$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa File: 5CA72CF82A6911EC94518740C4F9AE02.roa (raw, json) Hash identifier: DNv6RERe4SqIzEBmNx3Q6xCWL7cpJvtrVCrMm/mBf0c= Subject key identifier: 48:85:00:1B:60:77:C4:15:FA:D1:C7:49:95:1E:B8:21:1A:F7:47:4F Certificate issuer: /CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Certificate serial: 0437 Authority key identifier: 08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:44:11 +0000 ROA not before: Tue 03 Sep 2024 01:44:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 9723 IP address blocks: 103.38.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF7FC/serialNumber=08D9F483E4542158F62CBE705869EBED77FB927F Validity Not Before: Sep 3 01:44:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d669eb-1ade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:09:9d:37:73:4a:c4:63:c2:27:b7:1c:5c:18: 53:41:42:f1:fc:ce:87:4f:70:fc:27:72:b8:e9:78: 25:b3:c4:fc:44:ba:88:98:e7:5e:86:fe:52:b8:66: ee:3a:33:fd:dd:11:6d:e0:87:76:21:7d:77:b8:65: b9:cb:39:a8:d6:3f:ab:f5:09:e9:f0:ab:a3:49:90: 9e:9b:68:cb:75:ed:3b:32:b7:e7:e5:f1:44:26:3b: cc:01:85:4c:46:f7:28:12:e0:bd:d1:9d:9b:06:09: 67:a2:a7:b5:3c:33:c1:3f:b2:b7:cf:cf:89:7c:8b: da:6f:60:c4:bf:70:8d:57:e0:86:3e:c0:bf:7d:ad: 8b:60:8a:c3:11:0b:ea:2d:b2:20:2d:52:96:a6:9e: 07:fe:bc:41:83:22:74:6a:fe:c6:bd:44:95:d0:5d: 81:84:10:c8:1a:69:e4:47:f5:3c:db:5a:35:62:4a: 99:83:ff:c5:4e:f3:de:22:f5:9a:fe:7b:21:85:f3: 68:8f:ec:2b:63:ab:90:91:83:84:8b:8b:dc:79:aa: 48:65:9a:17:fe:59:31:cb:43:6d:6c:6f:15:c9:e6: 21:1b:e7:42:af:46:6a:ef:16:99:03:6b:43:1d:3b: cc:c3:5b:6f:ec:be:d2:b8:a1:ff:61:ed:80:b5:52: 8c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:85:00:1B:60:77:C4:15:FA:D1:C7:49:95:1E:B8:21:1A:F7:47:4F X509v3 Authority Key Identifier: keyid:08:D9:F4:83:E4:54:21:58:F6:2C:BE:70:58:69:EB:ED:77:FB:92:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNn0g-RUIVj2LL5wWGnr7Xf7kn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF7FC/4E23B39C2A6211ECA9A67C30C4F9AE02/5CA72CF82A6911EC94518740C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.10.0/23 Signature Algorithm: sha256WithRSAEncryption b7:6a:a8:89:0d:72:ab:00:10:54:b8:81:4c:58:66:38:0b:4e: 79:ea:22:dd:e0:34:21:94:d5:71:a5:cc:30:56:65:a3:dd:b8: 47:59:cf:ec:b7:e3:bf:62:93:a1:f9:61:b6:db:da:51:b4:3a: 4c:a8:1d:ee:f0:6d:58:ba:db:6d:ba:e7:30:74:cf:92:ee:62: a5:a1:c4:fd:cf:12:9e:77:d9:38:b0:55:cc:f6:c9:df:7f:57: 1b:86:5c:c9:07:34:35:fa:98:ae:85:f6:7f:83:ee:4d:4b:e7: 63:6d:0b:40:b5:86:c4:10:08:c2:28:47:fb:75:74:3c:29:2c: 4e:c0:f7:05:a4:88:a9:d3:59:73:41:da:99:6f:ab:f0:af:bc: 6a:35:c1:6d:5f:70:fc:87:15:1b:bb:35:8d:a3:28:c8:ea:60: 45:b5:cb:20:0e:ec:ed:50:d4:20:42:e7:76:52:f3:c5:0a:a0: 5c:8c:57:f7:c4:9f:94:72:03:b3:37:bb:e3:47:a0:09:64:e2: 48:da:a6:9c:23:f6:fa:79:d7:02:2f:03:70:b6:34:e2:f7:a3: 6a:9a:f4:c7:67:97:e7:4f:2e:96:4b:b9:ec:ed:3a:85:5c:ef: a7:1c:ab:ce:1a:27:56:c6:ed:b3:ef:fe:ea:8e:1e:2b:42:a9: fc:7b:a4:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3RkMxMTAvBgNVBAUTKDA4RDlGNDgzRTQ1NDIxNThGNjJDQkU3MDU4NjlFQkVE NzdGQjkyN0YwHhcNMjQwOTAzMDE0NDExWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjllYi0xYWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQmdN3NKxGPCJ7ccXBhTQULx/M6HT3D8J3K46Xgls8T8RLqImOdehv5SuGbu OjP93RFt4Id2IX13uGW5yzmo1j+r9Qnp8KujSZCem2jLde07Mrfn5fFEJjvMAYVM RvcoEuC90Z2bBglnoqe1PDPBP7K3z8+JfIvab2DEv3CNV+CGPsC/fa2LYIrDEQvq LbIgLVKWpp4H/rxBgyJ0av7GvUSV0F2BhBDIGmnkR/U821o1YkqZg//FTvPeIvWa /nshhfNoj+wrY6uQkYOEi4vceapIZZoX/lkxy0NtbG8VyeYhG+dCr0Zq7xaZA2tD HTvMw1tv7L7SuKH/Ye2AtVKMpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEiFABtg d8QV+tHHSZUeuCEa90dPMB8GA1UdIwQYMBaAFAjZ9IPkVCFY9iy+cFhp6+13+5J/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjdGQy80RTIzQjM5QzJB NjIxMUVDQTlBNjdDMzBDNEY5QUUwMi9DTm4wZy1SVUlWajJMTDV3V0ducjdYZjdr bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NObjBnLVJVSVZqMkxMNXdXR25yN1hmN2tuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY3RkMvNEUyM0IzOUMyQTYyMTFFQ0E5QTY3QzMwQzRGOUFFMDIvNUNBNzJDRjgy QTY5MTFFQzk0NTE4NzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJgowDQYJKoZIhvcNAQELBQADggEBALdqqIkNcqsAEFS4 gUxYZjgLTnnqIt3gNCGU1XGlzDBWZaPduEdZz+y3479ik6H5Ybbb2lG0OkyoHe7w bVi622265zB0z5LuYqWhxP3PEp532TiwVcz2yd9/VxuGXMkHNDX6mK6F9n+D7k1L 52NtC0C1hsQQCMIoR/t1dDwpLE7A9wWkiKnTWXNB2plvq/CvvGo1wW1fcPyHFRu7 NY2jKMjqYEW1yyAO7O1Q1CBC53ZS88UKoFyMV/fEn5RyA7M3u+NHoAlk4kjappwj 9vp51wIvA3C2NOL3o2qa9Mdnl+dPLpZLueztOoVc76ccq84aJ1bG7bPv/uqOHitC qfx7pC0= -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:07 2024 by rpki-client on console-ams.rpki-client.org