$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa File: 14ED07C27B8D11EDB395B621C4F9AE02.roa (raw, json) Hash identifier: frbKmKZ/HkPfIsExphPK4/29KT8ut0jhVn7FWlBmQ8E= Subject key identifier: 1F:8B:DF:AF:7A:13:C9:02:C2:A0:98:0B:C3:9C:48:1B:73:AA:2B:AC Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Certificate serial: 0D65 Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa Signing time: Fri 12 Jul 2024 18:56:25 +0000 ROA not before: Fri 12 Jul 2024 18:56:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134190 IP address blocks: 103.117.128.0/24 maxlen: 24 103.117.129.0/24 maxlen: 24 103.117.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3429 (0xd65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Validity Not Before: Jul 12 18:56:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66917c59-bfc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:aa:e1:81:1d:ec:b6:a7:a4:cd:67:b3:ba:29: 73:cc:9a:fc:e5:f3:e6:08:4b:16:49:94:74:e8:e3: da:a6:89:ab:10:85:c3:d9:96:3c:0d:c5:a6:89:a7: c3:9e:db:bf:90:b8:05:77:03:3d:fb:f0:9d:1a:6b: 1f:48:f4:e6:bd:67:d0:93:c1:9f:d5:21:2f:92:01: a8:3a:77:fd:19:27:ed:99:e1:af:7d:1d:7d:78:57: 37:3c:ac:69:78:63:03:ae:3c:00:f3:3c:f8:0f:77: 39:54:bd:2b:39:55:4e:b3:af:6e:8c:5b:ce:87:d4: b9:10:0f:3e:37:b5:82:9c:80:e4:42:52:96:ee:f4: 91:31:9e:43:f5:bf:3b:52:bd:fd:b5:fd:d7:5c:95: e4:17:61:2f:50:1f:5c:98:fa:62:5e:72:5d:1a:94: 32:05:06:e0:bb:18:08:c0:58:b9:ed:01:95:07:8d: b4:75:f6:c1:80:23:c8:77:48:1c:96:1e:ae:0e:17: fd:bc:4c:c2:12:9f:5d:92:9d:95:4c:66:25:f4:42: e2:18:c5:e6:08:0e:d9:91:3c:dd:5e:27:68:58:b7: d4:fb:cd:9f:bd:e6:03:13:e3:72:ac:41:9f:d4:ef: d5:a5:28:63:79:31:83:be:e4:22:e5:d2:ca:4b:98: 57:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8B:DF:AF:7A:13:C9:02:C2:A0:98:0B:C3:9C:48:1B:73:AA:2B:AC X509v3 Authority Key Identifier: keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.128.0/23 103.117.131.0/24 Signature Algorithm: sha256WithRSAEncryption 10:ac:b3:7b:99:a0:6d:91:48:1e:0e:8b:19:b4:1c:39:9b:2f: 9a:75:de:7d:52:8f:1d:4e:66:f6:5c:cf:90:7b:c4:9e:10:c4: cd:09:3a:95:de:44:25:28:0f:cc:c0:7e:61:e9:b5:77:de:9f: 2f:28:2f:3b:38:a6:0b:46:b8:8e:46:17:a3:a6:04:cd:f6:41: 84:bf:b0:3d:54:60:f6:b0:3b:96:cc:f4:de:26:3b:e8:3b:45: b6:36:11:1c:51:f3:cc:ab:82:14:c8:bc:53:c0:92:02:59:4e: e4:da:8a:16:e2:03:2c:f6:64:6d:d1:d8:d3:69:fd:fe:d5:d7: e5:6a:4f:53:94:0d:9e:c4:0a:ba:b7:18:e3:47:4e:04:3e:31: 91:23:c3:45:01:ad:1a:fc:a1:ea:cc:07:06:49:df:31:e2:bd: 9f:a5:dc:f9:d6:9e:fc:c8:e2:26:72:a0:ba:de:50:f9:ee:78: 9e:6a:2a:0e:91:55:0e:bd:af:45:8d:c6:a0:f1:4d:e0:d8:7d: f2:9e:47:19:c1:57:d9:3c:97:55:50:28:9b:9a:86:96:4a:c7: 5b:3e:6b:dc:6b:39:6b:af:b7:69:5a:93:7b:e2:a2:06:f0:4c: a0:72:61:f1:02:33:46:ec:93:ff:ad:9c:9e:bd:1e:08:ab:13: c1:ea:02:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3QjIxMTAvBgNVBAUTKDExNTYyMDVFQzczODBBMDBGMTBGMzQxMDExNEQwNDAz NTdGMDBGRjEwHhcNMjQwNzEyMTg1NjI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxN2M1OS1iZmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6rhgR3stqekzWezuilzzJr85fPmCEsWSZR06OPapomrEIXD2ZY8DcWmiafD ntu/kLgFdwM9+/CdGmsfSPTmvWfQk8Gf1SEvkgGoOnf9GSftmeGvfR19eFc3PKxp eGMDrjwA8zz4D3c5VL0rOVVOs69ujFvOh9S5EA8+N7WCnIDkQlKW7vSRMZ5D9b87 Ur39tf3XXJXkF2EvUB9cmPpiXnJdGpQyBQbguxgIwFi57QGVB420dfbBgCPId0gc lh6uDhf9vEzCEp9dkp2VTGYl9ELiGMXmCA7ZkTzdXidoWLfU+82fveYDE+NyrEGf 1O/VpShjeTGDvuQi5dLKS5hXBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB+L3696 E8kCwqCYC8OcSBtzqiusMB8GA1UdIwQYMBaAFBFWIF7HOAoA8Q80EBFNBANX8A/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTdCMi8zRUUzMjM1QUFF OTkxMUU5QUM1MEUxN0JDNEY5QUUwMi9FVllnWHNjNENnRHhEelFRRVUwRUExZndE X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VWWWdYc2M0Q2dEeER6UVFFVTBFQTFmd0RfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3QjIvM0VFMzIzNUFBRTk5MTFFOUFDNTBFMTdCQzRGOUFFMDIvMTRFRDA3QzI3 QjhEMTFFREIzOTVCNjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFndYADBABndYMwDQYJKoZIhvcNAQELBQADggEBABCss3uZ oG2RSB4Oixm0HDmbL5p13n1Sjx1OZvZcz5B7xJ4QxM0JOpXeRCUoD8zAfmHptXfe ny8oLzs4pgtGuI5GF6OmBM32QYS/sD1UYPawO5bM9N4mO+g7RbY2ERxR88yrghTI vFPAkgJZTuTaihbiAyz2ZG3R2NNp/f7V1+VqT1OUDZ7ECrq3GONHTgQ+MZEjw0UB rRr8oerMBwZJ3zHivZ+l3PnWnvzI4iZyoLreUPnueJ5qKg6RVQ69r0WNxqDxTeDY ffKeRxnBV9k8l1VQKJuahpZKx1s+a9xrOWuvt2lak3viogbwTKByYfECM0bsk/+t nJ69HgirE8HqAoQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org