$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa File: 98E572FC777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: VHhU4T6PraaYgh0OKYxnF9YbskELwSN55WdyN/nVdKY= Subject key identifier: 3B:AA:23:CB:92:59:C7:B8:47:BE:43:B3:B7:70:8C:39:C7:8D:55:8D Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 18CE Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa Signing time: Wed 14 Aug 2024 16:53:54 +0000 ROA not before: Wed 14 Aug 2024 16:53:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58462 IP address blocks: 103.23.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6350 (0x18ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 14 16:53:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bce122-530f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:47:fe:53:22:bf:ad:4e:39:ee:e7:9b:47:c4: cc:9e:18:88:99:71:ca:90:3c:cf:e7:8f:7f:35:37: 5a:35:0c:a6:ce:7f:ee:c7:c4:ba:40:d8:d0:1d:9d: 5e:be:00:68:20:7e:53:17:91:aa:cc:4b:4c:be:ad: a0:9c:6f:27:64:34:fc:7c:39:f2:f1:25:47:b6:12: 86:e2:ed:c6:ff:99:9a:14:cc:f0:eb:52:15:aa:bf: 90:7c:73:e8:dd:de:8a:34:b0:96:7e:b5:e2:1c:27: 1d:13:06:6d:8f:13:07:cd:b3:d8:96:09:79:5a:15: da:ce:0a:d0:06:4b:04:52:28:52:84:63:20:de:51: dc:a4:c0:40:db:66:d2:1d:bd:28:86:04:1e:24:c4: 54:ae:bf:88:b9:16:e1:e7:0d:10:96:62:2b:4d:12: 61:4b:73:91:41:73:4f:6e:10:12:53:c2:db:ed:ef: ce:06:70:93:21:bf:e5:b6:16:24:71:b8:17:3f:80: 2b:87:18:b0:3c:6f:b1:c5:8d:42:47:45:73:3f:12: e4:67:86:0a:25:10:1a:69:e9:6f:98:4e:9f:d3:06: 48:3c:bd:d7:e9:16:01:f9:f2:d6:ec:b1:f6:b9:08: b0:4a:04:26:77:3b:5d:55:74:82:ce:43:07:39:1d: 0e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:AA:23:CB:92:59:C7:B8:47:BE:43:B3:B7:70:8C:39:C7:8D:55:8D X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/98E572FC777011E7BF7EED10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.214.0/24 Signature Algorithm: sha256WithRSAEncryption 57:37:48:08:76:d5:56:53:e2:49:c1:67:48:92:dc:fe:bc:48: 74:05:8e:04:ab:1f:5d:44:d6:24:d3:79:b9:ad:66:3d:32:84: bf:5f:be:a3:9e:e6:06:3d:87:9a:0f:3a:af:7f:cc:93:e8:ee: 6e:11:39:cd:a6:28:a5:77:34:e6:a8:d4:7a:2a:3d:d9:be:b1: 5f:b0:4f:9f:82:2c:6b:c9:53:a7:0b:a0:0f:48:d3:e4:7a:26: 8b:cd:52:1c:ac:8d:64:ae:39:e0:8d:bd:3e:73:6d:1f:ef:27: 19:4f:e3:30:00:6e:2f:77:be:20:2c:87:fa:1c:28:bc:19:e2: e2:ef:ba:61:d3:be:70:bd:2f:e0:da:34:97:4e:1d:6d:a7:52: b4:9a:d6:42:2c:20:98:fc:6b:68:c5:88:de:fc:81:6a:b8:fc: d6:e8:a1:e4:98:22:98:f1:84:13:a0:c6:a9:a4:4a:3b:b2:8b: e1:4b:97:0f:ed:04:f4:64:f7:cd:bb:0f:1b:0d:f0:db:63:34: 7e:2d:0e:53:f5:8d:f6:84:bf:3d:2e:13:c2:41:bd:d8:ad:2b: c2:ce:62:18:d5:a9:85:ba:f3:b4:43:e9:60:c9:51:82:d1:4d: ef:93:a4:71:32:d5:3e:5e:5c:2f:bc:c8:af:b1:31:1a:83:ef: 4b:67:4f:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjQwODE0MTY1MzU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJjZTEyMi01MzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEf+UyK/rU457uebR8TMnhiImXHKkDzP549/NTdaNQymzn/ux8S6QNjQHZ1e vgBoIH5TF5GqzEtMvq2gnG8nZDT8fDny8SVHthKG4u3G/5maFMzw61IVqr+QfHPo 3d6KNLCWfrXiHCcdEwZtjxMHzbPYlgl5WhXazgrQBksEUihShGMg3lHcpMBA22bS Hb0ohgQeJMRUrr+IuRbh5w0QlmIrTRJhS3ORQXNPbhASU8Lb7e/OBnCTIb/lthYk cbgXP4ArhxiwPG+xxY1CR0VzPxLkZ4YKJRAaaelvmE6f0wZIPL3X6RYB+fLW7LH2 uQiwSgQmdztdVXSCzkMHOR0OZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDuqI8uS Wce4R75Ds7dwjDnHjVWNMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOThFNTcyRkM3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF9YwDQYJKoZIhvcNAQELBQADggEBAFc3SAh21VZT4knB Z0iS3P68SHQFjgSrH11E1iTTebmtZj0yhL9fvqOe5gY9h5oPOq9/zJPo7m4ROc2m KKV3NOao1HoqPdm+sV+wT5+CLGvJU6cLoA9I0+R6JovNUhysjWSuOeCNvT5zbR/v JxlP4zAAbi93viAsh/ocKLwZ4uLvumHTvnC9L+DaNJdOHW2nUrSa1kIsIJj8a2jF iN78gWq4/NbooeSYIpjxhBOgxqmkSjuyi+FLlw/tBPRk9827DxsN8NtjNH4tDlP1 jfaEvz0uE8JBvditK8LOYhjVqYW687RD6WDJUYLRTe+TpHEy1T5eXC+8yK+xMRqD 70tnTxo= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:51 2024 by rpki-client on console-fra.rpki-client.org