$ rpki-client -vvf rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/0361CF86560211EB97A98D46C4F9AE02.roa File: 0361CF86560211EB97A98D46C4F9AE02.roa (raw, json) Hash identifier: +cH8RmJhdymM82G2tjdg2T5wIUQwcB/rD1A615a7HRQ= Subject key identifier: E8:9C:94:E4:41:41:CE:76:20:67:32:B1:6A:68:D2:8B:45:C5:45:5B Certificate issuer: /CN=A91411C0/serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Certificate serial: 063C Authority key identifier: C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/0361CF86560211EB97A98D46C4F9AE02.roa Signing time: Fri 02 Aug 2024 23:41:35 +0000 ROA not before: Fri 02 Aug 2024 23:41:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131230 IP address blocks: 103.68.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411C0/serialNumber=C423B080326233DAC08CC30D74A65FF4A529D09A Validity Not Before: Aug 2 23:41:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ad6eae-8005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:df:27:ff:ad:b2:d8:dc:ac:e4:68:2f:e3:fa: ce:27:6c:38:41:e1:3a:70:6a:95:24:ff:b5:e6:9f: 12:b5:f7:25:66:a9:aa:d4:8a:0f:a9:e4:51:a0:a3: a9:33:ea:65:58:82:2e:89:63:d7:a8:43:32:04:23: de:3a:b3:58:92:d1:aa:9e:c4:a3:0a:65:63:7c:62: 46:4e:bc:46:fd:e4:58:60:97:3f:54:5f:9d:f3:69: 43:9d:49:4b:88:73:1a:00:a7:81:48:77:99:f9:23: 2b:ba:3f:f9:5b:29:87:52:0d:5f:28:3e:42:9f:99: 6d:b8:80:81:cb:a9:07:f6:f9:8d:ea:4e:91:19:48: 7e:5b:8f:89:c4:93:b4:40:09:3e:83:42:16:25:20: 62:90:e0:82:35:69:d7:b4:3d:94:f2:e9:48:0b:da: 49:f1:1c:f5:8b:de:95:9c:58:7f:5d:ff:2d:2e:0c: ba:d2:bd:bd:b9:6c:bf:e6:f4:af:3f:e9:9a:eb:8a: 3f:01:14:c2:86:d0:c6:2f:2e:01:5b:ec:f9:f6:34: e7:4b:36:02:d3:0c:4c:94:5a:8c:ca:c8:d2:56:8d: f3:31:bc:1e:45:f4:04:22:eb:92:4b:43:ae:63:ec: 73:40:a4:c1:d0:b1:a7:05:21:eb:78:04:08:50:b7: 92:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9C:94:E4:41:41:CE:76:20:67:32:B1:6A:68:D2:8B:45:C5:45:5B X509v3 Authority Key Identifier: keyid:C4:23:B0:80:32:62:33:DA:C0:8C:C3:0D:74:A6:5F:F4:A5:29:D0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCOwgDJiM9rAjMMNdKZf9KUp0Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411C0/B960375855FF11EBBC36C843C4F9AE02/0361CF86560211EB97A98D46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.124.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:38:91:4c:ae:d0:4e:8e:56:aa:f0:d5:e8:60:9c:6a:7e:5a: c1:11:8f:d8:91:2d:0b:26:17:e7:bd:8e:d1:ce:71:18:a0:00: dd:06:26:54:77:b6:97:30:9b:d5:f5:2a:1b:ad:05:e5:80:28: b2:aa:0a:53:57:a5:a6:21:84:90:b8:85:fc:5e:d6:ca:b0:4f: 4c:36:66:e5:5d:18:92:a3:c7:cc:2a:a8:fe:76:88:e1:b7:e0: 5d:d4:90:4c:81:bc:32:a2:ca:c0:30:87:6d:4f:19:42:0c:d3: d5:f4:51:23:b7:6e:91:f0:ac:88:5e:3e:c0:a2:06:3d:33:3a: d4:4d:ba:0f:06:54:3d:52:ae:72:46:e3:f4:89:27:ea:0b:29: e6:37:61:28:05:39:35:3d:7a:4e:f9:93:fb:ad:4b:30:cc:da: 87:d1:d9:3a:01:a0:df:23:59:b1:8a:2a:a1:6f:fd:e5:51:07: d6:42:a1:ff:b4:96:da:c8:64:70:14:9b:cb:2b:ee:61:25:2a: 92:77:19:12:cb:13:d3:50:25:ec:c2:fe:85:68:c8:6f:04:67: 79:f6:d0:01:e9:d6:a2:c7:12:a5:bc:c1:0d:1a:16:78:c4:91: 96:f5:91:01:12:ae:7c:63:22:c3:27:76:05:aa:3b:96:68:29: bc:31:c9:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQzAxMTAvBgNVBAUTKEM0MjNCMDgwMzI2MjMzREFDMDhDQzMwRDc0QTY1RkY0 QTUyOUQwOUEwHhcNMjQwODAyMjM0MTM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNmVhZS04MDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAod8n/62y2Nys5Ggv4/rOJ2w4QeE6cGqVJP+15p8StfclZqmq1IoPqeRRoKOp M+plWIIuiWPXqEMyBCPeOrNYktGqnsSjCmVjfGJGTrxG/eRYYJc/VF+d82lDnUlL iHMaAKeBSHeZ+SMruj/5WymHUg1fKD5Cn5ltuICBy6kH9vmN6k6RGUh+W4+JxJO0 QAk+g0IWJSBikOCCNWnXtD2U8ulIC9pJ8Rz1i96VnFh/Xf8tLgy60r29uWy/5vSv P+ma64o/ARTChtDGLy4BW+z59jTnSzYC0wxMlFqMysjSVo3zMbweRfQEIuuSS0Ou Y+xzQKTB0LGnBSHreAQIULeS+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOiclORB Qc52IGcysWpo0otFxUVbMB8GA1UdIwQYMBaAFMQjsIAyYjPawIzDDXSmX/SlKdCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFDMC9COTYwMzc1ODU1 RkYxMUVCQkMzNkM4NDNDNEY5QUUwMi94Q093Z0RKaU05ckFqTU1OZEtaZjlLVXAw Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDT3dnREppTTlyQWpNTU5kS1pmOUtVcDBKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDExQzAvQjk2MDM3NTg1NUZGMTFFQkJDMzZDODQzQzRGOUFFMDIvMDM2MUNGODY1 NjAyMTFFQjk3QTk4RDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRHwwDQYJKoZIhvcNAQELBQADggEBAGw4kUyu0E6OVqrw 1ehgnGp+WsERj9iRLQsmF+e9jtHOcRigAN0GJlR3tpcwm9X1KhutBeWAKLKqClNX paYhhJC4hfxe1sqwT0w2ZuVdGJKjx8wqqP52iOG34F3UkEyBvDKiysAwh21PGUIM 09X0USO3bpHwrIhePsCiBj0zOtRNug8GVD1SrnJG4/SJJ+oLKeY3YSgFOTU9ek75 k/utSzDM2ofR2ToBoN8jWbGKKqFv/eVRB9ZCof+0ltrIZHAUm8sr7mElKpJ3GRLL E9NQJezC/oVoyG8EZ3n20AHp1qLHEqW8wQ0aFnjEkZb1kQESrnxjIsMndgWqO5Zo KbwxyZE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org