$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/32091726626D11ED87BDAC82C4F9AE02.roa File: 32091726626D11ED87BDAC82C4F9AE02.roa (raw, json) Hash identifier: YCTx3a6GU8sg0t3UcD+tdyKtqXQS9S/9RJvSQktGPYs= Subject key identifier: 63:C3:28:A3:23:52:1A:F8:8F:1D:C8:C8:3F:09:14:AE:5C:C9:55:36 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: CB Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/32091726626D11ED87BDAC82C4F9AE02.roa Signing time: Sat 09 Dec 2023 04:34:42 +0000 ROA not before: Sat 09 Dec 2023 04:34:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150406 IP address blocks: 103.35.176.0/23 maxlen: 23 103.35.176.0/24 maxlen: 24 103.35.177.0/24 maxlen: 24 2001:df1:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: Dec 9 04:34:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573ee61-f984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2e:db:bf:0f:ca:81:71:86:e0:09:2a:a8:63: 4f:66:76:33:43:1a:3c:ce:2d:72:9c:b3:47:2a:c3: 18:cb:7c:6a:36:20:8f:40:91:25:f7:26:4d:ce:cf: 01:b7:47:ff:f2:c0:cb:30:fb:9f:ac:6e:c8:fe:c7: d2:a0:c6:11:56:d5:53:56:b3:2b:de:26:b2:4a:f9: 03:28:23:ce:05:08:1d:72:4f:1d:4b:e7:1e:b7:08: 14:fd:25:d6:e2:0b:37:33:34:c6:4c:8a:6a:70:bb: 0d:84:17:0e:10:49:e2:98:bd:ae:56:49:fa:f3:d5: 86:3d:4b:6e:67:32:25:6b:58:b6:45:74:9d:44:0c: 16:4e:5d:9d:7e:14:bf:cf:f5:5b:57:02:6f:8a:3c: c3:e4:ba:d9:96:6b:93:30:2a:4d:e4:fb:70:19:e5: 9d:ca:ee:c8:9a:87:b0:0b:bc:89:1f:28:30:f3:18: 15:7b:d9:f5:46:ee:f8:ec:84:70:4c:05:d9:d0:e8: 5f:72:f2:81:b3:ec:c0:b0:b4:d8:22:e8:9f:b9:12: 01:5b:85:98:47:92:fd:34:07:a3:01:6f:35:b5:f7: b0:81:e7:d7:03:77:fe:40:3d:56:80:93:b3:b6:d5: f1:6b:7f:c1:1f:f5:58:c0:87:5a:d2:e8:23:24:f8: a5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C3:28:A3:23:52:1A:F8:8F:1D:C8:C8:3F:09:14:AE:5C:C9:55:36 X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/32091726626D11ED87BDAC82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.176.0/23 IPv6: 2001:df1:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 9c:56:80:ab:20:6c:5d:cf:fe:69:d2:77:47:cb:5e:b6:51:ca: 50:1c:4c:28:f2:f6:cd:43:fd:ad:90:0e:4d:83:52:35:fb:12: d9:ca:46:02:d0:51:00:f3:6a:50:b6:e7:75:be:05:2d:27:b1: a5:08:5c:16:1a:f8:7f:9f:7f:e2:da:dd:d5:93:62:70:7c:a8: 0a:39:39:8e:a2:b5:ca:09:e8:9f:f6:58:ae:5d:47:64:e2:48: 3e:f5:5c:c5:6f:5e:ff:8f:5c:55:87:82:72:1c:40:74:eb:8c: 0e:2c:8f:e6:35:23:1f:b0:42:27:49:2f:9c:00:af:40:63:9f: 20:e1:2a:27:3e:4e:21:d0:51:3a:98:c7:cc:21:c5:a6:e4:fa: 08:a1:62:c5:ab:95:25:38:a9:97:24:55:93:0f:79:a1:54:42: e2:14:7e:9e:5b:e8:ff:01:74:9c:6f:5d:22:2a:05:16:c0:d3: 89:22:12:31:f1:f8:1c:dc:84:03:33:20:20:d9:e7:15:f2:a1: 87:46:a3:e3:7b:c6:45:10:9c:06:90:b1:68:db:84:66:de:c9: ca:c8:de:93:ae:86:4a:e5:c2:3b:0b:0e:a1:6e:93:31:2b:3e: 2b:f2:24:a5:fc:ab:df:0b:9a:3e:f7:d1:f0:21:d9:e9:66:ab: 80:a2:26:54 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjMxMjA5MDQzNDQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczZWU2MS1mOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy7bvw/KgXGG4AkqqGNPZnYzQxo8zi1ynLNHKsMYy3xqNiCPQJEl9yZNzs8B t0f/8sDLMPufrG7I/sfSoMYRVtVTVrMr3iaySvkDKCPOBQgdck8dS+cetwgU/SXW 4gs3MzTGTIpqcLsNhBcOEEnimL2uVkn689WGPUtuZzIla1i2RXSdRAwWTl2dfhS/ z/VbVwJvijzD5LrZlmuTMCpN5PtwGeWdyu7ImoewC7yJHygw8xgVe9n1Ru747IRw TAXZ0OhfcvKBs+zAsLTYIuifuRIBW4WYR5L9NAejAW81tfewgefXA3f+QD1WgJOz ttXxa3/BH/VYwIda0ugjJPilZwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGPDKKMj Uhr4jx3IyD8JFK5cyVU2MB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y0RDMvNjgwMzRDNjg2MjY2MTFFRDgyNDJDNzg2QzRGOUFFMDIvMzIwOTE3MjY2 MjZEMTFFRDg3QkRBQzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnI7AwDwQCAAIwCQMHACABDfGAwDANBgkqhkiG9w0BAQsF AAOCAQEAnFaAqyBsXc/+adJ3R8tetlHKUBxMKPL2zUP9rZAOTYNSNfsS2cpGAtBR APNqULbndb4FLSexpQhcFhr4f59/4trd1ZNicHyoCjk5jqK1ygnon/ZYrl1HZOJI PvVcxW9e/49cVYeCchxAdOuMDiyP5jUjH7BCJ0kvnACvQGOfIOEqJz5OIdBROpjH zCHFpuT6CKFixauVJTiplyRVkw95oVRC4hR+nlvo/wF0nG9dIioFFsDTiSISMfH4 HNyEAzMgINnnFfKhh0aj43vGRRCcBpCxaNuEZt7Jysjek66GSuXCOwsOoW6TMSs+ K/Ikpfyr3wuaPvfR8CHZ6WargKImVA== -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:20 2024 by rpki-client on console-ams.rpki-client.org