$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/AE887848662211E7BC7E2636C4F9AE02.roa File: AE887848662211E7BC7E2636C4F9AE02.roa (raw, json) Hash identifier: lXtCcZI3WY8OIlNn2pthb5U4nO4x25l4CIfkoHRn3ik= Subject key identifier: AB:E6:3C:DA:58:AD:AA:04:6B:2A:8A:D8:7F:F4:CE:80:60:2F:70:E4 Certificate issuer: /CN=A91EAE60/serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Certificate serial: 26CA Authority key identifier: 20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/AE887848662211E7BC7E2636C4F9AE02.roa Signing time: Tue 16 Jul 2024 15:52:24 +0000 ROA not before: Tue 16 Jul 2024 15:52:24 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 64045 IP address blocks: 103.11.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9930 (0x26ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE60/serialNumber=20083D4DFA844C5727558C4C756DB20DF807CD81 Validity Not Before: Jul 16 15:52:24 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66969738-bf95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:1c:c1:1a:11:f1:2b:46:2d:ff:63:e3:19:eb: 58:9c:aa:c1:26:1b:01:a6:0f:c2:de:02:49:5e:1f: 79:72:56:19:99:64:63:df:c3:1f:a8:8c:38:65:2d: 31:08:5d:6c:98:56:1f:03:3d:69:6f:c3:61:68:02: 16:de:57:bb:b3:83:83:2e:e4:85:53:3f:6f:aa:02: f2:0a:e7:8c:dd:8b:b2:87:a1:bb:b3:46:0c:c1:8d: e2:68:8b:dd:e1:9b:75:c6:a1:7e:0e:01:a4:38:16: d0:47:44:8e:36:48:84:43:f0:8d:e4:1c:04:37:b7: 05:70:26:c9:0d:c2:6c:c5:95:d0:16:27:67:cd:14: 54:3b:21:0f:7f:d4:da:4c:5a:0d:22:14:7c:42:35: 78:54:0f:37:8c:86:f6:25:d9:90:75:c7:a1:25:42: 23:be:2d:23:59:31:92:20:7c:46:93:02:1f:14:66: c9:89:bf:b8:25:6d:a6:71:aa:75:93:4e:06:dc:06: ef:ef:4d:72:af:a8:5a:3a:d7:b5:30:f5:98:89:c2: 1c:23:46:70:56:49:67:ef:91:0e:56:7a:50:ff:c1: 25:91:8d:7d:68:2e:ce:1d:5c:a9:21:7e:d8:69:03: b5:f8:b7:3e:c2:f9:28:9b:cf:96:c4:ee:5b:f8:e3: 0d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E6:3C:DA:58:AD:AA:04:6B:2A:8A:D8:7F:F4:CE:80:60:2F:70:E4 X509v3 Authority Key Identifier: keyid:20:08:3D:4D:FA:84:4C:57:27:55:8C:4C:75:6D:B2:0D:F8:07:CD:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/IAg9TfqETFcnVYxMdW2yDfgHzYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IAg9TfqETFcnVYxMdW2yDfgHzYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE60/F1996712C7CF11E4B13BE121C4F9AE02/AE887848662211E7BC7E2636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.14.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:00:fe:92:78:4e:6b:7c:86:2e:67:ff:e0:8f:f3:d0:10:8b: 48:ea:1c:f5:c7:47:0a:a6:34:df:26:81:36:56:1e:b0:5d:51: be:81:d7:29:a9:69:26:d7:e8:e3:3a:7e:04:3f:93:6d:fe:5e: e6:ab:2f:45:1d:e4:18:c4:c9:ac:57:f7:e5:1a:f1:57:ab:5c: 36:3e:10:ed:67:1d:62:1a:ed:7f:d2:06:c9:45:52:55:8b:e3: 6f:62:96:9f:83:49:47:5b:38:a1:fb:67:56:f4:1a:ae:36:fd: 04:1b:40:3a:37:09:1b:c6:b4:49:55:d8:6e:e8:3a:d9:ca:7d: cd:9b:81:49:2f:53:e3:4b:2d:2a:0f:de:4d:f5:3e:fe:45:36: 3e:6e:f9:c9:50:ce:46:dc:7a:f8:72:74:64:cf:e8:8a:19:12: 2f:b8:8c:e8:76:a5:27:d1:db:90:15:c2:18:b9:ac:92:ca:3f: 72:61:66:1e:90:26:ef:88:8c:10:72:3b:18:fb:df:8e:64:3a: ec:22:83:e1:b8:6b:41:46:57:cf:82:e2:62:71:e8:73:bf:0d: 49:7a:59:63:8f:0d:97:57:32:cc:65:d9:fc:6b:b8:02:79:3b: e5:be:fe:10:66:66:82:3e:48:ac:69:b3:14:59:81:f3:4e:82: 56:1b:09:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFNjAxMTAvBgNVBAUTKDIwMDgzRDRERkE4NDRDNTcyNzU1OEM0Qzc1NkRCMjBE RjgwN0NEODEwHhcNMjQwNzE2MTU1MjI0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2OTczOC1iZjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BzBGhHxK0Yt/2PjGetYnKrBJhsBpg/C3gJJXh95clYZmWRj38MfqIw4ZS0x CF1smFYfAz1pb8NhaAIW3le7s4ODLuSFUz9vqgLyCueM3Yuyh6G7s0YMwY3iaIvd 4Zt1xqF+DgGkOBbQR0SONkiEQ/CN5BwEN7cFcCbJDcJsxZXQFidnzRRUOyEPf9Ta TFoNIhR8QjV4VA83jIb2JdmQdcehJUIjvi0jWTGSIHxGkwIfFGbJib+4JW2mcap1 k04G3Abv701yr6haOte1MPWYicIcI0ZwVkln75EOVnpQ/8ElkY19aC7OHVypIX7Y aQO1+Lc+wvkom8+WxO5b+OMNhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKvmPNpY raoEayqK2H/0zoBgL3DkMB8GA1UdIwQYMBaAFCAIPU36hExXJ1WMTHVtsg34B82B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUU2MC9GMTk5NjcxMkM3 Q0YxMUU0QjEzQkUxMjFDNEY5QUUwMi9JQWc5VGZxRVRGY25WWXhNZFcyeURmZ0h6 WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lBZzlUZnFFVEZjblZZeE1kVzJ5RGZnSHpZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFNjAvRjE5OTY3MTJDN0NGMTFFNEIxM0JFMTIxQzRGOUFFMDIvQUU4ODc4NDg2 NjIyMTFFN0JDN0UyNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCw4wDQYJKoZIhvcNAQELBQADggEBAA8A/pJ4Tmt8hi5n /+CP89AQi0jqHPXHRwqmNN8mgTZWHrBdUb6B1ympaSbX6OM6fgQ/k23+XuarL0Ud 5BjEyaxX9+Ua8VerXDY+EO1nHWIa7X/SBslFUlWL429ilp+DSUdbOKH7Z1b0Gq42 /QQbQDo3CRvGtElV2G7oOtnKfc2bgUkvU+NLLSoP3k31Pv5FNj5u+clQzkbcevhy dGTP6IoZEi+4jOh2pSfR25AVwhi5rJLKP3JhZh6QJu+IjBByOxj7345kOuwig+G4 a0FGV8+C4mJx6HO/DUl6WWOPDZdXMsxl2fxruAJ5O+W+/hBmZoI+SKxpsxRZgfNO glYbCXs= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org