$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa File: C437B01282C211EBBB08B280C4F9AE02.roa (raw, json) Hash identifier: jFt3e40+ALQhrJp6OJZEoPNCJM/tKBFq4PlGOIsp684= Subject key identifier: 30:41:FD:0B:C4:98:14:55:9D:3C:2C:14:C8:F6:14:F3:68:3D:6A:1E Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 060F Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa Signing time: Sat 02 Nov 2024 22:21:32 +0000 ROA not before: Sat 02 Nov 2024 22:21:32 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139700 IP address blocks: 103.143.185.0/24 maxlen: 24 103.168.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Nov 2 22:21:32 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726a5ec-132a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ff:b7:c2:72:79:fc:2a:1a:7b:86:ca:bd:d6: d6:93:9d:84:7b:59:1d:50:c3:25:81:73:d3:31:9a: cf:53:4c:2c:fa:3a:59:26:9a:a8:ef:e9:ef:3c:38: d9:e4:2b:a5:6a:59:ec:f5:a8:7e:be:08:6d:72:c9: fb:5d:d2:ba:b1:ca:40:9a:d5:80:e7:d4:f8:38:4d: 34:7f:89:da:fa:0b:df:b9:b2:92:8d:71:92:89:75: 6b:ce:a3:0b:9f:64:72:72:0a:ef:92:9a:b6:73:35: ed:b1:29:ca:cd:4a:5d:66:41:06:9d:d1:a4:6d:9b: d8:a7:05:a2:95:66:0e:6c:46:f1:7e:05:7a:6a:7d: 67:ee:2b:dd:da:34:bb:92:46:dd:4d:84:dc:52:b3: 9e:54:4a:ea:34:65:e8:b2:aa:23:ec:7a:11:6a:52: e3:8e:ff:5d:2c:55:e6:cf:e7:b7:40:10:a0:23:fe: 9c:62:bb:63:5a:b1:16:47:8b:96:3c:86:4d:bd:1f: f3:dc:94:a8:b5:e6:02:12:db:f3:83:a7:89:cb:f2: c6:46:2d:a5:2e:4f:38:fd:cd:44:a0:b5:c3:03:e6: 36:ad:48:07:9d:91:be:fa:fe:41:4e:bf:a0:57:87: 43:4e:fe:18:2f:95:62:23:eb:33:7c:b6:85:59:05: 2a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:41:FD:0B:C4:98:14:55:9D:3C:2C:14:C8:F6:14:F3:68:3D:6A:1E X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C437B01282C211EBBB08B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 103.168.45.0/24 Signature Algorithm: sha256WithRSAEncryption 22:25:47:5f:28:1b:37:a0:6d:61:1c:d0:63:2d:06:d2:0c:0a: 4e:32:31:c1:2f:75:4c:b2:d5:f5:8a:e1:4b:cc:ef:c2:29:78: 55:6b:23:e5:ea:35:e6:16:61:05:01:1a:96:34:a2:3f:7f:41: 9c:48:b8:f9:bf:b4:f9:bd:56:59:2f:a1:33:48:bf:76:87:67: 0b:8d:0d:da:02:6d:b2:aa:c3:3f:8c:fd:9b:17:d2:dd:cb:78: 6e:c1:51:7b:79:27:91:44:21:33:78:f3:ed:b7:2b:b8:f3:0f: 77:e4:76:f9:6b:25:81:b1:d9:53:3b:4c:8b:9a:6b:bf:8a:df: a6:c0:ff:fb:c7:ac:5f:4e:99:a2:05:e6:24:6b:54:32:a1:bc: e2:46:48:81:3e:0c:81:7d:31:4a:0a:c7:21:97:57:75:11:ca: ca:dc:d9:ac:fa:f5:d6:b1:ca:d1:85:a4:a6:92:e9:1c:12:e6: 84:6a:62:7d:6d:48:1c:65:bc:10:50:e5:7d:23:02:dc:45:54: 04:d8:6d:25:91:f4:d8:dd:c1:2b:8c:d2:60:23:bd:7b:e7:51: c5:a9:22:1c:f8:d6:98:35:b0:e6:b2:32:13:72:77:fb:0a:92: 93:93:e6:aa:7b:71:e2:0f:89:cb:1b:e3:8f:fd:4f:51:1c:9d: d0:57:69:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjQxMTAyMjIyMTMyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YTVlYy0xMzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv+3wnJ5/Coae4bKvdbWk52Ee1kdUMMlgXPTMZrPU0ws+jpZJpqo7+nvPDjZ 5Culalns9ah+vghtcsn7XdK6scpAmtWA59T4OE00f4na+gvfubKSjXGSiXVrzqML n2Rycgrvkpq2czXtsSnKzUpdZkEGndGkbZvYpwWilWYObEbxfgV6an1n7ivd2jS7 kkbdTYTcUrOeVErqNGXosqoj7HoRalLjjv9dLFXmz+e3QBCgI/6cYrtjWrEWR4uW PIZNvR/z3JSoteYCEtvzg6eJy/LGRi2lLk84/c1EoLXDA+Y2rUgHnZG++v5BTr+g V4dDTv4YL5ViI+szfLaFWQUqaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDBB/QvE mBRVnTwsFMj2FPNoPWoeMB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvQzQzN0IwMTI4 MkMyMTFFQkJCMDhCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnj7kDBABnqC0wDQYJKoZIhvcNAQELBQADggEBACIlR18o GzegbWEc0GMtBtIMCk4yMcEvdUyy1fWK4UvM78IpeFVrI+XqNeYWYQUBGpY0oj9/ QZxIuPm/tPm9VlkvoTNIv3aHZwuNDdoCbbKqwz+M/ZsX0t3LeG7BUXt5J5FEITN4 8+23K7jzD3fkdvlrJYGx2VM7TIuaa7+K36bA//vHrF9OmaIF5iRrVDKhvOJGSIE+ DIF9MUoKxyGXV3URysrc2az69daxytGFpKaS6RwS5oRqYn1tSBxlvBBQ5X0jAtxF VATYbSWR9NjdwSuM0mAjvXvnUcWpIhz41pg1sOayMhNyd/sKkpOT5qp7ceIPicsb 44/9T1EcndBXaaE= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org