$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa File: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (raw, json) Hash identifier: GQCSA6QyrQT61zgUzzq3IA+DEvS1M9WVjoPYcq1Bd4c= Subject key identifier: 68:DA:AE:CD:89:2E:9F:9A:96:E9:38:A3:64:87:8E:AC:71:1A:F4:E5 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0379 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa Signing time: Fri 01 Dec 2023 02:54:10 +0000 ROA not before: Fri 01 Dec 2023 02:54:10 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 6453 IP address blocks: 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Dec 1 02:54:10 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65694ad1-91a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:1f:e4:36:cc:69:6a:64:f2:67:95:92:ce: a6:46:a3:c6:b4:7d:9e:b3:60:a8:77:cf:15:b6:d5: 86:5e:ce:3e:22:12:7c:91:7d:1a:1e:14:d3:8a:b0: b6:d5:db:53:d0:f4:90:ed:e2:60:0f:90:72:6c:df: 17:c4:ca:7e:92:2e:e0:24:b0:fc:29:39:cb:02:8e: bd:50:54:35:ff:73:03:73:13:ad:f7:f9:20:de:d8: 9c:25:eb:31:b2:49:3e:fd:65:de:d0:33:8c:c9:83: 95:fb:85:e5:9b:38:e5:4f:5f:9a:1d:9c:5f:9f:29: cd:15:0a:aa:b2:b8:1f:83:14:a9:ff:0b:47:9a:44: 0a:90:de:be:87:a9:a1:e1:6a:47:12:5d:82:e5:4b: ff:9d:e6:99:20:01:5a:19:46:49:f6:01:23:a2:57: bb:71:73:29:af:75:0c:a6:63:b7:38:6a:df:1c:88: 6a:59:90:8d:29:43:ac:94:cd:34:49:9d:1b:08:db: ad:d1:d9:dc:34:e8:aa:fe:7b:19:e3:8b:af:e3:52: a6:e7:c5:d5:94:1a:58:b1:57:ac:c6:dc:2b:e4:77: 25:26:32:d2:9c:cf:92:d5:af:59:87:d8:0f:db:46: 22:3f:64:e6:a2:2f:68:f6:b6:9d:30:27:36:fb:9e: cb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DA:AE:CD:89:2E:9F:9A:96:E9:38:A3:64:87:8E:AC:71:1A:F4:E5 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/6337963E4C3D11ECB5FF844FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:2c:57:53:f0:df:2b:91:90:33:7c:16:04:cb:36:29:ed:44: 9d:e1:7e:c5:da:9a:e2:81:07:cc:34:dd:3e:e0:8e:39:4e:48: 5d:b4:66:3f:41:89:6c:7c:aa:96:42:da:e2:14:b9:7d:b7:16: 7f:f9:a5:10:f2:80:8a:0d:dc:d2:7e:b0:8a:fc:c0:12:38:5c: 3f:47:6d:9d:15:8e:8b:57:b4:1e:79:02:3a:af:37:7f:36:b2: c3:47:34:5f:69:5e:6c:26:63:e4:38:d6:a1:5e:da:2c:79:0c: 38:dc:57:62:3c:33:43:32:59:f7:78:19:ee:68:1b:84:3b:0e: 6e:bc:02:01:ed:4f:1c:01:db:c1:60:cb:8d:4c:51:e3:e4:aa: d8:6d:3b:49:51:b3:d4:2a:e6:10:e4:64:08:06:2a:8f:06:90: 1c:fd:ee:b1:02:f8:ec:29:49:66:26:37:d8:fc:4e:5d:c7:3e: 0f:77:0f:e0:01:ea:a7:8c:86:19:ea:b8:fa:35:5a:05:e4:66: 00:ef:18:8c:5e:ba:ac:5b:aa:bb:b5:53:40:08:14:de:6b:a1: 4f:59:48:bb:6c:32:7e:2d:30:7e:38:bd:5a:91:bf:ba:09:72: 2c:31:86:d4:b3:73:5c:8b:f5:05:4e:cb:4e:cc:0a:62:e5:24: b3:92:16:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjMxMjAxMDI1NDEwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5NGFkMS05MWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpof5DbMaWpk8meVks6mRqPGtH2es2Cod88VttWGXs4+IhJ8kX0aHhTTirC2 1dtT0PSQ7eJgD5BybN8XxMp+ki7gJLD8KTnLAo69UFQ1/3MDcxOt9/kg3ticJesx skk+/WXe0DOMyYOV+4XlmzjlT1+aHZxfnynNFQqqsrgfgxSp/wtHmkQKkN6+h6mh 4WpHEl2C5Uv/neaZIAFaGUZJ9gEjole7cXMpr3UMpmO3OGrfHIhqWZCNKUOslM00 SZ0bCNut0dncNOiq/nsZ44uv41Km58XVlBpYsVesxtwr5HclJjLSnM+S1a9Zh9gP 20YiP2Tmoi9o9radMCc2+57LRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGjars2J Lp+aluk4o2SHjqxxGvTlMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvNjMzNzk2M0U0 QzNEMTFFQ0I1RkY4NDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFxgwDQYJKoZIhvcNAQELBQADggEBAEssV1Pw3yuRkDN8 FgTLNintRJ3hfsXamuKBB8w03T7gjjlOSF20Zj9BiWx8qpZC2uIUuX23Fn/5pRDy gIoN3NJ+sIr8wBI4XD9HbZ0VjotXtB55AjqvN382ssNHNF9pXmwmY+Q41qFe2ix5 DDjcV2I8M0MyWfd4Ge5oG4Q7Dm68AgHtTxwB28Fgy41MUePkqthtO0lRs9Qq5hDk ZAgGKo8GkBz97rEC+OwpSWYmN9j8Tl3HPg93D+AB6qeMhhnquPo1WgXkZgDvGIxe uqxbqru1U0AIFN5roU9ZSLtsMn4tMH44vVqRv7oJciwxhtSzc1yL9QVOy07MCmLl JLOSFgY= -----END CERTIFICATE-----Generated at Fri May 17 03:16:59 2024 by rpki-client on console-fra.rpki-client.org