$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CE02F13CA03111ECADA0802DC4F9AE02.roa File: CE02F13CA03111ECADA0802DC4F9AE02.roa (raw, json) Hash identifier: znq78fRyDOp3SwkK0UpHHc5ZxpHItHikpYj9z/ZIeGw= Subject key identifier: 07:1B:E8:57:C8:B6:79:07:F6:88:EE:BB:02:4B:60:CD:31:EC:70:4D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3F2F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CE02F13CA03111ECADA0802DC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:44:15 +0000 ROA not before: Tue 12 Sep 2023 02:44:15 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 63739 IP address blocks: 103.151.56.0/23 maxlen: 24 103.186.154.0/23 maxlen: 24 2400:39a0::/48 maxlen: 48 2400:72a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16175 (0x3f2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:44:15 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd07f-84b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:c1:3e:f5:b8:31:66:32:32:0d:cf:bf:77: 2f:26:7b:10:46:7a:b7:99:a4:72:2c:e6:25:7e:1d: d8:4d:94:8e:6f:7c:14:5d:88:f0:41:89:07:f2:85: f6:bf:53:b2:fc:c1:11:76:5f:e6:69:1d:1d:64:b7: 59:a3:15:c5:71:39:e2:96:75:d4:59:33:f5:2c:63: 61:d3:f3:44:fa:0d:a9:b2:5e:53:11:13:f3:44:0e: 8f:05:24:a9:1f:fb:7a:f3:e8:2e:72:29:fc:af:96: ac:f0:1b:2a:83:83:56:2b:d8:64:57:39:13:07:0b: 8a:ec:68:d0:62:3f:87:f9:78:ff:2e:c2:39:ac:6e: 5d:7f:39:db:73:00:a6:8b:2e:1d:9c:3e:8f:ce:f6: 85:6f:bc:41:b7:1c:8b:8a:eb:e4:a6:38:e1:23:6e: ec:fe:d1:24:94:f8:54:0e:53:36:7c:b5:19:4e:0c: c9:17:a9:6c:04:c6:8d:6f:0b:ca:ee:01:e6:ad:d3: 75:49:0d:03:1a:6b:91:25:69:e2:92:59:67:8f:8c: 82:2b:ba:10:74:e2:44:71:a3:1e:11:3e:2e:0b:df: ea:d9:95:70:a2:35:ef:e9:5a:12:8c:12:3a:3e:93: 04:d9:4a:45:cb:f0:19:cb:e6:19:e5:16:42:04:14: 57:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:1B:E8:57:C8:B6:79:07:F6:88:EE:BB:02:4B:60:CD:31:EC:70:4D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CE02F13CA03111ECADA0802DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.56.0/23 103.186.154.0/23 IPv6: 2400:39a0::/48 2400:72a0::/48 Signature Algorithm: sha256WithRSAEncryption b7:12:4f:26:87:18:91:02:4b:ac:bc:f0:5d:12:ba:d4:25:7a: 3a:79:50:2d:34:81:4a:e2:17:a6:2d:3d:53:87:dd:1d:26:50: da:6d:9e:43:05:2d:b9:a3:39:7a:23:a2:80:bc:34:b2:c4:cb: 6f:3d:a4:02:92:13:10:b0:83:54:f0:34:fb:ca:cb:a8:2b:1d: 2d:c9:4d:82:fa:6b:7d:66:42:9f:4c:c7:6f:5d:a6:c2:47:5a: bc:e5:e7:d2:d0:ca:f1:34:bf:c7:01:db:b1:f5:64:e9:07:2d: 1b:9b:ed:c5:14:8e:c9:61:ca:ca:00:65:61:c5:b2:0c:67:16: 1b:32:fb:df:9f:55:33:c8:1e:84:75:e8:96:61:07:26:5d:7d: d4:88:28:7d:d3:69:d4:4f:79:2c:d4:b8:9a:e2:35:b8:78:64: 8e:88:26:12:7d:52:12:18:40:e4:ed:36:e6:ae:28:da:68:4e: 2f:9c:08:1f:73:9f:52:06:93:01:58:62:42:c9:7a:fb:42:26: 54:c8:fd:6f:92:90:da:00:04:c1:8d:c2:9f:ea:38:c2:55:e4: 2e:ca:df:ff:a3:08:6c:94:f4:fe:a1:df:9f:4c:cc:ea:4e:76: 77:29:6b:22:01:16:78:88:1c:8d:3c:1f:f0:3b:64:c4:61:a0: f5:d4:a6:31 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICPy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0NDE1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA3Zi04NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kfBPvW4MWYyMg3Pv3cvJnsQRnq3maRyLOYlfh3YTZSOb3wUXYjwQYkH8oX2 v1Oy/MERdl/maR0dZLdZoxXFcTnilnXUWTP1LGNh0/NE+g2psl5TERPzRA6PBSSp H/t68+gucin8r5as8Bsqg4NWK9hkVzkTBwuK7GjQYj+H+Xj/LsI5rG5dfznbcwCm iy4dnD6PzvaFb7xBtxyLiuvkpjjhI27s/tEklPhUDlM2fLUZTgzJF6lsBMaNbwvK 7gHmrdN1SQ0DGmuRJWnikllnj4yCK7oQdOJEcaMeET4uC9/q2ZVwojXv6VoSjBI6 PpME2UpFy/AZy+YZ5RZCBBRXawIDAQABo4ICtTCCArEwHQYDVR0OBBYEFAcb6FfI tnkH9ojuuwJLYM0x7HBNMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQ0UwMkYxM0NB MDMxMTFFQ0FEQTA4MDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAFnlzgDBAFnupowGAQCAAIwEgMHACQAOaAAAAMHACQAcqAA ADANBgkqhkiG9w0BAQsFAAOCAQEAtxJPJocYkQJLrLzwXRK61CV6OnlQLTSBSuIX pi09U4fdHSZQ2m2eQwUtuaM5eiOigLw0ssTLbz2kApITELCDVPA0+8rLqCsdLclN gvprfWZCn0zHb12mwkdavOXn0tDK8TS/xwHbsfVk6QctG5vtxRSOyWHKygBlYcWy DGcWGzL7359VM8gehHXolmEHJl191IgofdNp1E95LNS4muI1uHhkjogmEn1SEhhA 5O025q4o2mhOL5wIH3OfUgaTAVhiQsl6+0ImVMj9b5KQ2gAEwY3Cn+o4wlXkLsrf /6MIbJT0/qHfn0zM6k52dylrIgEWeIgcjTwf8DtkxGGg9dSmMQ== -----END CERTIFICATE-----Generated at Fri May 31 16:41:41 2024 by rpki-client on console-ams.rpki-client.org