$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa File: F56B35708C0011ED836F0539C4F9AE02.roa (raw, json) Hash identifier: XDp5vKNqietHWH+1Ug9qbVg9nwovELbR8zTWmvW1PDQ= Subject key identifier: E2:6D:18:0D:58:2A:82:E8:9E:C8:8D:24:CC:57:78:F1:5F:2C:0A:5B Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: C7 Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa Signing time: Wed 17 Jan 2024 05:06:53 +0000 ROA not before: Wed 17 Jan 2024 05:06:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150704 IP address blocks: 103.65.116.0/23 maxlen: 23 103.65.116.0/24 maxlen: 24 103.65.117.0/24 maxlen: 24 2400:d120::/36 maxlen: 36 2400:d120:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 06:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Jan 17 05:06:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a7606d-1329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:30:99:c5:af:93:24:fc:85:db:b1:6b:f4: 2d:99:21:5a:2e:a3:2b:e0:a3:5d:70:44:88:5d:9a: 77:0f:7d:0d:91:06:be:48:3b:f3:3d:07:81:2a:9b: 02:df:1c:06:7f:b9:06:a4:ba:7f:4d:fe:ec:db:e4: b3:89:27:1d:fd:84:06:85:c3:81:a5:e4:9b:a6:eb: ef:90:c4:cd:fc:04:09:6b:65:e0:e4:14:af:a8:49: 70:fb:d9:45:98:a8:87:71:d5:07:42:ad:78:60:c4: 34:9b:40:3c:24:5b:9a:69:31:43:c8:25:2a:ba:ec: b6:b3:40:3f:04:15:37:2c:15:75:56:14:d3:96:67: 3a:b1:dc:fc:5e:18:72:cb:3f:34:9e:8b:a5:64:ab: 7f:64:41:0b:e6:cf:c2:a8:70:50:b6:5e:a1:c0:3a: 79:b2:8c:fe:38:6a:35:51:f2:21:2e:ed:e3:6e:31: dd:9b:b7:bd:60:24:80:46:aa:ec:72:27:41:96:6c: 22:e6:40:bf:fe:e9:59:7d:21:8c:f0:34:c6:ed:a4: 44:e7:cd:96:38:67:f0:dd:f6:91:69:ad:31:e3:2d: 99:fe:81:a5:3c:ad:1f:85:b9:aa:9e:07:ef:da:17: a9:44:d8:13:e7:9b:21:e3:22:61:1e:28:f8:e4:21: 3f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6D:18:0D:58:2A:82:E8:9E:C8:8D:24:CC:57:78:F1:5F:2C:0A:5B X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.116.0/23 IPv6: 2400:d120::/35 Signature Algorithm: sha256WithRSAEncryption 56:75:7f:f1:70:31:d8:b2:ba:b1:69:23:ba:37:3c:4d:41:39: b3:a0:5f:f0:53:31:6c:65:30:fc:e0:cf:e9:5a:01:71:d2:82: 6b:5c:0b:d5:df:67:98:5e:3f:63:b4:ec:a6:66:23:22:8d:b1: f1:8d:f1:91:de:cf:77:3c:39:3e:73:45:b3:ce:22:55:67:94: 66:d5:98:11:93:94:3e:3b:e6:61:8b:43:1d:fa:77:7a:fe:29: d3:45:af:3e:fe:1b:31:79:f6:9d:ba:ec:12:1a:37:01:e3:db: 00:8b:79:36:a0:0e:a0:ac:cc:fb:70:05:dc:c3:8e:33:ff:5d: 02:ba:a0:60:ee:2d:99:04:6f:25:33:bb:56:d6:f5:36:f1:a4: b8:2f:54:66:74:24:1b:c7:77:ed:bc:a4:2e:a2:32:1c:12:82: 88:c9:1a:e1:2d:14:41:92:4b:0c:b9:3d:20:c3:b0:20:28:db: 77:1f:60:34:e3:ca:8e:46:5d:7a:5c:9a:b7:3a:32:de:eb:95: 61:ee:1b:bd:6d:e6:fb:8b:ea:cb:e8:77:5c:7d:6e:35:dc:8b: 82:25:bd:45:59:2c:c8:8a:32:05:e6:f6:a4:79:0f:3f:15:9f: 40:7b:14:e1:7d:54:2f:d7:4a:f9:81:12:cd:22:50:ce:00:1a: 6c:d3:46:98 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjQwMTE3MDUwNjUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3NjA2ZC0xMzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6gwmcWvkyT8hduxa/QtmSFaLqMr4KNdcESIXZp3D30NkQa+SDvzPQeBKpsC 3xwGf7kGpLp/Tf7s2+SziScd/YQGhcOBpeSbpuvvkMTN/AQJa2Xg5BSvqElw+9lF mKiHcdUHQq14YMQ0m0A8JFuaaTFDyCUquuy2s0A/BBU3LBV1VhTTlmc6sdz8Xhhy yz80noulZKt/ZEEL5s/CqHBQtl6hwDp5soz+OGo1UfIhLu3jbjHdm7e9YCSARqrs cidBlmwi5kC//ulZfSGM8DTG7aRE582WOGfw3faRaa0x4y2Z/oGlPK0fhbmqngfv 2hepRNgT55sh4yJhHij45CE/4QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOJtGA1Y KoLonsiNJMxXePFfLApbMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NCOEIvREQwNDczRkE4QkZEMTFFRDk4M0U1QzMyQzRGOUFFMDIvRjU2QjM1NzA4 QzAwMTFFRDgzNkYwNTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnQXQwDgQCAAIwCAMGBSQA0SAAMA0GCSqGSIb3DQEBCwUA A4IBAQBWdX/xcDHYsrqxaSO6NzxNQTmzoF/wUzFsZTD84M/pWgFx0oJrXAvV32eY Xj9jtOymZiMijbHxjfGR3s93PDk+c0WzziJVZ5Rm1ZgRk5Q+O+Zhi0Md+nd6/inT Ra8+/hsxefaduuwSGjcB49sAi3k2oA6grMz7cAXcw44z/10CuqBg7i2ZBG8lM7tW 1vU28aS4L1RmdCQbx3ftvKQuojIcEoKIyRrhLRRBkksMuT0gw7AgKNt3H2A048qO Rl16XJq3OjLe65Vh7hu9beb7i+rL6HdcfW413IuCJb1FWSzIijIF5vakeQ8/FZ9A exThfVQv10r5gRLNIlDOABps00aY -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:29 2024 by rpki-client on console-fra.rpki-client.org