$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa File: 29BC840E002711EB8FA6A142C4F9AE02.roa (raw, json) Hash identifier: MbMEXJnRsea2u+4UtlV0ffg+vDbiEA0IiKSsdKuSk8E= Subject key identifier: 55:57:F0:0B:FB:29:2F:8E:11:66:6E:4E:25:1A:C2:1C:0E:37:21:9C Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 06F9 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa Signing time: Mon 18 Mar 2024 23:11:52 +0000 ROA not before: Mon 18 Mar 2024 23:11:52 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 134176 IP address blocks: 43.240.14.0/24 maxlen: 24 103.51.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Mar 18 23:11:52 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f8ca37-8e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:d4:71:c1:1d:68:5d:7d:a0:6e:f1:ad:df: f5:91:42:bc:b1:07:fd:37:56:35:f2:ff:35:b3:20: 66:7d:42:6c:47:44:de:82:ab:f5:74:98:75:04:71: 13:f0:1f:d8:ef:62:7a:4c:3a:2b:5b:1b:c6:ce:6b: 86:1b:26:79:e2:4a:b4:54:ce:3e:05:b7:cb:69:2b: 29:d5:ce:eb:2b:05:ce:45:58:0b:73:1c:db:8f:a1: 30:ce:2a:90:a6:e9:b4:25:b2:17:9d:5c:65:97:bf: 4e:9c:c9:af:f6:35:01:03:90:8d:72:dc:48:c5:e2: e2:60:e9:b1:68:89:d7:0f:28:23:a9:05:9e:c1:36: c9:fd:4d:2c:01:78:04:2f:83:e4:a3:57:eb:d0:4a: 80:08:fe:70:76:4d:ed:03:ac:ad:90:04:30:61:d1: 84:11:3e:9e:95:56:9f:cd:62:9c:fb:08:ab:15:b2: fd:ea:37:29:d1:15:c3:25:8d:dc:06:ae:51:fe:f2: 9f:ab:17:b2:8b:07:58:6f:05:ae:f9:e5:27:46:25: 43:00:74:90:a8:2e:a3:65:ed:83:d8:cb:f8:fb:aa: 5e:66:e2:75:98:95:27:9e:0b:d8:a2:40:bf:ec:29: c7:f7:c8:b6:77:4c:96:39:04:ca:ea:a6:84:b0:2c: 26:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:57:F0:0B:FB:29:2F:8E:11:66:6E:4E:25:1A:C2:1C:0E:37:21:9C X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/29BC840E002711EB8FA6A142C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.240.14.0/24 103.51.146.0/24 Signature Algorithm: sha256WithRSAEncryption 85:36:a7:14:bd:60:86:28:98:38:82:58:55:64:74:75:40:4c: 90:61:04:0b:e4:2c:0f:7d:e6:f6:a1:9a:f9:64:aa:f2:25:a1: 68:13:ce:f6:a4:bf:8e:53:13:3f:d8:df:65:10:d3:c9:6a:78: 0a:58:e1:27:66:a3:e7:63:86:ec:63:89:86:89:d4:a0:81:d8: 9e:c1:fd:18:bc:24:78:7b:01:84:51:3f:67:88:ad:72:70:5c: 93:d7:e2:03:57:8d:96:32:ae:26:a7:9a:48:dc:0f:a4:24:0e: 9b:5d:f7:8e:c7:17:e0:10:68:bd:ea:a0:96:7d:81:23:f8:53: ba:d2:c0:cb:bb:9e:85:b3:74:79:97:95:9c:08:b3:a4:60:4c: c8:f0:ee:7a:f4:92:8e:08:7d:b2:1e:75:e8:ed:66:a1:76:ab: 0a:94:b2:bb:63:6f:70:af:39:6d:33:5b:85:71:4e:be:f4:3b: da:18:01:d9:7b:e2:2a:30:32:71:c4:d1:48:f4:c8:ff:4d:1a: bb:f3:07:89:73:0c:86:2d:c2:5f:c7:b4:07:82:de:d3:e8:7b: a6:b1:9b:df:8e:60:9d:df:39:d2:b2:e7:31:04:19:a5:84:4a: cb:ba:e5:08:82:5c:ff:40:57:0c:4d:8d:6f:d7:b7:76:bc:69: 78:43:b5:70 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjQwMzE4MjMxMTUyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY4Y2EzNy04ZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUjUccEdaF19oG7xrd/1kUK8sQf9N1Y18v81syBmfUJsR0Tegqv1dJh1BHET 8B/Y72J6TDorWxvGzmuGGyZ54kq0VM4+BbfLaSsp1c7rKwXORVgLcxzbj6EwziqQ pum0JbIXnVxll79OnMmv9jUBA5CNctxIxeLiYOmxaInXDygjqQWewTbJ/U0sAXgE L4Pko1fr0EqACP5wdk3tA6ytkAQwYdGEET6elVafzWKc+wirFbL96jcp0RXDJY3c Bq5R/vKfqxeyiwdYbwWu+eUnRiVDAHSQqC6jZe2D2Mv4+6peZuJ1mJUnngvYokC/ 7CnH98i2d0yWOQTK6qaEsCwm/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFVX8Av7 KS+OEWZuTiUawhwONyGcMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3QzIvNEU0MjZERThGQkVBMTFFQTk0MEExRDE5QzRGOUFFMDIvMjlCQzg0MEUw MDI3MTFFQjhGQTZBMTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr8A4DBABnM5IwDQYJKoZIhvcNAQELBQADggEBAIU2pxS9 YIYomDiCWFVkdHVATJBhBAvkLA995vahmvlkqvIloWgTzvakv45TEz/Y32UQ08lq eApY4Sdmo+djhuxjiYaJ1KCB2J7B/Ri8JHh7AYRRP2eIrXJwXJPX4gNXjZYyrian mkjcD6QkDptd947HF+AQaL3qoJZ9gSP4U7rSwMu7noWzdHmXlZwIs6RgTMjw7nr0 ko4IfbIedejtZqF2qwqUsrtjb3CvOW0zW4VxTr70O9oYAdl74iowMnHE0Uj0yP9N GrvzB4lzDIYtwl/HtAeC3tPoe6axm9+OYJ3fOdKy5zEEGaWESsu65QiCXP9AVwxN jW/Xt3a8aXhDtXA= -----END CERTIFICATE-----Generated at Thu May 16 23:48:40 2024 by rpki-client on console-fra.rpki-client.org