$ rpki-client -vvf rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa File: 23EE2B76F2F111ED91F08A4FC4F9AE02.roa (raw, json) Hash identifier: 4D2wEEASuC+DaTGly/YjUPgX8hODTmCI2sIITWQ6fMA= Subject key identifier: CF:C7:A1:E2:B8:7C:4C:DD:F9:93:C5:6E:20:89:7C:CF:F4:E9:1F:CE Certificate issuer: /CN=A91C72E6/serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Certificate serial: 03 Authority key identifier: 75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa Signing time: Mon 15 May 2023 07:21:42 +0000 ROA not before: Mon 15 May 2023 07:21:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 148968 IP address blocks: 103.254.231.0/24 maxlen: 24 2001:df2:6d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 06:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C72E6/serialNumber=752533B1852F7D2AC6E70DCDEBFD547DDC438F94 Validity Not Before: May 15 07:21:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6461dd86-49af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:f2:00:23:49:69:a9:f5:44:e2:d9:e5:f8: 86:79:8a:ad:0e:78:11:a9:20:59:d6:cd:c3:ff:1e: 56:6e:8d:2f:c6:a2:2f:7c:b0:b5:68:cb:db:73:d0: 91:5c:06:d0:38:d1:18:de:01:42:9d:a3:87:a2:d0: 7f:5f:fe:5b:b2:c8:57:5d:de:2f:e2:82:e8:ef:e1: 33:95:e6:88:29:e3:b6:bd:17:e5:cc:2b:30:e6:7e: f0:37:26:ab:e2:60:e4:39:4c:f7:76:10:31:8e:31: b5:15:55:84:b3:fb:53:8f:41:b4:88:60:06:8f:f8: 88:4a:9e:61:c4:7e:d7:37:52:cf:83:57:1a:83:77: 37:04:23:61:cc:d4:50:4c:8e:1a:02:7d:99:95:10: 0f:30:70:2f:17:31:af:c7:8c:97:00:30:9c:e1:44: 95:56:f3:22:67:1d:0d:d1:a6:19:f6:f3:f8:7a:31: b9:34:02:a6:9f:84:05:d9:02:21:ee:71:8a:02:0d: 3a:60:28:b9:3c:56:88:91:45:db:6f:fc:8f:da:fb: 63:26:86:24:97:3b:9d:b4:52:19:29:db:c1:9f:0c: a1:eb:ba:2e:8f:c4:74:59:f0:da:f3:53:4a:a6:f5: ca:9e:8f:20:56:d1:e5:a1:52:05:2c:82:8a:28:47: c9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C7:A1:E2:B8:7C:4C:DD:F9:93:C5:6E:20:89:7C:CF:F4:E9:1F:CE X509v3 Authority Key Identifier: keyid:75:25:33:B1:85:2F:7D:2A:C6:E7:0D:CD:EB:FD:54:7D:DC:43:8F:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dSUzsYUvfSrG5w3N6_1UfdxDj5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C72E6/E6E6FB32F2EA11ED9099004AC4F9AE02/23EE2B76F2F111ED91F08A4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.231.0/24 IPv6: 2001:df2:6d40::/48 Signature Algorithm: sha256WithRSAEncryption 15:f2:11:bc:c6:6f:03:06:1a:de:9c:a2:56:57:a8:09:56:48: 49:52:d1:9f:7f:bb:be:c7:b4:bd:9f:6e:2e:6d:61:d6:74:45: e2:e3:ff:33:a5:e1:71:98:4d:50:c4:3e:59:b5:9c:45:0a:01: 35:8e:d6:d6:00:9b:d7:9b:46:e8:a4:b8:ad:24:e9:0e:83:8d: b3:b3:dd:ae:16:7b:ed:96:1b:eb:a1:ee:a0:d1:98:87:3d:33: 17:a7:ad:5a:ba:ce:17:ce:fa:8b:b2:5c:df:62:db:da:a0:41: 03:8f:03:4f:01:66:00:e8:bf:1b:f0:9b:66:9f:7c:1b:64:33: 2c:64:e6:25:5f:87:bc:be:be:d6:35:7c:5b:91:1b:bd:aa:87: 4d:d0:96:69:a5:36:52:5d:52:d3:3a:97:84:85:86:30:84:55: 08:88:ce:83:81:dc:b6:6f:8c:b3:bb:f9:31:84:8c:f8:76:e2: fc:8e:d9:11:96:16:52:ea:39:a2:9b:95:05:b1:39:5a:41:af: 50:76:07:ae:89:18:3d:e5:ba:6b:ca:b4:7c:52:22:26:4c:93: ac:2a:bb:1e:e9:09:a0:55:58:1c:a7:ef:f7:c0:33:0a:c2:f7: f3:9f:18:fe:a1:e6:35:8b:60:99:92:e2:8d:e8:d4:18:df:ff: 4b:ff:00:86 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzJFNjExMC8GA1UEBRMoNzUyNTMzQjE4NTJGN0QyQUM2RTcwRENERUJGRDU0N0RE QzQzOEY5NDAeFw0yMzA1MTUwNzIxNDJaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NjFkZDg2LTQ5YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFpvIAI0lpqfVE4tnl+IZ5iq0OeBGpIFnWzcP/HlZujS/Goi98sLVoy9tz0JFc BtA40RjeAUKdo4ei0H9f/luyyFdd3i/igujv4TOV5ogp47a9F+XMKzDmfvA3Jqvi YOQ5TPd2EDGOMbUVVYSz+1OPQbSIYAaP+IhKnmHEftc3Us+DVxqDdzcEI2HM1FBM jhoCfZmVEA8wcC8XMa/HjJcAMJzhRJVW8yJnHQ3Rphn28/h6Mbk0AqafhAXZAiHu cYoCDTpgKLk8VoiRRdtv/I/a+2MmhiSXO520Uhkp28GfDKHrui6PxHRZ8NrzU0qm 9cqejyBW0eWhUgUsgoooR8mRAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUz8eh4rh8 TN35k8VuIIl8z/TpH84wHwYDVR0jBBgwFoAUdSUzsYUvfSrG5w3N6/1UfdxDj5Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3MkU2L0U2RTZGQjMyRjJF QTExRUQ5MDk5MDA0QUM0RjlBRTAyL2RTVXpzWVV2ZlNyRzV3M042XzFVZmR4RGo1 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFNVenNZVXZmU3JHNXczTjZfMVVmZHhEajVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzJFNi9FNkU2RkIzMkYyRUExMUVEOTA5OTAwNEFDNEY5QUUwMi8yM0VFMkI3NkYy RjExMUVEOTFGMDhBNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGf+5zAPBAIAAjAJAwcAIAEN8m1AMA0GCSqGSIb3DQEBCwUA A4IBAQAV8hG8xm8DBhrenKJWV6gJVkhJUtGff7u+x7S9n24ubWHWdEXi4/8zpeFx mE1QxD5ZtZxFCgE1jtbWAJvXm0bopLitJOkOg42zs92uFnvtlhvroe6g0ZiHPTMX p61aus4XzvqLslzfYtvaoEEDjwNPAWYA6L8b8Jtmn3wbZDMsZOYlX4e8vr7WNXxb kRu9qodN0JZppTZSXVLTOpeEhYYwhFUIiM6Dgdy2b4yzu/kxhIz4duL8jtkRlhZS 6jmim5UFsTlaQa9QdgeuiRg95bpryrR8UiImTJOsKrse6QmgVVgcp+/3wDMKwvfz nxj+oeY1i2CZkuKN6NQY3/9L/wCG -----END CERTIFICATE-----Generated at Mon Jun 17 07:36:42 2024 by rpki-client on console-fra.rpki-client.org