$ rpki-client -vvf rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa File: 683CDAD0B4C411EE8F1E5D85C4F9AE02.roa (raw, json) Hash identifier: IJ2HgijVq6BG0TSXKcMj7TfcF8QRuMwnTAmE7peGsZs= Subject key identifier: A9:0A:28:AE:6A:1D:40:96:4A:A6:A1:59:B7:AF:26:EF:41:B3:A3:28 Certificate issuer: /CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Certificate serial: 061B Authority key identifier: 42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa Signing time: Tue 16 Jan 2024 23:10:41 +0000 ROA not before: Tue 16 Jan 2024 23:10:41 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 6206 IP address blocks: 103.101.0.0/22 maxlen: 24 2401:c740::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 23:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1563 (0x61b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127733/serialNumber=4275515200B039672AFA0E85877D4E3FE70D89D7 Validity Not Before: Jan 16 23:10:41 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65a70cf0-c003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5f:fb:cf:56:10:1c:ea:f7:64:16:68:36:88: 2d:36:55:10:eb:49:61:8f:29:0f:c9:5f:78:e6:3d: 64:5a:e2:dc:9f:49:7a:a3:39:28:5a:0c:3e:30:ef: 80:77:e2:d3:61:e8:59:49:71:77:dc:f1:c3:a4:6f: fc:13:19:65:d2:c5:dc:2a:a2:fe:0a:c6:f5:12:d5: 28:66:7f:07:90:7a:9d:a1:3a:14:9c:ed:97:3f:fb: 65:1e:27:e9:24:ad:2a:a5:c7:4f:d7:ec:13:44:94: 67:61:18:a2:31:cc:2f:4b:96:ef:50:5f:45:4b:a2: 3e:e4:85:56:69:28:51:64:6a:19:2a:aa:c6:f3:b8: df:38:e4:cc:86:6d:e2:bb:7e:d2:2f:2d:5a:f4:96: 7f:e1:34:ea:2d:a9:b2:08:7c:f2:25:c8:01:ed:d8: ba:d4:88:17:60:a3:de:b3:10:ba:a8:17:16:03:9c: e3:3c:56:03:d5:26:21:df:11:e8:ff:64:c4:41:a4: 63:a4:ca:c3:58:10:cb:26:86:66:ff:53:6d:5d:05: 12:e7:73:20:ad:fd:cf:81:db:9b:82:97:a7:0d:6a: 12:d7:09:d6:86:56:99:f4:70:7a:7a:f9:6a:6a:6a: 2c:f6:0f:43:15:c9:21:3c:ef:85:da:83:b8:27:10: fc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0A:28:AE:6A:1D:40:96:4A:A6:A1:59:B7:AF:26:EF:41:B3:A3:28 X509v3 Authority Key Identifier: keyid:42:75:51:52:00:B0:39:67:2A:FA:0E:85:87:7D:4E:3F:E7:0D:89:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/QnVRUgCwOWcq-g6Fh31OP-cNidc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QnVRUgCwOWcq-g6Fh31OP-cNidc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127733/ADDC3B3E458D11EBA39AC740C4F9AE02/683CDAD0B4C411EE8F1E5D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.0.0/22 IPv6: 2401:c740::/32 Signature Algorithm: sha256WithRSAEncryption 19:41:21:cf:7f:e1:91:cb:f9:3c:fd:ec:b1:74:41:d4:29:46: f5:84:91:cf:bb:f1:77:38:f1:29:e2:e9:ce:7d:9c:0e:a5:68: 09:92:27:0e:17:50:9a:ad:93:48:cf:0c:79:b9:4c:bb:01:75: 5d:c2:54:f9:09:0d:a9:21:6f:f4:0c:9f:cb:4b:a1:e3:5c:81: 49:96:76:65:2e:c2:57:33:7f:6c:9d:8b:f8:97:d9:75:66:76: 82:3f:1d:c1:3f:4c:dc:fb:9a:dc:04:33:89:d3:48:7f:fa:82: 71:20:c6:a7:21:c4:a1:9b:0e:4c:13:17:9e:27:9c:8b:26:06: c6:1e:22:82:40:41:7c:5e:de:27:e3:8f:99:ec:9d:99:b2:3e: 3b:f2:e3:16:2e:6d:2d:97:dc:30:6e:8b:36:6a:4f:77:03:c7: ac:10:c0:e0:d1:d0:99:8e:da:fc:6b:3b:de:de:97:45:a8:17: 9c:96:8a:f4:c0:ce:cd:a4:74:f5:9e:c8:eb:a4:d0:20:c2:44: cd:8b:e3:87:f0:b4:5c:63:4b:0d:dc:23:db:cf:1b:bd:d3:be: aa:68:be:f2:52:4b:4f:99:98:54:c0:7e:db:3f:87:a3:e5:c1: 42:fe:74:16:bd:52:31:2b:f3:05:43:f2:eb:ec:73:56:ab:fb: c7:02:db:2d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MzMxMTAvBgNVBAUTKDQyNzU1MTUyMDBCMDM5NjcyQUZBMEU4NTg3N0Q0RTNG RTcwRDg5RDcwHhcNMjQwMTE2MjMxMDQxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MGNmMC1jMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAql/7z1YQHOr3ZBZoNogtNlUQ60lhjykPyV945j1kWuLcn0l6ozkoWgw+MO+A d+LTYehZSXF33PHDpG/8Exll0sXcKqL+Csb1EtUoZn8HkHqdoToUnO2XP/tlHifp JK0qpcdP1+wTRJRnYRiiMcwvS5bvUF9FS6I+5IVWaShRZGoZKqrG87jfOOTMhm3i u37SLy1a9JZ/4TTqLamyCHzyJcgB7di61IgXYKPesxC6qBcWA5zjPFYD1SYh3xHo /2TEQaRjpMrDWBDLJoZm/1NtXQUS53Mgrf3PgdubgpenDWoS1wnWhlaZ9HB6evlq amos9g9DFckhPO+F2oO4JxD8QQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKkKKK5q HUCWSqahWbevJu9Bs6MoMB8GA1UdIwQYMBaAFEJ1UVIAsDlnKvoOhYd9Tj/nDYnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzczMy9BRERDM0IzRTQ1 OEQxMUVCQTM5QUM3NDBDNEY5QUUwMi9RblZSVWdDd09XY3EtZzZGaDMxT1AtY05p ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FuVlJVZ0N3T1djcS1nNkZoMzFPUC1jTmlkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc3MzMvQUREQzNCM0U0NThEMTFFQkEzOUFDNzQwQzRGOUFFMDIvNjgzQ0RBRDBC NEM0MTFFRThGMUU1RDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZQAwDQQCAAIwBwMFACQBx0AwDQYJKoZIhvcNAQELBQAD ggEBABlBIc9/4ZHL+Tz97LF0QdQpRvWEkc+78Xc48Sni6c59nA6laAmSJw4XUJqt k0jPDHm5TLsBdV3CVPkJDakhb/QMn8tLoeNcgUmWdmUuwlczf2ydi/iX2XVmdoI/ HcE/TNz7mtwEM4nTSH/6gnEgxqchxKGbDkwTF54nnIsmBsYeIoJAQXxe3ifjj5ns nZmyPjvy4xYubS2X3DBuizZqT3cDx6wQwODR0JmO2vxrO97el0WoF5yWivTAzs2k dPWeyOuk0CDCRM2L44fwtFxjSw3cI9vPG73TvqpovvJSS0+ZmFTAfts/h6PlwUL+ dBa9UjEr8wVD8uvsc1ar+8cC2y0= -----END CERTIFICATE-----Generated at Mon May 27 00:32:50 2024 by rpki-client on console-fra.rpki-client.org