7x/uWha62KZxc/ngsKsbeHO/W0Qo nOGgSZA= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org