$ rpki-client -vvf rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa File: B89D979A13F411EB8BF49553C4F9AE02.roa (raw, json) Hash identifier: Elt6JYpPcUNolUdz4IF+3v+14XhKVVmXORmOfAqBK0s= Subject key identifier: 17:72:C1:4D:82:1B:8D:0D:1A:56:FA:79:C2:37:47:A7:2E:BA:3B:AD Certificate issuer: /CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Certificate serial: 0698 Authority key identifier: 03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa Signing time: Mon 04 Mar 2024 23:12:14 +0000 ROA not before: Mon 04 Mar 2024 23:12:14 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.205.208.0/24 maxlen: 24 103.205.209.0/24 maxlen: 24 103.205.210.0/24 maxlen: 24 103.205.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805BF/serialNumber=031E29F26E783281B768E8910853144DF1EE5534 Validity Not Before: Mar 4 23:12:14 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e6554e-ffe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8a:c2:0f:e4:d9:aa:18:ea:6e:1e:1e:c3:7a: a4:11:48:1b:7d:7b:f7:8d:4d:c5:03:d6:96:6d:a4: 51:58:94:f8:22:d6:94:74:d9:bf:a2:20:4d:0f:5f: 7a:64:4c:cd:e4:db:bf:4d:cd:2a:e5:bf:e0:90:d9: e9:97:f9:f8:7b:73:3e:20:ac:82:39:b7:1c:db:87: c1:6e:41:5c:6e:95:bb:25:68:d6:9a:e8:6f:45:4f: ed:c2:15:ef:bb:e5:dc:23:e6:37:67:21:a4:c2:38: c2:aa:0b:35:d0:3b:ff:6b:00:26:33:af:75:d4:3e: 9e:c7:a3:20:96:d5:1d:08:37:3f:6a:0a:8c:4d:91: 9c:c3:64:d0:53:5e:64:63:82:4f:b2:6d:84:56:93: b2:d4:a8:46:1a:b1:43:5c:f3:ef:27:fa:74:d3:f8: b1:4c:ec:12:5c:1e:2d:00:9a:b4:c9:35:d6:b7:44: b5:2e:65:c2:2b:f2:57:84:b5:30:62:81:c2:81:a1: 1b:14:95:74:5a:f4:5c:66:c1:f6:5b:e3:c9:5c:a0: 23:05:e1:71:6c:ac:89:7e:0c:e5:ff:e6:64:85:0c: 32:fb:04:c4:d7:94:ca:8f:62:d3:98:9a:f9:62:50: 1a:84:98:1e:b2:76:e1:b3:fc:c3:34:83:03:89:82: 9e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:72:C1:4D:82:1B:8D:0D:1A:56:FA:79:C2:37:47:A7:2E:BA:3B:AD X509v3 Authority Key Identifier: keyid:03:1E:29:F2:6E:78:32:81:B7:68:E8:91:08:53:14:4D:F1:EE:55:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ax4p8m54MoG3aOiRCFMUTfHuVTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805BF/F133BDAC13F211EB9BEFCD51C4F9AE02/B89D979A13F411EB8BF49553C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.208.0/22 Signature Algorithm: sha256WithRSAEncryption 84:f0:96:02:bf:2d:b1:ba:a9:49:81:ab:23:70:35:44:d4:51: 75:f0:15:24:31:c1:b9:66:d7:45:a9:2e:7f:2e:3d:c3:54:c0: 0d:17:7f:b6:03:c8:44:2c:fb:2c:a6:75:f0:77:bb:88:c7:16: 2d:fd:30:e3:77:4c:0b:ca:a5:52:d8:75:8f:14:57:cf:52:30: ae:89:f3:68:3e:72:1e:fb:65:79:05:09:a2:29:8f:da:5e:be: 9c:ab:b7:b4:7a:b5:6b:b7:0c:72:94:51:40:d9:51:b5:b2:59: d7:47:f0:84:6e:fc:a5:07:4c:fe:f2:3e:fd:f7:a5:73:d8:6e: dc:72:9f:c5:ca:76:2b:60:f9:54:ca:e1:dc:40:5d:df:eb:60: da:73:20:7a:af:ee:55:32:73:81:a2:d7:2f:80:38:dd:08:90: af:2c:74:7c:86:84:4e:e3:a5:07:01:8f:7e:24:21:91:06:31: 34:10:0b:9d:7c:57:3a:1a:95:46:3a:2a:88:cc:32:74:58:29: 22:83:a7:f6:64:a6:ce:8a:78:92:16:ff:9f:83:bf:83:93:93: ab:ba:b1:37:ec:f1:3a:f9:c2:9a:71:6f:86:49:4a:a0:e9:fb: 88:c4:e2:e7:8b:20:a8:70:84:31:5c:5d:a3:8f:15:48:3b:bf: 6f:d5:77:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1QkYxMTAvBgNVBAUTKDAzMUUyOUYyNkU3ODMyODFCNzY4RTg5MTA4NTMxNDRE RjFFRTU1MzQwHhcNMjQwMzA0MjMxMjE0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2NTU0ZS1mZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxorCD+TZqhjqbh4ew3qkEUgbfXv3jU3FA9aWbaRRWJT4ItaUdNm/oiBND196 ZEzN5Nu/Tc0q5b/gkNnpl/n4e3M+IKyCObcc24fBbkFcbpW7JWjWmuhvRU/twhXv u+XcI+Y3ZyGkwjjCqgs10Dv/awAmM6911D6ex6MgltUdCDc/agqMTZGcw2TQU15k Y4JPsm2EVpOy1KhGGrFDXPPvJ/p00/ixTOwSXB4tAJq0yTXWt0S1LmXCK/JXhLUw YoHCgaEbFJV0WvRcZsH2W+PJXKAjBeFxbKyJfgzl/+ZkhQwy+wTE15TKj2LTmJr5 YlAahJgesnbhs/zDNIMDiYKeqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBdywU2C G40NGlb6ecI3R6cuujutMB8GA1UdIwQYMBaAFAMeKfJueDKBt2jokQhTFE3x7lU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVCRi9GMTMzQkRBQzEz RjIxMUVCOUJFRkNENTFDNEY5QUUwMi9BeDRwOG01NE1vRzNhT2lSQ0ZNVVRmSHVW VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F4NHA4bTU0TW9HM2FPaVJDRk1VVGZIdVZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1QkYvRjEzM0JEQUMxM0YyMTFFQjlCRUZDRDUxQzRGOUFFMDIvQjg5RDk3OUEx M0Y0MTFFQjhCRjQ5NTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzdAwDQYJKoZIhvcNAQELBQADggEBAITwlgK/LbG6qUmB qyNwNUTUUXXwFSQxwblm10WpLn8uPcNUwA0Xf7YDyEQs+yymdfB3u4jHFi39MON3 TAvKpVLYdY8UV89SMK6J82g+ch77ZXkFCaIpj9pevpyrt7R6tWu3DHKUUUDZUbWy WddH8IRu/KUHTP7yPv33pXPYbtxyn8XKditg+VTK4dxAXd/rYNpzIHqv7lUyc4Gi 1y+AON0IkK8sdHyGhE7jpQcBj34kIZEGMTQQC518VzoalUY6KojMMnRYKSKDp/Zk ps6KeJIW/5+Dv4OTk6u6sTfs8Tr5wppxb4ZJSqDp+4jE4ueLIKhwhDFcXaOPFUg7 v2/Vd6w= -----END CERTIFICATE-----Generated at Thu Apr 18 23:55:17 2024 by rpki-client on console-fra.rpki-client.org