$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/4E67247C681911EFA2640B43C4F9AE02.roa File: 4E67247C681911EFA2640B43C4F9AE02.roa (raw, json) Hash identifier: 9b5hcdjgNu1V+4hiXD0EH0CcG2L6sHhLvtxEI9xLyu4= Subject key identifier: F2:CA:89:9F:D2:4E:D8:A9:81:2D:66:53:0B:DC:77:80:E3:2E:1D:C1 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: 02 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/4E67247C681911EFA2640B43C4F9AE02.roa Signing time: Sun 01 Sep 2024 04:18:57 +0000 ROA not before: Sun 01 Sep 2024 04:18:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152729 IP address blocks: 103.57.148.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Sep 1 04:18:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66d3eb31-f56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:65:f6:57:1a:f8:2b:12:60:f5:ef:94:59:fe: 0e:d4:c0:ee:97:db:1c:31:d2:24:cc:2d:70:6f:2a: 01:7a:96:70:c6:94:67:4e:8a:2a:46:f8:15:c6:c6: 35:61:43:91:78:39:7d:56:c3:69:96:88:0c:d4:b4: 13:6c:fa:95:b3:40:9c:c3:83:db:b2:e6:1b:a2:b6: 5e:74:44:dc:d8:ad:c3:6f:e7:a6:7f:e1:23:d7:17: 1c:79:eb:6c:54:66:2d:89:07:0e:b7:45:71:c7:c7: 89:db:b7:a4:ab:5b:86:09:c2:ba:c3:bb:06:7b:db: 87:5b:14:0f:04:94:41:f0:d3:81:02:6c:99:8f:f6: d9:ae:c7:be:4c:2c:f1:f8:37:a3:ed:33:5d:87:b5: 2f:d8:9a:f2:fd:f5:a0:5d:7e:4d:44:06:13:aa:6a: ab:a1:77:ba:94:fb:ad:06:b6:8a:b0:11:f1:f3:ec: d1:65:64:b1:52:3e:1e:26:5f:c4:7f:e2:ab:7c:a9: f1:54:36:49:2f:a3:64:0a:65:cd:a1:3e:21:6f:27: c7:1c:fe:a5:be:a1:28:dc:69:e3:6b:22:34:8f:5f: d5:8c:08:96:13:8f:d6:7f:73:f1:da:4e:ae:de:b0: d1:61:28:aa:d8:1d:70:8f:f9:a9:ba:c3:3e:c4:2b: ad:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CA:89:9F:D2:4E:D8:A9:81:2D:66:53:0B:DC:77:80:E3:2E:1D:C1 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/4E67247C681911EFA2640B43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.148.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:0d:50:25:eb:c1:57:e6:01:39:ee:49:fa:72:bd:5d:e5:9a: 9a:1f:be:ef:1d:43:70:8f:09:03:8d:f2:b3:ef:60:9b:c9:f2: 83:18:62:f5:36:9c:ca:90:5a:32:19:91:24:27:c9:39:3c:f1: b7:ad:34:d6:cf:f0:b3:90:2b:84:c1:df:fe:e7:86:a3:29:b9: eb:ba:da:e5:43:51:ac:8f:e6:8b:bb:ae:4d:72:20:92:c3:ac: 47:f9:54:6d:5d:77:37:e5:a8:d6:4e:ca:db:19:ef:59:95:6f: 99:47:45:fc:22:da:a1:82:1b:74:23:0b:87:df:73:61:60:6f: b9:a8:93:5a:a7:6c:f7:b0:a2:56:29:7d:a1:ee:ac:1e:a3:72: 69:ea:61:4f:87:82:a3:6f:20:a1:83:fd:a4:2f:a3:a2:de:f7: 9a:4d:4d:c5:71:20:e1:37:6e:e4:de:c6:e7:d5:5c:70:27:43: d9:ac:5b:c9:49:3d:bf:d8:f4:13:aa:31:19:0c:f6:87:35:31: b0:eb:66:93:a0:f3:fa:90:79:2f:c4:f8:8e:0c:67:0d:cd:55: 91:ef:d8:52:bb:72:f1:73:c2:43:0d:9d:dc:e5:65:32:a8:43: 36:92:9d:0c:56:73:36:b0:15:f0:17:93:ca:d2:38:a0:51:32: 55:a0:c8:a7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF Q0JEOTExMC8GA1UEBRMoNjNCQTI4MUQ1NkZBNEZFNkU1MzVCMTI1RTE2REY4MDFE MTJGODA5OTAeFw0yNDA5MDEwNDE4NTdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDNlYjMxLWY1NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0ZfZXGvgrEmD175RZ/g7UwO6X2xwx0iTMLXBvKgF6lnDGlGdOiipG+BXGxjVh Q5F4OX1Ww2mWiAzUtBNs+pWzQJzDg9uy5huitl50RNzYrcNv56Z/4SPXFxx562xU Zi2JBw63RXHHx4nbt6SrW4YJwrrDuwZ724dbFA8ElEHw04ECbJmP9tmux75MLPH4 N6PtM12HtS/YmvL99aBdfk1EBhOqaquhd7qU+60GtoqwEfHz7NFlZLFSPh4mX8R/ 4qt8qfFUNkkvo2QKZc2hPiFvJ8cc/qW+oSjcaeNrIjSPX9WMCJYTj9Z/c/HaTq7e sNFhKKrYHXCP+am6wz7EK62vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8sqJn9JO 2KmBLWZTC9x3gOMuHcEwHwYDVR0jBBgwFoAUY7ooHVb6T+blNbEl4W34AdEvgJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVDQkQ5L0UwNDZCMEI2Njgx ODExRUY5QTUzRTkxOEM0RjlBRTAyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWTdvb0hWYjZULWJsTmJFbDRXMzRBZEV2Z0prLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi80RTY3MjQ3QzY4 MTkxMUVGQTI2NDBCNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWc5lDANBgkqhkiG9w0BAQsFAAOCAQEALw1QJevBV+YBOe5J +nK9XeWamh++7x1DcI8JA43ys+9gm8nygxhi9TacypBaMhmRJCfJOTzxt6001s/w s5ArhMHf/ueGoym567ra5UNRrI/mi7uuTXIgksOsR/lUbV13N+Wo1k7K2xnvWZVv mUdF/CLaoYIbdCMLh99zYWBvuaiTWqds97CiVil9oe6sHqNyaephT4eCo28goYP9 pC+jot73mk1NxXEg4Tdu5N7G59VccCdD2axbyUk9v9j0E6oxGQz2hzUxsOtmk6Dz +pB5L8T4jgxnDc1Vke/YUrty8XPCQw2d3OVlMqhDNpKdDFZzNrAV8BeTytI4oFEy VaDIpw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org