$ rpki-client -vvf rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/A3C52B6AC8B111EE84B08767C4F9AE02.roa File: A3C52B6AC8B111EE84B08767C4F9AE02.roa (raw, json) Hash identifier: ujJRDZ1E22b+CLXlhYeVsO42bCIUTgZU1dKJPjjUFJY= Subject key identifier: A8:06:5D:7F:13:E4:5D:BB:03:1D:B3:F5:08:4F:AD:B6:B6:B6:C6:AB Certificate issuer: /CN=A9147609/serialNumber=4509689966D37927569CF2CBB44FFE93ACA8E681 Certificate serial: 0729 Authority key identifier: 45:09:68:99:66:D3:79:27:56:9C:F2:CB:B4:4F:FE:93:AC:A8:E6:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/A3C52B6AC8B111EE84B08767C4F9AE02.roa Signing time: Fri 31 May 2024 17:39:27 +0000 ROA not before: Fri 31 May 2024 17:39:27 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 137578 IP address blocks: 103.114.10.0/23 maxlen: 23 103.114.10.0/24 maxlen: 24 2405:4440::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.crl rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jul 2024 02:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1833 (0x729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147609/serialNumber=4509689966D37927569CF2CBB44FFE93ACA8E681 Validity Not Before: May 31 17:39:27 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a0b4f-d67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:2b:ea:c7:eb:96:4c:c0:95:10:66:5f:a6: 71:c7:81:25:fb:f7:b4:48:ae:d7:a7:cd:ac:53:d0: 6f:1d:2e:84:4f:bf:3a:c7:7a:25:f6:03:e3:74:a7: 61:7b:29:de:f2:25:61:96:34:cf:5e:2d:15:41:e1: 2f:7b:4b:09:7d:f0:6e:50:b2:a3:45:15:82:7a:d3: b2:e3:c8:ae:62:a2:fe:d3:6c:81:ba:79:54:dd:bd: 01:f6:69:a2:b5:9a:f6:5c:48:5c:03:7c:28:64:50: 1b:fd:aa:8c:cf:b9:a8:b5:e6:b3:f5:40:cd:ec:0b: 3d:c3:76:77:87:4c:ad:53:c3:cf:e1:1f:af:3f:b2: 61:9f:ad:d6:f6:6d:67:75:d6:d7:66:17:b2:12:6a: 5f:50:0c:2d:f6:3f:24:9d:cd:7e:ef:b5:ed:de:89: bc:b0:50:d8:8e:f6:7c:73:6d:a3:ec:aa:e0:58:10: ba:9f:06:08:b7:9d:3b:86:ce:db:a8:ae:9c:30:0e: 46:24:9c:11:f2:98:c0:56:82:2b:ed:e3:94:03:7d: b6:4d:22:30:9f:4b:d3:b3:cb:6b:78:e7:d3:8e:9e: 03:91:bc:6e:20:bf:84:73:01:ea:0c:7c:80:20:19: e9:58:c0:0d:70:c1:31:ad:33:eb:94:55:6f:9d:47: 3a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:06:5D:7F:13:E4:5D:BB:03:1D:B3:F5:08:4F:AD:B6:B6:B6:C6:AB X509v3 Authority Key Identifier: keyid:45:09:68:99:66:D3:79:27:56:9C:F2:CB:B4:4F:FE:93:AC:A8:E6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/RQlomWbTeSdWnPLLtE_-k6yo5oE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RQlomWbTeSdWnPLLtE_-k6yo5oE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/A3C52B6AC8B111EE84B08767C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.10.0/23 IPv6: 2405:4440::/32 Signature Algorithm: sha256WithRSAEncryption b9:5e:fa:b6:69:9f:e7:f5:9f:db:84:b0:b1:6f:cd:89:37:97: e2:c0:f8:97:5f:60:e1:32:3d:0a:c4:40:c2:ac:12:6a:7c:a7: 79:27:80:90:37:bc:51:5b:e0:39:fb:ea:fd:00:cc:70:6e:5d: d7:0c:f9:57:9e:ec:0b:81:e8:f8:54:68:c1:8b:75:2d:18:0b: 87:e8:d8:55:05:0a:9f:a8:e1:be:a3:e2:a3:4d:71:38:b3:42: cc:d6:0a:f1:c8:b1:00:f5:a5:fb:11:c2:cd:00:f6:09:8a:7b: b1:c2:3c:49:8d:91:fe:a1:2c:ed:f5:e5:87:82:fb:c5:c4:41: eb:9a:38:de:f5:96:3a:b4:16:6c:41:fb:ea:40:a6:f8:e8:fc: 17:a9:63:5a:91:14:69:38:1e:62:5a:64:ab:ac:86:be:ef:0f: 6b:41:9c:0e:02:5a:4c:f7:4d:36:48:38:00:6e:c7:cf:4a:57: 93:2b:0a:70:03:ee:33:be:19:f9:f8:d0:14:a6:9d:cf:dd:02: de:b8:82:16:80:a0:61:26:47:30:85:f7:8f:b7:4a:17:b4:c1: 69:08:55:09:62:4f:b4:7b:d3:ff:32:7f:43:c9:2a:7e:08:4f: 07:d0:eb:a8:09:80:26:a9:ca:b9:f5:94:6f:1a:e7:df:7a:11: 40:4f:24:ca -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2MDkxMTAvBgNVBAUTKDQ1MDk2ODk5NjZEMzc5Mjc1NjlDRjJDQkI0NEZGRTkz QUNBOEU2ODEwHhcNMjQwNTMxMTczOTI3WhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhMGI0Zi1kNjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpMr6sfrlkzAlRBmX6Zxx4El+/e0SK7Xp82sU9BvHS6ET786x3ol9gPjdKdh eyne8iVhljTPXi0VQeEve0sJffBuULKjRRWCetOy48iuYqL+02yBunlU3b0B9mmi tZr2XEhcA3woZFAb/aqMz7moteaz9UDN7As9w3Z3h0ytU8PP4R+vP7Jhn63W9m1n ddbXZheyEmpfUAwt9j8knc1+77Xt3om8sFDYjvZ8c22j7KrgWBC6nwYIt507hs7b qK6cMA5GJJwR8pjAVoIr7eOUA322TSIwn0vTs8treOfTjp4DkbxuIL+EcwHqDHyA IBnpWMANcMExrTPrlFVvnUc6fQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKgGXX8T 5F27Ax2z9QhPrba2tsarMB8GA1UdIwQYMBaAFEUJaJlm03knVpzyy7RP/pOsqOaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzYwOS82MzJDMzBBRTQ0 MEUxMUU4OTAzRDNBNUJDNEY5QUUwMi9SUWxvbVdiVGVTZFduUExMdEVfLWs2eW81 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JRbG9tV2JUZVNkV25QTEx0RV8tazZ5bzVvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc2MDkvNjMyQzMwQUU0NDBFMTFFODkwM0QzQTVCQzRGOUFFMDIvQTNDNTJCNkFD OEIxMTFFRTg0QjA4NzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFncgowDQQCAAIwBwMFACQFREAwDQYJKoZIhvcNAQELBQAD ggEBALle+rZpn+f1n9uEsLFvzYk3l+LA+JdfYOEyPQrEQMKsEmp8p3kngJA3vFFb 4Dn76v0AzHBuXdcM+Vee7AuB6PhUaMGLdS0YC4fo2FUFCp+o4b6j4qNNcTizQszW CvHIsQD1pfsRws0A9gmKe7HCPEmNkf6hLO315YeC+8XEQeuaON71ljq0FmxB++pA pvjo/BepY1qRFGk4HmJaZKushr7vD2tBnA4CWkz3TTZIOABux89KV5MrCnAD7jO+ Gfn40BSmnc/dAt64ghaAoGEmRzCF94+3She0wWkIVQliT7R70/8yf0PJKn4ITwfQ 66gJgCapyrn1lG8a5996EUBPJMo= -----END CERTIFICATE-----Generated at Tue Jul 23 07:10:28 2024 by rpki-client on console-ams.rpki-client.org