$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa File: DB6928E4635411EF8B6D364BC4F9AE02.roa (raw, json) Hash identifier: v+Dp0K1hdXxl3OPWO8uxhWsiC5bQl5Ff5tXnCdcq4MU= Subject key identifier: 49:CE:29:0A:05:5D:EA:41:18:BE:4B:E5:45:0D:14:82:0C:AD:A3:AD Certificate issuer: /CN=A918E2A5/serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Certificate serial: 9C Authority key identifier: 8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa Signing time: Mon 26 Aug 2024 02:42:38 +0000 ROA not before: Mon 26 Aug 2024 02:42:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58528 IP address blocks: 103.57.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2A5/serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Validity Not Before: Aug 26 02:42:38 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66cbeb9e-ee41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:2c:e0:16:fa:0c:93:97:cb:6a:c8:72:ec: 51:f1:cb:18:ce:55:b1:15:07:62:13:2e:4e:46:4b: 2d:4c:ec:d1:79:fd:b7:38:a5:42:00:69:df:89:31: 4d:21:5a:1c:f2:12:0e:f2:bb:e3:4f:76:3a:a2:37: 63:73:62:30:c2:5c:85:5a:25:07:f2:af:6a:02:37: 71:93:cf:9d:00:ea:8e:de:86:43:9c:85:9b:88:18: 42:64:92:cd:b5:c7:74:38:24:d7:7a:1e:8b:a8:f2: ef:ed:c0:2e:4d:20:35:60:54:ce:d9:db:33:31:76: 83:df:15:d4:ca:4c:4c:53:84:24:02:39:a7:f2:09: 82:0e:d2:d3:a8:c5:f6:d9:bb:16:8c:56:31:e1:8c: 54:74:0a:24:d8:7c:cc:6f:1b:1b:b6:0c:2c:33:ba: 50:d1:d8:23:c9:c0:b1:bc:4b:5d:74:19:c5:17:44: 31:01:16:37:63:42:80:ca:fb:aa:2a:de:e3:a9:ac: 5b:75:72:55:e5:1c:6f:3f:7f:1c:d5:42:fb:af:41: 09:16:fb:41:b8:ef:a3:62:19:ad:f2:ef:71:12:ae: 07:53:3b:95:97:2a:b2:30:5d:c9:33:6e:33:6f:ca: de:3c:05:11:c9:4e:cb:7f:90:b4:ce:ae:22:6e:e4: 4c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CE:29:0A:05:5D:EA:41:18:BE:4B:E5:45:0D:14:82:0C:AD:A3:AD X509v3 Authority Key Identifier: keyid:8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB6928E4635411EF8B6D364BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.89.0/24 Signature Algorithm: sha256WithRSAEncryption a1:54:c2:7a:81:c2:1e:08:e7:73:54:fe:ef:be:f3:e3:39:b4: 99:b2:6f:9f:0f:bf:70:5d:02:49:5e:23:05:f2:5c:dd:3d:92: ee:72:a0:95:d3:b0:27:30:06:b6:73:7a:5e:0b:60:57:0d:49: 78:a3:85:8d:10:eb:23:ee:be:dd:05:66:a0:40:89:dc:a1:21: d6:0c:01:25:97:00:bf:ab:d5:0b:1e:4e:6c:32:98:9f:d8:b7: dd:03:85:00:02:3f:93:27:4d:6e:cb:2d:0f:b7:4a:84:cd:ee: 11:71:96:fc:f5:fd:10:df:d4:b7:47:85:cf:8b:22:97:7e:6e: 70:60:36:47:df:7c:d9:d1:fd:fc:96:d2:af:fc:cf:12:b9:4e: 58:07:f1:aa:36:91:09:1d:e7:e5:e5:5e:1f:ef:ac:f1:00:61: a0:1d:3a:8d:80:b9:7b:91:16:53:ad:96:36:bc:8a:76:ad:d0: 0a:7f:48:7b:ab:b7:93:28:3b:37:29:b9:a8:06:10:72:50:61: f8:45:82:a7:d2:31:7d:55:40:47:33:57:89:bd:df:14:c5:8c: 38:b0:94:02:29:3a:73:2e:60:d5:e6:f0:82:25:fe:2f:8c:9d: 21:d9:72:0d:92:3e:3b:c2:5a:cc:35:03:28:56:54:c2:7d:31: 22:86:96:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQTUxMTAvBgNVBAUTKDhDRENFNTc4QTIzOUU1OENFN0ZFNzY4M0JCNDc2OUY5 REM1NTIyQkEwHhcNMjQwODI2MDI0MjM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNiZWI5ZS1lZTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdgs4Bb6DJOXy2rIcuxR8csYzlWxFQdiEy5ORkstTOzRef23OKVCAGnfiTFN IVoc8hIO8rvjT3Y6ojdjc2IwwlyFWiUH8q9qAjdxk8+dAOqO3oZDnIWbiBhCZJLN tcd0OCTXeh6LqPLv7cAuTSA1YFTO2dszMXaD3xXUykxMU4QkAjmn8gmCDtLTqMX2 2bsWjFYx4YxUdAok2HzMbxsbtgwsM7pQ0dgjycCxvEtddBnFF0QxARY3Y0KAyvuq Kt7jqaxbdXJV5RxvP38c1UL7r0EJFvtBuO+jYhmt8u9xEq4HUzuVlyqyMF3JM24z b8rePAURyU7Lf5C0zq4ibuRMzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEnOKQoF XepBGL5L5UUNFIIMraOtMB8GA1UdIwQYMBaAFIzc5XiiOeWM5/52g7tHafncVSK6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBNS9BMUMwNEQwQTc2 Q0IxMUVFOTNGNTg3NDdDNEY5QUUwMi9qTnpsZUtJNTVZem5fbmFEdTBkcC1keFZJ cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOemxlS0k1NVl6bl9uYUR1MGRwLWR4Vklyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQTUvQTFDMDREMEE3NkNCMTFFRTkzRjU4NzQ3QzRGOUFFMDIvREI2OTI4RTQ2 MzU0MTFFRjhCNkQzNjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOVkwDQYJKoZIhvcNAQELBQADggEBAKFUwnqBwh4I53NU /u++8+M5tJmyb58Pv3BdAkleIwXyXN09ku5yoJXTsCcwBrZzel4LYFcNSXijhY0Q 6yPuvt0FZqBAidyhIdYMASWXAL+r1QseTmwymJ/Yt90DhQACP5MnTW7LLQ+3SoTN 7hFxlvz1/RDf1LdHhc+LIpd+bnBgNkfffNnR/fyW0q/8zxK5TlgH8ao2kQkd5+Xl Xh/vrPEAYaAdOo2AuXuRFlOtlja8inat0Ap/SHurt5MoOzcpuagGEHJQYfhFgqfS MX1VQEczV4m93xTFjDiwlAIpOnMuYNXm8IIl/i+MnSHZcg2SPjvCWsw1AyhWVMJ9 MSKGlm8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:13 2024 by rpki-client on console-ams.rpki-client.org