$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa File: 14ED07C27B8D11EDB395B621C4F9AE02.roa (raw, json) Hash identifier: iCap4lqKKa82l18uB1DC7bqPYEbr0EmiBcnsu6BpLvs= Subject key identifier: 84:A9:90:A7:76:94:61:DD:F9:9D:D0:A5:AD:F4:1B:3B:B9:01:7A:5A Certificate issuer: /CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Certificate serial: 0CA3 Authority key identifier: 11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa Signing time: Wed 12 Jul 2023 18:35:16 +0000 ROA not before: Wed 12 Jul 2023 18:35:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134190 IP address blocks: 103.117.128.0/24 maxlen: 24 103.117.129.0/24 maxlen: 24 103.117.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA7B2/serialNumber=1156205EC7380A00F10F3410114D040357F00FF1 Validity Not Before: Jul 12 18:35:16 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64aef263-c555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:9a:d6:5f:5f:d5:ca:e9:61:30:45:68:e6: ed:53:09:b4:33:12:1a:9b:91:4a:d2:3a:27:86:dc: 81:f6:31:da:ce:fd:46:5a:05:b1:63:31:e9:71:af: 71:49:b1:24:6f:6d:7b:65:89:c1:05:7b:35:8e:fd: d3:ca:af:97:c1:11:fd:d5:96:4b:a1:d9:46:59:c7: b7:4f:ef:bf:ec:05:23:b6:96:f0:be:0b:34:05:ec: 8b:b5:a9:2a:5c:ef:04:df:9f:b0:f1:2e:09:ff:9a: 66:fc:ca:74:bf:de:bd:96:0c:2f:fa:2e:c3:5d:3f: ae:5f:64:ae:f2:45:3b:a4:82:61:b7:0a:86:2c:1b: cd:0f:09:a0:fd:54:64:6f:d8:a2:37:2e:8c:2c:5d: f4:43:a9:d0:e8:70:36:22:2d:55:05:f1:ae:c7:9c: 55:01:03:d3:40:f4:d7:6c:73:3a:b5:30:0f:b0:2a: 05:b4:54:4a:8a:58:bc:3d:3d:2c:a3:49:d8:0e:a5: d3:66:31:1b:85:e7:9c:18:cb:21:a4:24:44:ce:ae: b7:1b:d5:20:a8:4d:2a:7c:af:f8:85:79:39:68:3b: f1:e4:f9:97:24:f6:4b:55:1e:7f:0f:d7:d3:d3:f5: 2b:88:3b:31:cd:a9:4c:c5:3a:50:e2:48:be:13:89: 67:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A9:90:A7:76:94:61:DD:F9:9D:D0:A5:AD:F4:1B:3B:B9:01:7A:5A X509v3 Authority Key Identifier: keyid:11:56:20:5E:C7:38:0A:00:F1:0F:34:10:11:4D:04:03:57:F0:0F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/EVYgXsc4CgDxDzQQEU0EA1fwD_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EVYgXsc4CgDxDzQQEU0EA1fwD_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA7B2/3EE3235AAE9911E9AC50E17BC4F9AE02/14ED07C27B8D11EDB395B621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.128.0/23 103.117.131.0/24 Signature Algorithm: sha256WithRSAEncryption 16:e0:a9:01:59:da:23:01:e3:8f:f2:39:ed:ef:93:cc:e3:80: 08:8e:ac:b1:16:27:b3:83:1e:8c:ff:b5:ef:17:24:57:f7:ce: da:59:46:23:1a:31:c2:22:38:3f:1c:0a:0a:fd:79:96:df:f6: 9e:7e:82:ae:8b:14:8e:c7:da:a2:d7:87:d2:e5:2e:ae:91:5a: 87:fb:8f:16:f6:f4:8a:0a:a4:52:75:dc:46:18:7b:0e:27:e3: e6:02:21:64:b4:b3:d5:5c:68:b2:62:d0:64:d4:10:80:fb:1f: bc:5b:51:2a:46:a7:63:59:4c:6e:69:da:2f:c1:ae:71:27:ed: 3b:b7:61:3d:95:18:56:44:f8:4e:11:d7:81:68:51:c3:fa:14: 9d:cb:65:e7:be:b9:b7:ba:74:64:1b:da:3e:27:a0:78:e7:28: 84:90:d0:bf:81:77:4a:e7:80:51:ff:50:f8:b6:0b:e8:64:a0: 3f:f0:44:07:c3:29:ee:7b:5b:03:9a:83:53:b4:db:d8:57:d2: 99:dd:ea:35:35:99:c2:e1:35:c3:dd:8f:bf:d8:09:23:5a:f9: 24:e7:b4:33:75:70:d7:ad:d8:7b:b4:a5:21:75:a1:2d:c8:d7: 75:b3:d1:8b:a7:14:d8:1e:f9:97:9f:ba:49:09:01:dc:e3:74: 2e:60:56:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3QjIxMTAvBgNVBAUTKDExNTYyMDVFQzczODBBMDBGMTBGMzQxMDExNEQwNDAz NTdGMDBGRjEwHhcNMjMwNzEyMTgzNTE2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFlZjI2My1jNTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDua1l9f1crpYTBFaObtUwm0MxIam5FK0jonhtyB9jHazv1GWgWxYzHpca9x SbEkb217ZYnBBXs1jv3Tyq+XwRH91ZZLodlGWce3T++/7AUjtpbwvgs0BeyLtakq XO8E35+w8S4J/5pm/Mp0v969lgwv+i7DXT+uX2Su8kU7pIJhtwqGLBvNDwmg/VRk b9iiNy6MLF30Q6nQ6HA2Ii1VBfGux5xVAQPTQPTXbHM6tTAPsCoFtFRKili8PT0s o0nYDqXTZjEbheecGMshpCREzq63G9UgqE0qfK/4hXk5aDvx5PmXJPZLVR5/D9fT 0/UriDsxzalMxTpQ4ki+E4lnlwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFISpkKd2 lGHd+Z3Qpa30Gzu5AXpaMB8GA1UdIwQYMBaAFBFWIF7HOAoA8Q80EBFNBANX8A/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTdCMi8zRUUzMjM1QUFF OTkxMUU5QUM1MEUxN0JDNEY5QUUwMi9FVllnWHNjNENnRHhEelFRRVUwRUExZndE X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VWWWdYc2M0Q2dEeER6UVFFVTBFQTFmd0RfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3QjIvM0VFMzIzNUFBRTk5MTFFOUFDNTBFMTdCQzRGOUFFMDIvMTRFRDA3QzI3 QjhEMTFFREIzOTVCNjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFndYADBABndYMwDQYJKoZIhvcNAQELBQADggEBABbgqQFZ 2iMB44/yOe3vk8zjgAiOrLEWJ7ODHoz/te8XJFf3ztpZRiMaMcIiOD8cCgr9eZbf 9p5+gq6LFI7H2qLXh9LlLq6RWof7jxb29IoKpFJ13EYYew4n4+YCIWS0s9VcaLJi 0GTUEID7H7xbUSpGp2NZTG5p2i/BrnEn7Tu3YT2VGFZE+E4R14FoUcP6FJ3LZee+ ube6dGQb2j4noHjnKISQ0L+Bd0rngFH/UPi2C+hkoD/wRAfDKe57WwOag1O029hX 0pnd6jU1mcLhNcPdj7/YCSNa+STntDN1cNet2Hu0pSF1oS3I13Wz0YunFNge+Zef ukkJAdzjdC5gVuM= -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org