$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8BD44914C2AC11EAB23E1C3AC4F9AE02.roa File: 8BD44914C2AC11EAB23E1C3AC4F9AE02.roa (raw, json) Hash identifier: mVbCZmxbw75/wJuw2lQw2e9EqjrrEqzYVc8QSZMYsH8= Subject key identifier: 3F:C6:18:63:BC:EF:A7:E4:0B:D9:BC:3C:98:51:72:11:45:25:95:44 Certificate issuer: /CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Certificate serial: 088F Authority key identifier: C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8BD44914C2AC11EAB23E1C3AC4F9AE02.roa Signing time: Wed 24 Jul 2024 21:19:21 +0000 ROA not before: Wed 24 Jul 2024 21:19:21 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138538 IP address blocks: 103.151.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2191 (0x88f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Validity Not Before: Jul 24 21:19:21 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a16fd9-a126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fa:d2:61:a1:e0:f0:6f:13:d4:08:46:91:89: 01:30:8a:1b:79:61:c5:3c:bc:31:47:8a:ef:c8:b6: 0b:03:59:8b:3f:ff:72:b3:56:be:ef:29:ee:67:5b: 0c:f0:4d:1d:e9:4f:b9:98:f5:08:d6:7a:76:2c:13: 94:21:e5:cd:a5:fc:89:a5:95:08:56:1f:cd:cc:2f: 68:dc:c1:8b:31:04:ca:a1:4b:03:74:c0:a1:f3:e1: 49:da:b4:92:35:54:73:98:f0:29:e7:f0:a4:2b:dc: 65:de:ff:ef:85:d4:3e:b1:2a:0b:8c:c2:b5:0d:b9: 61:d6:3a:db:12:8f:5a:d7:de:b4:36:7c:a6:09:c2: ba:18:f9:3b:fe:0b:86:a3:df:46:3f:c1:28:7f:36: 70:f3:3b:cc:54:91:aa:61:6a:4d:a0:78:8b:0f:e6: 3b:1c:1c:06:2c:1b:f6:13:33:52:0d:46:0a:10:10: a3:df:ac:a7:67:07:0d:77:37:25:73:50:74:ab:7d: ee:0c:1b:56:45:5e:45:0d:03:9b:63:79:6a:83:bf: 62:e2:68:03:07:6c:3a:14:45:46:6a:5e:af:a0:cc: 6f:5e:b5:23:44:5e:ec:2a:67:9e:c4:c6:13:08:ff: 4d:15:b1:73:78:56:db:1a:76:1b:5c:dd:b4:97:ba: 21:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C6:18:63:BC:EF:A7:E4:0B:D9:BC:3C:98:51:72:11:45:25:95:44 X509v3 Authority Key Identifier: keyid:C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8BD44914C2AC11EAB23E1C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.216.0/23 Signature Algorithm: sha256WithRSAEncryption a9:f4:bb:a9:6d:30:60:2b:a0:e6:e2:31:e1:7b:7d:1a:04:77: f0:e5:f4:b9:9c:cd:73:a7:73:35:b2:58:ca:4d:c8:5a:cc:14: f0:88:ce:a0:13:91:7a:17:ef:d9:ad:a8:c8:71:49:75:30:e0: 7a:0d:52:39:f5:f6:55:e5:2a:ef:23:fc:2f:4c:76:55:a5:15: 39:4f:33:f6:0f:ee:71:b8:d9:ab:17:c9:4b:7b:03:8e:ad:b1: 71:5c:1b:ce:3a:90:d1:a9:b8:80:a2:ec:fc:6e:f8:49:b7:3a: ff:15:54:8e:17:93:b7:8d:ce:11:07:3f:68:45:c8:05:4f:1b: 70:71:28:b0:7d:a9:95:33:8e:a7:c1:b2:53:a8:04:fc:7a:3e: a6:aa:d3:b1:fa:85:de:9e:af:7c:7e:5a:97:81:e8:64:a9:40: 8e:d1:69:0f:7c:78:1f:9b:2c:33:a5:b9:4f:7d:e3:54:3e:80: ac:ea:ab:e0:b2:e1:0a:96:57:60:d2:99:12:e1:6d:63:bd:29: ac:fa:c7:17:db:6b:a2:f5:95:47:9a:64:b9:60:66:1d:0f:67: b1:b8:ae:fc:39:e9:1c:fb:a2:e0:e8:e4:ac:8a:b9:e4:db:d6: 21:1a:bf:13:7e:27:84:a7:c7:0c:ef:8d:d0:c1:6e:21:c3:22: 87:b3:5a:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0MxMTAvBgNVBAUTKEMwQTU0MzQ5MzdBQzI5MDA2ODI5MTZBNUZCRUUxNTQz Q0UwQjA4QTcwHhcNMjQwNzI0MjExOTIxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExNmZkOS1hMTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfrSYaHg8G8T1AhGkYkBMIobeWHFPLwxR4rvyLYLA1mLP/9ys1a+7ynuZ1sM 8E0d6U+5mPUI1np2LBOUIeXNpfyJpZUIVh/NzC9o3MGLMQTKoUsDdMCh8+FJ2rSS NVRzmPAp5/CkK9xl3v/vhdQ+sSoLjMK1Dblh1jrbEo9a1960NnymCcK6GPk7/guG o99GP8EofzZw8zvMVJGqYWpNoHiLD+Y7HBwGLBv2EzNSDUYKEBCj36ynZwcNdzcl c1B0q33uDBtWRV5FDQObY3lqg79i4mgDB2w6FEVGal6voMxvXrUjRF7sKmeexMYT CP9NFbFzeFbbGnYbXN20l7oh/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFD/GGGO8 76fkC9m8PJhRchFFJZVEMB8GA1UdIwQYMBaAFMClQ0k3rCkAaCkWpfvuFUPOCwin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczQy9FRDA2OEJCOEE0 OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tRQm9LUmFsLS00VlE4NExD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLVkRTVGVzS1FCb0tSYWwtLTRWUTg0TENLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY3M0MvRUQwNjhCQjhBNDkxMTFFQUIyNTc5NDJEQzRGOUFFMDIvOEJENDQ5MTRD MkFDMTFFQUIyM0UxQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl9gwDQYJKoZIhvcNAQELBQADggEBAKn0u6ltMGAroObi MeF7fRoEd/Dl9LmczXOnczWyWMpNyFrMFPCIzqATkXoX79mtqMhxSXUw4HoNUjn1 9lXlKu8j/C9MdlWlFTlPM/YP7nG42asXyUt7A46tsXFcG846kNGpuICi7Pxu+Em3 Ov8VVI4Xk7eNzhEHP2hFyAVPG3BxKLB9qZUzjqfBslOoBPx6Pqaq07H6hd6er3x+ WpeB6GSpQI7RaQ98eB+bLDOluU9941Q+gKzqq+Cy4QqWV2DSmRLhbWO9Kaz6xxfb a6L1lUeaZLlgZh0PZ7G4rvw56Rz7ouDo5KyKueTb1iEavxN+J4SnxwzvjdDBbiHD IoezWuc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:04 2024 by rpki-client on console-ams.rpki-client.org