$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa File: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (raw, json) Hash identifier: fZINIbheYfqPSlmD4xMT4zKcUz3FSELZ4ZHi11Z85ho= Subject key identifier: 38:39:3E:70:AE:A7:51:7B:51:D6:E6:EF:44:A8:F1:D2:99:74:B9:7B Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 0271 Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa Signing time: Fri 01 Mar 2024 03:56:51 +0000 ROA not before: Fri 01 Mar 2024 03:56:51 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135341 IP address blocks: 103.179.59.0/24 maxlen: 24 2400:d1a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: Mar 1 03:56:51 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65e15203-f0d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ea:d6:e8:2e:26:c1:b3:0b:f6:fa:d4:69:c0: 8b:46:31:e8:80:6b:9c:c9:e7:6b:ae:ae:90:45:42: 4d:24:e3:df:d0:d6:43:c0:34:75:63:68:27:86:12: 78:62:6f:d2:a6:c2:43:17:a2:4c:3e:20:1b:d1:6f: e0:2b:e8:9e:95:43:41:5e:48:64:a4:7d:91:69:da: a0:f9:99:dd:d7:1c:1f:fd:10:54:08:0a:6b:b0:52: 4c:fd:68:f0:67:b5:4f:9d:7b:9c:fe:50:a9:6e:e7: 78:33:1e:d6:4b:cf:2e:02:bb:d7:a7:20:32:5a:6d: 66:e3:86:7f:6d:a8:5e:7d:8b:f5:a5:86:b9:ed:fc: 2d:ca:00:b5:8f:03:1d:fa:2e:70:cc:33:79:8b:a5: 0a:66:67:27:bd:54:21:bd:76:72:36:52:c2:74:78: 86:a7:e7:9b:1d:03:d2:5a:c1:b5:79:80:1d:22:ff: c9:40:89:62:e2:96:4b:2f:ae:5a:3d:32:7b:a3:c7: e4:7c:98:80:f5:5e:6e:b3:cb:bd:bd:c7:73:7b:31: 0d:0e:60:e1:bb:03:e2:a0:5c:99:38:4f:a6:f8:d0: a7:37:7d:52:d6:19:b5:4f:88:7d:b5:5e:e2:a2:20: 0f:08:7e:7c:72:2a:a9:a9:1f:9b:18:32:b9:33:de: 52:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:39:3E:70:AE:A7:51:7B:51:D6:E6:EF:44:A8:F1:D2:99:74:B9:7B X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.59.0/24 IPv6: 2400:d1a0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 6b:19:05:50:e5:4e:f6:dd:37:41:08:60:0b:27:ef:f1:b2:1d: d1:e4:ae:04:d5:41:28:76:bb:07:3f:a0:2c:89:00:72:15:1b: ae:d9:33:93:96:38:2a:7f:26:a9:e4:e9:27:34:80:c3:61:64: d3:77:95:45:ad:3a:dd:16:e2:07:f7:95:77:03:bc:ef:b0:30: 37:3a:5f:b9:c2:df:e4:91:48:e6:68:bb:a2:14:ea:d3:d2:fa: 79:51:cc:82:c2:61:a9:4f:26:5b:6e:a0:ab:95:5e:af:22:82: 34:40:ef:6d:a2:bb:89:1c:0e:30:cb:67:50:df:f1:fc:f9:20: c5:f5:22:fb:e0:ca:af:81:0c:cb:80:a6:4c:a2:2b:08:da:94: 33:bb:9c:0e:f5:ba:5f:02:52:d1:9d:c4:2e:6e:c8:19:b1:02: 75:43:43:95:a4:4c:d9:6b:36:3e:1f:4b:62:bd:f2:76:a6:b6: 6e:e0:53:3b:2a:56:8f:be:6d:f2:e0:66:8e:23:84:54:e4:0b: 39:29:a5:c5:cf:31:7e:45:71:fd:15:2d:0c:ac:79:6a:7d:2d: d3:5f:bd:17:2c:88:7b:5b:91:c9:67:b3:67:41:c1:7a:60:e3: cb:84:2f:88:4b:50:08:c8:f8:8d:0f:ab:8d:99:89:6e:1c:14: 39:04:37:4b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjQwMzAxMDM1NjUxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxNTIwMy1mMGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OrW6C4mwbML9vrUacCLRjHogGucyedrrq6QRUJNJOPf0NZDwDR1Y2gnhhJ4 Ym/SpsJDF6JMPiAb0W/gK+ielUNBXkhkpH2Radqg+Znd1xwf/RBUCAprsFJM/Wjw Z7VPnXuc/lCpbud4Mx7WS88uArvXpyAyWm1m44Z/bahefYv1pYa57fwtygC1jwMd +i5wzDN5i6UKZmcnvVQhvXZyNlLCdHiGp+ebHQPSWsG1eYAdIv/JQIli4pZLL65a PTJ7o8fkfJiA9V5us8u9vcdzezENDmDhuwPioFyZOE+m+NCnN31S1hm1T4h9tV7i oiAPCH58ciqpqR+bGDK5M95SSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDg5PnCu p1F7Udbm70So8dKZdLl7MB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRBMUQvQjQ2RTQyREFCQjFCMTFFQ0IwQUMwRjE0QzRGOUFFMDIvMDU4OUE0QjhE Rjk1MTFFREFBQTdFMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnszswDgQCAAIwCAMGBCQA0aDwMA0GCSqGSIb3DQEBCwUA A4IBAQBrGQVQ5U723TdBCGALJ+/xsh3R5K4E1UEodrsHP6AsiQByFRuu2TOTljgq fyap5OknNIDDYWTTd5VFrTrdFuIH95V3A7zvsDA3Ol+5wt/kkUjmaLuiFOrT0vp5 UcyCwmGpTyZbbqCrlV6vIoI0QO9toruJHA4wy2dQ3/H8+SDF9SL74MqvgQzLgKZM oisI2pQzu5wO9bpfAlLRncQubsgZsQJ1Q0OVpEzZazY+H0tivfJ2prZu4FM7KlaP vm3y4GaOI4RU5As5KaXFzzF+RXH9FS0MrHlqfS3TX70XLIh7W5HJZ7NnQcF6YOPL hC+IS1AIyPiND6uNmYluHBQ5BDdL -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:13 2024 by rpki-client on console-ams.rpki-client.org