$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CDD62642854E11EBA2CFDC87C4F9AE02.roa File: CDD62642854E11EBA2CFDC87C4F9AE02.roa (raw, json) Hash identifier: 52xPyx/0Y8642OSdtJeTlJtFNdpL5bLP/xTXki/fgmA= Subject key identifier: 9A:E7:C7:09:A1:D8:4D:C8:9A:0B:43:8A:BD:4C:1A:5D:21:B2:66:03 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0A0A Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CDD62642854E11EBA2CFDC87C4F9AE02.roa Signing time: Wed 31 Jan 2024 20:48:27 +0000 ROA not before: Wed 31 Jan 2024 20:48:27 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 140038 IP address blocks: 103.147.182.0/23 maxlen: 23 103.147.182.0/24 maxlen: 24 103.147.183.0/24 maxlen: 24 103.204.80.0/23 maxlen: 23 103.204.80.0/24 maxlen: 24 103.204.81.0/24 maxlen: 24 2001:df2:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:14:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Jan 31 20:48:27 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bab21b-3300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:56:d3:72:5d:d6:48:3d:1f:ec:f5:26:31: 22:3b:03:9c:3b:e3:61:31:c8:e7:ea:3d:24:fa:b9: 03:62:cb:5d:16:e5:4b:d7:63:7c:c6:7c:66:8a:0f: 02:0c:1a:02:ae:b3:98:25:ea:d9:21:e0:90:14:e8: d2:d2:85:88:e7:f0:0e:f7:4b:4d:a5:6f:5a:3f:3b: bd:c7:95:c8:71:e2:2a:20:81:ba:a7:16:90:fe:7e: ce:47:50:d0:39:3e:7b:6b:29:7c:d9:48:19:f0:ea: 05:4a:d9:65:c1:50:07:21:fb:66:b9:c8:28:a4:13: d9:26:e6:43:3e:29:d3:72:41:88:13:29:d7:c4:e4: 01:08:13:ad:95:07:72:a4:09:19:c3:96:47:77:34: c4:ec:e4:98:d3:33:59:05:85:99:6a:34:67:41:d9: b1:b7:71:1e:33:cd:b0:4c:87:b1:31:73:01:be:22: 4e:72:64:40:5b:e2:2c:05:e2:56:98:fd:15:40:8a: b6:63:53:6a:09:1f:63:0e:06:f2:9d:2d:89:43:6a: 8b:da:6e:34:88:11:da:b2:dd:ca:57:f0:a2:0c:4b: 8a:7b:2b:b9:48:bd:81:15:74:fc:1c:03:9d:f3:1b: 65:3c:45:19:ca:62:7a:c1:ca:39:76:aa:07:88:54: 93:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E7:C7:09:A1:D8:4D:C8:9A:0B:43:8A:BD:4C:1A:5D:21:B2:66:03 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CDD62642854E11EBA2CFDC87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.182.0/23 103.204.80.0/23 IPv6: 2001:df2:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 1d:42:e7:7e:70:bb:2b:fd:5f:03:92:53:fb:08:47:37:93:33: 04:f5:0f:5a:de:9c:74:65:9a:68:fd:c4:98:1a:f3:83:bb:27: fc:52:2c:06:02:9d:12:42:b9:0a:85:a8:af:c5:29:af:1a:e3: 04:30:d4:01:8b:0d:95:ab:cf:63:b5:78:80:b4:3a:70:64:8f: 40:ea:bf:73:fa:41:01:f3:f1:1c:33:b8:91:1b:a5:10:d3:00: b4:9b:d1:f1:1c:ff:52:3f:34:68:2a:e3:6a:c0:55:5a:80:2c: 6b:27:87:4e:29:c0:c7:60:38:39:c1:88:fd:1a:e4:9d:a5:96: 4a:de:77:e0:97:75:ab:5c:38:49:d1:e5:52:e6:4f:4c:fd:95: ee:1d:86:e1:f9:2d:54:ca:09:4b:54:05:fe:91:19:ec:65:a6: eb:fb:ea:78:90:b2:e3:92:19:f1:66:2d:a2:e1:63:df:c9:c2: 31:c4:83:88:5a:b7:be:7e:b8:65:b8:e9:05:99:c9:b3:fc:8c: c7:4a:b6:8a:91:b1:e2:23:df:f0:8e:e9:73:5d:fb:ca:72:c7: 84:b1:cf:d3:36:55:57:f7:2e:44:7a:72:5c:f9:dd:b2:23:7e: b4:12:a1:0a:1b:74:98:23:ea:0f:8b:a2:77:ea:30:c0:c5:86: 61:e5:6d:c4 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjQwMTMxMjA0ODI3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhYjIxYi0zMzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKBW03Jd1kg9H+z1JjEiOwOcO+NhMcjn6j0k+rkDYstdFuVL12N8xnxmig8C DBoCrrOYJerZIeCQFOjS0oWI5/AO90tNpW9aPzu9x5XIceIqIIG6pxaQ/n7OR1DQ OT57ayl82UgZ8OoFStllwVAHIftmucgopBPZJuZDPinTckGIEynXxOQBCBOtlQdy pAkZw5ZHdzTE7OSY0zNZBYWZajRnQdmxt3EeM82wTIexMXMBviJOcmRAW+IsBeJW mP0VQIq2Y1NqCR9jDgbynS2JQ2qL2m40iBHast3KV/CiDEuKeyu5SL2BFXT8HAOd 8xtlPEUZymJ6wco5dqoHiFSTmwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJrnxwmh 2E3ImgtDir1MGl0hsmYDMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwNzgvODYzMEIxQzg0QzhDMTFFQUI5RTI3MDU3QzRGOUFFMDIvQ0RENjI2NDI4 NTRFMTFFQkEyQ0ZEQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnk7YDBAFnzFAwDwQCAAIwCQMHACABDfKfgDANBgkqhkiG 9w0BAQsFAAOCAQEAHULnfnC7K/1fA5JT+whHN5MzBPUPWt6cdGWaaP3EmBrzg7sn /FIsBgKdEkK5CoWor8UprxrjBDDUAYsNlavPY7V4gLQ6cGSPQOq/c/pBAfPxHDO4 kRulENMAtJvR8Rz/Uj80aCrjasBVWoAsayeHTinAx2A4OcGI/RrknaWWSt534Jd1 q1w4SdHlUuZPTP2V7h2G4fktVMoJS1QF/pEZ7GWm6/vqeJCy45IZ8WYtouFj38nC McSDiFq3vn64ZbjpBZnJs/yMx0q2ipGx4iPf8I7pc137ynLHhLHP0zZVV/cuRHpy XPndsiN+tBKhCht0mCPqD4uid+owwMWGYeVtxA== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:25 2024 by rpki-client on console-ams.rpki-client.org