$ rpki-client -vvf rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa File: 19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa (raw, json) Hash identifier: dNu1CwDmcjgy7/dtTe1Gre+JUZ3QpIiLnwFTWyTMue4= Subject key identifier: A1:EA:54:02:DD:1B:64:09:09:83:8A:14:BC:22:7E:07:65:49:2E:7F Certificate issuer: /CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Certificate serial: 064D Authority key identifier: C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa Signing time: Sat 02 Mar 2024 23:42:20 +0000 ROA not before: Sat 02 Mar 2024 23:42:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 61317 IP address blocks: 103.160.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Validity Not Before: Mar 2 23:42:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65e3b95c-25d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:91:55:91:e8:a6:35:4b:a8:a1:48:e7:6f:51: 6b:48:0d:76:ca:0c:c1:19:ab:3a:55:56:09:22:11: b6:a8:b7:e9:6f:40:e2:d0:c7:88:cf:6b:46:23:bc: c0:bf:73:c4:fb:9a:dd:2f:59:34:d8:f0:6e:85:eb: f0:95:2f:96:44:a4:11:d1:ee:17:06:45:9c:fb:29: 1f:31:a8:08:1b:08:ce:3a:77:34:34:47:42:6e:3d: 10:b6:60:fc:c2:31:fc:28:71:83:fb:6b:f6:0f:d3: d2:21:9d:31:9a:b7:12:3b:54:04:72:86:da:1a:b4: ed:6a:00:b6:91:84:e6:cf:26:7a:5f:08:7a:7a:64: ed:3b:38:d9:ce:cd:65:8e:7f:d8:58:00:c9:a6:c2: 5b:99:bc:eb:e8:6c:03:17:3c:14:bf:b1:1a:a8:c1: fb:89:5c:8e:99:71:6a:03:27:fa:80:a3:51:68:96: 04:97:2e:35:57:58:75:50:f9:70:3f:47:83:a3:1c: 2f:d3:71:82:b7:0b:50:22:f8:e0:5d:7a:06:9d:07: ad:9b:55:7e:fe:d1:f6:0a:b6:bc:c6:1b:e7:27:79: e0:24:ec:d4:bf:b8:75:5c:7e:bc:c3:fc:0f:92:55: c4:d6:fd:23:87:89:47:55:c0:77:a9:d8:a4:83:4f: 7e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EA:54:02:DD:1B:64:09:09:83:8A:14:BC:22:7E:07:65:49:2E:7F X509v3 Authority Key Identifier: keyid:C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/19D427BA6AFD11EEA4AF1A0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.101.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:bc:d9:39:f5:9d:ad:02:21:1e:6a:54:ea:c1:cc:bd:00:6d: 7a:1f:68:05:19:31:1f:d7:3f:fe:88:f9:0d:ce:49:26:01:86: 78:bc:64:39:f3:76:e2:a9:9c:31:e7:6e:e1:8c:44:1a:6e:cf: 76:a6:14:e0:60:59:25:86:71:3e:39:6b:7f:83:78:99:20:25: 5a:04:e4:b1:c2:af:64:63:13:55:82:a0:30:f0:43:ad:63:b0: 88:87:54:23:e2:95:f5:65:73:52:77:a7:bb:53:18:bb:13:c9: 05:42:d1:e8:8d:f5:20:64:d2:30:41:44:b6:ae:90:21:70:82: 1f:7e:93:17:f7:b8:a5:76:6b:81:34:1b:9a:95:33:67:d6:48: f0:d3:a2:d3:22:45:c7:fe:b2:bb:b6:ae:c2:d3:65:2b:74:32: 88:aa:5d:c6:8a:f0:f6:b3:1b:cb:ae:2d:ae:c4:14:87:d7:d3: c7:0c:0b:69:67:1f:04:dc:47:42:ee:81:f3:3e:8a:2c:7d:ec: 2f:f1:4f:4b:70:0c:52:b3:f4:8f:79:31:5b:82:98:3c:cc:0e: e8:ca:50:cb:a7:ea:7a:99:5a:cc:55:62:41:b7:3a:81:b7:4d: 61:05:94:fb:e4:92:75:14:d3:85:a2:2d:e6:6f:09:56:f8:03: ab:99:68:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxMjgxMTAvBgNVBAUTKEM1MDQ1NjU1NzdBRTk5RjYxOTFDOTc4MzNEREJERDYy NEVDMjRFOTIwHhcNMjQwMzAyMjM0MjIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzYjk1Yy0yNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pFVkeimNUuooUjnb1FrSA12ygzBGas6VVYJIhG2qLfpb0Di0MeIz2tGI7zA v3PE+5rdL1k02PBuhevwlS+WRKQR0e4XBkWc+ykfMagIGwjOOnc0NEdCbj0QtmD8 wjH8KHGD+2v2D9PSIZ0xmrcSO1QEcobaGrTtagC2kYTmzyZ6Xwh6emTtOzjZzs1l jn/YWADJpsJbmbzr6GwDFzwUv7EaqMH7iVyOmXFqAyf6gKNRaJYEly41V1h1UPlw P0eDoxwv03GCtwtQIvjgXXoGnQetm1V+/tH2Cra8xhvnJ3ngJOzUv7h1XH68w/wP klXE1v0jh4lHVcB3qdikg09+SQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKHqVALd G2QJCYOKFLwifgdlSS5/MB8GA1UdIwQYMBaAFMUEVlV3rpn2GRyXgz3b3WJOwk6S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDEyOC85MERFOUM2NjNF QTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1mWVpISmVEUGR2ZFlrN0NU cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hRUldWWGV1bWZZWkhKZURQZHZkWWs3Q1RwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQxMjgvOTBERTlDNjYzRUEzMTFFQjhBQ0I5MDEzQzRGOUFFMDIvMTlENDI3QkE2 QUZEMTFFRUE0QUYxQTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoGUwDQYJKoZIhvcNAQELBQADggEBABy82Tn1na0CIR5q VOrBzL0AbXofaAUZMR/XP/6I+Q3OSSYBhni8ZDnzduKpnDHnbuGMRBpuz3amFOBg WSWGcT45a3+DeJkgJVoE5LHCr2RjE1WCoDDwQ61jsIiHVCPilfVlc1J3p7tTGLsT yQVC0eiN9SBk0jBBRLaukCFwgh9+kxf3uKV2a4E0G5qVM2fWSPDTotMiRcf+sru2 rsLTZSt0MoiqXcaK8PazG8uuLa7EFIfX08cMC2lnHwTcR0LugfM+iix97C/xT0tw DFKz9I95MVuCmDzMDujKUMun6nqZWsxVYkG3OoG3TWEFlPvkknUU04WiLeZvCVb4 A6uZaAo= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org