$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa File: DD267C66316511EFB284A421C4F9AE02.roa (raw, json) Hash identifier: fBqSW8jISb6HiF16XH44dQP540yVqiuhIc6mypavGXQ= Subject key identifier: 50:1B:7D:DF:9B:90:05:A5:D8:19:B5:92:0E:E0:EA:B7:D0:28:5C:59 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 37 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa Signing time: Sun 23 Jun 2024 13:38:24 +0000 ROA not before: Sun 23 Jun 2024 13:38:24 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 23470 IP address blocks: 103.14.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Jun 23 13:38:24 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66782550-ccf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:69:22:7b:f4:94:f2:a0:09:3e:a1:ec:dd:a1: d9:6a:1a:db:37:e3:00:89:2a:0a:4e:39:70:e5:9a: 77:8d:c4:8f:cf:2c:cc:14:82:70:01:65:16:b3:f9: e2:fa:40:74:46:28:92:d1:1d:ec:23:00:48:44:9b: b6:ed:12:11:99:6f:3b:3c:67:50:38:63:ae:91:cd: a0:62:0b:0f:af:ab:2c:84:0c:34:99:3c:76:77:f7: 44:04:73:b4:f2:94:79:7c:1d:ee:98:92:23:d3:8d: 3c:36:17:ea:68:95:a9:2c:be:9d:16:77:51:15:63: 13:60:a3:b3:af:c3:49:a7:a2:bc:a4:ca:9b:8c:87: 4e:7b:78:4c:2d:f8:5b:e8:b7:4e:d5:70:2e:81:05: 73:f4:46:6d:62:ed:1e:5d:7f:ec:68:cd:ed:75:42: 05:20:f0:8d:45:3b:27:45:e7:2f:9a:82:85:de:32: b6:b2:c7:cc:20:73:d6:66:0b:7e:ec:41:92:d1:2c: 3e:3a:e3:be:ab:16:b7:f7:6c:4d:c7:7d:bc:15:fd: 9c:4e:a3:06:d3:19:79:bb:b9:8f:ea:9d:c1:20:64: da:35:bb:db:55:ff:b5:78:0a:a1:cb:06:ca:eb:f2: 8e:d3:2a:53:2d:b7:88:65:e1:00:6a:c5:15:e9:7d: 3e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:1B:7D:DF:9B:90:05:A5:D8:19:B5:92:0E:E0:EA:B7:D0:28:5C:59 X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/DD267C66316511EFB284A421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.22.0/24 Signature Algorithm: sha256WithRSAEncryption 00:3e:28:05:5d:1a:50:6a:53:48:95:55:07:08:cc:7f:ce:71: 40:cf:e0:27:6a:88:0e:d8:14:3b:5d:fe:6a:1b:53:e8:4d:bd: 44:bc:ab:b5:e2:fa:41:af:2e:51:7c:39:90:0e:2d:e9:84:05: 59:1a:3a:dd:c1:f4:12:2e:4c:c7:31:51:1e:9a:70:e7:11:5a: e9:7b:b4:9f:cb:98:73:75:31:ca:e9:42:ae:2f:96:27:ec:c7: 6d:41:59:a2:ae:be:4e:ac:31:92:2a:6b:1f:21:1d:5c:46:58: 6b:74:ab:fa:4d:1a:5a:81:9b:07:94:82:a8:2c:39:98:f1:34: 5f:6d:98:7b:a1:ad:b7:d1:e6:2a:97:9a:ad:45:bb:fb:62:6f: f2:48:18:17:67:27:96:44:60:48:26:53:5d:c9:9f:16:2e:2c: b4:e2:e7:2a:9d:1c:66:60:dc:40:49:69:bc:ee:b8:c1:43:af: ad:08:4b:28:c9:69:c7:70:1f:79:72:fe:03:a4:4c:af:d1:88: 8e:69:9d:7d:96:d4:37:f6:b2:87:4b:a6:ce:f1:19:02:9a:8b: ba:3c:4a:91:42:80:1a:b8:6b:72:9c:c1:f6:dc:d0:c1:4a:23: 06:63:e5:28:08:79:11:47:2f:40:20:86:57:9a:b7:72:51:08: 01:65:e4:6d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OTM1MzExMC8GA1UEBRMoQUNEMDQ3RDBEODhFMjY1N0UxMkNGOTEzMDFDMTYwRjFE M0NEMkYzMzAeFw0yNDA2MjMxMzM4MjRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzgyNTUwLWNjZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHaSJ79JTyoAk+oezdodlqGts34wCJKgpOOXDlmneNxI/PLMwUgnABZRaz+eL6 QHRGKJLRHewjAEhEm7btEhGZbzs8Z1A4Y66RzaBiCw+vqyyEDDSZPHZ390QEc7Ty lHl8He6YkiPTjTw2F+polaksvp0Wd1EVYxNgo7Ovw0mnorykypuMh057eEwt+Fvo t07VcC6BBXP0Rm1i7R5df+xoze11QgUg8I1FOydF5y+agoXeMrayx8wgc9ZmC37s QZLRLD46476rFrf3bE3HfbwV/ZxOowbTGXm7uY/qncEgZNo1u9tV/7V4CqHLBsrr 8o7TKlMtt4hl4QBqxRXpfT5rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUBt935uQ BaXYGbWSDuDqt9AoXFkwHwYDVR0jBBgwFoAUrNBH0NiOJlfhLPkTAcFg8dPNLzMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5MzUzLzA4NzVFNjQ4MDVD NjExRUY4OTYyMEEyNkM0RjlBRTAyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvck5CSDBOaU9KbGZoTFBrVEFjRmc4ZFBOTHpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTM1My8wODc1RTY0ODA1QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9ERDI2N0M2NjMx NjUxMUVGQjI4NEE0MjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcOFjANBgkqhkiG9w0BAQsFAAOCAQEAAD4oBV0aUGpTSJVV BwjMf85xQM/gJ2qIDtgUO13+ahtT6E29RLyrteL6Qa8uUXw5kA4t6YQFWRo63cH0 Ei5MxzFRHppw5xFa6Xu0n8uYc3UxyulCri+WJ+zHbUFZoq6+TqwxkiprHyEdXEZY a3Sr+k0aWoGbB5SCqCw5mPE0X22Ye6Gtt9HmKpearUW7+2Jv8kgYF2cnlkRgSCZT XcmfFi4stOLnKp0cZmDcQElpvO64wUOvrQhLKMlpx3AfeXL+A6RMr9GIjmmdfZbU N/ayh0umzvEZApqLujxKkUKAGrhrcpzB9tzQwUojBmPlKAh5EUcvQCCGV5q3clEI AWXkbQ== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:40 2024 by rpki-client on console-ams.rpki-client.org