$ rpki-client -vvf rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa File: E0A9637E41FA11ECB2D7F760C4F9AE02.roa (raw, json) Hash identifier: YhkBn/J1JdTWK5hPkNAkFpEw4Az5dw82JJQnUVEN+2U= Subject key identifier: 0A:81:28:B3:F4:07:C1:D5:BA:92:F0:10:E7:9F:92:2E:08:58:3F:A2 Certificate issuer: /CN=A91552E3/serialNumber=2CFA4D8F4410A951AA164E554C65805D8CF8895C Certificate serial: 056B Authority key identifier: 2C:FA:4D:8F:44:10:A9:51:AA:16:4E:55:4C:65:80:5D:8C:F8:89:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa Signing time: Fri 03 May 2024 01:13:58 +0000 ROA not before: Fri 03 May 2024 01:13:58 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141778 IP address blocks: 103.163.238.0/24 maxlen: 24 103.163.238.0/26 maxlen: 26 103.163.239.0/24 maxlen: 24 2001:df6:2d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.crl rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91552E3/serialNumber=2CFA4D8F4410A951AA164E554C65805D8CF8895C Validity Not Before: May 3 01:13:58 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66343a55-07cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:df:0e:b7:e7:dc:85:95:ae:42:14:10:6f:c3: da:7d:bb:a0:cb:7d:ae:b0:7b:37:92:24:fa:59:48: 78:8a:1e:90:af:99:c5:9e:aa:e7:f1:f7:dd:ec:88: 6c:e7:ed:5e:cc:52:2e:02:3c:76:35:40:c7:6a:e5: 0a:0e:8f:c7:b0:31:74:35:b0:a5:cb:a1:ec:02:47: 49:8d:a8:2c:3d:3f:67:4f:e3:c7:00:07:1d:df:c7: 69:74:ab:c1:74:1d:7e:7a:2b:b8:ba:ff:a0:c9:20: f2:eb:65:04:bc:15:5f:74:88:a6:ae:ac:69:7a:0d: f9:98:56:3a:6f:37:2b:1b:0e:9b:35:b5:48:ce:97: 69:cf:9c:37:8c:97:1f:87:8e:64:aa:53:57:30:53: 9d:69:30:df:a0:52:d6:9b:d2:4c:fc:1b:8e:b8:77: 4c:fb:a9:22:77:c1:fd:b0:ce:8f:ec:96:09:ee:46: c9:00:b4:c1:75:d4:79:40:2f:8e:90:e9:bf:be:37: ff:e2:9c:b5:be:2f:29:b1:45:34:be:c1:d0:d4:ff: ab:35:b7:4a:e8:96:e9:5c:3d:3c:ce:93:9b:19:c5: d2:c8:d4:32:d0:1f:a9:cd:38:49:38:4e:f5:94:52: 59:3e:4a:ee:e6:78:3f:5f:72:fc:f3:9b:b5:6f:94: e5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:81:28:B3:F4:07:C1:D5:BA:92:F0:10:E7:9F:92:2E:08:58:3F:A2 X509v3 Authority Key Identifier: keyid:2C:FA:4D:8F:44:10:A9:51:AA:16:4E:55:4C:65:80:5D:8C:F8:89:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/LPpNj0QQqVGqFk5VTGWAXYz4iVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPpNj0QQqVGqFk5VTGWAXYz4iVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91552E3/29453B74A07711EBA8C4C740C4F9AE02/E0A9637E41FA11ECB2D7F760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.238.0/23 IPv6: 2001:df6:2d80::/48 Signature Algorithm: sha256WithRSAEncryption 15:cc:d3:c3:8d:5f:87:78:26:a0:53:7c:6e:2b:5e:67:d3:1a: d8:d4:54:4a:57:20:00:87:cc:d6:39:26:95:0d:c6:0d:fb:d4: 94:01:91:36:57:b9:ea:2a:1b:0c:f3:33:9a:cf:af:f3:cd:2c: 16:16:ae:d3:49:9d:44:fe:e7:5a:b4:b3:ba:da:e7:87:10:ff: c2:39:4b:29:48:c7:74:10:a0:c8:7f:5f:e7:c4:6d:d9:ed:14: 24:06:bc:ac:dc:43:cb:91:e3:49:41:cc:a8:93:89:ac:9d:40: 22:56:1d:db:95:7b:98:c4:1d:e2:4f:5c:ad:ea:70:47:eb:2b: 34:38:5f:61:74:af:04:d9:c0:7b:da:14:54:5a:66:52:f3:e1: 22:69:98:20:d0:8b:bc:d1:bc:8e:51:a9:e6:a7:ed:16:9e:9a: 69:17:68:f3:c0:70:88:d3:7e:ab:0d:06:04:d8:9d:7b:78:5a: c6:35:31:d0:f0:37:df:3f:b0:c8:4b:b3:4e:87:a5:16:5c:63: 5d:97:18:1b:29:e1:13:c8:79:c3:d7:97:ee:c5:66:a4:2e:9e: c2:36:8c:4c:97:0c:2d:c1:9b:53:4e:78:95:0a:2e:36:4a:20: 6e:29:9d:b2:00:28:ad:4b:e8:e6:d3:60:10:bd:fb:f9:ad:6a: 35:ff:c1:c0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUyRTMxMTAvBgNVBAUTKDJDRkE0RDhGNDQxMEE5NTFBQTE2NEU1NTRDNjU4MDVE OENGODg5NUMwHhcNMjQwNTAzMDExMzU4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0M2E1NS0wN2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsN8Ot+fchZWuQhQQb8Pafbugy32usHs3kiT6WUh4ih6Qr5nFnqrn8ffd7Ihs 5+1ezFIuAjx2NUDHauUKDo/HsDF0NbCly6HsAkdJjagsPT9nT+PHAAcd38dpdKvB dB1+eiu4uv+gySDy62UEvBVfdIimrqxpeg35mFY6bzcrGw6bNbVIzpdpz5w3jJcf h45kqlNXMFOdaTDfoFLWm9JM/BuOuHdM+6kid8H9sM6P7JYJ7kbJALTBddR5QC+O kOm/vjf/4py1vi8psUU0vsHQ1P+rNbdK6JbpXD08zpObGcXSyNQy0B+pzThJOE71 lFJZPkru5ng/X3L885u1b5TlTwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAqBKLP0 B8HVupLwEOefki4IWD+iMB8GA1UdIwQYMBaAFCz6TY9EEKlRqhZOVUxlgF2M+Ilc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTJFMy8yOTQ1M0I3NEEw NzcxMUVCQThDNEM3NDBDNEY5QUUwMi9MUHBOajBRUXFWR3FGazVWVEdXQVhZejRp VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xQcE5qMFFRcVZHcUZrNVZUR1dBWFl6NGlWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUyRTMvMjk0NTNCNzRBMDc3MTFFQkE4QzRDNzQwQzRGOUFFMDIvRTBBOTYzN0U0 MUZBMTFFQ0IyRDdGNzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno+4wDwQCAAIwCQMHACABDfYtgDANBgkqhkiG9w0BAQsF AAOCAQEAFczTw41fh3gmoFN8biteZ9Ma2NRUSlcgAIfM1jkmlQ3GDfvUlAGRNle5 6iobDPMzms+v880sFhau00mdRP7nWrSzutrnhxD/wjlLKUjHdBCgyH9f58Rt2e0U JAa8rNxDy5HjSUHMqJOJrJ1AIlYd25V7mMQd4k9crepwR+srNDhfYXSvBNnAe9oU VFpmUvPhImmYINCLvNG8jlGp5qftFp6aaRdo88BwiNN+qw0GBNide3haxjUx0PA3 3z+wyEuzToelFlxjXZcYGynhE8h5w9eX7sVmpC6ewjaMTJcMLcGbU054lQouNkog bimdsgAorUvo5tNgEL37+a1qNf/BwA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:25 2024 by rpki-client on console-fra.rpki-client.org