$ rpki-client -vvf rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa File: 58AEC9929C0F11EA9CC4217CC4F9AE02.roa (raw, json) Hash identifier: rjjlCBXic9PjXjyPWM+A+lhdUtqC6LPHHyzyg5jp9Pc= Subject key identifier: 35:76:99:D4:A4:B6:1D:3C:63:FA:BB:53:29:B3:57:0F:26:38:BF:4B Certificate issuer: /CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Certificate serial: 0BC9 Authority key identifier: 9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa Signing time: Thu 12 Sep 2024 19:57:13 +0000 ROA not before: Thu 12 Sep 2024 19:57:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24342 IP address blocks: 103.97.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91856C4/serialNumber=9A9C31BD879673869B3C8F05596E8815582F11D0 Validity Not Before: Sep 12 19:57:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e34799-baf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:be:50:8c:1c:82:5a:82:e3:92:4d:63:92: 38:99:51:25:b9:ca:0b:b7:d9:ea:5d:ae:de:55:fc: 70:62:91:38:62:cc:03:e9:b4:71:6f:aa:96:b1:a4: 5b:4c:03:84:64:48:3d:e9:6f:93:f8:54:b4:c2:2a: 76:4c:78:2c:ae:e7:60:88:48:87:12:e0:64:42:70: 13:73:13:0b:e0:42:cf:35:c8:1f:9f:48:f9:1e:64: a4:1b:dc:c2:45:0a:1b:ff:d4:ce:34:eb:5b:77:02: ea:ae:67:17:1d:a1:2e:7e:d0:a7:38:42:34:ab:af: 0a:d0:80:17:6b:ff:ea:35:77:62:db:21:80:2d:31: c6:d4:90:96:28:19:89:08:17:17:3f:63:1a:b5:6f: 0f:c2:91:c1:36:00:fa:33:78:de:32:be:15:69:d7: 6e:b6:a0:cf:4d:85:fd:85:34:73:b5:1a:96:ee:8e: 8e:e2:46:dd:30:57:f3:aa:22:80:4b:8a:36:76:14: d7:63:04:dc:1f:e3:10:76:5e:ee:17:33:a3:0c:81: b3:02:7b:db:d4:97:14:3a:2a:91:ff:d8:30:cc:51: d9:f0:f7:48:36:57:64:b0:b1:6f:da:b6:37:14:ad: fb:46:fe:05:08:17:e9:33:69:32:71:4e:bc:1f:a6: 2b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:76:99:D4:A4:B6:1D:3C:63:FA:BB:53:29:B3:57:0F:26:38:BF:4B X509v3 Authority Key Identifier: keyid:9A:9C:31:BD:87:96:73:86:9B:3C:8F:05:59:6E:88:15:58:2F:11:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/mpwxvYeWc4abPI8FWW6IFVgvEdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mpwxvYeWc4abPI8FWW6IFVgvEdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91856C4/A3BAD8E204FF11EA93EE9A23C4F9AE02/58AEC9929C0F11EA9CC4217CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 81:5b:9d:f3:53:7c:a5:28:10:83:bf:d2:c3:e3:fa:e4:fb:3f: b0:6c:73:50:fa:67:9f:ed:f5:1f:f3:ec:2e:00:55:1e:95:4c: 71:db:8e:ce:86:79:97:86:75:41:d8:0f:84:62:13:94:70:73: 11:b4:2a:a8:0b:8c:93:2a:08:82:1b:78:04:00:2f:f9:f4:03: 0c:c2:dc:30:f6:c4:33:7a:17:cf:39:02:72:ad:c6:23:cd:8a: 9f:9d:d8:70:3d:98:55:15:8d:ca:81:e0:62:5b:32:99:a9:91: b9:98:72:38:73:2b:61:24:0e:59:38:c6:a4:c5:f0:ad:a3:5c: c7:d3:b2:69:1b:73:98:be:a0:b7:b6:3c:af:be:4f:e0:5b:5b: ae:35:38:4e:3e:31:e6:ea:bf:b0:07:04:3c:f0:4a:22:9f:c0: f4:65:b6:1b:80:df:92:9f:d1:80:e5:e6:2a:14:33:5b:c4:ef: c7:01:14:5b:b0:60:90:e8:c1:e2:e7:d7:e6:9e:ff:1e:db:fa: 54:69:fe:75:32:7c:33:de:00:d8:c1:f3:d2:38:09:54:14:27: da:e2:7d:d6:ea:ab:9d:a9:29:91:34:3a:cb:e4:36:65:28:8c: ca:6f:19:9a:63:e8:25:99:eb:38:65:b6:17:d7:65:bc:fa:6f: 43:d5:b6:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2QzQxMTAvBgNVBAUTKDlBOUMzMUJEODc5NjczODY5QjNDOEYwNTU5NkU4ODE1 NTgyRjExRDAwHhcNMjQwOTEyMTk1NzEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzNDc5OS1iYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5S+UIwcglqC45JNY5I4mVElucoLt9nqXa7eVfxwYpE4YswD6bRxb6qWsaRb TAOEZEg96W+T+FS0wip2THgsrudgiEiHEuBkQnATcxML4ELPNcgfn0j5HmSkG9zC RQob/9TONOtbdwLqrmcXHaEuftCnOEI0q68K0IAXa//qNXdi2yGALTHG1JCWKBmJ CBcXP2MatW8PwpHBNgD6M3jeMr4VaddutqDPTYX9hTRztRqW7o6O4kbdMFfzqiKA S4o2dhTXYwTcH+MQdl7uFzOjDIGzAnvb1JcUOiqR/9gwzFHZ8PdINldksLFv2rY3 FK37Rv4FCBfpM2kycU68H6YruQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDV2mdSk th08Y/q7UymzVw8mOL9LMB8GA1UdIwQYMBaAFJqcMb2HlnOGmzyPBVluiBVYLxHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTZDNC9BM0JBRDhFMjA0 RkYxMUVBOTNFRTlBMjNDNEY5QUUwMi9tcHd4dlllV2M0YWJQSThGV1c2SUZWZ3ZF ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21wd3h2WWVXYzRhYlBJOEZXVzZJRlZndkVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2QzQvQTNCQUQ4RTIwNEZGMTFFQTkzRUU5QTIzQzRGOUFFMDIvNThBRUM5OTI5 QzBGMTFFQTlDQzQyMTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYXgwDQYJKoZIhvcNAQELBQADggEBAIFbnfNTfKUoEIO/ 0sPj+uT7P7Bsc1D6Z5/t9R/z7C4AVR6VTHHbjs6GeZeGdUHYD4RiE5RwcxG0KqgL jJMqCIIbeAQAL/n0AwzC3DD2xDN6F885AnKtxiPNip+d2HA9mFUVjcqB4GJbMpmp kbmYcjhzK2EkDlk4xqTF8K2jXMfTsmkbc5i+oLe2PK++T+BbW641OE4+Mebqv7AH BDzwSiKfwPRlthuA35Kf0YDl5ioUM1vE78cBFFuwYJDoweLn1+ae/x7b+lRp/nUy fDPeANjB89I4CVQUJ9rifdbqq52pKZE0OsvkNmUojMpvGZpj6CWZ6zhlthfXZbz6 b0PVtgg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org