$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/708DE4A87AB011E8B7AB0E53C4F9AE02.roa File: 708DE4A87AB011E8B7AB0E53C4F9AE02.roa (raw, json) Hash identifier: mlV5FElI2KfwPw+F74U5A5+ugzB0GpF8appz7O1hrRc= Subject key identifier: FD:65:97:9A:CC:90:20:1C:BD:DA:6E:52:AB:6A:87:8B:97:AE:3A:6C Certificate issuer: /CN=A917D9FC/serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Certificate serial: 176B Authority key identifier: 7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/708DE4A87AB011E8B7AB0E53C4F9AE02.roa Signing time: Tue 30 Apr 2024 17:25:29 +0000 ROA not before: Tue 30 Apr 2024 17:25:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134137 IP address blocks: 103.55.0.0/24 maxlen: 24 103.55.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5995 (0x176b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC/serialNumber=7A6E30210642CF4FBB4173F352748E1EA5C2C7C3 Validity Not Before: Apr 30 17:25:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66312989-428c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6d:73:9b:26:eb:f1:b1:7a:24:d4:37:b9:93: 8d:f3:07:6e:78:d1:ae:fe:69:20:1e:6a:e0:99:c3: c7:d1:24:6f:69:0b:c9:df:3b:05:52:2a:6b:e4:96: 83:cc:fa:73:e0:1a:63:e2:f7:e3:b7:68:49:19:c1: 9a:07:b3:65:52:e0:5e:f0:e5:d3:d9:81:7e:81:30: e2:0e:cb:35:6b:a1:f5:e6:0c:bb:8c:26:0f:ff:3e: 6d:00:17:4d:12:19:0b:7c:e3:b4:34:d9:31:d2:46: bc:11:b6:58:e0:47:3e:78:0f:88:f9:67:52:4b:cc: 6a:5f:4e:89:4a:9a:a0:82:a8:e3:54:25:a4:96:58: 99:8f:f0:1f:ce:2a:54:f5:c0:64:6f:bb:81:8d:8f: 18:12:81:40:3b:7c:ad:81:be:98:4c:9d:50:02:cf: bf:6d:f2:7a:66:55:f5:c6:f1:c9:cf:8b:ea:00:09: d6:fc:ec:d3:7d:ce:df:d6:ca:4c:7f:aa:6b:b8:60: b1:e8:2d:4a:68:b8:85:ca:eb:fc:1b:9c:e3:35:22: 1d:11:6e:33:12:f2:f2:90:db:0e:63:86:9b:cb:33: 9d:6e:50:cc:2e:35:66:33:d1:d7:51:c4:e5:c1:a9: cd:34:40:c2:c9:e3:b4:da:2c:11:6d:f8:b4:bb:c8: db:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:65:97:9A:CC:90:20:1C:BD:DA:6E:52:AB:6A:87:8B:97:AE:3A:6C X509v3 Authority Key Identifier: keyid:7A:6E:30:21:06:42:CF:4F:BB:41:73:F3:52:74:8E:1E:A5:C2:C7:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/em4wIQZCz0-7QXPzUnSOHqXCx8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/em4wIQZCz0-7QXPzUnSOHqXCx8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/C6B034AAB89911E7B269B850C4F9AE02/708DE4A87AB011E8B7AB0E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.0.0/24 103.55.3.0/24 Signature Algorithm: sha256WithRSAEncryption 33:c4:40:c0:10:c7:83:c3:f1:c3:e5:c9:fb:28:24:f6:a9:78: 33:a9:a2:30:2f:4e:91:37:96:f2:00:19:ad:92:6a:f7:b1:b5: 03:71:f5:d0:96:db:e2:6a:0e:65:a9:0d:40:26:a1:65:c8:a6: 6e:fd:64:fa:50:cc:79:27:f1:f8:04:b1:89:60:d8:5b:95:8b: ef:7a:bf:eb:3d:02:6f:e1:b7:9f:5a:66:95:8b:19:03:ef:b5: 9c:22:cb:af:ce:fe:15:9d:5c:59:f8:23:2d:8a:32:28:5a:bd: 6e:cb:f9:5b:22:8d:4e:73:80:7e:8a:ae:85:e2:ad:26:c7:5a: 6a:63:2b:24:8d:26:bb:80:eb:e2:0e:eb:6a:67:ff:9d:69:46: 16:db:d3:a8:dd:1c:79:e2:49:4b:b8:5a:80:59:50:52:53:85: 80:9b:b4:6a:f4:7b:b3:e4:db:85:9f:fe:c2:3a:d9:79:8e:eb: 42:06:40:fb:3d:29:fc:66:21:a0:53:b4:70:16:e1:3d:b9:5f: 46:c7:fe:4b:76:2a:87:2c:99:50:9b:d9:a7:15:c1:bb:eb:2c: 77:bf:15:97:51:a9:8c:89:b5:60:ca:90:22:0f:e3:c0:8a:a0: a2:39:54:01:bd:29:12:86:19:85:19:68:67:30:8c:40:4b:32: 8a:0b:93:6c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKDdBNkUzMDIxMDY0MkNGNEZCQjQxNzNGMzUyNzQ4RTFF QTVDMkM3QzMwHhcNMjQwNDMwMTcyNTI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMjk4OS00MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApW1zmybr8bF6JNQ3uZON8wdueNGu/mkgHmrgmcPH0SRvaQvJ3zsFUipr5JaD zPpz4Bpj4vfjt2hJGcGaB7NlUuBe8OXT2YF+gTDiDss1a6H15gy7jCYP/z5tABdN EhkLfOO0NNkx0ka8EbZY4Ec+eA+I+WdSS8xqX06JSpqggqjjVCWklliZj/AfzipU 9cBkb7uBjY8YEoFAO3ytgb6YTJ1QAs+/bfJ6ZlX1xvHJz4vqAAnW/OzTfc7f1spM f6pruGCx6C1KaLiFyuv8G5zjNSIdEW4zEvLykNsOY4abyzOdblDMLjVmM9HXUcTl wanNNEDCyeO02iwRbfi0u8jbjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP1ll5rM kCAcvdpuUqtqh4uXrjpsMB8GA1UdIwQYMBaAFHpuMCEGQs9Pu0Fz81J0jh6lwsfD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy9DNkIwMzRBQUI4 OTkxMUU3QjI2OUI4NTBDNEY5QUUwMi9lbTR3SVFaQ3owLTdRWFB6VW5TT0hxWEN4 OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtNHdJUVpDejAtN1FYUHpVblNPSHFYQ3g4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q5RkMvQzZCMDM0QUFCODk5MTFFN0IyNjlCODUwQzRGOUFFMDIvNzA4REU0QTg3 QUIwMTFFOEI3QUIwRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnNwADBABnNwMwDQYJKoZIhvcNAQELBQADggEBADPEQMAQ x4PD8cPlyfsoJPapeDOpojAvTpE3lvIAGa2SavextQNx9dCW2+JqDmWpDUAmoWXI pm79ZPpQzHkn8fgEsYlg2FuVi+96v+s9Am/ht59aZpWLGQPvtZwiy6/O/hWdXFn4 Iy2KMihavW7L+VsijU5zgH6KroXirSbHWmpjKySNJruA6+IO62pn/51pRhbb06jd HHniSUu4WoBZUFJThYCbtGr0e7Pk24Wf/sI62XmO60IGQPs9KfxmIaBTtHAW4T25 X0bH/kt2KocsmVCb2acVwbvrLHe/FZdRqYyJtWDKkCIP48CKoKI5VAG9KRKGGYUZ aGcwjEBLMooLk2w= -----END CERTIFICATE-----Generated at Fri May 31 19:47:50 2024 by rpki-client on console-fra.rpki-client.org