$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa File: CF257402276E11EEBE7B7B49C4F9AE02.roa (raw, json) Hash identifier: l0LcGN3bLpC6egx6E1ErrRqx4ZIHX8gGWW4UD/kKTdA= Subject key identifier: 34:24:68:69:4B:BF:3F:46:92:F5:C8:27:16:E2:A6:6C:E5:02:0A:24 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0BA7 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa Signing time: Tue 06 Feb 2024 19:37:23 +0000 ROA not before: Tue 06 Feb 2024 19:37:23 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.133.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 6 19:37:23 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c28a73-5aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:76:fd:b7:c7:92:e3:c0:34:0b:f9:ad:5a:6c: d4:ac:6b:d9:a3:89:d7:3a:97:86:13:05:28:9b:43: ae:27:91:52:30:b8:11:1d:79:1d:e2:58:8f:77:b2: 1c:cd:d2:95:53:97:54:00:dd:92:27:a6:15:b9:26: 94:bf:65:20:34:68:7c:f5:44:52:c0:dc:73:9d:54: a5:54:e5:84:e8:94:3d:a1:6a:c1:b2:43:64:8d:92: df:78:c3:a5:eb:69:ce:3a:0e:2d:26:22:ec:1d:d4: 19:40:d7:58:b9:2f:96:c7:5b:0f:a3:aa:c9:c5:1e: 6e:1a:9a:a2:b7:89:72:3d:0d:80:bc:6f:97:87:85: 14:a6:55:45:ea:9a:a0:77:aa:09:49:d7:be:74:e0: fb:99:40:02:58:10:d4:c0:97:bd:25:65:be:44:4f: 8c:09:63:2d:15:0f:e7:75:34:cb:87:5a:ca:55:c2: c4:40:42:e1:3d:83:ba:c7:59:b1:2d:01:b0:53:f8: 62:6e:8a:78:5a:5a:f6:ce:c6:5b:3f:ac:10:11:3e: 62:62:f0:c7:91:bd:76:31:97:7f:88:53:ce:03:cb: 1f:da:d0:40:2a:70:bc:9e:51:fa:ae:95:46:ec:2e: b8:77:38:ad:bc:44:bb:f2:fa:5d:a9:78:7a:27:5b: 22:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:24:68:69:4B:BF:3F:46:92:F5:C8:27:16:E2:A6:6C:E5:02:0A:24 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.92.0/24 Signature Algorithm: sha256WithRSAEncryption 71:41:0b:1a:18:4b:59:29:74:f9:b1:81:ab:c2:78:f7:07:94: 2f:9a:42:eb:0b:09:d1:99:cd:a2:68:b6:aa:3a:28:ae:0c:5c: ac:4a:aa:d4:3e:5e:6b:1a:a1:c5:10:5e:1d:24:88:17:2e:4f: c8:fa:e9:d6:b9:5e:5d:17:9d:21:e5:70:72:70:15:fc:e3:d9: f2:34:d5:62:f4:af:41:95:40:97:86:49:5e:7e:39:3f:bd:f7: dc:55:24:66:9d:bf:64:9d:6a:6b:9a:92:75:10:91:49:50:8b: ff:c1:0b:a2:40:ad:8f:b7:a5:a8:ae:82:63:6a:b6:48:72:4d: 33:5c:76:80:39:a2:dc:27:f9:e7:d1:38:18:04:00:6a:5b:aa: db:44:28:2d:a7:55:c8:eb:d6:1b:9d:33:7b:82:d8:0e:f2:89: 2c:d8:9f:54:c1:7e:85:f9:05:0b:d8:8e:8c:7c:52:af:5c:5e: 51:cf:e4:df:a8:dd:9b:cc:55:68:3e:f9:0a:ec:91:b4:26:2f: 33:dd:22:ca:29:ea:2a:bb:3c:3a:19:7a:e1:e2:37:b5:bd:42: 62:37:37:15:15:bc:46:d9:15:01:13:d4:96:ee:bb:3b:c4:98: 04:31:ae:c0:32:a8:ee:88:e5:4a:15:df:0a:e0:89:16:83:83: a6:b8:45:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjQwMjA2MTkzNzIzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOGE3My01YWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23b9t8eS48A0C/mtWmzUrGvZo4nXOpeGEwUom0OuJ5FSMLgRHXkd4liPd7Ic zdKVU5dUAN2SJ6YVuSaUv2UgNGh89URSwNxznVSlVOWE6JQ9oWrBskNkjZLfeMOl 62nOOg4tJiLsHdQZQNdYuS+Wx1sPo6rJxR5uGpqit4lyPQ2AvG+Xh4UUplVF6pqg d6oJSde+dOD7mUACWBDUwJe9JWW+RE+MCWMtFQ/ndTTLh1rKVcLEQELhPYO6x1mx LQGwU/hibop4Wlr2zsZbP6wQET5iYvDHkb12MZd/iFPOA8sf2tBAKnC8nlH6rpVG 7C64dzitvES78vpdqXh6J1siswIDAQABo4IClTCCApEwHQYDVR0OBBYEFDQkaGlL vz9GkvXIJxbipmzlAgokMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvQ0YyNTc0MDIy NzZFMTFFRUJFN0I3QjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhVwwDQYJKoZIhvcNAQELBQADggEBAHFBCxoYS1kpdPmx gavCePcHlC+aQusLCdGZzaJotqo6KK4MXKxKqtQ+XmsaocUQXh0kiBcuT8j66da5 Xl0XnSHlcHJwFfzj2fI01WL0r0GVQJeGSV5+OT+999xVJGadv2SdamuaknUQkUlQ i//BC6JArY+3paiugmNqtkhyTTNcdoA5otwn+efROBgEAGpbqttEKC2nVcjr1hud M3uC2A7yiSzYn1TBfoX5BQvYjox8Uq9cXlHP5N+o3ZvMVWg++QrskbQmLzPdIsop 6iq7PDoZeuHiN7W9QmI3NxUVvEbZFQET1JbuuzvEmAQxrsAyqO6I5UoV3wrgiRaD g6a4RSg= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:24 2024 by rpki-client on console-fra.rpki-client.org