$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/35D4363E330711EB9D3AA60BC4F9AE02.roa File: 35D4363E330711EB9D3AA60BC4F9AE02.roa (raw, json) Hash identifier: h6Fx/uAqoWCql+z98xYpdBMVKGKFUnyPa/cdVN0UCkM= Subject key identifier: EC:F6:C6:39:6E:B7:8F:1D:B6:85:7B:16:0F:38:54:B6:FC:11:62:10 Certificate issuer: /CN=A91D2706/serialNumber=639239063917EE92C099E46AD3696C2ECA7C510A Certificate serial: 0620 Authority key identifier: 63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/35D4363E330711EB9D3AA60BC4F9AE02.roa Signing time: Thu 14 Dec 2023 23:31:33 +0000 ROA not before: Thu 14 Dec 2023 23:31:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134797 IP address blocks: 103.199.216.0/22 maxlen: 22 103.199.216.0/24 maxlen: 24 103.199.217.0/24 maxlen: 24 103.199.218.0/24 maxlen: 24 103.199.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2706/serialNumber=639239063917EE92C099E46AD3696C2ECA7C510A Validity Not Before: Dec 14 23:31:33 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657b9055-e268 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b1:67:7c:c8:2f:70:3d:b6:03:2a:98:d7:5a: dc:85:5b:15:a6:d7:cb:e3:f3:d6:17:9b:ee:8c:9a: 9b:8a:a9:68:6c:53:7f:a9:f8:8f:f9:83:4a:14:27: e2:9e:b4:ca:74:ee:a0:b5:21:0a:5f:1f:83:4b:eb: 98:f1:f2:02:a9:ae:9c:e3:57:1c:35:d8:b0:65:98: e2:bc:58:9e:ca:78:9b:29:c3:a8:93:55:b8:71:d1: c3:63:1a:f3:92:9f:b8:55:93:4f:62:4e:a5:09:e7: fd:72:e9:bf:db:b4:52:60:9f:39:72:85:73:7c:f7: e1:34:7d:56:b2:0c:a9:32:05:60:11:3a:89:6e:28: 35:25:18:62:22:01:5b:db:2c:ed:66:f5:df:33:5f: 90:1e:f4:50:83:39:3d:46:63:f4:cd:e0:b5:65:82: 51:bc:2c:ca:c2:3e:59:5b:88:a0:80:42:a8:99:9f: 06:7f:c2:f7:e9:e4:22:32:c0:47:50:5a:cf:9a:cf: 76:41:e2:4a:f5:77:4a:a5:7c:53:29:34:82:bf:96: e7:a8:9f:64:2c:47:62:04:a8:07:13:53:6f:e8:c1: 23:08:fa:8c:af:c9:dc:ff:55:47:af:5d:9e:0d:72: cb:5d:6f:6f:f5:fa:98:38:01:cd:44:6b:ad:aa:72: 47:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F6:C6:39:6E:B7:8F:1D:B6:85:7B:16:0F:38:54:B6:FC:11:62:10 X509v3 Authority Key Identifier: keyid:63:92:39:06:39:17:EE:92:C0:99:E4:6A:D3:69:6C:2E:CA:7C:51:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/Y5I5BjkX7pLAmeRq02lsLsp8UQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y5I5BjkX7pLAmeRq02lsLsp8UQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2706/04D457C2330611EBA282D30AC4F9AE02/35D4363E330711EB9D3AA60BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.216.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:e3:cd:26:74:2c:c7:7b:59:b3:66:5d:a4:f6:58:93:9b:ea: 43:cf:42:c3:80:a0:a5:c0:23:7e:e8:e7:af:15:4d:c5:92:2d: 82:f7:bb:38:eb:db:36:aa:f1:8f:a2:58:ad:c3:7b:5d:bc:3e: eb:4b:fa:37:01:58:65:93:d5:49:7a:d6:a1:4d:1d:71:89:10: 24:16:a5:8e:ee:c0:24:30:5d:67:33:82:fb:2c:54:9f:d8:da: 68:3f:35:6b:d4:a6:1b:23:ee:c5:95:45:04:c2:2d:09:39:c8: d4:25:d0:7f:0f:55:bd:c8:4f:50:8e:4b:0c:54:8b:f7:32:24: 8f:04:eb:7a:cb:1f:d9:3f:de:10:72:a6:ea:d1:d5:53:f8:8f: d2:9f:d0:17:65:f2:4f:79:aa:b8:e5:1f:53:cb:52:87:b0:a2: 30:58:9e:60:93:e8:99:64:d7:2c:ea:f0:8b:a4:3b:50:50:5b: 79:71:6b:cf:57:5f:b5:72:d4:e2:dc:50:15:b0:ce:8d:da:12: 76:e4:87:c7:70:78:79:9e:06:dc:80:6b:38:bd:65:f2:41:1a: 22:17:3b:1e:18:3e:d8:8b:d5:64:d5:87:6c:05:84:b9:a4:04: 2f:8c:0a:f9:87:60:e0:29:27:1b:f3:a6:1b:29:4f:85:a9:b9: af:2f:a2:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3MDYxMTAvBgNVBAUTKDYzOTIzOTA2MzkxN0VFOTJDMDk5RTQ2QUQzNjk2QzJF Q0E3QzUxMEEwHhcNMjMxMjE0MjMzMTMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiOTA1NS1lMjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbFnfMgvcD22AyqY11rchVsVptfL4/PWF5vujJqbiqlobFN/qfiP+YNKFCfi nrTKdO6gtSEKXx+DS+uY8fICqa6c41ccNdiwZZjivFieynibKcOok1W4cdHDYxrz kp+4VZNPYk6lCef9cum/27RSYJ85coVzfPfhNH1WsgypMgVgETqJbig1JRhiIgFb 2yztZvXfM1+QHvRQgzk9RmP0zeC1ZYJRvCzKwj5ZW4iggEKomZ8Gf8L36eQiMsBH UFrPms92QeJK9XdKpXxTKTSCv5bnqJ9kLEdiBKgHE1Nv6MEjCPqMr8nc/1VHr12e DXLLXW9v9fqYOAHNRGutqnJH0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOz2xjlu t48dtoV7Fg84VLb8EWIQMB8GA1UdIwQYMBaAFGOSOQY5F+6SwJnkatNpbC7KfFEK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjcwNi8wNEQ0NTdDMjMz MDYxMUVCQTI4MkQzMEFDNEY5QUUwMi9ZNUk1QmprWDdwTEFtZVJxMDJsc0xzcDhV UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k1STVCamtYN3BMQW1lUnEwMmxzTHNwOFVRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI3MDYvMDRENDU3QzIzMzA2MTFFQkEyODJEMzBBQzRGOUFFMDIvMzVENDM2M0Uz MzA3MTFFQjlEM0FBNjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnx9gwDQYJKoZIhvcNAQELBQADggEBAB/jzSZ0LMd7WbNm XaT2WJOb6kPPQsOAoKXAI37o568VTcWSLYL3uzjr2zaq8Y+iWK3De128PutL+jcB WGWT1Ul61qFNHXGJECQWpY7uwCQwXWczgvssVJ/Y2mg/NWvUphsj7sWVRQTCLQk5 yNQl0H8PVb3IT1COSwxUi/cyJI8E63rLH9k/3hBypurR1VP4j9Kf0Bdl8k95qrjl H1PLUoewojBYnmCT6Jlk1yzq8IukO1BQW3lxa89XX7Vy1OLcUBWwzo3aEnbkh8dw eHmeBtyAazi9ZfJBGiIXOx4YPtiL1WTVh2wFhLmkBC+MCvmHYOApJxvzphspT4Wp ua8vopQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org