$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa File: CD57B28C814211EA94DD3E2DC4F9AE02.roa (raw, json) Hash identifier: cA7XN+BX0okwbajHtJeBaMsPf8wdB1bPHmCfQQAkqnk= Subject key identifier: 82:E9:17:20:5A:0E:EC:36:1F:3C:7E:94:91:B5:E3:F9:BE:72:AA:5B Certificate issuer: /CN=A9147B3A/serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Certificate serial: 093C Authority key identifier: 31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa Signing time: Mon 26 Aug 2024 20:58:49 +0000 ROA not before: Mon 26 Aug 2024 20:58:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132270 IP address blocks: 103.71.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B3A/serialNumber=311DFD9DE405E071D83121FB9025FB4F2024032C Validity Not Before: Aug 26 20:58:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccec89-7178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:25:19:19:cd:95:f6:04:b6:f7:4c:ce:55:a5: e9:26:ac:63:37:98:71:9b:4d:cc:84:d0:be:fa:b0: d8:8a:2c:37:ee:e1:f4:89:5e:f0:5f:e2:7e:ce:7a: 9d:28:fb:f5:29:03:e3:c2:ed:ed:88:b6:f8:bf:c7: ff:d0:f8:33:78:5c:05:a2:37:b2:a8:16:a7:72:48: df:22:47:1b:3b:73:5a:e8:39:75:1f:f1:d3:3f:c9: df:41:2b:80:3b:4a:ae:05:5a:6d:0a:12:9f:75:f1: 7c:e7:c8:fb:11:e8:8d:57:2e:de:0c:cf:de:a6:53: 48:78:11:78:b4:a6:f5:27:b1:ba:35:c8:22:d4:3f: 66:21:48:4a:2f:70:0b:9b:86:d5:4d:a2:05:81:55: 35:4a:4c:f2:7d:a4:1e:42:21:f1:6d:40:6b:d5:a3: 4f:49:35:76:d5:33:51:59:54:06:81:16:fd:5a:6f: 08:27:3e:e8:13:63:60:47:39:a3:ae:89:2e:53:ca: a0:66:14:e5:19:be:a2:25:0d:68:b2:bf:c6:5f:bc: 2e:f6:81:c5:2e:bb:dd:d1:11:2c:c3:54:33:5c:26: 8a:cd:31:6e:5c:0e:e9:08:eb:2f:72:d5:7c:90:65: 07:d0:a8:20:ce:18:a2:eb:43:b4:ae:a7:c2:23:d9: 44:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E9:17:20:5A:0E:EC:36:1F:3C:7E:94:91:B5:E3:F9:BE:72:AA:5B X509v3 Authority Key Identifier: keyid:31:1D:FD:9D:E4:05:E0:71:D8:31:21:FB:90:25:FB:4F:20:24:03:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/MR39neQF4HHYMSH7kCX7TyAkAyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MR39neQF4HHYMSH7kCX7TyAkAyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B3A/551BF2BC814011EABB0D7228C4F9AE02/CD57B28C814211EA94DD3E2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.242.0/23 Signature Algorithm: sha256WithRSAEncryption 19:05:b6:2d:c4:ce:0d:bc:2f:54:e6:ec:4e:ba:37:1d:dd:ec: e8:fb:3f:ff:40:1c:c0:f3:c6:c3:33:38:bb:bd:6c:72:99:9e: 73:7f:11:17:53:6b:a8:9b:7a:53:9d:eb:de:1f:da:50:99:5c: 2d:f7:c8:97:11:ec:cb:45:9d:2a:bb:1c:f4:c6:9c:50:7c:72: 94:33:5f:41:2a:ac:45:27:86:e9:fe:94:23:7e:91:92:ce:32: c5:65:81:0d:51:c6:ed:60:e8:99:0e:33:e9:ab:92:5b:4c:c4: 69:61:82:92:ac:17:a6:7d:59:bb:6d:14:fe:90:b1:3d:16:15: 55:ec:92:7c:3d:a7:8d:a3:ef:8e:51:ae:e3:5f:33:17:ec:35: 45:74:0a:58:d3:29:fc:1c:52:b8:fb:e0:14:56:90:6d:96:d4: b1:79:0f:eb:52:bf:b1:ee:ec:1c:8d:96:44:47:2b:97:63:a2: df:ef:46:bd:62:08:97:42:41:ec:cc:34:60:fe:1f:bb:12:44: 46:38:bc:aa:7a:8b:c1:c7:24:28:81:f1:58:22:f1:f4:75:93: 45:9e:5e:0a:37:eb:b6:58:2c:7c:f7:7c:d8:e6:c3:4c:e3:5a: 2f:37:85:50:7e:37:9d:11:3c:37:05:44:a1:0c:f9:b0:9a:e4: cb:bc:43:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdCM0ExMTAvBgNVBAUTKDMxMURGRDlERTQwNUUwNzFEODMxMjFGQjkwMjVGQjRG MjAyNDAzMkMwHhcNMjQwODI2MjA1ODQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZWM4OS03MTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyUZGc2V9gS290zOVaXpJqxjN5hxm03MhNC++rDYiiw37uH0iV7wX+J+znqd KPv1KQPjwu3tiLb4v8f/0PgzeFwFojeyqBanckjfIkcbO3Na6Dl1H/HTP8nfQSuA O0quBVptChKfdfF858j7EeiNVy7eDM/eplNIeBF4tKb1J7G6Ncgi1D9mIUhKL3AL m4bVTaIFgVU1SkzyfaQeQiHxbUBr1aNPSTV21TNRWVQGgRb9Wm8IJz7oE2NgRzmj rokuU8qgZhTlGb6iJQ1osr/GX7wu9oHFLrvd0REsw1QzXCaKzTFuXA7pCOsvctV8 kGUH0Kggzhii60O0rqfCI9lEXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFILpFyBa Duw2Hzx+lJG14/m+cqpbMB8GA1UdIwQYMBaAFDEd/Z3kBeBx2DEh+5Al+08gJAMs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0IzQS81NTFCRjJCQzgx NDAxMUVBQkIwRDcyMjhDNEY5QUUwMi9NUjM5bmVRRjRISFlNU0g3a0NYN1R5QWtB eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01SMzluZVFGNEhIWU1TSDdrQ1g3VHlBa0F5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdCM0EvNTUxQkYyQkM4MTQwMTFFQUJCMEQ3MjI4QzRGOUFFMDIvQ0Q1N0IyOEM4 MTQyMTFFQTk0REQzRTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnR/IwDQYJKoZIhvcNAQELBQADggEBABkFti3Ezg28L1Tm 7E66Nx3d7Oj7P/9AHMDzxsMzOLu9bHKZnnN/ERdTa6ibelOd694f2lCZXC33yJcR 7MtFnSq7HPTGnFB8cpQzX0EqrEUnhun+lCN+kZLOMsVlgQ1Rxu1g6JkOM+mrkltM xGlhgpKsF6Z9WbttFP6QsT0WFVXsknw9p42j745RruNfMxfsNUV0CljTKfwcUrj7 4BRWkG2W1LF5D+tSv7Hu7ByNlkRHK5djot/vRr1iCJdCQezMNGD+H7sSREY4vKp6 i8HHJCiB8Vgi8fR1k0WeXgo367ZYLHz3fNjmw0zjWi83hVB+N50RPDcFRKEM+bCa 5Mu8Q0Y= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org