$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa File: D3B49A1676CA11EDAA4FE042C4F9AE02.roa (raw, json) Hash identifier: ORL7FHyYLhjfJDRD1dwarcJ8totXTOHWHFx2ct/UEgg= Subject key identifier: 62:CB:2F:EC:EF:D2:86:9B:DD:50:A8:84:05:C7:40:21:E2:53:7C:15 Certificate issuer: /CN=A919CA1B/serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Certificate serial: D1 Authority key identifier: 82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa Signing time: Thu 11 Jan 2024 05:05:45 +0000 ROA not before: Thu 11 Jan 2024 05:05:45 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63969 IP address blocks: 103.49.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA1B/serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Validity Not Before: Jan 11 05:05:45 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659f7729-09d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:e6:09:28:58:e9:3b:a9:86:02:cc:5a:94: b6:e8:bf:c5:b4:bd:88:01:88:be:35:dd:24:f7:35: cb:64:11:5d:b1:03:79:3d:ec:8f:6e:97:5f:4c:20: 72:80:ae:5a:43:3f:cf:fd:e5:2a:8c:f8:13:b6:b1: 75:44:60:a6:03:90:46:77:c4:03:8a:b6:d8:18:75: 78:32:cd:d5:26:95:5b:6e:16:5c:20:24:a0:cd:4e: b0:a4:a6:f4:69:0f:98:a7:78:d1:3a:95:b2:d3:6f: bb:e6:4a:4e:9b:34:f9:2f:47:fc:29:31:76:8d:c9: 94:b6:3f:c5:02:c3:2a:4f:ba:3c:8b:5a:61:31:ae: 67:72:c0:78:1c:a5:6a:0d:d9:f7:36:7d:a6:df:09: 16:80:52:8a:ca:28:26:78:cd:76:6f:70:26:6c:05: f2:e5:a5:30:d7:0b:f8:9f:78:a3:a0:0c:94:52:27: 1d:ea:90:a7:6f:b6:b1:36:2f:d4:47:b0:c9:88:fd: 87:90:60:2a:dd:31:30:64:9d:6b:77:11:58:21:aa: a5:b9:e0:7b:f4:83:bd:41:c9:39:27:99:b8:d0:8c: f6:7c:ea:3a:19:1d:42:ae:63:9c:c0:54:13:03:81: 2e:60:ed:a8:8a:70:c8:d8:89:4d:28:94:7b:d2:73: ad:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:CB:2F:EC:EF:D2:86:9B:DD:50:A8:84:05:C7:40:21:E2:53:7C:15 X509v3 Authority Key Identifier: keyid:82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.114.0/23 Signature Algorithm: sha256WithRSAEncryption 51:8a:4c:fa:08:94:ee:e3:c8:76:21:fc:b1:09:f3:31:7b:e0: 0e:a5:af:ea:7d:4e:75:7f:f5:19:85:93:fe:1d:5c:d2:21:29: 87:9b:82:73:e3:62:19:03:74:0f:aa:af:8a:5f:3d:da:b1:50: 1b:02:5e:ab:cc:3f:1d:d2:54:47:a2:c5:30:c0:6d:85:56:c6: e8:88:7d:09:71:d7:68:47:2f:70:9b:fa:60:bd:a9:4a:a0:29: aa:59:9a:11:5a:fa:56:a0:d3:12:93:a8:cb:56:8f:df:64:36: 1d:6d:a2:66:5e:cc:f9:53:c9:15:d3:74:80:98:b2:03:2d:56: f6:5f:3a:5d:49:a6:06:83:53:8d:27:57:9d:7c:1a:a6:d9:db: 7d:cc:4f:50:5c:14:91:e0:44:24:31:9b:4b:8b:4e:a7:39:56: 82:3c:f1:6d:3a:ef:a6:c2:aa:ff:41:06:e4:1c:c5:e0:b7:05: 75:67:6c:4b:90:bb:79:d9:68:6d:0e:ee:2e:11:7a:66:1a:48: c1:38:1f:d8:cc:5b:f9:f8:e4:c9:33:5d:b9:0c:4c:ae:c9:90: 02:c9:5e:04:58:05:fd:3c:ed:00:36:a9:5a:8b:57:4d:4e:b4: 13:1a:e0:04:cf:9c:5e:82:13:88:10:71:79:0c:e8:0c:42:41: 4d:af:35:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMUIxMTAvBgNVBAUTKDgyMDY0QTEwM0NGNTBGMDFEMTk0NTMwMDZBMzg2Q0Qz ODczOTFCRTYwHhcNMjQwMTExMDUwNTQ1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNzcyOS0wOWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup/mCShY6TuphgLMWpS26L/FtL2IAYi+Nd0k9zXLZBFdsQN5PeyPbpdfTCBy gK5aQz/P/eUqjPgTtrF1RGCmA5BGd8QDirbYGHV4Ms3VJpVbbhZcICSgzU6wpKb0 aQ+Yp3jROpWy02+75kpOmzT5L0f8KTF2jcmUtj/FAsMqT7o8i1phMa5ncsB4HKVq Ddn3Nn2m3wkWgFKKyigmeM12b3AmbAXy5aUw1wv4n3ijoAyUUicd6pCnb7axNi/U R7DJiP2HkGAq3TEwZJ1rdxFYIaqlueB79IO9Qck5J5m40Iz2fOo6GR1CrmOcwFQT A4EuYO2oinDI2IlNKJR70nOtRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGLLL+zv 0oab3VCohAXHQCHiU3wVMB8GA1UdIwQYMBaAFIIGShA89Q8B0ZRTAGo4bNOHORvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExQi8xNDQ3ODI5QTc2 QkQxMUVEQkI0ODk0N0RDNEY5QUUwMi9nZ1pLRUR6MUR3SFJsRk1BYWpoczA0YzVH LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnWktFRHoxRHdIUmxGTUFhamhzMDRjNUctWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBMUIvMTQ0NzgyOUE3NkJEMTFFREJCNDg5NDdEQzRGOUFFMDIvRDNCNDlBMTY3 NkNBMTFFREFBNEZFMDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMXIwDQYJKoZIhvcNAQELBQADggEBAFGKTPoIlO7jyHYh /LEJ8zF74A6lr+p9TnV/9RmFk/4dXNIhKYebgnPjYhkDdA+qr4pfPdqxUBsCXqvM Px3SVEeixTDAbYVWxuiIfQlx12hHL3Cb+mC9qUqgKapZmhFa+lag0xKTqMtWj99k Nh1tomZezPlTyRXTdICYsgMtVvZfOl1JpgaDU40nV518GqbZ233MT1BcFJHgRCQx m0uLTqc5VoI88W0676bCqv9BBuQcxeC3BXVnbEuQu3nZaG0O7i4RemYaSME4H9jM W/n45MkzXbkMTK7JkALJXgRYBf087QA2qVqLV01OtBMa4ATPnF6CE4gQcXkM6AxC QU2vNbk= -----END CERTIFICATE-----Generated at Tue May 21 05:59:35 2024 by rpki-client on console-fra.rpki-client.org