$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa File: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (raw, json) Hash identifier: ZHGzWJkY5sAYDc6BSvOrCRXQaApvHMzRRyro0XTmGHU= Subject key identifier: EB:47:F1:62:52:57:0B:12:0A:E8:7A:83:D3:F1:C9:57:38:AC:D1:24 Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 0142 Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa Signing time: Mon 18 Nov 2024 07:29:12 +0000 ROA not before: Mon 18 Nov 2024 07:29:12 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 395793 IP address blocks: 103.83.40.0/24 maxlen: 24 103.83.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Validity Not Before: Nov 18 07:29:12 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=673aecc8-6685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:58:8e:3e:3f:cf:8c:07:a3:65:78:14:7d:dc: 22:c8:55:8a:5e:68:4f:71:05:95:fc:88:38:c4:5a: 66:32:2a:ee:3b:89:11:92:7a:2e:36:af:78:0b:ec: c3:a0:a1:e4:96:8f:29:88:a7:0a:84:fc:37:ad:a9: fb:d0:20:90:f7:e3:69:33:cf:bf:b8:2f:ae:ed:46: dd:bb:f5:20:dc:23:31:53:3d:55:ca:ce:f2:02:9e: c8:15:04:02:d5:c1:d2:43:e4:4c:fa:52:e3:e7:13: ac:d5:b8:03:c0:bc:cf:c4:ee:59:38:e6:27:71:a1: 92:65:a0:3f:ce:65:64:74:d3:ce:1d:d6:21:22:c4: 5b:9c:e5:b0:1c:1e:48:31:ed:b3:c6:ce:58:76:26: 76:4a:67:3a:8f:2e:e8:c3:b7:e2:e0:0f:fa:a3:43: 20:90:c3:fe:de:69:b8:76:2b:96:b6:60:eb:38:d2: cd:d4:04:62:38:3a:dd:82:21:6f:b1:95:77:dc:af: 59:a4:e1:a0:58:f6:8b:ba:99:57:e4:64:31:71:67: ae:4b:be:b0:2c:a4:78:da:ab:ee:20:f9:b8:5d:e3: 91:69:19:97:f0:ed:c0:73:31:3f:4c:35:dd:c3:63: 6a:a3:2c:f5:97:0a:a4:19:07:cd:69:bd:96:b3:9c: d9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:47:F1:62:52:57:0B:12:0A:E8:7A:83:D3:F1:C9:57:38:AC:D1:24 X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.40.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:72:7f:50:ea:0e:3b:a6:8d:c0:a7:45:3d:57:21:00:b5:c2: 6e:1a:53:97:1f:73:7f:c9:b9:fd:8d:df:81:53:a4:3a:72:90: 87:16:d4:a0:c0:55:a2:c2:34:21:a5:9f:68:b3:73:c0:a7:ef: cb:95:88:31:f7:c6:aa:59:a7:9a:36:40:ae:d7:0f:27:32:33: 6f:a2:4a:3c:2b:a3:6e:94:93:61:7c:e8:80:40:6a:05:1f:af: 1c:9a:37:e9:7e:4e:3d:5a:0e:e5:f1:e1:de:4c:82:3c:93:a0: 7c:5b:ce:57:64:b4:5d:e7:80:37:69:46:83:60:c0:2d:ce:6a: 06:28:cf:89:e7:3d:d1:e9:e8:db:0d:ae:c1:2d:c6:12:17:82: 78:af:9b:b6:89:02:00:77:44:1b:a1:32:81:59:e1:07:d8:9b: 4c:41:73:af:94:5f:de:57:a9:36:28:f4:2f:ce:82:5b:6e:48: 1e:b4:bd:c2:f4:b4:51:ac:1c:4f:67:47:1d:ac:a6:97:47:57: 01:90:b0:a7:e1:38:fc:d1:61:80:57:c4:45:f0:b8:d8:9a:6c: dc:cb:98:aa:85:43:9b:59:84:08:03:87:83:4c:10:77:e2:03: 6c:00:14:d3:6d:40:3e:5e:9f:9d:4c:9f:51:09:fc:8e:c6:0a: 21:a0:29:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjQxMTE4MDcyOTEyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhZWNjOC02Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3liOPj/PjAejZXgUfdwiyFWKXmhPcQWV/Ig4xFpmMiruO4kRknouNq94C+zD oKHklo8piKcKhPw3ran70CCQ9+NpM8+/uC+u7Ubdu/Ug3CMxUz1Vys7yAp7IFQQC 1cHSQ+RM+lLj5xOs1bgDwLzPxO5ZOOYncaGSZaA/zmVkdNPOHdYhIsRbnOWwHB5I Me2zxs5YdiZ2Smc6jy7ow7fi4A/6o0MgkMP+3mm4diuWtmDrONLN1ARiODrdgiFv sZV33K9ZpOGgWPaLuplX5GQxcWeuS76wLKR42qvuIPm4XeORaRmX8O3AczE/TDXd w2Nqoyz1lwqkGQfNab2Ws5zZdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOtH8WJS VwsSCuh6g9PxyVc4rNEkMB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBOTEvOTQyMEQyMTAwQTVBMTFFRUEzRjVCNDQxQzRGOUFFMDIvQ0U2NUE0RTRB NTdFMTFFRkExQjZFNDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnUygwDQYJKoZIhvcNAQELBQADggEBAIpyf1DqDjumjcCn RT1XIQC1wm4aU5cfc3/Juf2N34FTpDpykIcW1KDAVaLCNCGln2izc8Cn78uViDH3 xqpZp5o2QK7XDycyM2+iSjwro26Uk2F86IBAagUfrxyaN+l+Tj1aDuXx4d5MgjyT oHxbzldktF3ngDdpRoNgwC3OagYoz4nnPdHp6NsNrsEtxhIXgnivm7aJAgB3RBuh MoFZ4QfYm0xBc6+UX95XqTYo9C/OgltuSB60vcL0tFGsHE9nRx2sppdHVwGQsKfh OPzRYYBXxEXwuNiabNzLmKqFQ5tZhAgDh4NMEHfiA2wAFNNtQD5en51Mn1EJ/I7G CiGgKUQ= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:22 2024 by rpki-client on console-ams.rpki-client.org