$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/70CB2CA80B4D11EA9667AC1FC4F9AE02.roa File: 70CB2CA80B4D11EA9667AC1FC4F9AE02.roa (raw, json) Hash identifier: /d1RKSm1mM4ZOHXX9XQZJVNypQP+JvRWagaNr0gtbDI= Subject key identifier: 89:C0:69:CF:70:29:B6:55:53:E1:CE:DF:AE:F1:6F:6E:07:83:4F:84 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0EB3 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/70CB2CA80B4D11EA9667AC1FC4F9AE02.roa Signing time: Thu 29 Feb 2024 19:38:28 +0000 ROA not before: Thu 29 Feb 2024 19:38:28 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 7786 IP address blocks: 103.208.92.0/24 maxlen: 24 103.208.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3763 (0xeb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 29 19:38:28 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e0dd34-39b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:99:b2:09:9b:f7:ea:75:e6:59:e2:87:84: a2:2b:57:fd:3b:dc:cf:b5:c5:a8:59:c3:c9:a5:dc: 87:c5:97:92:1d:e4:c2:1d:62:2d:4d:d7:27:b8:60: 01:c5:84:81:43:d5:b4:4e:5e:8b:cf:3d:a0:1a:84: 24:50:a9:9f:f5:fa:73:5b:2b:16:f9:27:a0:ea:b5: 1f:f9:e5:21:81:6b:f3:b8:06:b2:5e:b2:8b:db:a0: 44:2b:e4:cc:bf:79:74:fe:3b:82:d9:e3:a1:e1:8b: 47:4e:0d:2e:81:47:32:d0:b7:14:94:3f:fa:2c:90: c7:e1:32:00:af:c7:b7:b2:2a:6f:d8:cc:05:17:aa: 82:10:39:39:84:e1:51:31:c7:97:d1:77:e1:49:6f: 39:b9:3c:fa:83:b0:c4:1b:7f:1d:b8:34:6b:a5:3a: 1d:74:01:0c:51:ff:67:f5:58:79:ce:b0:50:70:89: fb:8d:9b:0a:f9:fa:ea:18:37:a5:e6:de:e5:9e:69: f8:50:71:a9:00:72:37:d5:c6:2a:92:af:e2:c3:64: c7:d0:ae:79:f3:1e:40:b6:63:02:12:b7:a8:a0:80: bc:29:2c:fe:2f:09:b7:fb:7d:49:ad:4f:14:26:42: 66:1e:ca:0a:f6:42:33:a6:17:b7:18:9c:66:c3:40: 3d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C0:69:CF:70:29:B6:55:53:E1:CE:DF:AE:F1:6F:6E:07:83:4F:84 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/70CB2CA80B4D11EA9667AC1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.92.0/23 Signature Algorithm: sha256WithRSAEncryption 52:cb:78:7e:d4:8d:3c:8f:54:f0:01:7b:9b:6c:35:7d:0b:58: fc:02:55:78:3d:9b:66:40:a2:12:a3:fb:d8:3d:b7:cd:2b:06: a7:9f:60:2b:3d:c8:04:48:7a:71:a5:21:c0:b8:70:94:42:34: a6:8e:51:b9:16:04:1d:29:8a:3f:2b:bc:30:5e:c0:c7:bb:ba: 42:af:71:62:1c:1b:3b:e8:4d:e7:fe:42:f9:c8:85:4c:22:d6: a2:eb:ce:4f:5d:e9:ca:9e:39:f3:62:91:70:32:ff:ca:07:c9: aa:89:f4:57:5a:ff:c3:73:6e:3f:84:e0:9d:f3:bb:9f:5c:75: 7f:b8:23:d1:42:c6:5c:d1:32:d3:48:b2:7e:33:18:ce:9e:1f: a2:35:05:94:84:b3:00:11:0a:77:8f:6d:68:a8:06:4e:e9:bc: f7:20:b6:23:a2:83:99:dc:c8:85:2a:d6:dd:f7:8c:f4:4c:45: 9e:cb:4a:6f:4e:34:ed:1d:0c:a5:df:64:c9:27:39:e2:65:a8: df:8b:3b:b4:f3:5f:6b:2e:d3:4a:a4:ac:7c:5b:f9:78:ba:b3: 9f:2a:a9:6c:9c:a7:6c:07:f0:9b:2a:bc:0b:03:98:b7:b1:9c: 3e:7e:0d:17:51:cf:47:e2:1e:d1:4f:93:dd:ea:79:c9:cf:ae: ce:ce:b6:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjQwMjI5MTkzODI4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwZGQzNC0zOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE+Zsgmb9+p15lnih4SiK1f9O9zPtcWoWcPJpdyHxZeSHeTCHWItTdcnuGAB xYSBQ9W0Tl6Lzz2gGoQkUKmf9fpzWysW+Seg6rUf+eUhgWvzuAayXrKL26BEK+TM v3l0/juC2eOh4YtHTg0ugUcy0LcUlD/6LJDH4TIAr8e3sipv2MwFF6qCEDk5hOFR MceX0XfhSW85uTz6g7DEG38duDRrpToddAEMUf9n9Vh5zrBQcIn7jZsK+frqGDel 5t7lnmn4UHGpAHI31cYqkq/iw2TH0K558x5AtmMCEreooIC8KSz+Lwm3+31JrU8U JkJmHsoK9kIzphe3GJxmw0A9QwIDAQABo4IClTCCApEwHQYDVR0OBBYEFInAac9w KbZVU+HO367xb24Hg0+EMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNzBDQjJDQTgw QjREMTFFQTk2NjdBQzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn0FwwDQYJKoZIhvcNAQELBQADggEBAFLLeH7UjTyPVPAB e5tsNX0LWPwCVXg9m2ZAohKj+9g9t80rBqefYCs9yARIenGlIcC4cJRCNKaOUbkW BB0pij8rvDBewMe7ukKvcWIcGzvoTef+QvnIhUwi1qLrzk9d6cqeOfNikXAy/8oH yaqJ9Fda/8Nzbj+E4J3zu59cdX+4I9FCxlzRMtNIsn4zGM6eH6I1BZSEswARCneP bWioBk7pvPcgtiOig5ncyIUq1t33jPRMRZ7LSm9ONO0dDKXfZMknOeJlqN+LO7Tz X2su00qkrHxb+Xi6s58qqWycp2wH8JsqvAsDmLexnD5+DRdRz0fiHtFPk93qecnP rs7OtlI= -----END CERTIFICATE-----Generated at Thu May 2 20:50:31 2024 by rpki-client on console-fra.rpki-client.org