$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/14AD3D427E9D11EC914D4A6DC4F9AE02.roa File: 14AD3D427E9D11EC914D4A6DC4F9AE02.roa (raw, json) Hash identifier: rucSOvDUlPs/cm3Q5kFV8pvarNxcY2no81UvR20k9hU= Subject key identifier: 32:9B:F4:B2:0E:FA:0C:C7:BF:7D:C4:63:28:D5:1B:F3:E5:A8:86:D9 Certificate issuer: /CN=A91E85C5/serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Certificate serial: 028C Authority key identifier: 75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/14AD3D427E9D11EC914D4A6DC4F9AE02.roa Signing time: Fri 21 Jul 2023 02:02:43 +0000 ROA not before: Fri 21 Jul 2023 02:02:43 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137956 IP address blocks: 103.118.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85C5/serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Validity Not Before: Jul 21 02:02:43 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9e743-884e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:9f:22:58:48:b9:0b:bd:8a:ed:b3:3d:ee: 9f:32:36:88:81:45:40:00:05:45:be:b0:58:21:a0: bc:ce:c6:d0:fc:8d:cc:f8:d7:d9:9c:47:f0:de:4a: 73:23:d1:7c:e0:e0:80:2d:83:48:92:48:ac:84:f9: 94:39:28:a1:b6:ee:18:a5:9f:63:23:57:f9:5b:2c: 44:b9:ad:2f:e8:9c:98:ce:35:fe:6a:d3:b1:77:e8: 7a:32:59:3f:e9:24:86:bf:24:9a:1a:97:ba:20:ff: f5:17:e4:36:23:34:82:74:4e:d2:84:ea:09:0c:46: a5:dc:69:2c:4b:f0:02:91:d5:a4:72:c9:c0:c1:36: ec:1e:31:21:f5:8e:d5:c3:79:83:34:79:74:18:f5: 60:03:ef:68:5f:23:99:b4:74:1d:47:03:8f:7f:6a: 3f:55:ec:9b:22:61:f6:8d:d1:12:a3:b8:bb:30:90: 43:fd:00:5e:47:1e:84:00:12:6c:26:57:23:7b:83: 6c:8d:d8:2b:17:d2:4b:84:33:ee:0f:76:9e:71:a1: 18:c1:3f:bb:3a:d0:d2:c2:82:b0:24:59:de:cd:05: bb:9b:73:2a:f4:30:38:2f:3d:60:4e:f5:05:ea:4e: a1:5f:e2:c2:61:d1:7f:f4:8c:f7:c3:6e:3d:1a:64: 50:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:9B:F4:B2:0E:FA:0C:C7:BF:7D:C4:63:28:D5:1B:F3:E5:A8:86:D9 X509v3 Authority Key Identifier: keyid:75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/14AD3D427E9D11EC914D4A6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.50.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:c3:00:05:dd:e6:8b:db:c5:01:b8:d1:6c:b3:e1:33:24:73: fe:4f:b0:9b:c8:83:8f:e7:af:85:de:e2:75:d7:c4:2a:40:0c: f6:0f:52:22:2d:54:7d:9f:81:88:7d:72:3e:d5:e6:ba:ba:40: 8c:98:2e:de:e4:cc:cb:85:e4:30:1a:0a:d8:a5:19:56:66:91: 27:e9:5b:02:54:41:1b:0b:94:0e:bf:4a:5b:ef:e1:77:40:6a: 3e:82:29:c8:0d:03:9a:72:13:84:b6:d9:8f:da:09:81:31:f2: 73:8d:51:a1:cb:90:ca:06:34:8c:38:6e:96:65:60:27:b8:4d: c2:ca:9d:73:9a:5f:13:63:b3:77:b7:bb:5b:46:f0:a9:7a:c0: e8:7a:8c:27:51:61:68:3b:05:1e:10:ba:02:80:37:3e:2b:3e: f1:87:bf:4e:1c:9c:e1:3c:b3:68:1a:6c:c3:62:ac:29:de:be: 40:93:54:2d:36:60:36:0c:6f:f5:33:1e:9f:e6:09:d0:90:8d: 40:e2:ca:b8:94:33:02:62:1b:10:5d:b8:f8:90:45:e7:39:99: 80:51:41:1a:65:8a:4b:ef:e7:e5:aa:83:a9:5e:dd:79:d6:4c: 45:4f:f9:3a:91:98:a9:8d:df:5d:9a:09:61:81:25:99:df:98: 61:86:4f:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1QzUxMTAvBgNVBAUTKDc1OUE2RTAzRjBDRTdEN0MyRERBODA0OEZCQTgxMzNF Q0M2NjNFRUQwHhcNMjMwNzIxMDIwMjQzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5ZTc0My04ODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYyfIlhIuQu9iu2zPe6fMjaIgUVAAAVFvrBYIaC8zsbQ/I3M+NfZnEfw3kpz I9F84OCALYNIkkishPmUOSihtu4YpZ9jI1f5WyxEua0v6JyYzjX+atOxd+h6Mlk/ 6SSGvySaGpe6IP/1F+Q2IzSCdE7ShOoJDEal3GksS/ACkdWkcsnAwTbsHjEh9Y7V w3mDNHl0GPVgA+9oXyOZtHQdRwOPf2o/VeybImH2jdESo7i7MJBD/QBeRx6EABJs Jlcje4NsjdgrF9JLhDPuD3aecaEYwT+7OtDSwoKwJFnezQW7m3Mq9DA4Lz1gTvUF 6k6hX+LCYdF/9Iz3w249GmRQPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDKb9LIO +gzHv33EYyjVG/PlqIbZMB8GA1UdIwQYMBaAFHWabgPwzn18LdqASPuoEz7MZj7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVDNS84OTNDNjRGNjdF OUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZYd3Qyb0JJLTZnVFBzeG1Q dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RacHVBX0RPZlh3dDJvQkktNmdUUHN4bVB1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg1QzUvODkzQzY0RjY3RTlBMTFFQ0E1QUQ2NzZCQzRGOUFFMDIvMTRBRDNENDI3 RTlEMTFFQzkxNEQ0QTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndjIwDQYJKoZIhvcNAQELBQADggEBAG/DAAXd5ovbxQG4 0Wyz4TMkc/5PsJvIg4/nr4Xe4nXXxCpADPYPUiItVH2fgYh9cj7V5rq6QIyYLt7k zMuF5DAaCtilGVZmkSfpWwJUQRsLlA6/Slvv4XdAaj6CKcgNA5pyE4S22Y/aCYEx 8nONUaHLkMoGNIw4bpZlYCe4TcLKnXOaXxNjs3e3u1tG8Kl6wOh6jCdRYWg7BR4Q ugKANz4rPvGHv04cnOE8s2gabMNirCnevkCTVC02YDYMb/UzHp/mCdCQjUDiyriU MwJiGxBduPiQRec5mYBRQRplikvv5+Wqg6le3XnWTEVP+TqRmKmN312aCWGBJZnf mGGGTyM= -----END CERTIFICATE-----Generated at Tue May 21 03:29:53 2024 by rpki-client on console-fra.rpki-client.org