$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa File: E614FEEED6AF11EEAB03B528C4F9AE02.roa (raw, json) Hash identifier: T5x6SlXjPX7mxME3pbp1iBlGxmK0O/jrZnmPz8dQ2E0= Subject key identifier: F0:7A:DD:59:58:E3:92:BD:D0:F7:50:67:87:B5:37:55:15:00:36:E3 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: 13 Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa Signing time: Wed 27 Mar 2024 08:29:43 +0000 ROA not before: Wed 27 Mar 2024 08:29:43 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132174 IP address blocks: 103.109.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 07:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: Mar 27 08:29:43 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6603d8f7-1a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:83:b7:fc:aa:33:be:2e:7c:a0:64:9c:c6:33: b4:ff:86:05:f4:65:f7:79:b3:51:85:11:03:d1:91: 9e:9e:43:ae:e9:6a:ad:1b:9a:06:5c:fa:fe:a5:7e: 4b:96:60:90:b1:45:83:c1:10:8a:79:3b:44:a0:28: 5a:0d:05:4a:a9:44:5e:93:3d:80:4b:eb:3a:6f:93: 7f:df:78:0b:94:ba:02:43:32:d6:7c:26:cc:86:66: f6:84:65:c4:53:88:74:96:e4:b3:c8:11:64:73:fb: f5:97:f8:fa:f8:5c:69:5c:c4:33:be:9d:24:07:79: f7:8e:50:90:c8:91:a6:05:79:70:ec:fa:56:a6:87: d7:58:e7:4f:73:5e:6c:2c:76:0b:cb:47:20:6d:54: b9:bb:d2:ff:96:fb:09:83:d3:13:1e:a3:3d:d0:e2: 4e:ba:99:bf:6c:34:0f:cc:c9:e5:fe:6e:d6:c3:ce: cf:e4:4a:5d:ce:e6:45:ff:1c:f1:cb:4b:b3:13:fe: 0c:8e:6f:43:87:ee:7e:90:9e:e4:0a:5c:88:2d:7d: 51:ea:03:8b:9c:0a:23:b3:60:b6:fa:49:15:83:06: 77:31:8e:8f:f4:5d:9d:e0:21:3d:37:f4:a2:e7:42: c2:41:a0:9b:ba:69:b9:09:ff:3b:84:0f:8d:07:8d: a7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7A:DD:59:58:E3:92:BD:D0:F7:50:67:87:B5:37:55:15:00:36:E3 X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/E614FEEED6AF11EEAB03B528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.122.0/24 Signature Algorithm: sha256WithRSAEncryption 89:fd:db:5d:60:24:92:ba:de:1f:e9:a7:0d:6d:57:ff:a9:ac: 1b:e1:c9:ec:54:31:0d:a8:06:ff:4a:49:56:c1:b2:bf:dd:9d: 3e:c0:8d:8b:dd:b8:37:0b:f5:08:6f:16:b7:63:04:b4:0b:84: 8e:14:c8:c1:22:24:9a:ec:22:48:47:5e:06:e1:67:cc:85:60: b0:6d:41:56:f8:e9:c5:8f:ff:6b:72:fd:eb:35:25:d3:53:8c: a3:96:fc:ea:1f:02:78:6f:7b:dd:f3:c0:ad:16:6f:43:41:55: 83:03:97:d3:54:a1:3e:6d:b0:56:9b:d2:8a:82:a8:f0:b2:7d: 9d:95:0a:cb:d7:05:3d:a6:d6:fe:69:c1:b0:e4:84:af:e7:72: fc:1c:cd:d1:da:cc:cd:76:14:ea:21:ae:be:eb:88:8f:a6:df: 27:5f:3e:f0:d7:28:0f:ba:11:0a:ac:ff:f8:81:fe:9a:3d:1d: 01:a8:9d:39:03:6f:c8:dc:49:6d:f1:eb:ef:76:f4:ea:cf:39: be:d0:2b:d0:e7:8a:b0:84:cb:57:7c:41:32:d7:ac:21:3c:3f: 2c:a0:e3:5c:35:05:0a:3e:c7:14:c1:d5:be:ec:07:72:e4:ee: c0:12:fb:8b:8a:de:4c:d5:70:11:2a:1d:51:28:87:9d:fc:32: e7:82:48:58 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OUQ5MzExMC8GA1UEBRMoOENDNTNBOTkyOTdGMUNDMEEwQkZCREVCRjI0RTEzMkIw RDg0MUM3NjAeFw0yNDAzMjcwODI5NDNaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDNkOGY3LTFhMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7g7f8qjO+LnygZJzGM7T/hgX0Zfd5s1GFEQPRkZ6eQ67paq0bmgZc+v6lfkuW YJCxRYPBEIp5O0SgKFoNBUqpRF6TPYBL6zpvk3/feAuUugJDMtZ8JsyGZvaEZcRT iHSW5LPIEWRz+/WX+Pr4XGlcxDO+nSQHefeOUJDIkaYFeXDs+lamh9dY509zXmws dgvLRyBtVLm70v+W+wmD0xMeoz3Q4k66mb9sNA/MyeX+btbDzs/kSl3O5kX/HPHL S7MT/gyOb0OH7n6QnuQKXIgtfVHqA4ucCiOzYLb6SRWDBncxjo/0XZ3gIT039KLn QsJBoJu6abkJ/zuED40HjadLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8HrdWVjj kr3Q91Bnh7U3VRUANuMwHwYDVR0jBBgwFoAUjMU6mSl/HMCgv73r8k4TKw2EHHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5RDkzL0NDQkFBQURBRDZB OTExRUVBQ0QzMTY2OEM0RjlBRTAyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvak1VNm1TbF9ITUNndjczcjhrNFRLdzJFSEhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUQ5My9DQ0JBQUFEQUQ2QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9FNjE0RkVFRUQ2 QUYxMUVFQUIwM0I1MjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdtejANBgkqhkiG9w0BAQsFAAOCAQEAif3bXWAkkrreH+mn DW1X/6msG+HJ7FQxDagG/0pJVsGyv92dPsCNi924Nwv1CG8Wt2MEtAuEjhTIwSIk muwiSEdeBuFnzIVgsG1BVvjpxY//a3L96zUl01OMo5b86h8CeG973fPArRZvQ0FV gwOX01ShPm2wVpvSioKo8LJ9nZUKy9cFPabW/mnBsOSEr+dy/BzN0drMzXYU6iGu vuuIj6bfJ18+8NcoD7oRCqz/+IH+mj0dAaidOQNvyNxJbfHr73b06s85vtAr0OeK sITLV3xBMtesITw/LKDjXDUFCj7HFMHVvuwHcuTuwBL7i4reTNVwESodUSiHnfwy 54JIWA== -----END CERTIFICATE-----Generated at Mon May 27 10:24:59 2024 by rpki-client on console-fra.rpki-client.org