$ rpki-client -vvf rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/766E754AE9D411EB91D55081C4F9AE02.roa File: 766E754AE9D411EB91D55081C4F9AE02.roa (raw, json) Hash identifier: dFPUC3nfTQvBocPdPRx/Z5eqylz7fdQQ9z0hlNpStis= Subject key identifier: 70:3F:80:8C:B0:99:1B:93:F0:A0:51:3D:4D:FF:23:F3:B1:9E:12:B2 Certificate issuer: /CN=A9175862/serialNumber=E62A4D478A9BA18EE0F990698F6823D950D1E674 Certificate serial: 1609 Authority key identifier: E6:2A:4D:47:8A:9B:A1:8E:E0:F9:90:69:8F:68:23:D9:50:D1:E6:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/766E754AE9D411EB91D55081C4F9AE02.roa Signing time: Wed 14 Feb 2024 17:14:44 +0000 ROA not before: Wed 14 Feb 2024 17:14:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38221 IP address blocks: 103.106.168.0/22 maxlen: 24 2402:45c0::/48 maxlen: 48 2402:45c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.crl rsync://rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5641 (0x1609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175862/serialNumber=E62A4D478A9BA18EE0F990698F6823D950D1E674 Validity Not Before: Feb 14 17:14:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ccf504-a1af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:54:80:26:31:64:b2:1e:aa:06:e5:51:87:83: 5d:73:8e:aa:59:c8:c9:e8:72:69:57:f1:b4:1a:10: 68:3c:5a:05:1a:7a:83:4c:e1:f6:b1:69:0a:cb:48: 78:35:c1:d9:54:60:33:ad:be:d6:94:0e:38:e8:0a: 26:fb:c8:ad:f2:65:c6:cf:d7:92:25:ca:5b:41:a5: 49:d9:34:64:99:f4:e8:61:90:0b:25:f8:61:d6:00: 53:2e:32:ce:d5:a1:35:95:5d:02:b6:09:05:25:b8: 98:29:30:a3:4f:ad:37:22:e7:1b:30:0e:54:59:72: 4c:13:10:3e:00:b1:53:11:8e:de:26:e0:25:8a:a5: be:a1:8c:b0:13:7c:2c:33:32:4e:00:e2:7f:61:87: 82:48:50:a9:ef:d7:cc:e4:a2:1f:bb:48:cc:19:cc: 6c:55:05:4f:63:c3:99:1e:c8:48:b8:ee:b6:ae:b7: b9:5d:ea:c9:77:ef:a2:16:c4:db:49:b4:3a:53:74: a8:b6:11:e6:41:ee:8d:b5:37:3d:c7:3a:0f:55:2e: b4:ed:ab:7b:86:b4:e6:ed:ad:ab:4f:21:2a:42:63: 6b:30:bf:49:01:d0:d2:ec:44:7c:5d:9f:22:b4:21: e8:76:6c:c9:f5:c5:e3:7b:aa:fa:7e:16:f8:4a:70: 25:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:3F:80:8C:B0:99:1B:93:F0:A0:51:3D:4D:FF:23:F3:B1:9E:12:B2 X509v3 Authority Key Identifier: keyid:E6:2A:4D:47:8A:9B:A1:8E:E0:F9:90:69:8F:68:23:D9:50:D1:E6:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ipNR4qboY7g-ZBpj2gj2VDR5nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175862/04B3F5FAEBCD11E797CA0E2CC4F9AE02/766E754AE9D411EB91D55081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.168.0/22 IPv6: 2402:45c0::/47 Signature Algorithm: sha256WithRSAEncryption 1f:c0:e2:9a:2d:ae:9c:cb:50:b2:98:7a:d4:cd:d3:c7:a7:b9: 21:52:78:26:49:4a:37:36:9e:4e:92:49:51:26:b2:ce:fc:67: 9f:6f:4d:b4:26:50:40:56:40:42:55:81:4e:39:dc:be:83:1d: 87:29:9a:3f:f6:fa:22:99:42:b7:69:8e:4a:f5:ca:5e:d0:d4: 2a:1a:a1:55:dc:4e:14:87:52:5e:0e:b4:d9:21:c5:7e:75:75: aa:1b:5f:a1:79:67:57:78:1f:ae:8c:9c:45:56:89:78:e8:e6: 31:49:ce:81:6e:4e:3d:95:1a:b7:82:30:3c:aa:9d:24:dd:0e: 8f:cd:85:f4:36:40:5e:f1:62:21:4d:10:4c:28:8a:42:37:07: 12:77:12:02:7a:be:e1:48:ea:5c:fc:4c:fd:86:89:04:a1:d5: a4:90:e9:f4:0a:0a:0e:aa:a9:00:db:31:c9:df:c4:41:f4:4e: 86:1a:e4:d0:f1:7c:ef:94:53:c7:74:e9:ba:ce:bf:b8:f0:3f: c5:75:e6:aa:7b:8b:c1:86:ba:6d:8f:3d:5d:52:7a:e1:77:c9: 79:d8:1d:65:fe:0d:dc:fc:ce:32:11:bc:56:8a:87:f8:54:ba: ba:fc:4e:63:f4:c5:65:40:9e:21:81:dc:64:85:5a:e6:a4:62: 0a:07:4b:8e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NjIxMTAvBgNVBAUTKEU2MkE0RDQ3OEE5QkExOEVFMEY5OTA2OThGNjgyM0Q5 NTBEMUU2NzQwHhcNMjQwMjE0MTcxNDQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNjZjUwNC1hMWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+lSAJjFksh6qBuVRh4Ndc46qWcjJ6HJpV/G0GhBoPFoFGnqDTOH2sWkKy0h4 NcHZVGAzrb7WlA446Aom+8it8mXGz9eSJcpbQaVJ2TRkmfToYZALJfhh1gBTLjLO 1aE1lV0CtgkFJbiYKTCjT603IucbMA5UWXJMExA+ALFTEY7eJuAliqW+oYywE3ws MzJOAOJ/YYeCSFCp79fM5KIfu0jMGcxsVQVPY8OZHshIuO62rre5XerJd++iFsTb SbQ6U3SothHmQe6NtTc9xzoPVS607at7hrTm7a2rTyEqQmNrML9JAdDS7ER8XZ8i tCHodmzJ9cXje6r6fhb4SnAl9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHA/gIyw mRuT8KBRPU3/I/OxnhKyMB8GA1UdIwQYMBaAFOYqTUeKm6GO4PmQaY9oI9lQ0eZ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg2Mi8wNEIzRjVGQUVC Q0QxMUU3OTdDQTBFMkNDNEY5QUUwMi81aXBOUjRxYm9ZN2ctWkJwajJnajJWRFI1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpcE5SNHFib1k3Zy1aQnBqMmdqMlZEUjVuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4NjIvMDRCM0Y1RkFFQkNEMTFFNzk3Q0EwRTJDQzRGOUFFMDIvNzY2RTc1NEFF OUQ0MTFFQjkxRDU1MDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnaqgwDwQCAAIwCQMHASQCRcAAADANBgkqhkiG9w0BAQsF AAOCAQEAH8Dimi2unMtQsph61M3Tx6e5IVJ4JklKNzaeTpJJUSayzvxnn29NtCZQ QFZAQlWBTjncvoMdhymaP/b6IplCt2mOSvXKXtDUKhqhVdxOFIdSXg602SHFfnV1 qhtfoXlnV3gfroycRVaJeOjmMUnOgW5OPZUat4IwPKqdJN0Oj82F9DZAXvFiIU0Q TCiKQjcHEncSAnq+4UjqXPxM/YaJBKHVpJDp9AoKDqqpANsxyd/EQfROhhrk0PF8 75RTx3Tpus6/uPA/xXXmqnuLwYa6bY89XVJ64XfJedgdZf4N3PzOMhG8VoqH+FS6 uvxOY/TFZUCeIYHcZIVa5qRiCgdLjg== -----END CERTIFICATE-----Generated at Mon May 20 19:20:07 2024 by rpki-client on console-fra.rpki-client.org