$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa File: 85A82A144C1311ECB5708257C4F9AE02.roa (raw, json) Hash identifier: EZ0C93RRgxM1+OA5teU4M7qZFeuET3Gg7L9gPM+xBew= Subject key identifier: B2:FB:85:E7:CA:6B:5E:18:0B:A0:08:72:EE:AA:48:E6:A5:15:ED:54 Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 035A Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa Signing time: Tue 19 Dec 2023 02:13:55 +0000 ROA not before: Tue 19 Dec 2023 02:13:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149026 IP address blocks: 103.176.218.0/23 maxlen: 24 2400:35e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Validity Not Before: Dec 19 02:13:55 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6580fc63-9a8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:42:04:a0:1b:2c:4d:c2:3e:6b:9b:e0:c9:f6: 70:73:a0:c8:64:d3:02:1b:e0:65:0a:38:1b:f9:7a: ea:bc:f3:a9:a2:c6:0e:52:1c:3f:be:61:cb:98:5c: 74:4b:b7:66:45:7d:23:c8:e4:06:11:08:e0:49:e5: 58:0c:32:21:21:ce:8f:5c:e1:63:25:78:9e:3d:c3: eb:03:b5:8b:5d:0a:bd:0a:f0:41:9d:bd:93:1d:e8: 60:4a:00:39:e6:87:5e:14:64:e2:b4:c2:b2:f7:36: 9a:72:41:ee:e3:c8:c4:9a:99:61:6b:4b:4b:ff:ca: b5:37:ad:79:01:71:47:2e:ba:7f:69:1c:a7:45:1b: 1d:29:84:6b:81:3c:f3:45:ff:f7:59:5b:f4:d1:e6: 78:5a:7c:71:6b:4d:a6:06:f4:96:eb:af:c0:e8:ea: 49:ca:1b:1e:ca:ad:66:da:7b:93:f7:b5:30:1f:00: 44:9e:38:b8:57:79:67:90:80:ad:87:d0:53:be:63: 2b:05:e7:98:84:19:73:9b:e2:cc:84:ef:27:97:b1: 05:44:76:e5:76:17:57:4a:4a:c4:7f:41:7b:90:a4: c8:ae:b0:37:b8:ce:c3:c4:98:aa:a5:7a:64:fb:91: 60:fc:68:41:2a:d0:82:8e:67:2c:d8:20:d3:0e:f8: 1f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FB:85:E7:CA:6B:5E:18:0B:A0:08:72:EE:AA:48:E6:A5:15:ED:54 X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.218.0/23 IPv6: 2400:35e0::/32 Signature Algorithm: sha256WithRSAEncryption 30:55:df:48:aa:f4:b5:55:55:3f:ca:20:1b:76:5b:db:0a:97: f8:5f:2a:3e:95:e0:4e:90:5a:bd:fe:1b:df:48:c2:5a:ea:bc: 27:63:3c:65:ad:d2:9a:35:be:9e:4e:4b:60:fe:ef:fc:d2:95: 35:c4:25:a7:55:37:a7:ee:bc:33:69:e1:09:af:4d:96:03:b1: 19:f6:28:61:f7:48:58:98:67:72:16:6c:16:83:fb:5d:95:e7: 4d:39:fd:b4:71:ef:02:00:0a:91:53:b4:4a:07:2b:ce:af:93: 19:c9:df:ba:47:e3:11:a3:6f:02:77:93:18:f5:02:d5:f5:bf: 51:a8:b2:5e:18:d6:a8:56:af:4c:11:f5:40:81:f7:73:cc:e8: 52:74:46:7d:c1:fa:08:08:d2:ca:8c:5d:b2:b9:12:c5:95:d5: a7:c3:44:6c:d7:7f:87:5d:7a:a1:16:c9:09:fd:d7:b9:79:e5: 37:c1:12:d7:4a:de:77:37:f7:c8:f5:57:68:c0:73:6b:6b:d7: 36:e2:0e:80:e5:b4:90:5f:53:28:c2:6b:08:c4:63:fa:6e:34: 16:38:84:84:37:95:df:5f:f9:a7:a8:72:b1:c7:8a:0a:52:ce: 06:68:1f:47:9f:12:2c:4e:87:b9:c4:f7:69:e1:fd:d7:9d:3a: ff:b1:f5:e4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjMxMjE5MDIxMzU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwZmM2My05YThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukIEoBssTcI+a5vgyfZwc6DIZNMCG+BlCjgb+XrqvPOposYOUhw/vmHLmFx0 S7dmRX0jyOQGEQjgSeVYDDIhIc6PXOFjJXiePcPrA7WLXQq9CvBBnb2THehgSgA5 5odeFGTitMKy9zaackHu48jEmplha0tL/8q1N615AXFHLrp/aRynRRsdKYRrgTzz Rf/3WVv00eZ4Wnxxa02mBvSW66/A6OpJyhseyq1m2nuT97UwHwBEnji4V3lnkICt h9BTvmMrBeeYhBlzm+LMhO8nl7EFRHbldhdXSkrEf0F7kKTIrrA3uM7DxJiqpXpk +5Fg/GhBKtCCjmcs2CDTDvgf+wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLL7hefK a14YC6AIcu6qSOalFe1UMB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NUIvNDRBMTNCNEU0QzEwMTFFQ0E1RDJBOTRGQzRGOUFFMDIvODVBODJBMTQ0 QzEzMTFFQ0I1NzA4MjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsNowDQQCAAIwBwMFACQANeAwDQYJKoZIhvcNAQELBQAD ggEBADBV30iq9LVVVT/KIBt2W9sKl/hfKj6V4E6QWr3+G99IwlrqvCdjPGWt0po1 vp5OS2D+7/zSlTXEJadVN6fuvDNp4QmvTZYDsRn2KGH3SFiYZ3IWbBaD+12V5005 /bRx7wIACpFTtEoHK86vkxnJ37pH4xGjbwJ3kxj1AtX1v1Gosl4Y1qhWr0wR9UCB 93PM6FJ0Rn3B+ggI0sqMXbK5EsWV1afDRGzXf4ddeqEWyQn917l55TfBEtdK3nc3 98j1V2jAc2tr1zbiDoDltJBfUyjCawjEY/puNBY4hIQ3ld9f+aeocrHHigpSzgZo H0efEixOh7nE92nh/dedOv+x9eQ= -----END CERTIFICATE-----Generated at Fri May 17 03:52:22 2024 by rpki-client on console-ams.rpki-client.org