$ rpki-client -vvf rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa File: DCAC0B64C22011EB9C4C3B31C4F9AE02.roa (raw, json) Hash identifier: aRYWCiFCI9e+UhsWF2EXBC5D+N3vZVlnQx//tGzToMg= Subject key identifier: EF:AE:3C:58:0E:67:5F:9D:4A:B9:9D:83:95:4D:93:96:2D:BD:E4:7C Certificate issuer: /CN=A9137C94/serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Certificate serial: 0515 Authority key identifier: 13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa Signing time: Wed 19 Jun 2024 02:08:23 +0000 ROA not before: Wed 19 Jun 2024 02:08:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142299 IP address blocks: 103.167.192.0/24 maxlen: 24 103.167.193.0/24 maxlen: 24 2407:7040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137C94/serialNumber=13122ACD38E0191699862CCA7EF2477630D570E9 Validity Not Before: Jun 19 02:08:23 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66723d96-025a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:40:de:2c:ac:c0:87:74:2d:a8:69:2e:77: 95:42:ef:b6:52:b4:79:f1:29:13:b8:6d:54:6f:af: 91:b7:58:88:d1:6a:ed:5c:a0:e5:80:92:bd:aa:83: 7b:06:f5:b3:3d:85:24:f8:7d:d7:aa:38:06:54:89: ea:f2:1b:20:5d:d1:a1:b0:e0:17:10:86:b3:40:66: 36:58:49:6e:3d:07:68:2a:3b:2a:70:bf:58:c2:49: 2c:62:b9:db:6a:eb:8b:f7:fa:50:3e:2d:06:08:fa: 9d:79:1b:49:9e:79:6e:79:46:2d:cb:40:fa:49:d4: ac:b3:13:3c:9e:a4:d0:b0:d0:74:f0:19:ef:4c:ae: e8:0d:db:47:af:99:a2:eb:14:f5:03:23:63:f3:5b: 22:79:63:c2:2f:49:32:c2:43:05:d0:80:5b:ed:93: 6e:e1:ba:ea:d8:13:1c:26:a6:04:8f:7a:d9:8d:d8: d0:63:ed:76:2c:bc:15:74:10:b0:ae:4d:68:de:51: 8a:65:f9:eb:a6:5f:3b:1f:2c:23:52:31:d2:c6:ff: b0:bd:56:8b:ac:19:fb:45:5e:ae:69:04:b7:86:f6: 8a:31:91:67:9e:1e:81:6c:86:89:6e:86:c9:f0:cd: 68:ba:0f:f9:8a:88:e4:83:7a:06:38:69:56:eb:4c: 76:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AE:3C:58:0E:67:5F:9D:4A:B9:9D:83:95:4D:93:96:2D:BD:E4:7C X509v3 Authority Key Identifier: keyid:13:12:2A:CD:38:E0:19:16:99:86:2C:CA:7E:F2:47:76:30:D5:70:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/ExIqzTjgGRaZhizKfvJHdjDVcOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExIqzTjgGRaZhizKfvJHdjDVcOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137C94/BD0FD35CC21C11EBA51EC229C4F9AE02/DCAC0B64C22011EB9C4C3B31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.192.0/23 IPv6: 2407:7040::/32 Signature Algorithm: sha256WithRSAEncryption a8:7f:ce:0a:fb:b0:58:c2:fa:6b:5d:95:15:86:f0:d3:4d:bf: 44:f7:b7:66:40:f1:17:04:4e:79:9b:65:09:ca:ca:3e:28:b5: fe:b4:41:99:56:40:13:63:1a:9d:5c:2e:dd:8a:ba:e4:17:4e: 46:e0:6a:f7:b2:a5:ed:72:24:5e:b1:a1:fa:f5:a7:f7:d8:78: 59:82:85:84:cf:06:ae:f2:15:7b:95:65:1e:a8:29:65:ec:dd: c2:3a:17:41:3c:9f:fb:b7:62:a4:74:bd:a9:26:88:fe:9d:52: 29:08:88:3c:cb:e1:44:75:9a:ba:aa:8b:bb:12:de:ff:12:59: 7d:80:65:0b:d8:6a:b7:84:af:08:95:67:7a:9d:47:4d:a0:8f: 29:0e:4d:f5:44:98:42:a0:05:d8:e7:66:bc:66:2e:23:b9:ae: c0:c5:a6:f9:d9:d0:9f:f2:72:e1:25:30:3d:10:55:b8:7e:0e: e8:57:8a:90:61:38:57:b6:16:b4:46:d6:db:3c:cb:7f:1f:c8: c3:9c:28:2f:fa:02:d5:33:46:a6:39:b4:70:c1:d3:c8:ea:ee: 5a:4b:f6:95:8a:7a:b5:59:be:89:c1:25:78:88:15:a4:56:3c: 50:5c:f0:62:e6:dd:95:68:6c:8b:03:3a:63:42:2d:c7:56:aa: 7f:6d:84:3c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdDOTQxMTAvBgNVBAUTKDEzMTIyQUNEMzhFMDE5MTY5OTg2MkNDQTdFRjI0Nzc2 MzBENTcwRTkwHhcNMjQwNjE5MDIwODIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyM2Q5Ni0wMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4ZA3iyswId0LahpLneVQu+2UrR58SkTuG1Ub6+Rt1iI0WrtXKDlgJK9qoN7 BvWzPYUk+H3XqjgGVInq8hsgXdGhsOAXEIazQGY2WEluPQdoKjsqcL9YwkksYrnb auuL9/pQPi0GCPqdeRtJnnlueUYty0D6SdSssxM8nqTQsNB08BnvTK7oDdtHr5mi 6xT1AyNj81sieWPCL0kywkMF0IBb7ZNu4brq2BMcJqYEj3rZjdjQY+12LLwVdBCw rk1o3lGKZfnrpl87HywjUjHSxv+wvVaLrBn7RV6uaQS3hvaKMZFnnh6BbIaJbobJ 8M1oug/5iojkg3oGOGlW60x2+wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO+uPFgO Z1+dSrmdg5VNk5YtveR8MB8GA1UdIwQYMBaAFBMSKs044BkWmYYsyn7yR3Yw1XDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0M5NC9CRDBGRDM1Q0My MUMxMUVCQTUxRUMyMjlDNEY5QUUwMi9FeElxelRqZ0dSYVpoaXpLZnZKSGRqRFZj T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4SXF6VGpnR1JhWmhpektmdkpIZGpEVmNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdDOTQvQkQwRkQzNUNDMjFDMTFFQkE1MUVDMjI5QzRGOUFFMDIvRENBQzBCNjRD MjIwMTFFQjlDNEMzQjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnp8AwDQQCAAIwBwMFACQHcEAwDQYJKoZIhvcNAQELBQAD ggEBAKh/zgr7sFjC+mtdlRWG8NNNv0T3t2ZA8RcETnmbZQnKyj4otf60QZlWQBNj Gp1cLt2KuuQXTkbgaveype1yJF6xofr1p/fYeFmChYTPBq7yFXuVZR6oKWXs3cI6 F0E8n/u3YqR0vakmiP6dUikIiDzL4UR1mrqqi7sS3v8SWX2AZQvYareErwiVZ3qd R02gjykOTfVEmEKgBdjnZrxmLiO5rsDFpvnZ0J/ycuElMD0QVbh+DuhXipBhOFe2 FrRG1ts8y38fyMOcKC/6AtUzRqY5tHDB08jq7lpL9pWKerVZvonBJXiIFaRWPFBc 8GLm3ZVobIsDOmNCLcdWqn9thDw= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org