$ rpki-client -vvf rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/2B24D5DC854511EB9B57240FC4F9AE02.roa File: 2B24D5DC854511EB9B57240FC4F9AE02.roa (raw, json) Hash identifier: pddSesMHzjwu6JCf3PlAW1/YPkIYpAu0oAR4eat3olg= Subject key identifier: 93:18:A9:B4:EB:B5:E5:95:F8:6E:40:CB:09:21:DC:F2:0E:17:4C:73 Certificate issuer: /CN=A91B994F/serialNumber=7CB063072D2E4892598614AD5BAB53E1DEAFF701 Certificate serial: 0732 Authority key identifier: 7C:B0:63:07:2D:2E:48:92:59:86:14:AD:5B:AB:53:E1:DE:AF:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLBjBy0uSJJZhhStW6tT4d6v9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/2B24D5DC854511EB9B57240FC4F9AE02.roa Signing time: Mon 22 Apr 2024 23:01:46 +0000 ROA not before: Mon 22 Apr 2024 23:01:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138956 IP address blocks: 103.137.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/fLBjBy0uSJJZhhStW6tT4d6v9wE.crl rsync://rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/fLBjBy0uSJJZhhStW6tT4d6v9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLBjBy0uSJJZhhStW6tT4d6v9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B994F/serialNumber=7CB063072D2E4892598614AD5BAB53E1DEAFF701 Validity Not Before: Apr 22 23:01:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6626ec5a-1735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c9:12:a8:20:48:ae:7a:5a:30:34:cd:ee:3c: 48:93:4f:b3:8c:69:cf:fb:16:2a:53:be:8e:67:09: 66:d2:03:2d:45:3d:dd:46:d4:1d:20:63:70:51:3e: a9:24:89:4b:df:0c:2f:39:09:ed:b3:9f:e5:2b:78: ea:d3:7f:67:ee:29:32:ba:ef:0e:12:e5:bd:09:53: ec:65:db:f7:6e:76:83:67:b7:ee:03:66:96:bd:ef: 77:84:65:bc:6d:f7:b3:ab:eb:aa:14:4f:47:92:0b: 91:8b:14:4e:7f:90:81:c1:a4:32:6e:85:10:11:07: 2a:46:73:3e:44:4c:70:2e:f7:39:81:a1:c7:bc:bd: c9:76:dd:72:13:b3:c3:db:de:e2:35:08:48:33:92: 03:7c:9b:b2:fd:87:29:7e:bf:cb:5a:ed:8c:a8:16: 06:c7:50:c6:ea:da:28:a7:e3:c5:ac:68:34:66:5f: e4:1b:3e:4e:0e:09:48:00:a9:b2:2f:7c:cb:b7:db: 98:37:e5:02:21:90:fa:18:aa:6e:2d:02:ef:bf:61: 21:94:51:49:ac:63:6c:60:5b:48:65:11:a3:b7:70: 4c:85:48:04:05:f0:d1:84:02:c1:a3:10:20:a6:c1: 18:6c:50:75:df:39:6a:13:df:13:e0:fd:78:6c:dc: 8d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:18:A9:B4:EB:B5:E5:95:F8:6E:40:CB:09:21:DC:F2:0E:17:4C:73 X509v3 Authority Key Identifier: keyid:7C:B0:63:07:2D:2E:48:92:59:86:14:AD:5B:AB:53:E1:DE:AF:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/fLBjBy0uSJJZhhStW6tT4d6v9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLBjBy0uSJJZhhStW6tT4d6v9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B994F/AAFD14ECE5A211EA89A3606DC4F9AE02/2B24D5DC854511EB9B57240FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.164.0/24 Signature Algorithm: sha256WithRSAEncryption 60:7e:6b:f2:43:93:49:9f:fa:6a:c5:a6:fa:06:bc:f6:40:aa: 8f:89:3b:bd:bb:42:3e:2c:f8:b0:e7:05:21:ab:3b:ad:6b:32: 88:e2:fc:ab:fd:3a:50:dd:ce:61:9a:a0:38:8d:dc:05:f8:f3: ec:90:37:33:f9:b0:c9:bf:fa:94:72:a7:de:63:ec:7c:a1:09: c9:ab:5b:85:71:fe:28:b7:8a:f9:c1:27:b3:a5:fc:c7:24:22: 53:56:24:e0:81:5e:da:47:e5:6f:12:65:c2:8f:4a:07:c2:73: c1:ff:c2:5a:3f:d8:23:67:02:87:52:04:70:70:7d:c1:6d:43: 8e:fa:1f:76:65:72:e4:4e:0d:7e:16:00:26:54:56:be:6f:82: 2d:17:46:71:7a:99:b9:89:04:cf:60:a2:2e:ac:db:bd:34:98: 3a:6f:58:ca:e7:fc:81:e0:b0:20:34:90:e0:30:93:0f:84:03: ff:56:4b:bf:dc:69:f1:75:32:75:e4:62:6e:97:af:f8:8d:21: db:d3:98:c5:25:b0:ec:77:17:81:44:ca:00:53:c3:f2:51:98: 0f:89:3a:a3:d6:cf:22:b9:22:a0:7b:20:1a:4f:7e:b9:84:04: 16:aa:bc:3e:22:fa:71:2d:7f:4f:f7:7a:1c:1f:04:89:2a:07: 7b:a1:82:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk5NEYxMTAvBgNVBAUTKDdDQjA2MzA3MkQyRTQ4OTI1OTg2MTRBRDVCQUI1M0Ux REVBRkY3MDEwHhcNMjQwNDIyMjMwMTQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2ZWM1YS0xNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8kSqCBIrnpaMDTN7jxIk0+zjGnP+xYqU76OZwlm0gMtRT3dRtQdIGNwUT6p JIlL3wwvOQnts5/lK3jq039n7ikyuu8OEuW9CVPsZdv3bnaDZ7fuA2aWve93hGW8 bfezq+uqFE9HkguRixROf5CBwaQyboUQEQcqRnM+RExwLvc5gaHHvL3Jdt1yE7PD 297iNQhIM5IDfJuy/Ycpfr/LWu2MqBYGx1DG6toop+PFrGg0Zl/kGz5ODglIAKmy L3zLt9uYN+UCIZD6GKpuLQLvv2EhlFFJrGNsYFtIZRGjt3BMhUgEBfDRhALBoxAg psEYbFB13zlqE98T4P14bNyNHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJMYqbTr teWV+G5Aywkh3PIOF0xzMB8GA1UdIwQYMBaAFHywYwctLkiSWYYUrVurU+Her/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTk0Ri9BQUZEMTRFQ0U1 QTIxMUVBODlBMzYwNkRDNEY5QUUwMi9mTEJqQnkwdVNKSlpoaFN0VzZ0VDRkNnY5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZMQmpCeTB1U0pKWmhoU3RXNnRUNGQ2djl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk5NEYvQUFGRDE0RUNFNUEyMTFFQTg5QTM2MDZEQzRGOUFFMDIvMkIyNEQ1REM4 NTQ1MTFFQjlCNTcyNDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniaQwDQYJKoZIhvcNAQELBQADggEBAGB+a/JDk0mf+mrF pvoGvPZAqo+JO727Qj4s+LDnBSGrO61rMoji/Kv9OlDdzmGaoDiN3AX48+yQNzP5 sMm/+pRyp95j7HyhCcmrW4Vx/ii3ivnBJ7Ol/MckIlNWJOCBXtpH5W8SZcKPSgfC c8H/wlo/2CNnAodSBHBwfcFtQ476H3ZlcuRODX4WACZUVr5vgi0XRnF6mbmJBM9g oi6s2700mDpvWMrn/IHgsCA0kOAwkw+EA/9WS7/cafF1MnXkYm6Xr/iNIdvTmMUl sOx3F4FEygBTw/JRmA+JOqPWzyK5IqB7IBpPfrmEBBaqvD4i+nEtf0/3ehwfBIkq B3uhgtQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org