$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa File: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: qUPEINX626GY/GxqsT2NmJH0x/s+ptRFq/aAOkerh8M= Subject key identifier: 2B:74:ED:5C:D2:A2:A7:C5:1D:53:4C:35:69:AE:3A:15:03:AA:70:83 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 06A5 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa Signing time: Mon 16 Sep 2024 22:00:59 +0000 ROA not before: Mon 16 Sep 2024 22:00:59 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136969 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 2406:f480::/32 maxlen: 32 2406:f480::/64 maxlen: 64 2406:f480:0:1::/64 maxlen: 64 2406:f480:0:2::/64 maxlen: 64 2406:f480:0:3::/64 maxlen: 64 2406:f480:800::/38 maxlen: 38 2406:f480:2000::/35 maxlen: 35 2406:f480:8000::/35 maxlen: 35 2406:f480:8000::/64 maxlen: 64 2406:f480:8000:40::/64 maxlen: 64 2406:f480:8000:41::/64 maxlen: 64 2406:f480:8000:42::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 16 22:00:59 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e8aa9b-a781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:92:f3:8c:46:3a:79:21:74:fb:b2:cc:9c:cf: b1:78:e8:5d:2b:46:c4:78:dd:90:df:b8:35:c8:4d: fe:07:76:b8:6d:e5:6f:55:c8:e6:60:b5:09:ce:31: 44:b3:b2:51:f6:74:1d:11:31:e3:8c:67:e1:b3:cf: 3b:6a:49:04:d7:d1:f9:79:d8:50:44:d8:3a:e7:1c: a7:1f:6e:16:08:56:4c:0b:07:92:12:97:53:ff:82: 61:2c:fc:11:e5:40:d2:92:92:42:dd:d8:72:6b:25: 97:e2:41:8a:d0:59:13:23:46:79:93:64:e8:89:07: 9c:4c:2a:31:b9:ef:12:df:ae:ee:c5:7b:8b:89:56: cc:5d:d5:72:8d:92:2d:4a:26:6b:a8:d5:af:a3:48: d6:64:16:09:28:a5:ff:56:d4:53:6e:41:d6:90:23: 5c:a4:8c:9e:b8:8e:9f:15:c8:bb:8a:5b:8a:18:3c: bf:c3:e6:6a:cd:6f:cc:ae:25:8f:f7:a9:8c:be:f2: 67:ed:1b:81:ed:7d:23:ea:3a:71:a1:1c:d4:bf:1b: 02:30:2e:0d:e9:8e:2f:08:d1:a9:9e:2d:3f:7c:fa: 0a:2d:99:41:9a:9c:9a:aa:c6:2e:2e:14:7a:03:81: 5b:23:d3:5b:dd:66:32:59:24:ed:dd:07:4c:47:bb: 7d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:74:ED:5C:D2:A2:A7:C5:1D:53:4C:35:69:AE:3A:15:03:AA:70:83 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0940732E0E6311EDB98DEA0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 IPv6: 2406:f480::/32 Signature Algorithm: sha256WithRSAEncryption 96:c8:07:6b:ee:9a:48:30:33:8e:71:c8:e8:5a:2f:e6:e4:9e: 2d:41:40:c1:40:ae:71:41:7e:ce:06:00:c0:cb:bb:76:1f:89: 92:d8:0f:a8:97:1c:d9:8f:24:28:79:0b:a3:30:8c:3f:20:d9: 10:fb:e0:55:00:da:1e:2d:b5:01:87:81:73:31:ae:cc:6f:2c: 7f:56:9c:ca:b6:4a:69:a5:a4:78:ef:f5:e2:00:e4:22:c5:7a: f2:fd:ab:3c:35:13:e7:fa:f5:bf:88:08:87:f1:97:f1:f2:9b: 1c:b3:71:1b:6f:2a:93:c2:29:33:9e:e7:47:ec:1f:83:c0:c1: 15:5d:51:c9:99:e2:5c:4c:33:69:10:04:3d:00:75:8c:53:4c: d4:e1:de:b8:fe:53:9f:fc:61:af:51:04:40:94:89:a3:f5:89: f7:16:ed:88:c5:f2:4b:90:ef:de:49:3d:15:44:d1:09:8f:7f: 77:dd:20:96:fc:35:93:df:aa:8f:83:f2:12:ef:b2:c9:a4:34: fd:5e:3b:c3:a5:69:a7:11:30:f1:b0:48:78:88:86:5d:8b:8a: 3e:62:92:d8:1f:5b:70:7c:f8:34:62:a1:bc:9c:02:e5:3c:54: 7d:ce:44:79:66:28:be:79:9c:92:3c:c6:b5:dd:5a:75:94:d7: 84:f5:7a:e3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjQwOTE2MjIwMDU5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4YWE5Yi1hNzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZLzjEY6eSF0+7LMnM+xeOhdK0bEeN2Q37g1yE3+B3a4beVvVcjmYLUJzjFE s7JR9nQdETHjjGfhs887akkE19H5edhQRNg65xynH24WCFZMCweSEpdT/4JhLPwR 5UDSkpJC3dhyayWX4kGK0FkTI0Z5k2ToiQecTCoxue8S367uxXuLiVbMXdVyjZIt SiZrqNWvo0jWZBYJKKX/VtRTbkHWkCNcpIyeuI6fFci7iluKGDy/w+ZqzW/MriWP 96mMvvJn7RuB7X0j6jpxoRzUvxsCMC4N6Y4vCNGpni0/fPoKLZlBmpyaqsYuLhR6 A4FbI9Nb3WYyWSTt3QdMR7t9gQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCt07VzS oqfFHVNMNWmuOhUDqnCDMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMDk0MDczMkUw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnDMQDBAJnSWQwDQQCAAIwBwMFACQG9IAwDQYJKoZIhvcN AQELBQADggEBAJbIB2vumkgwM45xyOhaL+bkni1BQMFArnFBfs4GAMDLu3YfiZLY D6iXHNmPJCh5C6MwjD8g2RD74FUA2h4ttQGHgXMxrsxvLH9WnMq2SmmlpHjv9eIA 5CLFevL9qzw1E+f69b+ICIfxl/HymxyzcRtvKpPCKTOe50fsH4PAwRVdUcmZ4lxM M2kQBD0AdYxTTNTh3rj+U5/8Ya9RBECUiaP1ifcW7YjF8kuQ795JPRVE0QmPf3fd IJb8NZPfqo+D8hLvssmkNP1eO8OlaacRMPGwSHiIhl2Lij5iktgfW3B8+DRiobyc AuU8VH3ORHlmKL55nJI8xrXdWnWU14T1euM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org