$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa File: F4DE3470979B11EE901E210BC4F9AE02.roa (raw, json) Hash identifier: fiC0aTLSwEHcelKVanda2XAXfzpX0FepeWYGM7C3Vk0= Subject key identifier: 5B:A0:D6:9C:F6:53:76:E2:C8:68:E7:7E:DD:FC:ED:E6:76:CB:4A:10 Certificate issuer: /CN=A91DB782/serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Certificate serial: 61 Authority key identifier: 56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa Signing time: Wed 05 Jun 2024 08:28:23 +0000 ROA not before: Wed 05 Jun 2024 08:28:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135344 IP address blocks: 103.214.204.0/24 maxlen: 24 103.214.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB782/serialNumber=56B65B809F5DAB3A5AB157CA0579FD8E16EDCFB3 Validity Not Before: Jun 5 08:28:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666021a6-6e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5c:4e:c0:9c:03:71:07:92:ac:3d:98:cf:2d: ba:09:06:a6:b7:fd:ad:ac:4c:c4:c4:82:3e:99:d6: b6:f7:9f:82:70:9e:94:6c:ff:94:e3:a0:eb:e2:b2: 56:5d:7d:a5:ea:d2:45:ec:d7:62:1e:84:f9:26:1e: 38:fd:8e:0b:ca:7d:b9:a6:a7:13:ee:f1:4b:1f:74: ec:1e:3d:21:10:35:ca:07:7b:87:35:8f:6c:b4:60: 41:b5:98:49:f6:6f:1d:c1:0a:b1:11:b1:b0:f8:b2: 69:e9:1e:c1:16:dc:02:be:5f:8b:64:3c:73:b3:bb: 53:f7:05:53:02:51:57:29:fe:13:9b:32:08:e6:b0: 5c:66:b9:28:8e:bc:fd:6b:18:74:57:7c:ed:c7:d7: f1:0b:1c:72:50:33:c0:32:fa:64:9c:33:02:5a:96: 00:db:c6:4a:d8:aa:6a:f7:31:b3:26:43:68:9d:3f: d9:af:56:22:7f:ff:e6:26:6f:73:9d:49:7b:e8:96: 4e:4b:91:95:bb:0f:6a:97:6b:e5:13:bc:db:e8:54: 78:74:ef:aa:b5:6b:82:ac:74:46:7e:81:e0:64:c2: 99:65:bf:de:5c:db:dd:54:25:95:d2:2c:b1:95:70: 20:78:46:b6:18:74:a3:52:7c:83:89:6c:39:bf:1c: 7d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A0:D6:9C:F6:53:76:E2:C8:68:E7:7E:DD:FC:ED:E6:76:CB:4A:10 X509v3 Authority Key Identifier: keyid:56:B6:5B:80:9F:5D:AB:3A:5A:B1:57:CA:05:79:FD:8E:16:ED:CF:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/VrZbgJ9dqzpasVfKBXn9jhbtz7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrZbgJ9dqzpasVfKBXn9jhbtz7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB782/9FEDCF5C979B11EE989E600AC4F9AE02/F4DE3470979B11EE901E210BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.204.0/23 Signature Algorithm: sha256WithRSAEncryption 40:4e:b6:f0:73:a6:c7:24:7f:29:da:de:2b:4f:ba:33:04:94: d9:0a:a5:aa:e9:13:fe:6d:55:9a:2d:47:d8:f8:7c:9c:c0:1b: e5:86:8f:c9:94:5f:c2:d0:17:e0:27:2c:cb:58:97:72:f5:2f: 2c:1f:19:6d:8e:b3:30:ed:ec:f7:21:e7:bc:c7:a2:8f:e9:6f: 76:08:5f:e7:cb:9b:30:99:8a:a2:be:a1:67:fa:8c:5b:7d:4f: 1c:8b:7a:52:fc:0d:52:6a:02:9e:50:54:dc:77:d9:9e:48:f6: d9:20:0f:18:1b:7a:29:68:06:74:cf:8e:b3:1a:5d:10:ed:fa: 37:42:6b:49:aa:93:0a:ee:e8:b5:50:d6:67:b8:d6:95:07:41: 24:a4:c5:56:53:fb:4c:b8:e5:f5:28:85:1b:bc:3a:d1:91:4e: 51:e5:07:75:de:aa:c8:07:f7:54:c2:2f:5f:89:36:65:5e:aa: b5:85:7d:a3:9d:5c:a3:a5:27:a4:b0:8e:c8:8b:60:e3:06:e6: 08:36:1b:5d:f9:ec:6f:7d:4b:52:4f:22:c3:f2:7b:80:d0:72: d8:33:9a:2c:1d:4c:1d:4a:e3:e3:39:22:8e:95:54:8b:5e:84: 56:5c:f6:36:70:62:c5:17:44:d4:88:08:cf:45:e7:b0:b0:3b: 38:01:e6:de -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Qjc4MjExMC8GA1UEBRMoNTZCNjVCODA5RjVEQUIzQTVBQjE1N0NBMDU3OUZEOEUx NkVEQ0ZCMzAeFw0yNDA2MDUwODI4MjNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjAyMWE2LTZlNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZXE7AnANxB5KsPZjPLboJBqa3/a2sTMTEgj6Z1rb3n4JwnpRs/5TjoOvislZd faXq0kXs12IehPkmHjj9jgvKfbmmpxPu8UsfdOwePSEQNcoHe4c1j2y0YEG1mEn2 bx3BCrERsbD4smnpHsEW3AK+X4tkPHOzu1P3BVMCUVcp/hObMgjmsFxmuSiOvP1r GHRXfO3H1/ELHHJQM8Ay+mScMwJalgDbxkrYqmr3MbMmQ2idP9mvViJ//+Ymb3Od SXvolk5LkZW7D2qXa+UTvNvoVHh076q1a4KsdEZ+geBkwpllv95c291UJZXSLLGV cCB4RrYYdKNSfIOJbDm/HH1XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUW6DWnPZT duLIaOd+3fzt5nbLShAwHwYDVR0jBBgwFoAUVrZbgJ9dqzpasVfKBXn9jhbtz7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCNzgyLzlGRURDRjVDOTc5 QjExRUU5ODlFNjAwQUM0RjlBRTAyL1ZyWmJnSjlkcXpwYXNWZktCWG45amhidHo3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnJaYmdKOWRxenBhc1ZmS0JYbjlqaGJ0ejdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Qjc4Mi85RkVEQ0Y1Qzk3OUIxMUVFOTg5RTYwMEFDNEY5QUUwMi9GNERFMzQ3MDk3 OUIxMUVFOTAxRTIxMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfWzDANBgkqhkiG9w0BAQsFAAOCAQEAQE628HOmxyR/Kdre K0+6MwSU2QqlqukT/m1Vmi1H2Ph8nMAb5YaPyZRfwtAX4Ccsy1iXcvUvLB8ZbY6z MO3s9yHnvMeij+lvdghf58ubMJmKor6hZ/qMW31PHIt6UvwNUmoCnlBU3HfZnkj2 2SAPGBt6KWgGdM+OsxpdEO36N0JrSaqTCu7otVDWZ7jWlQdBJKTFVlP7TLjl9SiF G7w60ZFOUeUHdd6qyAf3VMIvX4k2ZV6qtYV9o51co6UnpLCOyItg4wbmCDYbXfns b31LUk8iw/J7gNBy2DOaLB1MHUrj4zkijpVUi16EVlz2NnBixRdE1IgIz0XnsLA7 OAHm3g== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org