$ rpki-client -vvf rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/DF1D9530678F11EFAF586F4CC4F9AE02.roa File: DF1D9530678F11EFAF586F4CC4F9AE02.roa (raw, json) Hash identifier: kMrdHJkY4EGAGxVUz2UEKltxhO5Zt3W7vVgsRgQX++A= Subject key identifier: 5B:96:F8:FD:2C:FB:B7:76:1C:A3:48:90:34:AF:FA:74:AD:A4:10:50 Certificate issuer: /CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6 Certificate serial: 02B6 Authority key identifier: DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/DF1D9530678F11EFAF586F4CC4F9AE02.roa Signing time: Sat 31 Aug 2024 11:55:10 +0000 ROA not before: Sat 31 Aug 2024 11:55:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149311 IP address blocks: 103.187.244.0/24 maxlen: 24 2001:df0:c240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/39w62zPKqFke-vJ3bDsMVWwIorY.crl rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/39w62zPKqFke-vJ3bDsMVWwIorY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B5B1/serialNumber=DFDC3ADB33CAA8591EFAF2776C3B0C556C08A2B6 Validity Not Before: Aug 31 11:55:10 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66d3049d-b602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bc:f0:8a:06:e0:94:05:80:bb:ac:b7:e8:b4: 14:1f:06:12:a7:1d:cb:78:1e:06:44:f3:77:e4:32: b2:36:a0:fb:53:ba:f3:db:4e:3a:9a:c7:59:0b:18: cb:7f:66:b5:e6:c1:22:b2:ea:1a:35:eb:ef:a7:c5: 92:0a:dd:df:f9:86:70:32:51:88:56:b9:07:7e:93: f3:9c:a5:41:55:ef:64:32:94:95:1c:3f:9e:43:d9: 5a:dd:c5:1e:a6:94:c3:84:13:5d:be:05:59:43:4a: c5:44:d4:0e:a0:31:62:af:61:61:63:c7:7f:b3:68: ac:0e:35:c2:e7:e4:f4:e2:9a:a5:a7:28:fa:2b:b3: 53:cb:87:3d:53:a5:fd:d4:37:3a:05:6b:dc:36:a5: 12:53:e9:51:3b:e0:3b:a6:a0:49:e8:e6:43:82:aa: d8:6b:e3:29:6f:84:f4:2c:8a:e2:6e:e1:eb:b8:f3: c8:61:31:67:00:69:69:34:14:b7:2b:0d:f7:ed:40: 81:3e:83:54:8a:28:8f:f2:10:27:21:d0:d3:03:91: cc:80:82:46:76:97:45:63:e7:7a:34:22:b3:17:27: de:e0:99:9d:8b:a6:c7:00:63:ea:b4:ef:75:fe:b0: a4:2f:8f:16:ac:6a:79:7c:ac:81:ea:58:77:25:45: 7d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:96:F8:FD:2C:FB:B7:76:1C:A3:48:90:34:AF:FA:74:AD:A4:10:50 X509v3 Authority Key Identifier: keyid:DF:DC:3A:DB:33:CA:A8:59:1E:FA:F2:77:6C:3B:0C:55:6C:08:A2:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/39w62zPKqFke-vJ3bDsMVWwIorY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/39w62zPKqFke-vJ3bDsMVWwIorY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B5B1/ED629F0CD7E811EC92A94F4CC4F9AE02/DF1D9530678F11EFAF586F4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.244.0/24 IPv6: 2001:df0:c240::/48 Signature Algorithm: sha256WithRSAEncryption a2:58:54:77:3e:ec:3c:4e:a2:85:e4:33:d5:99:bc:b1:08:52: 09:c4:2a:61:b6:68:2c:b1:e1:99:98:a3:69:9e:86:81:a4:c2: 42:74:03:90:81:fd:9e:14:2d:cc:93:79:51:8a:ea:89:8b:f4: af:c8:7e:1d:84:1c:52:fe:d5:1b:d7:b9:6f:af:b4:a4:e6:44: f3:b6:7c:90:74:2d:e7:7c:33:3e:80:ac:8c:75:a1:e1:13:0c: 97:cd:d9:61:49:ef:9a:6b:25:9e:9e:1b:9e:f1:df:7e:05:28: 5c:f1:f3:fb:62:f1:d5:09:0b:93:d0:83:a6:0b:cf:a8:58:05: db:8f:be:27:49:c0:37:01:b5:a4:82:7d:df:83:ce:3e:8b:5c: 3c:6e:5b:3f:b1:a3:c9:ce:55:dc:dd:49:67:29:8d:58:06:b4: 7f:61:76:3a:ef:2e:c0:f9:ae:b9:24:d8:83:1d:42:90:e8:0a: ab:be:be:3d:86:5a:0e:da:f6:45:cf:d7:fe:b1:3c:db:9a:cf: 3e:29:6e:1c:7f:ea:f6:99:22:3e:ea:bd:6a:94:ce:cd:53:de: 78:40:4a:f4:79:3f:30:d0:29:e1:ae:01:b6:28:89:0b:b7:98: 40:c6:94:b8:b3:22:d1:c3:62:90:3a:a0:33:ec:cc:b7:08:a2: ce:4f:c6:e9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1QjExMTAvBgNVBAUTKERGREMzQURCMzNDQUE4NTkxRUZBRjI3NzZDM0IwQzU1 NkMwOEEyQjYwHhcNMjQwODMxMTE1NTEwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQzMDQ5ZC1iNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrzwigbglAWAu6y36LQUHwYSpx3LeB4GRPN35DKyNqD7U7rz2046msdZCxjL f2a15sEisuoaNevvp8WSCt3f+YZwMlGIVrkHfpPznKVBVe9kMpSVHD+eQ9la3cUe ppTDhBNdvgVZQ0rFRNQOoDFir2FhY8d/s2isDjXC5+T04pqlpyj6K7NTy4c9U6X9 1Dc6BWvcNqUSU+lRO+A7pqBJ6OZDgqrYa+Mpb4T0LIribuHruPPIYTFnAGlpNBS3 Kw337UCBPoNUiiiP8hAnIdDTA5HMgIJGdpdFY+d6NCKzFyfe4Jmdi6bHAGPqtO91 /rCkL48WrGp5fKyB6lh3JUV9WQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFuW+P0s +7d2HKNIkDSv+nStpBBQMB8GA1UdIwQYMBaAFN/cOtszyqhZHvryd2w7DFVsCKK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjVCMS9FRDYyOUYwQ0Q3 RTgxMUVDOTJBOTRGNENDNEY5QUUwMi8zOXc2MnpQS3FGa2UtdkozYkRzTVZXd0lv clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM5dzYyelBLcUZrZS12SjNiRHNNVld3SW9yWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1QjEvRUQ2MjlGMENEN0U4MTFFQzkyQTk0RjRDQzRGOUFFMDIvREYxRDk1MzA2 NzhGMTFFRkFGNTg2RjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnu/QwDwQCAAIwCQMHACABDfDCQDANBgkqhkiG9w0BAQsF AAOCAQEAolhUdz7sPE6iheQz1Zm8sQhSCcQqYbZoLLHhmZijaZ6GgaTCQnQDkIH9 nhQtzJN5UYrqiYv0r8h+HYQcUv7VG9e5b6+0pOZE87Z8kHQt53wzPoCsjHWh4RMM l83ZYUnvmmslnp4bnvHffgUoXPHz+2Lx1QkLk9CDpgvPqFgF24++J0nANwG1pIJ9 34POPotcPG5bP7Gjyc5V3N1JZymNWAa0f2F2Ou8uwPmuuSTYgx1CkOgKq76+PYZa Dtr2Rc/X/rE825rPPiluHH/q9pkiPuq9apTOzVPeeEBK9Hk/MNAp4a4BtiiJC7eY QMaUuLMi0cNikDqgM+zMtwiizk/G6Q== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:37 2024 by rpki-client on console-fra.rpki-client.org