$ rpki-client -vvf rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/20BFA0B64A4911EDACB7AB0CC4F9AE02.roa File: 20BFA0B64A4911EDACB7AB0CC4F9AE02.roa (raw, json) Hash identifier: YY2Pd0GkguRICvmWSkJWrBzrhj55FV0uDBgHL7OCSIo= Subject key identifier: 85:1D:A7:B3:C3:9F:55:E4:62:E0:2B:6C:2B:AB:B8:F8:A1:FB:4D:81 Certificate issuer: /CN=A912F592/serialNumber=56D52419D56AACDF7D005BA15D9DDB8F142E3AD0 Certificate serial: D1 Authority key identifier: 56:D5:24:19:D5:6A:AC:DF:7D:00:5B:A1:5D:9D:DB:8F:14:2E:3A:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VtUkGdVqrN99AFuhXZ3bjxQuOtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/20BFA0B64A4911EDACB7AB0CC4F9AE02.roa Signing time: Wed 15 Nov 2023 04:35:29 +0000 ROA not before: Wed 15 Nov 2023 04:35:29 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 19993 IP address blocks: 103.11.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/VtUkGdVqrN99AFuhXZ3bjxQuOtA.crl rsync://rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/VtUkGdVqrN99AFuhXZ3bjxQuOtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VtUkGdVqrN99AFuhXZ3bjxQuOtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F592/serialNumber=56D52419D56AACDF7D005BA15D9DDB8F142E3AD0 Validity Not Before: Nov 15 04:35:29 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65544a90-0465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:f1:79:a2:3f:5c:74:d3:7b:30:b4:18:c7: 21:fd:c5:51:27:46:a5:49:e7:61:79:49:a2:fe:e2: 9b:f9:51:51:e9:4b:99:2b:96:db:f3:4f:57:ad:04: c4:31:44:be:12:21:6b:7b:a8:6d:08:90:0a:cf:6d: f6:5e:c5:59:e5:ab:ef:26:1b:af:02:2e:1f:98:7a: 2e:31:7e:02:2c:b5:be:50:01:b8:90:56:49:80:b7: 95:c6:62:be:01:3b:d2:d5:18:a3:a5:d6:a3:3b:ea: 1d:4a:16:58:f7:e0:3f:ba:13:26:65:22:7a:57:01: 32:84:d3:42:9b:96:cd:7d:95:34:77:8c:93:98:0a: 63:42:7f:f5:02:9d:1b:30:e6:8f:26:f4:9b:0f:93: e3:cd:b5:2d:60:a6:2f:6c:2f:a0:86:3f:5c:39:d1: 1f:4d:55:b1:1d:fd:ab:4b:23:87:0b:2f:0a:50:57: 1d:38:d1:86:36:3c:fc:70:1b:8f:1e:98:ae:20:7d: d3:1d:59:04:dc:b3:54:85:c4:4e:9d:05:b6:55:a9: 7c:cb:37:b2:da:6f:a4:d4:9d:44:38:71:2b:4b:37: b9:21:8f:bb:b8:9c:b1:91:2f:89:85:46:35:de:9b: fe:1a:37:81:ef:f3:a8:a7:82:50:e5:ce:0d:e4:e4: 0e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1D:A7:B3:C3:9F:55:E4:62:E0:2B:6C:2B:AB:B8:F8:A1:FB:4D:81 X509v3 Authority Key Identifier: keyid:56:D5:24:19:D5:6A:AC:DF:7D:00:5B:A1:5D:9D:DB:8F:14:2E:3A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/VtUkGdVqrN99AFuhXZ3bjxQuOtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VtUkGdVqrN99AFuhXZ3bjxQuOtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F592/FA5912DE4A4511ED953B4186C4F9AE02/20BFA0B64A4911EDACB7AB0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.104.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:28:1a:8d:2c:7d:3d:2f:98:96:5b:fe:a3:f6:9e:65:16:5e: e9:67:76:36:64:64:97:9f:85:36:3f:ff:3d:0d:25:96:ba:73: 1e:1a:5d:62:82:d6:85:37:c3:1e:7d:c5:bb:81:3e:12:4a:e7: 8e:4d:ce:d9:c0:78:3b:d8:3c:af:53:9e:07:d3:a9:a8:bf:62: 82:89:fb:a2:63:4f:c2:a0:5a:5b:a5:f9:76:87:a6:78:fe:81: ef:ed:04:1d:1a:22:18:77:11:03:2d:74:57:17:53:b8:6a:55: a8:31:91:95:66:69:64:e1:0a:11:1e:9f:18:76:cf:cd:d7:5d: 98:b8:98:be:5d:45:6f:8a:69:d2:72:24:4e:bb:d3:09:0c:44: 46:f1:74:10:cf:e9:2c:92:f7:61:2f:ae:77:dc:d4:bc:80:0e: a5:b5:e7:ea:6b:05:dc:6c:97:9e:7c:59:35:67:86:e3:9e:3a: 65:58:4f:b8:0d:ba:82:5f:f3:ae:4f:4b:11:63:41:f5:3b:ab: 24:5e:72:49:e4:4c:77:06:64:c9:ca:eb:18:8b:da:bb:d8:d6: 17:b2:be:ea:a2:d7:1c:62:37:aa:c8:2a:5d:95:ff:e2:98:d1: eb:78:5c:d2:f3:16:a0:7a:c1:40:a7:ae:6a:7f:01:55:10:32: bb:fc:81:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1OTIxMTAvBgNVBAUTKDU2RDUyNDE5RDU2QUFDREY3RDAwNUJBMTVEOUREQjhG MTQyRTNBRDAwHhcNMjMxMTE1MDQzNTI5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0NGE5MC0wNDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvTxeaI/XHTTezC0GMch/cVRJ0alSedheUmi/uKb+VFR6UuZK5bb809XrQTE MUS+EiFre6htCJAKz232XsVZ5avvJhuvAi4fmHouMX4CLLW+UAG4kFZJgLeVxmK+ ATvS1RijpdajO+odShZY9+A/uhMmZSJ6VwEyhNNCm5bNfZU0d4yTmApjQn/1Ap0b MOaPJvSbD5PjzbUtYKYvbC+ghj9cOdEfTVWxHf2rSyOHCy8KUFcdONGGNjz8cBuP HpiuIH3THVkE3LNUhcROnQW2Val8yzey2m+k1J1EOHErSze5IY+7uJyxkS+JhUY1 3pv+GjeB7/Oop4JQ5c4N5OQOtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIUdp7PD n1XkYuArbCuruPih+02BMB8GA1UdIwQYMBaAFFbVJBnVaqzffQBboV2d248ULjrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjU5Mi9GQTU5MTJERTRB NDUxMUVEOTUzQjQxODZDNEY5QUUwMi9WdFVrR2RWcXJOOTlBRnVoWFozYmp4UXVP dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z0VWtHZFZxck45OUFGdWhYWjNianhRdU90QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1OTIvRkE1OTEyREU0QTQ1MTFFRDk1M0I0MTg2QzRGOUFFMDIvMjBCRkEwQjY0 QTQ5MTFFREFDQjdBQjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnC2gwDQYJKoZIhvcNAQELBQADggEBAI4oGo0sfT0vmJZb /qP2nmUWXulndjZkZJefhTY//z0NJZa6cx4aXWKC1oU3wx59xbuBPhJK545NztnA eDvYPK9TngfTqai/YoKJ+6JjT8KgWlul+XaHpnj+ge/tBB0aIhh3EQMtdFcXU7hq VagxkZVmaWThChEenxh2z83XXZi4mL5dRW+KadJyJE670wkMREbxdBDP6SyS92Ev rnfc1LyADqW15+prBdxsl558WTVnhuOeOmVYT7gNuoJf865PSxFjQfU7qyRecknk THcGZMnK6xiL2rvY1heyvuqi1xxiN6rIKl2V/+KY0et4XNLzFqB6wUCnrmp/AVUQ Mrv8gbQ= -----END CERTIFICATE-----Generated at Wed May 15 05:59:54 2024 by rpki-client on console-fra.rpki-client.org