$ rpki-client -vvf rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/26833348954511EFA5D9B90FC4F9AE02.roa File: 26833348954511EFA5D9B90FC4F9AE02.roa (raw, json) Hash identifier: CyHrVj1UIxTmkHUnWq5JYlTSppmsSZAZAIYgcE9IyY4= Subject key identifier: 97:08:D2:56:52:C2:DD:B1:E3:7C:83:57:1B:F6:06:F1:CF:D5:2C:18 Certificate issuer: /CN=A91407B7/serialNumber=F8BD38A4C9F0C4FA73BF0D90FF0CCA802DBFD6DC Certificate serial: 077A Authority key identifier: F8:BD:38:A4:C9:F0:C4:FA:73:BF:0D:90:FF:0C:CA:80:2D:BF:D6:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L04pMnwxPpzvw2Q_wzKgC2_1tw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/26833348954511EFA5D9B90FC4F9AE02.roa Signing time: Mon 28 Oct 2024 21:21:57 +0000 ROA not before: Mon 28 Oct 2024 21:21:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141149 IP address blocks: 103.155.70.0/23 maxlen: 23 103.155.70.0/24 maxlen: 24 2001:df4:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/-L04pMnwxPpzvw2Q_wzKgC2_1tw.crl rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/-L04pMnwxPpzvw2Q_wzKgC2_1tw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L04pMnwxPpzvw2Q_wzKgC2_1tw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91407B7/serialNumber=F8BD38A4C9F0C4FA73BF0D90FF0CCA802DBFD6DC Validity Not Before: Oct 28 21:21:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67200075-2bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:6e:f4:6f:a6:4c:19:53:66:a4:bc:5e:b3:c6: d4:cd:c3:eb:07:5c:08:53:de:2a:d6:fe:f0:d2:05: 26:c9:27:97:cf:0b:47:7f:81:c9:d1:d7:59:da:c8: da:d2:0e:20:b3:8e:11:73:1e:39:8f:61:69:43:23: f5:40:e1:30:54:4d:86:d3:06:57:a4:89:c4:4f:7c: 9e:e2:31:51:02:a7:0b:d8:a8:84:15:ec:f7:9d:c2: ed:61:e8:a7:46:76:00:29:5e:f8:62:48:08:45:b5: 19:0f:ce:19:b5:4e:aa:e9:f1:7e:f8:dd:fc:55:be: cf:e6:aa:b5:ad:1a:de:30:3b:91:ea:3a:5b:3b:26: a8:55:d0:0c:25:a4:10:81:56:fd:c5:74:a0:d5:9f: 12:a6:b7:73:c0:8c:b7:6b:52:b9:5b:35:fd:15:6c: ee:c7:36:20:05:ea:82:1c:d2:3f:ae:0e:80:e9:3a: 0b:b3:73:96:b7:0b:54:8b:f9:f3:e9:d3:ad:2c:3c: 1d:30:1f:ad:3c:b6:c6:7f:e5:91:81:b6:66:84:16: d8:2d:3e:7b:2c:1e:3b:75:96:49:3b:c9:56:b6:dd: 62:22:f4:2e:d1:3f:84:00:28:36:9c:2d:8e:fc:a4: 97:17:18:06:8b:7c:2e:ad:e4:d9:28:1d:c0:8f:b6: 9a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:08:D2:56:52:C2:DD:B1:E3:7C:83:57:1B:F6:06:F1:CF:D5:2C:18 X509v3 Authority Key Identifier: keyid:F8:BD:38:A4:C9:F0:C4:FA:73:BF:0D:90:FF:0C:CA:80:2D:BF:D6:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/-L04pMnwxPpzvw2Q_wzKgC2_1tw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-L04pMnwxPpzvw2Q_wzKgC2_1tw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91407B7/BD6FE850F17511EAB56B004CC4F9AE02/26833348954511EFA5D9B90FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.70.0/23 IPv6: 2001:df4:b980::/48 Signature Algorithm: sha256WithRSAEncryption 1c:14:04:86:be:d5:6b:f2:de:10:48:5b:34:50:5a:ac:54:6c: 27:53:71:37:a4:f3:31:b6:27:cf:99:67:93:65:b3:12:b1:60: 8f:a2:f9:46:69:0a:5a:59:05:3e:0a:0c:98:2c:a6:c5:88:f1: 13:70:1f:c7:75:d6:3f:50:c4:ab:c3:e4:71:ff:33:d5:58:19: b1:cc:f4:ce:28:bc:4a:aa:47:9d:35:21:0f:6f:33:b2:ec:ce: 7d:2f:8f:27:39:3a:ce:d9:7b:17:cf:1a:6d:3c:44:86:cb:d6: 43:27:48:88:0a:9e:87:d3:b3:a6:f5:c6:d0:9f:97:32:7f:33: 94:1f:54:43:66:4d:10:e0:4a:f4:64:c4:9f:8e:2b:e3:e9:27: b8:20:f1:2b:27:8d:26:8e:fd:3e:c8:da:6d:b4:1c:36:24:01: c0:3a:97:f6:5c:f9:ee:81:e8:1c:12:bc:e7:17:c6:fe:bc:2f: 9e:0f:42:5f:98:2f:3b:47:7f:d3:96:f6:b1:42:9b:3c:9e:db: 5e:29:99:05:74:bd:1f:7d:29:a9:26:15:06:d1:27:2e:3f:bf: 0c:0f:ec:91:b6:a1:87:7b:9f:7f:5f:d0:6c:51:ce:11:dc:ce: cd:2e:69:82:ff:d1:60:ed:bc:7a:1c:98:ad:59:69:c8:92:0c: 10:c8:d8:28 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA3QjcxMTAvBgNVBAUTKEY4QkQzOEE0QzlGMEM0RkE3M0JGMEQ5MEZGMENDQTgw MkRCRkQ2REMwHhcNMjQxMDI4MjEyMTU3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMDA3NS0yYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7G70b6ZMGVNmpLxes8bUzcPrB1wIU94q1v7w0gUmySeXzwtHf4HJ0ddZ2sja 0g4gs44Rcx45j2FpQyP1QOEwVE2G0wZXpInET3ye4jFRAqcL2KiEFez3ncLtYein RnYAKV74YkgIRbUZD84ZtU6q6fF++N38Vb7P5qq1rRreMDuR6jpbOyaoVdAMJaQQ gVb9xXSg1Z8SprdzwIy3a1K5WzX9FWzuxzYgBeqCHNI/rg6A6ToLs3OWtwtUi/nz 6dOtLDwdMB+tPLbGf+WRgbZmhBbYLT57LB47dZZJO8lWtt1iIvQu0T+EACg2nC2O /KSXFxgGi3wureTZKB3Aj7aa0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJcI0lZS wt2x43yDVxv2BvHP1SwYMB8GA1UdIwQYMBaAFPi9OKTJ8MT6c78NkP8MyoAtv9bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDdCNy9CRDZGRTg1MEYx NzUxMUVBQjU2QjAwNENDNEY5QUUwMi8tTDA0cE1ud3hQcHp2dzJRX3d6S2dDMl8x dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1MMDRwTW53eFBwenZ3MlFfd3pLZ0MyXzF0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA3QjcvQkQ2RkU4NTBGMTc1MTFFQUI1NkIwMDRDQzRGOUFFMDIvMjY4MzMzNDg5 NTQ1MTFFRkE1RDlCOTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnm0YwDwQCAAIwCQMHACABDfS5gDANBgkqhkiG9w0BAQsF AAOCAQEAHBQEhr7Va/LeEEhbNFBarFRsJ1NxN6TzMbYnz5lnk2WzErFgj6L5RmkK WlkFPgoMmCymxYjxE3Afx3XWP1DEq8Pkcf8z1VgZscz0zii8SqpHnTUhD28zsuzO fS+PJzk6ztl7F88abTxEhsvWQydIiAqeh9OzpvXG0J+XMn8zlB9UQ2ZNEOBK9GTE n44r4+knuCDxKyeNJo79PsjabbQcNiQBwDqX9lz57oHoHBK85xfG/rwvng9CX5gv O0d/05b2sUKbPJ7bXimZBXS9H30pqSYVBtEnLj+/DA/skbahh3uff1/QbFHOEdzO zS5pgv/RYO28ehyYrVlpyJIMEMjYKA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org