$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/F98DEF9A231F11EB99F53580C4F9AE02.roa File: F98DEF9A231F11EB99F53580C4F9AE02.roa (raw, json) Hash identifier: 5v8ULnLB7hAe2Fg8TDMfEBDhvjvsx+AYmHjpRnzhKsw= Subject key identifier: C1:7F:E1:32:4F:A3:F9:18:BC:06:B5:A8:82:BA:17:82:15:D3:8C:AF Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0EFB Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/F98DEF9A231F11EB99F53580C4F9AE02.roa Signing time: Thu 20 Jun 2024 18:08:56 +0000 ROA not before: Thu 20 Jun 2024 18:08:56 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137969 IP address blocks: 103.113.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3835 (0xefb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Jun 20 18:08:56 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66747037-0c7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bc:f4:7d:b1:fa:97:f9:10:13:01:10:88:a1: c6:98:96:38:52:42:83:65:5b:4d:06:2e:b3:fd:b4: 41:da:5e:c5:8c:f9:ad:9e:51:e4:ae:a1:41:59:20: 73:1c:e1:e2:fa:b4:66:71:ab:83:50:12:6d:e2:ba: 59:0e:dd:13:37:92:5b:37:7d:1b:f6:a5:8b:a3:77: 30:24:34:a9:6b:c3:87:9c:02:fe:72:44:dd:a4:aa: 24:da:d5:64:b3:77:61:e1:b5:27:ff:f3:3c:65:35: e7:8c:51:d1:21:ca:90:54:93:42:35:28:62:2c:ff: 26:a8:dd:41:8d:bf:ac:99:8f:1a:cb:41:fe:6e:66: f7:46:4b:bd:00:db:54:c7:fd:24:a7:c1:64:45:6b: 66:7a:78:77:b8:e8:0c:ec:bd:78:59:f0:e8:33:e6: ea:27:89:15:31:8f:09:83:59:d7:39:ee:02:27:aa: 3a:41:89:32:d1:dd:56:3e:2a:e6:ca:44:cc:1f:c1: 96:89:7e:9e:5e:ad:13:bc:79:ec:60:bb:2c:94:ac: f8:d2:c2:55:ce:44:b7:17:6d:f2:56:5e:60:4a:20: 27:7c:24:f1:0f:48:78:a7:5e:21:90:91:61:d9:43: 9d:3e:4c:00:3f:c3:08:a9:45:36:fa:94:aa:d7:ee: 81:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7F:E1:32:4F:A3:F9:18:BC:06:B5:A8:82:BA:17:82:15:D3:8C:AF X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/F98DEF9A231F11EB99F53580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.92.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:b2:d9:e5:e2:e4:ad:5b:09:8f:c2:dd:85:2a:01:84:da:be: 47:c8:82:2e:76:e5:5e:1d:d0:a3:3a:ee:ae:28:a9:34:69:ba: e6:03:04:ba:bd:8f:25:e3:55:d8:29:83:57:fa:08:ae:4e:bd: 47:51:58:5e:23:bc:3d:bf:25:a8:57:c1:c2:4e:5b:03:2f:87: 48:8e:02:5e:a2:66:f1:46:15:6e:0e:04:f1:cb:7c:cb:c1:e3: 38:fe:95:af:9c:b5:57:2e:5f:00:c7:96:08:27:dd:80:50:4e: 42:b7:cb:32:8a:5a:b5:2d:11:7d:05:5d:ff:0f:01:d7:89:cf: ad:75:19:36:38:41:23:95:65:32:26:ce:77:51:22:aa:d2:77: fb:b8:e8:9f:e5:ef:88:62:fa:33:fe:41:f9:8b:7f:df:94:35: 59:b4:47:92:9e:08:16:e4:71:2f:5e:5d:96:8e:0e:c7:de:4d: 02:9c:9d:c8:8a:5f:63:c8:2e:16:85:8e:3c:49:00:90:15:87: ab:c2:1b:22:5b:5b:6a:53:54:01:ab:f3:a6:79:8e:8a:09:9d: d2:81:18:3f:4d:e1:84:2c:75:a8:fd:b5:00:ed:8f:83:57:e7: 53:84:4d:0a:4a:2a:e3:18:28:53:49:60:1b:21:bd:f1:01:40: 89:bd:42:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjQwNjIwMTgwODU2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc0NzAzNy0wYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7z0fbH6l/kQEwEQiKHGmJY4UkKDZVtNBi6z/bRB2l7FjPmtnlHkrqFBWSBz HOHi+rRmcauDUBJt4rpZDt0TN5JbN30b9qWLo3cwJDSpa8OHnAL+ckTdpKok2tVk s3dh4bUn//M8ZTXnjFHRIcqQVJNCNShiLP8mqN1Bjb+smY8ay0H+bmb3Rku9ANtU x/0kp8FkRWtmenh3uOgM7L14WfDoM+bqJ4kVMY8Jg1nXOe4CJ6o6QYky0d1WPirm ykTMH8GWiX6eXq0TvHnsYLsslKz40sJVzkS3F23yVl5gSiAnfCTxD0h4p14hkJFh 2UOdPkwAP8MIqUU2+pSq1+6BCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMF/4TJP o/kYvAa1qIK6F4IV04yvMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNGMDIvQ0NBQjU3NTA2M0YwMTFFOUE5QkNBMTQxQzRGOUFFMDIvRjk4REVGOUEy MzFGMTFFQjk5RjUzNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncVwwDQYJKoZIhvcNAQELBQADggEBAEqy2eXi5K1bCY/C 3YUqAYTavkfIgi525V4d0KM67q4oqTRpuuYDBLq9jyXjVdgpg1f6CK5OvUdRWF4j vD2/JahXwcJOWwMvh0iOAl6iZvFGFW4OBPHLfMvB4zj+la+ctVcuXwDHlggn3YBQ TkK3yzKKWrUtEX0FXf8PAdeJz611GTY4QSOVZTImzndRIqrSd/u46J/l74hi+jP+ QfmLf9+UNVm0R5KeCBbkcS9eXZaODsfeTQKcnciKX2PILhaFjjxJAJAVh6vCGyJb W2pTVAGr86Z5jooJndKBGD9N4YQsdaj9tQDtj4NX51OETQpKKuMYKFNJYBshvfEB QIm9Qms= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org