$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa File: 4D942BCE08A011ED8AD21272C4F9AE02.roa (raw, json) Hash identifier: iDFagkC2Pymx0vGTcmD2EJOCYX1V6KpanyYL5KLSRf8= Subject key identifier: 30:03:05:FB:BD:0E:14:BC:FF:F0:15:50:93:DF:04:0C:45:98:17:07 Certificate issuer: /CN=A91E9CE4/serialNumber=14588A4BE9EB8A4B9982D1B25DEB0C60738AEFBB Certificate serial: 01F7 Authority key identifier: 14:58:8A:4B:E9:EB:8A:4B:99:82:D1:B2:5D:EB:0C:60:73:8A:EF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa Signing time: Wed 21 Aug 2024 03:16:29 +0000 ROA not before: Wed 21 Aug 2024 03:16:29 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 147008 IP address blocks: 103.172.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.crl rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 503 (0x1f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9CE4/serialNumber=14588A4BE9EB8A4B9982D1B25DEB0C60738AEFBB Validity Not Before: Aug 21 03:16:29 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c55c0c-813a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b4:f5:30:18:34:2c:73:82:c1:52:82:bf:e0: b6:96:ad:1e:10:dc:56:3b:94:d2:2b:87:2c:96:6b: 12:47:ea:d1:7b:94:af:65:d0:2d:5b:03:eb:69:13: e9:34:2d:ce:a2:e2:b0:79:b2:0b:3e:b3:c9:2e:0c: ee:f5:81:cb:80:78:f1:29:f1:99:ea:62:a9:6e:a7: 57:a7:20:d0:42:74:61:19:b5:7d:47:2b:69:53:f4: a6:41:c5:56:2e:6a:5d:d8:9e:fc:5d:c2:5f:c8:48: df:a5:7b:b3:cc:5b:1d:c4:19:95:a8:23:cb:4f:fe: e3:41:21:9c:9a:4c:5c:3b:fc:ec:2a:26:74:3b:30: f8:1c:80:c8:a0:2f:64:b4:25:46:09:ad:7e:07:e1: ba:29:39:ba:c7:8b:7c:fe:85:a3:d4:aa:55:4c:6c: 55:35:41:dd:16:f2:4c:13:e9:f6:ee:51:5d:85:10: 8c:8b:26:12:5c:35:43:67:18:b8:e8:81:76:bd:8a: 2b:62:3e:ce:89:95:f9:d1:9d:b5:e7:30:7a:4d:a3: 6e:3e:3e:5d:60:63:bd:ff:6b:e6:49:03:aa:dd:ee: 57:24:c3:93:16:96:1d:c1:ff:57:c4:16:e7:a7:4d: 02:7d:4e:f5:68:b0:7a:50:cc:87:8f:38:87:21:6b: 0e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:03:05:FB:BD:0E:14:BC:FF:F0:15:50:93:DF:04:0C:45:98:17:07 X509v3 Authority Key Identifier: keyid:14:58:8A:4B:E9:EB:8A:4B:99:82:D1:B2:5D:EB:0C:60:73:8A:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/FFiKS-nrikuZgtGyXesMYHOK77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FFiKS-nrikuZgtGyXesMYHOK77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9CE4/69CCB5BC089C11EDBFA2FB4BC4F9AE02/4D942BCE08A011ED8AD21272C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.191.0/24 Signature Algorithm: sha256WithRSAEncryption 10:6f:ef:26:59:53:66:9b:40:ae:39:64:72:27:f5:2a:ca:15: 36:3c:83:a4:1c:1a:b6:48:82:dd:94:69:e4:df:95:50:26:fd: d7:55:5a:18:b1:33:bb:f6:1e:ca:7b:a6:ce:29:57:7b:63:c1: c8:d6:1e:c8:c8:f5:0d:da:89:c5:de:cf:ae:57:af:f4:24:13: c5:bc:48:ba:1e:af:70:b3:5c:e0:82:61:eb:50:f7:b1:34:48: b3:87:f2:b5:f5:a4:64:3d:ea:87:10:11:f8:02:34:b5:31:96: 50:72:08:f7:4d:0a:03:94:91:b2:7b:92:53:42:7c:4c:f8:50: 6f:ce:78:62:da:92:06:f5:4c:5a:cf:ed:26:0d:b3:d5:7c:e8: 3d:10:af:26:ed:31:bc:e4:90:6e:9a:1a:e2:91:06:c8:b6:e9: 90:a9:e6:d8:40:28:ba:8f:7d:02:4f:5e:99:d9:65:c0:cc:de: d8:eb:01:df:92:b5:2b:56:4e:1d:4d:6f:25:ba:ac:90:03:0f: 2d:1f:0c:f4:b3:72:c5:ee:8f:1b:b3:d4:b7:af:a6:51:15:2c: 9b:1c:24:76:89:df:a4:74:a2:b8:dd:48:17:2b:e8:57:0e:c9: fe:78:4c:95:f0:b3:fe:11:97:b9:b5:4e:77:e2:99:95:0d:c8: e4:21:a9:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlDRTQxMTAvBgNVBAUTKDE0NTg4QTRCRTlFQjhBNEI5OTgyRDFCMjVERUIwQzYw NzM4QUVGQkIwHhcNMjQwODIxMDMxNjI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1NWMwYy04MTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7T1MBg0LHOCwVKCv+C2lq0eENxWO5TSK4cslmsSR+rRe5SvZdAtWwPraRPp NC3OouKwebILPrPJLgzu9YHLgHjxKfGZ6mKpbqdXpyDQQnRhGbV9RytpU/SmQcVW Lmpd2J78XcJfyEjfpXuzzFsdxBmVqCPLT/7jQSGcmkxcO/zsKiZ0OzD4HIDIoC9k tCVGCa1+B+G6KTm6x4t8/oWj1KpVTGxVNUHdFvJME+n27lFdhRCMiyYSXDVDZxi4 6IF2vYorYj7OiZX50Z215zB6TaNuPj5dYGO9/2vmSQOq3e5XJMOTFpYdwf9XxBbn p00CfU71aLB6UMyHjziHIWsOwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDADBfu9 DhS8//AVUJPfBAxFmBcHMB8GA1UdIwQYMBaAFBRYikvp64pLmYLRsl3rDGBziu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUNFNC82OUNDQjVCQzA4 OUMxMUVEQkZBMkZCNEJDNEY5QUUwMi9GRmlLUy1ucmlrdVpndEd5WGVzTVlIT0s3 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGaUtTLW5yaWt1Wmd0R3lYZXNNWUhPSzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlDRTQvNjlDQ0I1QkMwODlDMTFFREJGQTJGQjRCQzRGOUFFMDIvNEQ5NDJCQ0Uw OEEwMTFFRDhBRDIxMjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrL8wDQYJKoZIhvcNAQELBQADggEBABBv7yZZU2abQK45 ZHIn9SrKFTY8g6QcGrZIgt2UaeTflVAm/ddVWhixM7v2Hsp7ps4pV3tjwcjWHsjI 9Q3aicXez65Xr/QkE8W8SLoer3CzXOCCYetQ97E0SLOH8rX1pGQ96ocQEfgCNLUx llByCPdNCgOUkbJ7klNCfEz4UG/OeGLakgb1TFrP7SYNs9V86D0QrybtMbzkkG6a GuKRBsi26ZCp5thAKLqPfQJPXpnZZcDM3tjrAd+StStWTh1NbyW6rJADDy0fDPSz csXujxuz1LevplEVLJscJHaJ36R0orjdSBcr6FcOyf54TJXws/4Rl7m1TnfimZUN yOQhqUE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:57 2024 by rpki-client on console-ams.rpki-client.org