$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/4A7E3036340811ED9D3D7620C4F9AE02.roa File: 4A7E3036340811ED9D3D7620C4F9AE02.roa (raw, json) Hash identifier: tzptSWrCu7leujBpAxl0r7s1OXoHlY5rMMlXgr5Raxw= Subject key identifier: A2:99:06:10:50:34:09:8F:C6:37:A2:F6:E9:7F:A6:70:93:0E:8F:E1 Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1449 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/4A7E3036340811ED9D3D7620C4F9AE02.roa Signing time: Thu 02 May 2024 17:35:36 +0000 ROA not before: Thu 02 May 2024 17:35:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 396982 IP address blocks: 103.114.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5193 (0x1449) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: May 2 17:35:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633cee7-f744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:a1:95:03:a5:5f:66:8d:04:30:ba:7a:c0: b6:b0:e9:c6:5c:30:89:19:40:8b:b7:93:fc:68:11: 30:f3:e8:e0:73:f6:f4:69:b5:60:5f:d6:83:12:a6: 8f:9e:92:c5:86:63:42:95:b3:c8:37:fd:e4:bf:96: 33:4e:b8:4c:42:1a:a3:58:f5:07:ad:38:14:bb:ae: 0f:19:dc:d0:36:c0:56:67:da:9d:98:93:bf:55:07: 1e:db:50:de:db:9f:ad:bf:83:28:d4:5d:32:1e:8c: 37:22:84:00:56:35:f1:4c:78:29:47:00:74:8e:5c: eb:24:42:dd:f9:75:13:31:8b:2c:ce:42:52:8a:77: 52:6c:1a:50:94:3f:3e:22:8d:79:74:5f:05:12:a1: aa:e3:a3:4b:33:be:a8:09:1e:01:82:20:94:84:24: 4b:36:3d:b8:8e:bd:33:a3:8c:6e:a3:92:a2:7d:b7: 69:1f:e2:9e:76:84:b8:75:04:16:d8:1c:e2:fe:ba: dc:e3:19:b2:29:21:f8:ca:b3:1f:32:e8:3c:50:f8: aa:18:d6:9a:bf:9a:b8:c1:26:c2:d4:a8:6b:fe:c8: 37:d8:98:3b:08:40:be:ca:1d:06:10:f3:cc:81:0c: d2:cb:71:08:b0:9e:9a:7f:8b:10:6e:79:36:03:a3: 54:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:99:06:10:50:34:09:8F:C6:37:A2:F6:E9:7F:A6:70:93:0E:8F:E1 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/4A7E3036340811ED9D3D7620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.176.0/22 Signature Algorithm: sha256WithRSAEncryption ca:9f:90:68:42:38:9b:56:6b:33:27:78:f3:8d:16:df:91:3b: 05:39:43:d8:b8:4e:32:13:0d:8d:6d:bc:f4:54:fa:1e:0d:bb: 03:46:68:24:82:5a:02:46:e8:d2:e1:db:82:77:31:78:03:ac: d4:23:e5:89:85:fb:bd:f7:41:11:de:53:b2:d4:bc:5e:93:aa: 3a:2b:d4:3c:f8:ca:04:33:20:ce:65:b9:c1:18:62:97:bf:cc: bc:0a:56:ea:5b:58:ba:ae:fe:39:65:00:b7:98:da:96:ac:47: 51:8c:87:89:75:16:90:db:39:89:22:fd:a8:ec:b7:9a:c0:c5: 91:ab:9a:80:63:61:76:d8:53:e8:ed:61:4b:18:c9:db:fe:96: 73:35:21:00:7e:71:4a:e9:46:53:b7:7f:88:77:a7:55:89:f8: fb:80:27:00:a9:ea:86:d3:8d:61:84:bb:4c:3c:f8:2b:eb:8a: f0:c2:37:45:a2:d3:9c:4b:68:d0:f3:e5:71:29:9c:c8:f8:58: 7f:db:1d:d8:b0:75:4d:81:ff:b5:d7:50:88:85:bf:78:65:f7: 79:13:ce:da:4d:70:70:2c:60:2c:dd:c8:d4:c0:d9:aa:d2:76: 7c:4c:60:7c:d3:79:2a:ff:84:b3:3b:61:13:b5:8d:0a:ed:f4: 5f:07:72:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjQwNTAyMTczNTM2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzY2VlNy1mNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtn+hlQOlX2aNBDC6esC2sOnGXDCJGUCLt5P8aBEw8+jgc/b0abVgX9aDEqaP npLFhmNClbPIN/3kv5YzTrhMQhqjWPUHrTgUu64PGdzQNsBWZ9qdmJO/VQce21De 25+tv4Mo1F0yHow3IoQAVjXxTHgpRwB0jlzrJELd+XUTMYsszkJSindSbBpQlD8+ Io15dF8FEqGq46NLM76oCR4BgiCUhCRLNj24jr0zo4xuo5KifbdpH+KedoS4dQQW 2Bzi/rrc4xmyKSH4yrMfMug8UPiqGNaav5q4wSbC1Khr/sg32Jg7CEC+yh0GEPPM gQzSy3EIsJ6af4sQbnk2A6NUpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKKZBhBQ NAmPxjei9ul/pnCTDo/hMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY1RTQvNzkzOTczMjA0RDAwMTFFOEEwMjZFMTRBQzRGOUFFMDIvNEE3RTMwMzYz NDA4MTFFRDlEM0Q3NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncrAwDQYJKoZIhvcNAQELBQADggEBAMqfkGhCOJtWazMn ePONFt+ROwU5Q9i4TjITDY1tvPRU+h4NuwNGaCSCWgJG6NLh24J3MXgDrNQj5YmF +733QRHeU7LUvF6Tqjor1Dz4ygQzIM5lucEYYpe/zLwKVupbWLqu/jllALeY2pas R1GMh4l1FpDbOYki/ajst5rAxZGrmoBjYXbYU+jtYUsYydv+lnM1IQB+cUrpRlO3 f4h3p1WJ+PuAJwCp6obTjWGEu0w8+CvrivDCN0Wi05xLaNDz5XEpnMj4WH/bHdiw dU2B/7XXUIiFv3hl93kTztpNcHAsYCzdyNTA2arSdnxMYHzTeSr/hLM7YRO1jQrt 9F8Hckc= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:11 2024 by rpki-client on console-ams.rpki-client.org