$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa File: 69482E56075411EFB23BE380C4F9AE02.roa (raw, json) Hash identifier: jBIVB1uQV9xRYpmMdx7kJ0JoGyy1Cb4cGzQKSwYMaH4= Subject key identifier: 84:2C:F3:72:4F:9D:E2:A1:D2:04:6F:D2:AF:43:D3:4C:98:0A:B9:FC Certificate issuer: /CN=A91A5C43/serialNumber=ECDA73070CB6C7790DC60B869FBB0431D967DE4E Certificate serial: 0634 Authority key identifier: EC:DA:73:07:0C:B6:C7:79:0D:C6:0B:86:9F:BB:04:31:D9:67:DE:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa Signing time: Wed 01 May 2024 00:47:40 +0000 ROA not before: Wed 01 May 2024 00:47:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134507 IP address blocks: 103.231.204.0/22 maxlen: 23 103.231.204.0/24 maxlen: 24 103.231.205.0/24 maxlen: 24 103.231.206.0/24 maxlen: 24 103.231.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.crl rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1588 (0x634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5C43/serialNumber=ECDA73070CB6C7790DC60B869FBB0431D967DE4E Validity Not Before: May 1 00:47:40 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6631912b-fd38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:1b:92:d7:25:8c:b2:43:b0:8f:d2:33:89: 45:bb:71:4a:d4:e0:b5:f8:83:84:9e:fe:60:20:a4: 8d:43:a0:91:04:07:9b:cb:c9:67:c2:e0:8b:ed:57: 52:d5:e2:bb:1d:84:d9:59:0e:d1:bf:7d:89:c0:8d: 8a:52:1f:83:35:d1:fd:bf:62:90:91:c8:9a:e2:7d: 87:f4:5e:6e:05:f9:30:0c:6f:28:d8:30:84:ca:c9: 5b:92:34:71:f6:bb:25:6d:aa:aa:14:2f:08:22:7f: 4b:f2:6d:cc:ac:a2:d3:c9:7f:39:94:d8:95:bb:41: f5:1c:59:8d:88:1f:87:ab:6f:2e:85:4e:7a:15:09: e9:aa:18:05:ff:4c:c6:a1:08:a5:ab:36:de:90:d0: a4:0a:56:b4:24:6f:57:81:ce:d9:53:b6:e4:3e:ac: 18:ed:7e:5c:37:ac:2b:76:86:c8:15:b1:6f:e3:37: 61:d5:24:fc:d0:a0:97:98:b6:b0:04:67:ef:6d:6f: ba:d8:dd:0e:fa:7f:c1:64:ca:67:47:32:16:ed:b3: ad:31:29:f6:4c:39:e0:64:89:2c:a9:43:3c:16:f2: 07:0e:2c:9f:9e:d7:1b:a0:41:c9:df:f6:6d:3d:93: ec:c3:86:63:71:10:48:bf:ac:65:a7:60:ab:1d:7a: 4a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2C:F3:72:4F:9D:E2:A1:D2:04:6F:D2:AF:43:D3:4C:98:0A:B9:FC X509v3 Authority Key Identifier: keyid:EC:DA:73:07:0C:B6:C7:79:0D:C6:0B:86:9F:BB:04:31:D9:67:DE:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/7NpzBwy2x3kNxguGn7sEMdln3k4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7NpzBwy2x3kNxguGn7sEMdln3k4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5C43/89E36E6A4B2C11EB911BAD70C4F9AE02/69482E56075411EFB23BE380C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.204.0/22 Signature Algorithm: sha256WithRSAEncryption 61:44:53:ac:d9:9b:e2:9d:69:6f:39:ce:42:73:95:81:d1:47: d3:a0:b0:24:37:27:7a:8b:4e:6f:86:bb:71:5d:04:2f:d8:af: 75:dd:8d:fa:d3:0d:f1:4b:22:7f:d3:78:66:25:34:70:d1:be: d6:36:44:1b:06:3e:bb:6a:ca:36:a9:a6:d5:3f:f4:1a:7c:e3: 25:1d:e4:dd:88:d4:41:9f:4f:2f:91:1e:03:9e:82:a3:21:1a: dc:96:58:56:75:20:e7:28:f9:d1:c0:92:16:9a:22:73:1f:29: 1d:a5:86:51:0d:9e:ca:85:23:7e:06:58:bf:d6:70:d0:14:fe: 2b:17:d9:45:4e:de:da:f0:70:f3:14:41:d0:ee:fb:3a:aa:48: 23:a4:1b:9d:9a:7e:8d:57:be:ef:f5:56:ec:b3:31:ca:67:75: 5f:71:5c:db:1b:dc:23:d2:c3:95:f6:35:ad:be:d1:84:bf:dc: 5f:30:b2:d7:ae:6d:0c:d1:7b:35:fc:51:eb:7c:03:46:47:5a: 6d:56:6b:0c:65:04:23:8b:7e:1c:d4:3d:af:b5:87:40:ba:26: 99:1d:be:bf:ca:af:f8:dc:eb:c1:3d:7a:98:14:51:f9:76:ff: d0:7c:32:da:e4:eb:a1:62:07:9d:29:1d:8d:58:95:95:84:cd: e4:23:c6:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDNDMxMTAvBgNVBAUTKEVDREE3MzA3MENCNkM3NzkwREM2MEI4NjlGQkIwNDMx RDk2N0RFNEUwHhcNMjQwNTAxMDA0NzQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxOTEyYi1mZDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCAbktcljLJDsI/SM4lFu3FK1OC1+IOEnv5gIKSNQ6CRBAeby8lnwuCL7VdS 1eK7HYTZWQ7Rv32JwI2KUh+DNdH9v2KQkcia4n2H9F5uBfkwDG8o2DCEyslbkjRx 9rslbaqqFC8IIn9L8m3MrKLTyX85lNiVu0H1HFmNiB+Hq28uhU56FQnpqhgF/0zG oQilqzbekNCkCla0JG9Xgc7ZU7bkPqwY7X5cN6wrdobIFbFv4zdh1ST80KCXmLaw BGfvbW+62N0O+n/BZMpnRzIW7bOtMSn2TDngZIksqUM8FvIHDiyfntcboEHJ3/Zt PZPsw4ZjcRBIv6xlp2CrHXpKnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIQs83JP neKh0gRv0q9D00yYCrn8MB8GA1UdIwQYMBaAFOzacwcMtsd5DcYLhp+7BDHZZ95O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUM0My84OUUzNkU2QTRC MkMxMUVCOTExQkFENzBDNEY5QUUwMi83TnB6Qnd5Mngza054Z3VHbjdzRU1kbG4z azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdOcHpCd3kyeDNrTnhndUduN3NFTWRsbjNrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVDNDMvODlFMzZFNkE0QjJDMTFFQjkxMUJBRDcwQzRGOUFFMDIvNjk0ODJFNTYw NzU0MTFFRkIyM0JFMzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn58wwDQYJKoZIhvcNAQELBQADggEBAGFEU6zZm+KdaW85 zkJzlYHRR9OgsCQ3J3qLTm+Gu3FdBC/Yr3XdjfrTDfFLIn/TeGYlNHDRvtY2RBsG PrtqyjapptU/9Bp84yUd5N2I1EGfTy+RHgOegqMhGtyWWFZ1IOco+dHAkhaaInMf KR2lhlENnsqFI34GWL/WcNAU/isX2UVO3trwcPMUQdDu+zqqSCOkG52afo1Xvu/1 VuyzMcpndV9xXNsb3CPSw5X2Na2+0YS/3F8wsteubQzRezX8Uet8A0ZHWm1Wawxl BCOLfhzUPa+1h0C6Jpkdvr/Kr/jc68E9epgUUfl2/9B8Mtrk66FiB50pHY1YlZWE zeQjxrw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org