$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa File: FC0C402A0C9411EFA8D0B354C4F9AE02.roa (raw, json) Hash identifier: kMAJCFT1gQvcnAliudAQJjTlq5Rcm8U1HeBVpIysTGA= Subject key identifier: E1:08:8A:C1:51:29:02:6D:C5:F6:BC:F4:18:F9:46:10:7D:91:D4:BA Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: 10 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa Signing time: Tue 07 May 2024 17:12:29 +0000 ROA not before: Tue 07 May 2024 17:12:29 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 29802 IP address blocks: 103.14.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: May 7 17:12:29 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663a60fd-0d65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:85:33:2f:1d:df:a9:4e:53:9c:ee:e2:e1:8b: 4b:b9:eb:ec:79:e5:46:f1:39:55:be:8d:d5:b0:cf: ac:c3:84:3b:de:26:68:ed:0d:8e:dd:8d:49:9a:3e: d8:11:63:01:d1:51:3d:ed:02:e3:21:ba:f1:46:3a: 5e:9d:03:4f:fc:fe:89:4c:f4:f8:d9:da:83:1c:c2: 8c:5e:e9:61:7a:21:ea:9d:02:ee:d7:34:b1:22:65: 00:0a:3f:42:11:8a:a0:7e:9f:0b:c0:aa:47:5f:09: b4:0f:cb:d9:c1:c1:ba:ff:98:6d:1b:1e:0a:24:04: d8:7a:e4:48:62:56:e0:aa:12:ce:ea:7f:0b:43:d0: 01:65:3f:b7:0b:06:4b:53:05:20:6d:c6:32:dd:50: b4:fc:db:7c:b7:36:ca:e7:d9:72:79:ae:ed:2b:c5: 00:e2:af:86:8c:8b:c4:83:bb:ff:7b:b5:fc:80:df: 60:ae:90:b3:dc:0a:62:23:f3:a3:94:c8:00:69:6c: 4f:f0:ac:59:82:a9:17:59:c9:3a:c8:3a:91:ea:e4: c7:8a:8b:63:22:3c:86:31:9a:9b:96:9e:af:24:4e: 95:a9:1b:5b:b4:a7:e7:bd:62:d6:03:5d:0e:35:8d: 50:6f:c0:7a:3a:d5:e3:88:07:8c:ec:a2:4a:2a:b2: ef:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:08:8A:C1:51:29:02:6D:C5:F6:BC:F4:18:F9:46:10:7D:91:D4:BA X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/FC0C402A0C9411EFA8D0B354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.23.0/24 Signature Algorithm: sha256WithRSAEncryption 11:08:72:a1:0e:a7:76:79:9d:d1:d2:0e:42:d4:f7:74:dc:4a: aa:d6:68:fa:dd:4e:4a:f4:fd:23:0c:8a:b1:7a:e8:d0:79:3a: d0:8e:98:4d:46:a6:d2:02:f5:45:f6:90:a4:39:59:ab:86:7d: f4:78:4d:ee:16:3a:24:0d:e7:77:68:0f:31:e0:b8:04:b8:49: 27:8c:5f:35:57:5b:89:fd:e0:a8:b8:8f:fd:67:f3:9a:0f:a6: 75:5c:b1:3c:9f:8c:df:6d:c4:4f:30:9f:ca:e8:ba:c9:7d:4c: da:9e:33:21:b1:3a:53:22:ec:38:01:09:13:f6:1f:cc:cd:a8: 2c:8a:c7:84:31:00:ee:aa:34:30:63:9f:b8:a0:f2:f3:10:5b: 7c:6d:18:e4:c7:0e:70:cb:d8:ac:8a:67:c1:ba:98:10:11:8e: 87:66:ed:b2:cc:bf:ec:01:9b:0f:4f:0c:b6:bd:1a:94:ad:6d: ab:d5:6c:3c:f7:3d:3e:a2:02:72:8c:d4:c4:0c:12:0d:a1:71: 18:a2:9f:a3:d1:c2:27:35:d0:dd:0d:08:54:69:94:1b:61:a5: 3b:31:08:a8:47:32:e2:16:83:b6:4b:5e:e0:c4:ee:92:28:3e: 57:60:e2:25:36:69:4e:15:0e:bd:4a:e4:2b:2d:cb:09:86:ce: cf:e3:60:2a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OTM1MzExMC8GA1UEBRMoQUNEMDQ3RDBEODhFMjY1N0UxMkNGOTEzMDFDMTYwRjFE M0NEMkYzMzAeFw0yNDA1MDcxNzEyMjlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2E2MGZkLTBkNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQhTMvHd+pTlOc7uLhi0u56+x55UbxOVW+jdWwz6zDhDveJmjtDY7djUmaPtgR YwHRUT3tAuMhuvFGOl6dA0/8/olM9PjZ2oMcwoxe6WF6IeqdAu7XNLEiZQAKP0IR iqB+nwvAqkdfCbQPy9nBwbr/mG0bHgokBNh65EhiVuCqEs7qfwtD0AFlP7cLBktT BSBtxjLdULT823y3Nsrn2XJ5ru0rxQDir4aMi8SDu/97tfyA32CukLPcCmIj86OU yABpbE/wrFmCqRdZyTrIOpHq5MeKi2MiPIYxmpuWnq8kTpWpG1u0p+e9YtYDXQ41 jVBvwHo61eOIB4zsokoqsu+LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4QiKwVEp Am3F9rz0GPlGEH2R1LowHwYDVR0jBBgwFoAUrNBH0NiOJlfhLPkTAcFg8dPNLzMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5MzUzLzA4NzVFNjQ4MDVD NjExRUY4OTYyMEEyNkM0RjlBRTAyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvck5CSDBOaU9KbGZoTFBrVEFjRmc4ZFBOTHpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTM1My8wODc1RTY0ODA1QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9GQzBDNDAyQTBD OTQxMUVGQThEMEIzNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcOFzANBgkqhkiG9w0BAQsFAAOCAQEAEQhyoQ6ndnmd0dIO QtT3dNxKqtZo+t1OSvT9IwyKsXro0Hk60I6YTUam0gL1RfaQpDlZq4Z99HhN7hY6 JA3nd2gPMeC4BLhJJ4xfNVdbif3gqLiP/Wfzmg+mdVyxPJ+M323ETzCfyui6yX1M 2p4zIbE6UyLsOAEJE/YfzM2oLIrHhDEA7qo0MGOfuKDy8xBbfG0Y5McOcMvYrIpn wbqYEBGOh2btssy/7AGbD08Mtr0alK1tq9VsPPc9PqICcozUxAwSDaFxGKKfo9HC JzXQ3Q0IVGmUG2GlOzEIqEcy4haDtkte4MTukig+V2DiJTZpThUOvUrkKy3LCYbO z+NgKg== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:31 2024 by rpki-client on console-ams.rpki-client.org