$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa File: 10238C387B1411EA8C690465C4F9AE02.roa (raw, json) Hash identifier: 72pvQSlnT9rABWVd/v/7K5BYXphu+YLZZNPRawfEZ8Y= Subject key identifier: BD:52:28:1E:75:DA:0F:5F:64:03:12:E1:2D:38:EA:F2:C6:81:4D:C2 Certificate issuer: /CN=A91A91A2/serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Certificate serial: 091F Authority key identifier: 6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa Signing time: Wed 10 Apr 2024 21:29:52 +0000 ROA not before: Wed 10 Apr 2024 21:29:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136477 IP address blocks: 103.89.156.0/22 maxlen: 24 2400:f0c0::/32 maxlen: 36 2400:f0c0:1::/48 maxlen: 48 2400:f0c0:2::/48 maxlen: 48 2400:f0c0:3::/48 maxlen: 48 2400:f0c0:4::/48 maxlen: 48 2400:f0c0:5::/48 maxlen: 48 2400:f0c0:6::/48 maxlen: 48 2400:f0c0:7::/48 maxlen: 48 2400:f0c0:8::/48 maxlen: 48 2400:f0c0:9::/48 maxlen: 48 2400:f0c0:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91A2/serialNumber=6E926BCE619E4F500ABFA424FDB0764D258CAB53 Validity Not Before: Apr 10 21:29:52 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661704cf-d1c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:49:59:2a:12:1d:9a:42:36:42:93:de:62: 9b:38:7b:f1:7d:05:9c:21:ad:17:03:a2:71:2c:e3: 04:68:07:53:66:48:18:f5:98:6a:d0:74:13:c6:aa: 50:c3:71:d1:bc:57:e9:3b:b2:d2:4f:86:bf:08:a9: c1:8a:1a:ca:fd:ad:42:45:cb:5e:4f:95:d9:d3:eb: ca:91:2c:89:93:64:6e:45:c6:1b:5a:a2:4e:eb:02: 6a:55:70:ca:ce:44:01:b4:d9:25:d6:34:fe:03:ff: 3e:28:b0:d2:94:aa:03:88:85:f5:d5:43:90:a8:ca: 43:89:96:28:1b:4d:d1:ea:a0:f3:b2:19:52:2c:01: e6:19:ae:22:a7:cf:44:6b:11:22:29:0c:d0:b5:d7: f6:8e:bd:40:d2:fc:c4:9e:25:d5:b9:5c:02:51:4b: b9:aa:99:6f:b4:ad:85:1e:55:aa:cc:72:c3:19:b4: 7a:6b:0b:c1:85:c2:53:52:d5:55:a7:c4:d1:6e:07: 2b:8c:62:57:3b:89:dd:58:42:ec:d3:c5:25:3f:b8: fd:d7:a5:4a:a7:18:ba:d3:5f:6c:75:d3:bb:df:ba: 9a:44:37:a9:ef:93:84:09:5f:6b:76:a6:c7:90:37: 53:c4:70:35:19:8f:18:15:fd:00:bd:be:9d:58:c1: eb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:52:28:1E:75:DA:0F:5F:64:03:12:E1:2D:38:EA:F2:C6:81:4D:C2 X509v3 Authority Key Identifier: keyid:6E:92:6B:CE:61:9E:4F:50:0A:BF:A4:24:FD:B0:76:4D:25:8C:AB:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpJrzmGeT1AKv6Qk_bB2TSWMq1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91A2/8971309C7B1211EAA9210F60C4F9AE02/10238C387B1411EA8C690465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.156.0/22 IPv6: 2400:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:0a:52:ab:00:8e:43:82:8b:6b:18:a2:7a:d6:ec:b6:98:d9: 43:87:95:3b:aa:fb:f0:1f:8e:82:19:4c:1a:91:0c:e6:40:a5: 19:af:4c:b7:6d:48:a7:c8:19:89:0a:30:0d:7c:77:dd:4c:e3: 76:25:62:e7:27:75:a8:90:5a:c1:cf:05:9a:7a:bc:b7:68:30: b3:b5:c1:a4:7d:90:be:f5:3d:bb:22:74:10:4f:7f:23:ee:6d: 1b:19:2c:fa:49:2c:02:56:a6:d2:37:9e:46:e3:b1:68:55:ef: 55:81:0e:9b:59:a3:a4:bf:75:9b:c4:80:06:13:0b:ce:5b:1f: 13:59:ed:0d:d5:45:4b:10:43:e6:81:9b:f1:9a:4b:96:4c:46: 24:e6:ae:42:53:fc:46:6a:8a:ea:d0:a0:80:17:eb:f4:6a:fd: 6d:b7:ee:5a:8a:f1:68:8a:ff:c3:79:da:8c:43:66:b9:4e:6b: ce:a8:8e:9a:20:0b:55:83:b6:6d:1a:c1:a9:de:fe:c6:72:9b: 15:c2:dd:87:20:ad:5e:50:87:61:09:c0:f4:9c:9e:fa:2c:d2: 14:ae:8a:05:a4:1c:f8:66:ba:6f:e6:bc:a3:87:16:a1:f0:c6: ba:c2:88:82:83:14:07:2f:83:26:5b:f8:a7:97:59:2c:6e:c8: 4a:3b:a5:2e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkxQTIxMTAvBgNVBAUTKDZFOTI2QkNFNjE5RTRGNTAwQUJGQTQyNEZEQjA3NjRE MjU4Q0FCNTMwHhcNMjQwNDEwMjEyOTUyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3MDRjZi1kMWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1upJWSoSHZpCNkKT3mKbOHvxfQWcIa0XA6JxLOMEaAdTZkgY9Zhq0HQTxqpQ w3HRvFfpO7LST4a/CKnBihrK/a1CRcteT5XZ0+vKkSyJk2RuRcYbWqJO6wJqVXDK zkQBtNkl1jT+A/8+KLDSlKoDiIX11UOQqMpDiZYoG03R6qDzshlSLAHmGa4ip89E axEiKQzQtdf2jr1A0vzEniXVuVwCUUu5qplvtK2FHlWqzHLDGbR6awvBhcJTUtVV p8TRbgcrjGJXO4ndWELs08UlP7j916VKpxi6019sddO737qaRDep75OECV9rdqbH kDdTxHA1GY8YFf0Avb6dWMHrlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFL1SKB51 2g9fZAMS4S046vLGgU3CMB8GA1UdIwQYMBaAFG6Sa85hnk9QCr+kJP2wdk0ljKtT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTFBMi84OTcxMzA5QzdC MTIxMUVBQTkyMTBGNjBDNEY5QUUwMi9icEpyem1HZVQxQUt2NlFrX2JCMlRTV01x MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JwSnJ6bUdlVDFBS3Y2UWtfYkIyVFNXTXExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkxQTIvODk3MTMwOUM3QjEyMTFFQUE5MjEwRjYwQzRGOUFFMDIvMTAyMzhDMzg3 QjE0MTFFQThDNjkwNDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnWZwwDQQCAAIwBwMFACQA8MAwDQYJKoZIhvcNAQELBQAD ggEBACwKUqsAjkOCi2sYonrW7LaY2UOHlTuq+/AfjoIZTBqRDOZApRmvTLdtSKfI GYkKMA18d91M43YlYucndaiQWsHPBZp6vLdoMLO1waR9kL71PbsidBBPfyPubRsZ LPpJLAJWptI3nkbjsWhV71WBDptZo6S/dZvEgAYTC85bHxNZ7Q3VRUsQQ+aBm/Ga S5ZMRiTmrkJT/EZqiurQoIAX6/Rq/W237lqK8WiK/8N52oxDZrlOa86ojpogC1WD tm0awane/sZymxXC3YcgrV5Qh2EJwPScnvos0hSuigWkHPhmum/mvKOHFqHwxrrC iIKDFAcvgyZb+KeXWSxuyEo7pS4= -----END CERTIFICATE-----Generated at Thu May 16 22:34:51 2024 by rpki-client on console-ams.rpki-client.org