$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/DCF1073E26B211E9B0DD0155C4F9AE02.roa File: DCF1073E26B211E9B0DD0155C4F9AE02.roa (raw, json) Hash identifier: pze8ykCzwgWyPndsuyc5dehDobUHPHfIIaK0XcRUG1Y= Subject key identifier: 32:89:B3:60:BD:1E:3E:DC:F1:D4:BE:FF:15:6D:0E:94:61:71:2D:94 Certificate issuer: /CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Certificate serial: 15B5 Authority key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/DCF1073E26B211E9B0DD0155C4F9AE02.roa Signing time: Sat 10 Feb 2024 17:14:52 +0000 ROA not before: Sat 10 Feb 2024 17:14:52 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17804 IP address blocks: 103.26.103.0/24 maxlen: 24 103.82.56.0/22 maxlen: 22 103.228.101.0/24 maxlen: 24 2400:81c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:26:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5557 (0x15b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Validity Not Before: Feb 10 17:14:52 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c7af0c-2c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:50:2c:37:73:51:5f:66:af:b4:a2:9d:f5: ba:e9:03:cf:91:0a:b6:bf:c6:63:0f:50:81:7a:ac: f4:2e:60:2d:01:60:f4:a6:e4:ea:6f:4d:26:82:5a: df:e0:25:44:82:79:89:2b:0d:40:23:ed:2a:4d:00: 04:5b:9b:a7:0e:3c:d1:a9:3c:38:77:b4:da:d7:7a: d5:47:e1:85:52:0f:47:dc:b2:35:82:18:c1:79:82: 51:53:83:d5:fc:6c:bc:41:37:95:48:b1:1a:42:70: f4:2c:5f:6a:2c:4a:af:5f:40:b8:10:51:11:02:2e: 4b:d9:d6:14:06:29:cd:b9:33:e0:cf:53:07:b5:99: ca:a3:d2:24:d8:be:eb:2e:8d:5c:10:f3:9e:14:c6: 0b:c6:3e:34:45:b9:f6:f9:57:13:e6:47:4f:ca:cc: 22:27:ea:a7:d1:93:d0:f2:12:2d:9c:0d:1a:f0:fb: aa:59:2a:1c:99:f7:ff:0e:d0:ed:9c:54:f5:43:eb: 83:d8:bc:96:64:d0:e0:c4:63:5a:56:b7:3a:1a:07: 98:c7:58:58:b3:f3:c8:6c:36:95:96:63:63:4e:c3: a8:55:cd:bb:e3:ba:1a:b5:6d:c1:19:37:6c:56:ec: fc:19:40:f8:c8:4a:41:fe:c2:66:40:e8:02:70:60: 64:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:89:B3:60:BD:1E:3E:DC:F1:D4:BE:FF:15:6D:0E:94:61:71:2D:94 X509v3 Authority Key Identifier: keyid:DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/DCF1073E26B211E9B0DD0155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.103.0/24 103.82.56.0/22 103.228.101.0/24 IPv6: 2400:81c0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:09:cd:de:68:e8:3f:a0:d5:62:ac:4b:8e:68:b3:6d:cb:52: 7c:f2:ed:e3:0c:f9:20:a0:ba:1f:fe:69:e6:eb:70:19:1a:99: a2:5f:09:1a:3f:29:e2:12:2b:bc:54:2a:93:5f:18:83:c4:fb: 98:f5:af:98:50:a4:dd:68:0c:21:c1:5f:e6:45:d2:24:49:b4: 20:78:6b:8c:33:4d:95:5b:8b:74:b4:89:f8:6d:72:4b:ee:d6: 1d:c1:e3:61:44:ed:75:c8:30:da:61:71:de:f5:6c:6f:33:e5: 7f:cd:4d:6f:84:9f:e1:a2:98:fe:ca:d0:d9:c9:63:07:75:d9: e4:3b:d2:23:8a:2f:c8:4f:1a:25:13:c3:59:36:48:20:09:b3: f3:6c:a0:bf:a7:2c:49:14:bf:3f:01:9a:5f:a0:a8:37:16:85: 47:53:3f:fc:e3:34:fd:2c:bf:71:6d:88:39:73:d3:fe:e3:84: d1:0a:57:8f:fc:d7:87:c0:d9:b6:4b:00:36:b9:71:b1:ec:69: 2c:34:13:46:1f:a5:ee:b5:86:32:a6:5f:bb:b5:ac:96:55:f4: 56:99:62:68:40:f3:c1:04:b1:24:69:b9:a1:01:b3:fc:82:72: b0:19:3c:ae:01:3f:04:e0:01:52:da:23:b7:9c:11:76:78:6b: ec:cd:bb:38 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICFbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKERBRTc1MDhEMTFFNDcyMjhEQTFGRTAwMzI1OTdCQkQy OUY3NTg5MEMwHhcNMjQwMjEwMTcxNDUyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3YWYwYy0yYzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs41QLDdzUV9mr7SinfW66QPPkQq2v8ZjD1CBeqz0LmAtAWD0puTqb00mglrf 4CVEgnmJKw1AI+0qTQAEW5unDjzRqTw4d7Ta13rVR+GFUg9H3LI1ghjBeYJRU4PV /Gy8QTeVSLEaQnD0LF9qLEqvX0C4EFERAi5L2dYUBinNuTPgz1MHtZnKo9Ik2L7r Lo1cEPOeFMYLxj40Rbn2+VcT5kdPyswiJ+qn0ZPQ8hItnA0a8PuqWSocmff/DtDt nFT1Q+uD2LyWZNDgxGNaVrc6GgeYx1hYs/PIbDaVlmNjTsOoVc2747oatW3BGTds Vuz8GUD4yEpB/sJmQOgCcGBk5wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFDKJs2C9 Hj7c8dS+/xVtDpRhcS2UMB8GA1UdIwQYMBaAFNrnUI0R5HIo2h/gAyWXu9KfdYkM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC80NjI4QkVDNDAw RDgxMUU4OTA2MTA2MzdDNEY5QUUwMi8ydWRRalJIa2NpamFILUFESlplNzBwOTFp UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1ZFFqUkhrY2lqYUgtQURKWmU3MHA5MWlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyREQvNDYyOEJFQzQwMEQ4MTFFODkwNjEwNjM3QzRGOUFFMDIvRENGMTA3M0Uy NkIyMTFFOUIwREQwMTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnGmcDBAJnUjgDBABn5GUwDQQCAAIwBwMFACQAgcAwDQYJ KoZIhvcNAQELBQADggEBAF0Jzd5o6D+g1WKsS45os23LUnzy7eMM+SCguh/+aebr cBkamaJfCRo/KeISK7xUKpNfGIPE+5j1r5hQpN1oDCHBX+ZF0iRJtCB4a4wzTZVb i3S0ifhtckvu1h3B42FE7XXIMNphcd71bG8z5X/NTW+En+GimP7K0NnJYwd12eQ7 0iOKL8hPGiUTw1k2SCAJs/NsoL+nLEkUvz8Bml+gqDcWhUdTP/zjNP0sv3FtiDlz 0/7jhNEKV4/814fA2bZLADa5cbHsaSw0E0Yfpe61hjKmX7u1rJZV9FaZYmhA88EE sSRpuaEBs/yCcrAZPK4BPwTgAVLaI7ecEXZ4a+zNuzg= -----END CERTIFICATE-----Generated at Fri May 31 20:34:08 2024 by rpki-client on console-ams.rpki-client.org