$ rpki-client -vvf rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/F7307C08FFCA11EB93268E6DC4F9AE02.roa File: F7307C08FFCA11EB93268E6DC4F9AE02.roa (raw, json) Hash identifier: bQFmQGHXUQ7x87MmTGs+0s+NObqkgDsk8Nc02TDmNdo= Subject key identifier: 91:EB:79:63:3D:2F:44:26:C9:A5:22:D0:FF:FE:E3:0D:91:32:F9:72 Certificate issuer: /CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Certificate serial: 045F Authority key identifier: 82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/F7307C08FFCA11EB93268E6DC4F9AE02.roa Signing time: Fri 03 May 2024 02:14:48 +0000 ROA not before: Fri 03 May 2024 02:14:48 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142040 IP address blocks: 103.165.112.0/24 maxlen: 24 103.165.113.0/24 maxlen: 24 2407:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91294F7/serialNumber=82B31FA1DCE0C4BF2F66397786A6C08E47C6B8FE Validity Not Before: May 3 02:14:48 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66344898-184e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f7:6b:2a:e3:d8:bb:66:c6:15:60:20:1b:93: 9a:14:4c:41:2f:25:37:3f:30:58:03:d2:03:27:63: 5c:d8:cd:b1:30:f4:0e:2d:b5:9f:6e:ad:4c:ec:7f: 04:b1:ae:66:cc:d9:d6:ff:58:9a:db:20:3c:f0:bb: 4f:39:9d:0e:f6:04:55:df:be:4e:eb:ea:02:6d:76: 3e:9b:25:27:35:30:17:79:23:0d:cd:09:0e:7b:48: 61:35:ae:43:6f:46:b7:46:68:93:a6:2d:35:15:1d: 8f:80:48:56:63:ee:2d:c8:3b:05:fb:86:6a:62:0f: bd:e3:e5:ba:80:0a:38:7c:f1:06:df:32:89:ee:2c: ae:13:23:a3:15:d7:35:9c:49:7f:11:87:c0:2c:c5: b2:51:35:56:32:90:9a:e9:bb:98:d0:05:16:a3:21: 88:da:2c:a8:04:b4:da:8e:22:95:89:e8:50:73:5e: e3:f2:7d:a7:4d:26:1a:40:dd:17:79:d8:88:ee:f2: da:64:af:86:a7:83:ef:b4:53:d9:8f:af:ea:73:f0: fb:54:04:d0:06:24:ca:d8:86:e5:18:e3:70:ac:a8: 88:08:ee:81:a2:c8:df:42:0a:c9:b9:e7:6b:4c:d2: 5d:d5:b1:7b:c0:fc:e6:81:c5:f7:c6:a9:4c:2d:22: a0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:EB:79:63:3D:2F:44:26:C9:A5:22:D0:FF:FE:E3:0D:91:32:F9:72 X509v3 Authority Key Identifier: keyid:82:B3:1F:A1:DC:E0:C4:BF:2F:66:39:77:86:A6:C0:8E:47:C6:B8:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/grMfodzgxL8vZjl3hqbAjkfGuP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grMfodzgxL8vZjl3hqbAjkfGuP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91294F7/59FF05AAFFC811EBA8A4A057C4F9AE02/F7307C08FFCA11EB93268E6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.112.0/23 IPv6: 2407:4e40::/48 Signature Algorithm: sha256WithRSAEncryption bb:38:a1:8b:72:d6:78:b1:ba:e4:d9:68:56:55:b2:f4:44:c2: eb:eb:e5:8f:ab:93:9b:8a:90:7a:27:5e:72:13:5a:3f:82:5f: bb:ff:c7:a9:4b:d7:b1:ce:4a:b4:63:56:6f:99:4b:8b:cb:59: 6b:22:56:e6:a0:ea:29:5f:20:3a:93:81:48:59:36:1a:f3:a4: af:15:4e:37:d8:9b:99:d8:1a:c0:52:91:1f:90:0d:81:67:3b: 89:4b:3c:1d:f8:1b:86:3a:3a:b1:c6:db:b4:ba:1d:a0:b4:29: fe:32:ee:2d:59:fc:68:f6:e0:2f:e5:12:14:18:3e:bb:69:f5: 44:ee:e3:6d:f9:8c:54:27:32:70:82:c1:29:3a:f9:9a:65:43: 6c:a8:04:9e:7f:d1:68:6d:58:88:d4:4d:06:da:76:39:14:32: ef:d4:46:70:ed:d9:2c:73:e6:16:e8:23:6e:d2:ce:5b:1c:c5: b0:42:4c:9a:a3:88:93:94:8b:0d:37:d0:cb:42:cf:37:42:96: 05:7f:d4:f6:5f:de:f3:a3:c5:60:e1:be:2f:3b:c9:36:34:5a: a3:a8:f5:21:4b:8a:fc:a5:b4:bc:99:48:4f:23:3d:43:15:e2: 55:87:03:dc:56:5a:ba:65:45:e1:46:9c:16:f7:e0:15:72:77: 85:00:15:b4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk0RjcxMTAvBgNVBAUTKDgyQjMxRkExRENFMEM0QkYyRjY2Mzk3Nzg2QTZDMDhF NDdDNkI4RkUwHhcNMjQwNTAzMDIxNDQ4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0NDg5OC0xODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvdrKuPYu2bGFWAgG5OaFExBLyU3PzBYA9IDJ2Nc2M2xMPQOLbWfbq1M7H8E sa5mzNnW/1ia2yA88LtPOZ0O9gRV375O6+oCbXY+myUnNTAXeSMNzQkOe0hhNa5D b0a3RmiTpi01FR2PgEhWY+4tyDsF+4ZqYg+94+W6gAo4fPEG3zKJ7iyuEyOjFdc1 nEl/EYfALMWyUTVWMpCa6buY0AUWoyGI2iyoBLTajiKViehQc17j8n2nTSYaQN0X ediI7vLaZK+Gp4PvtFPZj6/qc/D7VATQBiTK2IblGONwrKiICO6BosjfQgrJuedr TNJd1bF7wPzmgcX3xqlMLSKgkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJHreWM9 L0QmyaUi0P/+4w2RMvlyMB8GA1UdIwQYMBaAFIKzH6Hc4MS/L2Y5d4amwI5Hxrj+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTRGNy81OUZGMDVBQUZG QzgxMUVCQThBNEEwNTdDNEY5QUUwMi9nck1mb2R6Z3hMOHZaamwzaHFiQWprZkd1 UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyTWZvZHpneEw4dlpqbDNocWJBamtmR3VQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk0RjcvNTlGRjA1QUFGRkM4MTFFQkE4QTRBMDU3QzRGOUFFMDIvRjczMDdDMDhG RkNBMTFFQjkzMjY4RTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpXAwDwQCAAIwCQMHACQHTkAAADANBgkqhkiG9w0BAQsF AAOCAQEAuzihi3LWeLG65NloVlWy9ETC6+vlj6uTm4qQeidechNaP4Jfu//HqUvX sc5KtGNWb5lLi8tZayJW5qDqKV8gOpOBSFk2GvOkrxVON9ibmdgawFKRH5ANgWc7 iUs8Hfgbhjo6scbbtLodoLQp/jLuLVn8aPbgL+USFBg+u2n1RO7jbfmMVCcycILB KTr5mmVDbKgEnn/RaG1YiNRNBtp2ORQy79RGcO3ZLHPmFugjbtLOWxzFsEJMmqOI k5SLDTfQy0LPN0KWBX/U9l/e86PFYOG+LzvJNjRao6j1IUuK/KW0vJlITyM9QxXi VYcD3FZaumVF4UacFvfgFXJ3hQAVtA== -----END CERTIFICATE-----Generated at Tue May 7 03:10:18 2024 by rpki-client on console-ams.rpki-client.org