$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa File: 545743246D1911E7A4448D81C4F9AE02.roa (raw, json) Hash identifier: 1AEdA1dYtxSEeV6/iG9fPyT5XqCCH+yVS2KSQ0ngLNo= Subject key identifier: CA:19:17:02:3E:72:67:AF:0D:DD:F5:0D:21:01:A2:0F:BA:25:75:64 Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 18D7 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa Signing time: Tue 02 Jul 2024 17:04:12 +0000 ROA not before: Tue 02 Jul 2024 17:04:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9234 IP address blocks: 103.11.140.0/23 maxlen: 24 103.29.106.0/23 maxlen: 24 203.78.148.0/22 maxlen: 22 203.78.148.0/24 maxlen: 24 203.78.149.0/24 maxlen: 24 203.78.150.0/24 maxlen: 24 203.78.151.0/24 maxlen: 24 2402:5900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6359 (0x18d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: Jul 2 17:04:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684330b-953f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c2:b3:cd:f8:38:3e:cf:26:69:c9:2c:a6:62: 87:76:9c:16:29:6a:47:27:98:90:b9:b6:96:ca:b5: a7:e3:74:2b:75:7f:9f:2d:58:38:e9:3b:46:92:67: c4:cf:29:4d:b9:a7:70:6a:b4:0f:be:8d:28:14:d5: 03:83:c2:de:d4:a5:e4:2a:d7:b9:c9:30:98:cb:f6: 1c:4b:9f:fd:55:f0:34:93:74:58:dc:2c:b4:e7:b2: 71:1c:7e:77:05:bf:e9:f0:50:d2:24:df:11:d7:96: 1a:6e:bf:5a:c0:06:7d:8a:4c:39:77:4e:f3:c4:f3: e0:2a:aa:79:d2:b9:8c:55:4c:cd:2e:08:d2:0b:fe: fc:48:35:27:91:06:ac:c9:a0:ea:26:ea:cb:b1:9e: bb:23:63:30:89:e1:94:01:ee:e5:bf:31:6c:5b:46: 29:0b:95:68:de:1c:68:79:3b:36:04:5c:4b:4f:50: 01:70:98:55:f5:60:e5:c6:2f:c6:6d:28:01:6c:ed: fb:c8:f7:83:20:1c:ad:6b:96:c6:97:74:5e:3a:1a: 19:ca:78:86:21:f5:5c:fd:81:e2:e8:b2:24:18:db: 28:ec:12:2e:12:7c:df:24:67:3f:63:cb:bf:29:ae: 69:5f:13:ab:fd:15:d8:ba:15:a0:b8:c2:62:79:57: aa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:19:17:02:3E:72:67:AF:0D:DD:F5:0D:21:01:A2:0F:BA:25:75:64 X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/545743246D1911E7A4448D81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.140.0/23 103.29.106.0/23 203.78.148.0/22 IPv6: 2402:5900::/32 Signature Algorithm: sha256WithRSAEncryption 4b:63:be:c1:9e:e7:d9:6b:8a:56:8c:4f:ca:1b:08:4c:02:3a: 0b:d3:df:80:d4:41:0b:5b:56:d4:81:1d:fe:26:c5:19:7a:d8: 89:7e:06:17:b5:c7:04:67:fa:68:cd:1f:82:82:9b:83:93:19: 5b:05:cc:8c:7e:67:86:34:de:8b:de:84:3e:12:72:f7:06:95: cb:67:2f:a4:fb:b6:55:79:0f:6e:75:78:5d:8a:ea:8d:d9:ce: 3a:75:4f:94:6e:04:e3:78:c2:db:7d:58:41:71:4c:2f:a4:d9: 80:9c:e2:db:86:19:44:d2:90:f0:79:e9:15:a8:e3:22:f2:eb: 52:59:59:d6:86:31:3b:6e:e0:6d:18:df:6a:6b:40:58:2e:53: bc:f8:f7:be:c6:03:26:e2:72:fc:a0:4f:51:d7:f9:a3:7e:78: 53:7e:32:02:21:bb:90:4a:ec:18:7a:55:69:d0:79:60:ef:9a: 25:9c:83:93:60:32:97:a0:94:91:53:b4:b0:4b:d0:e6:9f:b5: b2:1e:25:3b:77:99:06:2e:bb:8e:6f:74:cf:11:55:42:af:0c: 7c:b9:f3:3c:bd:47:4b:01:b4:c4:1d:3e:c3:bb:57:42:60:19: b6:aa:d1:0c:ed:6f:a7:e2:15:ef:86:5e:4d:67:34:e6:f2:4c: 07:a8:43:21 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjQwNzAyMTcwNDEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0MzMwYi05NTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8Kzzfg4Ps8mackspmKHdpwWKWpHJ5iQubaWyrWn43QrdX+fLVg46TtGkmfE zylNuadwarQPvo0oFNUDg8Le1KXkKte5yTCYy/YcS5/9VfA0k3RY3Cy057JxHH53 Bb/p8FDSJN8R15Yabr9awAZ9ikw5d07zxPPgKqp50rmMVUzNLgjSC/78SDUnkQas yaDqJurLsZ67I2MwieGUAe7lvzFsW0YpC5Vo3hxoeTs2BFxLT1ABcJhV9WDlxi/G bSgBbO37yPeDIByta5bGl3ReOhoZyniGIfVc/YHi6LIkGNso7BIuEnzfJGc/Y8u/ Ka5pXxOr/RXYuhWguMJieVeqCwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFMoZFwI+ cmevDd31DSEBog+6JXVkMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVBRjMvOUQyMDBEQkM2RDE4MTFFN0E4MTVEQTgwQzRGOUFFMDIvNTQ1NzQzMjQ2 RDE5MTFFN0E0NDQ4RDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnC4wDBAFnHWoDBALLTpQwDQQCAAIwBwMFACQCWQAwDQYJ KoZIhvcNAQELBQADggEBAEtjvsGe59lrilaMT8obCEwCOgvT34DUQQtbVtSBHf4m xRl62Il+Bhe1xwRn+mjNH4KCm4OTGVsFzIx+Z4Y03ovehD4ScvcGlctnL6T7tlV5 D251eF2K6o3Zzjp1T5RuBON4wtt9WEFxTC+k2YCc4tuGGUTSkPB56RWo4yLy61JZ WdaGMTtu4G0Y32prQFguU7z4977GAybicvygT1HX+aN+eFN+MgIhu5BK7Bh6VWnQ eWDvmiWcg5NgMpeglJFTtLBL0OaftbIeJTt3mQYuu45vdM8RVUKvDHy58zy9R0sB tMQdPsO7V0JgGbaq0Qztb6fiFe+GXk1nNObyTAeoQyE= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org