$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa File: B62B9156280611ED8BEBC536C4F9AE02.roa (raw, json) Hash identifier: tEvhbktaxXSOPBsOlOp9gbkXZKZjLCAbmL8sFIx8930= Subject key identifier: 63:85:35:A0:65:5A:4D:57:D4:93:48:CD:D1:4E:38:37:36:5A:D9:F2 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1427 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa Signing time: Thu 24 Aug 2023 17:34:27 +0000 ROA not before: Thu 24 Aug 2023 17:34:27 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 149167 IP address blocks: 103.239.74.0/24 maxlen: 24 103.239.75.0/24 maxlen: 24 203.167.23.0/24 maxlen: 24 2405:f080:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5159 (0x1427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Aug 24 17:34:27 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64e794a3-7e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:cc:d1:c7:93:97:84:d5:86:45:6b:55:58: e8:a5:f9:63:cf:4f:ae:a0:b6:e1:07:8a:02:3c:34: 5d:2b:7d:3d:b5:a8:c6:df:1d:1f:5c:5f:b2:a1:b7: c9:95:3c:3d:a2:e8:2f:35:d6:79:3f:c5:66:5d:af: d0:98:3e:52:41:3d:3b:8b:87:e2:7e:58:11:90:71: 8d:c4:0b:83:ff:8e:91:13:82:ea:87:bf:07:95:fc: 2b:5d:88:c4:02:c7:38:9e:f3:db:19:5c:ec:3c:8c: 02:ba:4c:53:e9:c0:7c:45:e7:cd:bf:a0:b8:bf:df: 4d:74:cd:a9:e5:14:d2:d9:7b:29:c7:11:95:1f:de: bb:b3:44:4a:cc:c9:89:ea:84:e4:a0:d4:da:82:b7: fe:b5:c0:e7:24:9d:8d:54:45:b8:4c:0a:b1:ae:42: 22:e0:d6:41:03:a2:21:5f:4b:86:f5:e7:3e:2c:8b: 95:ce:ed:8e:a3:bc:07:4f:30:d6:40:a5:e6:80:47: 49:a7:f4:96:e9:92:a2:25:b2:be:da:a1:2b:c0:aa: f4:5c:97:67:ac:22:98:89:71:18:ee:d4:e9:53:51: 14:8c:cb:2c:5f:57:db:01:d8:f5:2e:db:b8:e7:7a: f7:47:fa:f5:fe:ec:22:93:01:5f:10:42:b1:1d:dc: 76:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:85:35:A0:65:5A:4D:57:D4:93:48:CD:D1:4E:38:37:36:5A:D9:F2 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.74.0/23 203.167.23.0/24 IPv6: 2405:f080:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 3a:09:20:51:68:f0:e1:c0:d5:63:9e:68:c0:61:f2:6d:8f:80: c0:8b:9a:44:80:18:5e:48:b7:fd:1d:37:16:a3:62:88:c9:e3: ea:3a:32:d7:34:49:02:ce:62:27:27:46:a6:d9:1f:78:f7:cf: 08:b3:81:4a:6e:bd:6f:45:a5:98:b2:35:b3:18:4f:46:10:7e: c9:48:11:37:41:86:2b:48:37:69:d1:8f:21:8b:6d:46:e7:62: 25:4b:e6:0d:a8:6b:72:b6:25:1f:34:4e:16:d0:a5:db:6f:8d: 92:7c:59:24:2a:a2:d1:d7:fa:55:2d:02:04:20:49:16:8e:56: b4:15:98:87:40:2f:16:9f:00:65:1c:42:af:89:9c:64:04:59: b6:3a:57:3b:30:2c:1c:fd:8c:0a:0f:a3:70:8e:2e:cf:39:89: 88:50:94:6d:3b:dc:99:34:bd:d4:e6:b7:96:b3:db:73:4e:cb: 42:45:e4:4d:aa:b8:23:3b:5d:42:7e:4f:bf:10:ac:40:d7:d9: bd:4d:de:da:7c:da:8c:1b:2c:ec:55:e0:a8:f8:a5:e9:c8:4a: 06:48:f0:a3:8f:17:23:0e:87:19:fb:be:1c:cb:50:6e:5f:c8: e4:8a:c9:56:f7:69:13:3b:91:93:53:c9:29:23:14:c1:b4:62: 20:c5:ac:7c -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICFCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjMwODI0MTczNDI3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU3OTRhMy03ZTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVPM0ceTl4TVhkVrVVjopfljz0+uoLbhB4oCPDRdK309tajG3x0fXF+yobfJ lTw9ougvNdZ5P8VmXa/QmD5SQT07i4fiflgRkHGNxAuD/46RE4Lqh78HlfwrXYjE Asc4nvPbGVzsPIwCukxT6cB8RefNv6C4v99NdM2p5RTS2XspxxGVH967s0RKzMmJ 6oTkoNTagrf+tcDnJJ2NVEW4TAqxrkIi4NZBA6IhX0uG9ec+LIuVzu2Oo7wHTzDW QKXmgEdJp/SW6ZKiJbK+2qErwKr0XJdnrCKYiXEY7tTpU1EUjMssX1fbAdj1Ltu4 53r3R/r1/uwikwFfEEKxHdx23wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFGOFNaBl Wk1X1JNIzdFOODc2WtnyMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvQjYyQjkxNTYy ODA2MTFFRDhCRUJDNTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAFn70oDBADLpxcwDgQCAAIwCAMGACQF8ID/MA0GCSqGSIb3 DQEBCwUAA4IBAQA6CSBRaPDhwNVjnmjAYfJtj4DAi5pEgBheSLf9HTcWo2KIyePq OjLXNEkCzmInJ0am2R94988Is4FKbr1vRaWYsjWzGE9GEH7JSBE3QYYrSDdp0Y8h i21G52IlS+YNqGtytiUfNE4W0KXbb42SfFkkKqLR1/pVLQIEIEkWjla0FZiHQC8W nwBlHEKviZxkBFm2Olc7MCwc/YwKD6Nwji7POYmIUJRtO9yZNL3U5reWs9tzTstC ReRNqrgjO11Cfk+/EKxA19m9Td7afNqMGyzsVeCo+KXpyEoGSPCjjxcjDocZ+74c y1BuX8jkislW92kTO5GTU8kpIxTBtGIgxax8 -----END CERTIFICATE-----Generated at Fri May 24 18:40:27 2024 by rpki-client on console-fra.rpki-client.org