$ rpki-client -vvf rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/091F81047A5411EB9AC2283DC4F9AE02.roa File: 091F81047A5411EB9AC2283DC4F9AE02.roa (raw, json) Hash identifier: bjUzuk4oS+TTbZa2OemzXOUwcnZSsSOIB11AnNcEumw= Subject key identifier: 00:0F:CE:84:21:86:11:E3:94:FB:34:69:CE:18:FD:63:AB:EE:B5:88 Certificate issuer: /CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Certificate serial: 0B2A Authority key identifier: 5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/091F81047A5411EB9AC2283DC4F9AE02.roa Signing time: Sat 20 Jan 2024 19:27:27 +0000 ROA not before: Sat 20 Jan 2024 19:27:27 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.145.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Validity Not Before: Jan 20 19:27:27 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65ac1e9e-d45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c9:55:d6:9f:e5:4b:e5:f6:5c:7b:c8:a6:8f: 5c:92:43:a8:f5:eb:13:8e:23:13:7e:7e:bb:84:be: 32:eb:81:4e:ba:3f:f7:69:a2:23:a9:b1:13:8d:29: 04:d0:69:6f:95:9a:dc:75:65:e5:08:7c:a5:26:cc: dc:0d:d1:d4:75:0e:a5:65:f3:d9:ef:71:7a:8f:11: c0:67:4e:3e:28:57:2e:d0:cb:54:d7:38:ce:c1:2b: 7c:8b:26:5d:15:a0:19:f4:0b:81:1f:04:38:33:62: 70:77:28:5f:27:8c:e1:82:be:6a:d1:ec:68:fa:23: 74:43:49:d1:c1:81:44:3a:96:55:90:11:12:25:25: 02:0e:a4:9d:80:43:54:69:26:14:bc:91:f7:93:a9: aa:ff:29:7e:35:4d:3c:73:3c:51:bd:fc:ee:b2:4e: 74:8e:64:1a:61:97:5e:9d:35:ae:6c:c3:74:63:16: e4:5d:71:d6:94:3e:8d:53:6c:3a:fa:66:2f:fc:d8: f5:85:fd:6b:a5:46:85:38:23:5c:3a:6b:43:db:93: bf:b7:55:d2:09:37:2b:87:a9:98:39:0c:32:dc:55: 69:6b:0b:f2:5f:de:ef:93:45:5c:94:15:0e:62:cc: 58:35:b6:6b:4a:40:28:c2:4a:b8:c5:3f:d8:54:87: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0F:CE:84:21:86:11:E3:94:FB:34:69:CE:18:FD:63:AB:EE:B5:88 X509v3 Authority Key Identifier: keyid:5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/091F81047A5411EB9AC2283DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.38.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:07:b3:6d:5b:48:7c:c6:07:04:75:05:62:b5:bc:1c:3f:4a: 64:7d:9a:c2:9b:ce:c1:f3:7f:51:e2:c8:1a:e5:b9:67:3e:09: 96:a6:70:8d:b3:ad:a5:67:7a:9a:4a:66:56:ca:6e:d8:0e:b3: 66:93:d4:1f:3e:a1:6f:bf:40:5c:eb:8d:75:33:f4:4e:31:a9: c2:1b:6e:40:77:02:24:b7:3c:74:2b:73:0d:c2:c8:c5:2c:88: bb:80:e3:d6:c6:e1:b5:ee:53:48:97:83:2f:22:24:8c:69:76: 76:6a:d0:2e:35:bf:ce:5f:ae:96:c6:80:5a:40:d5:b1:cc:d8: 4e:25:86:90:0b:b5:62:57:ea:a0:2d:67:52:1c:a9:d4:3d:69: 54:36:fc:4a:90:d7:74:1d:04:1d:be:46:ef:5a:c4:c7:76:66: 15:89:c6:f7:e1:81:ec:e2:7b:aa:b8:de:4e:65:66:1c:a9:45: e6:cf:ed:26:1a:6a:47:1a:60:00:ff:14:73:7f:71:68:88:6d: e8:98:b6:13:08:b6:ed:2f:7c:36:03:16:8f:6d:95:14:1e:df: e2:67:57:3d:83:80:e7:61:d7:34:de:03:f2:a7:02:b3:39:76: d4:14:07:ff:40:16:51:e6:9e:88:d5:8b:74:48:4e:c9:48:fe: 9f:df:cd:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGREExMTAvBgNVBAUTKDVBQzc2MTVDNDU5Qjc4ODEwMzdENzVFNTY1MUE0Q0VD MzZGN0VGOTEwHhcNMjQwMTIwMTkyNzI3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjMWU5ZS1kNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMlV1p/lS+X2XHvIpo9ckkOo9esTjiMTfn67hL4y64FOuj/3aaIjqbETjSkE 0GlvlZrcdWXlCHylJszcDdHUdQ6lZfPZ73F6jxHAZ04+KFcu0MtU1zjOwSt8iyZd FaAZ9AuBHwQ4M2JwdyhfJ4zhgr5q0exo+iN0Q0nRwYFEOpZVkBESJSUCDqSdgENU aSYUvJH3k6mq/yl+NU08czxRvfzusk50jmQaYZdenTWubMN0YxbkXXHWlD6NU2w6 +mYv/Nj1hf1rpUaFOCNcOmtD25O/t1XSCTcrh6mYOQwy3FVpawvyX97vk0VclBUO YsxYNbZrSkAowkq4xT/YVIe8xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAAPzoQh hhHjlPs0ac4Y/WOr7rWIMB8GA1UdIwQYMBaAFFrHYVxFm3iBA3115WUaTOw29++R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkZEQS82ODEyN0UyMDBG NEIxMUVBQURBMzc5NzdDNEY5QUUwMi9Xc2RoWEVXYmVJRURmWFhsWlJwTTdEYjM3 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzZGhYRVdiZUlFRGZYWGxaUnBNN0RiMzc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGREEvNjgxMjdFMjAwRjRCMTFFQUFEQTM3OTc3QzRGOUFFMDIvMDkxRjgxMDQ3 QTU0MTFFQjlBQzIyODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkSYwDQYJKoZIhvcNAQELBQADggEBAI0Hs21bSHzGBwR1 BWK1vBw/SmR9msKbzsHzf1HiyBrluWc+CZamcI2zraVneppKZlbKbtgOs2aT1B8+ oW+/QFzrjXUz9E4xqcIbbkB3AiS3PHQrcw3CyMUsiLuA49bG4bXuU0iXgy8iJIxp dnZq0C41v85frpbGgFpA1bHM2E4lhpALtWJX6qAtZ1IcqdQ9aVQ2/EqQ13QdBB2+ Ru9axMd2ZhWJxvfhgezie6q43k5lZhypRebP7SYaakcaYAD/FHN/cWiIbeiYthMI tu0vfDYDFo9tlRQe3+JnVz2DgOdh1zTeA/KnArM5dtQUB/9AFlHmnojVi3RITslI /p/fzcY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org