$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/5822028E51F811EAB221F834C4F9AE02.roa File: 5822028E51F811EAB221F834C4F9AE02.roa (raw, json) Hash identifier: a46sUMEGeG7t+t/Aob9FowZw7Fxc5Y+U8m7RVWBM66E= Subject key identifier: 60:B4:40:D7:B8:34:AD:E4:BD:A2:32:95:09:D6:C1:40:E4:BB:B5:89 Certificate issuer: /CN=A915EBAD/serialNumber=3262F7812D7C7DAAE875BC1EE8D71F9072CEEDBC Certificate serial: 0D25 Authority key identifier: 32:62:F7:81:2D:7C:7D:AA:E8:75:BC:1E:E8:D7:1F:90:72:CE:ED:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmL3gS18farodbwe6NcfkHLO7bw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/5822028E51F811EAB221F834C4F9AE02.roa Signing time: Sat 02 Dec 2023 18:46:08 +0000 ROA not before: Sat 02 Dec 2023 18:46:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133164 IP address blocks: 103.231.251.0/24 maxlen: 24 103.232.28.0/23 maxlen: 23 103.253.105.0/24 maxlen: 24 2405:d3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/MmL3gS18farodbwe6NcfkHLO7bw.crl rsync://rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/MmL3gS18farodbwe6NcfkHLO7bw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmL3gS18farodbwe6NcfkHLO7bw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:49:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3365 (0xd25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBAD/serialNumber=3262F7812D7C7DAAE875BC1EE8D71F9072CEEDBC Validity Not Before: Dec 2 18:46:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b7b70-f501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d8:b4:2d:02:46:5d:4a:d6:dd:43:7a:5d:62: 81:ee:53:b2:04:03:c6:fb:6b:b0:e7:b3:2a:c1:eb: 7b:38:77:96:a3:a4:e7:59:a9:61:4c:cb:a3:d3:3e: 91:7a:a8:33:31:ea:4e:84:82:77:de:89:42:70:32: ee:27:b1:5e:5e:0b:5a:1b:af:00:a3:cf:f4:ff:4e: d3:4c:30:68:51:f8:56:d7:a3:13:b1:4d:12:a1:8d: 92:aa:88:3f:c3:f3:b2:00:ef:ef:e7:99:81:07:ae: 4b:16:2e:7f:4a:24:f0:78:4b:5f:b4:74:ca:14:b4: d5:7d:99:06:37:3f:8f:88:f7:f9:e4:07:de:b2:48: 55:90:5e:85:cc:de:90:8a:95:ea:28:32:fa:8b:bf: ba:83:c4:f5:63:b2:2b:41:47:15:40:db:7c:5d:7f: c9:06:76:31:be:76:86:1f:21:74:e4:56:22:d7:c2: c0:24:62:98:ce:ce:dd:8f:31:79:15:cb:20:c3:3a: 5e:fb:d2:56:65:df:1d:77:49:21:a0:9a:fa:3e:f6: 62:14:ed:41:c2:dc:36:ec:2f:9e:5c:3b:33:3d:7d: 5a:8a:1a:ab:6e:b1:ec:07:c8:40:ce:67:c0:29:4a: 2d:ff:cd:de:52:a6:e7:54:63:3a:12:b0:59:6c:41: 09:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B4:40:D7:B8:34:AD:E4:BD:A2:32:95:09:D6:C1:40:E4:BB:B5:89 X509v3 Authority Key Identifier: keyid:32:62:F7:81:2D:7C:7D:AA:E8:75:BC:1E:E8:D7:1F:90:72:CE:ED:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/MmL3gS18farodbwe6NcfkHLO7bw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmL3gS18farodbwe6NcfkHLO7bw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBAD/89C0BFC0A43211E988BEB386C4F9AE02/5822028E51F811EAB221F834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.251.0/24 103.232.28.0/23 103.253.105.0/24 IPv6: 2405:d3c0::/32 Signature Algorithm: sha256WithRSAEncryption 98:ca:c9:4c:67:16:0f:6b:7c:c4:91:48:0a:0b:78:50:a7:4b: c9:a3:ee:0a:a3:fe:1e:a7:6f:c3:ba:e1:d4:13:87:32:14:16: 78:25:a8:0f:76:df:39:f8:0d:10:bd:ac:72:02:30:d2:15:b2: 83:e3:22:59:e9:76:9a:59:ff:31:32:18:12:28:c6:69:5b:9f: dc:06:35:5f:ce:2d:89:38:8d:5d:9d:fe:c6:1c:35:40:52:97: dc:77:97:b4:c8:db:f9:20:1b:33:0b:8a:1e:8a:a9:27:91:76: 42:3d:df:c4:18:e6:08:ba:e4:2c:40:f3:f1:0f:1e:5f:21:8e: 4b:63:cb:55:22:9b:de:5b:ba:98:07:f7:1c:92:8c:86:1b:14: 81:d2:f8:0d:4d:00:dd:24:91:92:82:bc:5b:d8:33:05:64:1d: c5:b9:cb:c0:87:29:06:70:ea:ea:d4:32:e8:04:f8:5c:82:94: 3b:18:40:30:07:2f:31:a0:ae:db:18:b2:e0:4b:cb:e3:ba:e0: 63:c1:26:ff:70:54:33:3e:e2:9e:b7:56:3c:01:6e:bb:91:35: ee:35:a2:7a:3e:27:89:6d:23:5c:d1:6e:58:35:a1:79:bb:0b: 2e:cb:90:c9:a7:c2:59:4c:3a:fe:a8:e3:98:6a:ea:df:14:08: de:1e:82:a5 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQUQxMTAvBgNVBAUTKDMyNjJGNzgxMkQ3QzdEQUFFODc1QkMxRUU4RDcxRjkw NzJDRUVEQkMwHhcNMjMxMjAyMTg0NjA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiN2I3MC1mNTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNi0LQJGXUrW3UN6XWKB7lOyBAPG+2uw57Mqwet7OHeWo6TnWalhTMuj0z6R eqgzMepOhIJ33olCcDLuJ7FeXgtaG68Ao8/0/07TTDBoUfhW16MTsU0SoY2Sqog/ w/OyAO/v55mBB65LFi5/SiTweEtftHTKFLTVfZkGNz+PiPf55AfeskhVkF6FzN6Q ipXqKDL6i7+6g8T1Y7IrQUcVQNt8XX/JBnYxvnaGHyF05FYi18LAJGKYzs7djzF5 Fcsgwzpe+9JWZd8dd0khoJr6PvZiFO1Bwtw27C+eXDszPX1aihqrbrHsB8hAzmfA KUot/83eUqbnVGM6ErBZbEEJ1wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFGC0QNe4 NK3kvaIylQnWwUDku7WJMB8GA1UdIwQYMBaAFDJi94EtfH2q6HW8HujXH5Byzu28 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJBRC84OUMwQkZDMEE0 MzIxMUU5ODhCRUIzODZDNEY5QUUwMi9NbUwzZ1MxOGZhcm9kYndlNk5jZmtITE83 YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tTDNnUzE4ZmFyb2Rid2U2TmNma0hMTzdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVCQUQvODlDMEJGQzBBNDMyMTFFOTg4QkVCMzg2QzRGOUFFMDIvNTgyMjAyOEU1 MUY4MTFFQUIyMjFGODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABn5/sDBAFn6BwDBABn/WkwDQQCAAIwBwMFACQF08AwDQYJ KoZIhvcNAQELBQADggEBAJjKyUxnFg9rfMSRSAoLeFCnS8mj7gqj/h6nb8O64dQT hzIUFnglqA923zn4DRC9rHICMNIVsoPjIlnpdppZ/zEyGBIoxmlbn9wGNV/OLYk4 jV2d/sYcNUBSl9x3l7TI2/kgGzMLih6KqSeRdkI938QY5gi65CxA8/EPHl8hjktj y1Uim95bupgH9xySjIYbFIHS+A1NAN0kkZKCvFvYMwVkHcW5y8CHKQZw6urUMugE +FyClDsYQDAHLzGgrtsYsuBLy+O64GPBJv9wVDM+4p63VjwBbruRNe41ono+J4lt I1zRblg1oXm7Cy7LkMmnwllMOv6o45hq6t8UCN4egqU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org