$ rpki-client -vvf rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/AA378BD6405111ECB91F2A37C4F9AE02.roa File: AA378BD6405111ECB91F2A37C4F9AE02.roa (raw, json) Hash identifier: OZYL23mGG9CPsVcj8UrHa3HS/iPUrNbOkuZRw+Rgyck= Subject key identifier: 00:61:09:E5:40:9A:0A:09:FC:E6:FE:0D:32:3B:04:75:1E:91:1D:61 Certificate issuer: /CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Certificate serial: 0AD8 Authority key identifier: C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/AA378BD6405111ECB91F2A37C4F9AE02.roa Signing time: Sat 06 Jan 2024 19:57:49 +0000 ROA not before: Sat 06 Jan 2024 19:57:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138905 IP address blocks: 103.146.48.0/23 maxlen: 23 103.146.48.0/24 maxlen: 24 103.146.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B166D/serialNumber=C9B4DE4874965BFF3B2F04710122577E6D9B1D14 Validity Not Before: Jan 6 19:57:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6599b0bd-3976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:f4:41:9b:b6:09:f5:33:7b:f7:a8:b8:57: 17:2a:95:13:1c:d4:2e:4a:6d:55:e9:ae:2d:bd:9e: e6:1a:06:50:d1:c5:29:46:ed:0b:6d:68:08:13:21: 49:96:ca:d3:94:0f:39:e1:df:3c:92:26:2c:d1:e1: 9e:f1:02:b9:3d:e5:47:b3:6b:b8:f3:86:c1:16:f6: 1c:c5:ff:85:54:5b:78:6d:67:38:85:41:4f:e3:7f: 9f:c9:56:36:e8:f9:e5:4b:43:30:8f:d3:95:5e:75: 30:77:21:f2:e9:96:23:be:33:52:04:92:44:d6:fe: 09:e0:e9:97:a4:e7:09:e0:2b:3c:a6:11:c4:04:54: 89:cf:58:c5:48:21:d1:be:e9:4f:f7:c4:17:9e:60: ad:45:b6:a2:cd:0f:e5:cf:99:31:57:e0:17:29:d1: 19:ac:db:3f:fb:57:f7:67:a3:ce:3c:94:d0:99:f1: d5:0d:2a:43:8f:01:c1:26:92:1b:7f:33:cb:5c:8c: 8b:6d:f9:fa:a7:9e:91:e4:88:ee:d3:dc:27:1c:62: 32:42:79:2a:09:49:d9:69:b0:e0:8d:8e:29:2b:ee: 0b:62:07:c7:32:a5:b6:cf:e3:19:9a:57:65:de:24: 5f:4a:26:88:ea:03:60:1d:a5:5c:4b:1d:3e:02:b4: 07:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:61:09:E5:40:9A:0A:09:FC:E6:FE:0D:32:3B:04:75:1E:91:1D:61 X509v3 Authority Key Identifier: keyid:C9:B4:DE:48:74:96:5B:FF:3B:2F:04:71:01:22:57:7E:6D:9B:1D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/ybTeSHSWW_87LwRxASJXfm2bHRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ybTeSHSWW_87LwRxASJXfm2bHRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B166D/2E7623581B1A11EA97389F77C4F9AE02/AA378BD6405111ECB91F2A37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.48.0/23 Signature Algorithm: sha256WithRSAEncryption 14:1b:3b:56:2e:78:44:a6:ae:39:bf:3e:cf:14:8a:02:72:ff: 78:cd:06:84:33:6a:95:76:21:0d:21:1b:67:4a:72:e4:ca:87: 9c:3a:67:70:1b:8f:41:7c:2f:d3:0b:e5:5a:bf:4b:d4:42:86: 46:e0:f8:b4:e2:17:68:8e:48:f6:94:9b:94:c5:66:61:27:76: 25:30:4e:29:31:ec:85:ec:38:e5:45:c1:10:a2:81:46:03:38: 62:57:2a:19:c7:7c:7d:d6:32:8e:7a:6e:23:11:9c:28:24:9b: df:70:ad:5f:c2:c1:18:8d:58:10:e4:bc:24:ec:a9:42:4c:06: 45:fe:24:aa:2c:5c:29:93:4e:d2:6a:f9:b0:bd:5f:1d:fa:76: 74:a7:0c:bc:b4:e0:8d:c3:18:ce:ea:41:a1:63:7c:7e:5a:dd: 48:cd:72:71:b1:71:5c:ab:e0:fe:c9:c6:9c:dc:2c:cc:73:fd: b8:df:95:77:fa:96:95:af:9a:1c:8c:60:88:32:6e:23:66:1e: 19:32:a7:eb:89:7d:b8:5c:2d:b1:b3:be:a8:d5:bc:8b:90:52: 84:e5:bb:78:2e:94:9f:ec:ea:1b:94:d0:39:0f:f5:c8:aa:5e: 96:ea:e1:62:9a:0c:b9:05:6d:49:8b:f9:8a:6e:65:8a:78:65: 34:3d:08:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE2NkQxMTAvBgNVBAUTKEM5QjRERTQ4NzQ5NjVCRkYzQjJGMDQ3MTAxMjI1NzdF NkQ5QjFEMTQwHhcNMjQwMTA2MTk1NzQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk5YjBiZC0zOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMn0QZu2CfUze/eouFcXKpUTHNQuSm1V6a4tvZ7mGgZQ0cUpRu0LbWgIEyFJ lsrTlA854d88kiYs0eGe8QK5PeVHs2u484bBFvYcxf+FVFt4bWc4hUFP43+fyVY2 6PnlS0Mwj9OVXnUwdyHy6ZYjvjNSBJJE1v4J4OmXpOcJ4Cs8phHEBFSJz1jFSCHR vulP98QXnmCtRbaizQ/lz5kxV+AXKdEZrNs/+1f3Z6POPJTQmfHVDSpDjwHBJpIb fzPLXIyLbfn6p56R5Iju09wnHGIyQnkqCUnZabDgjY4pK+4LYgfHMqW2z+MZmldl 3iRfSiaI6gNgHaVcSx0+ArQHpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFABhCeVA mgoJ/Ob+DTI7BHUekR1hMB8GA1UdIwQYMBaAFMm03kh0llv/Oy8EcQEiV35tmx0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTY2RC8yRTc2MjM1ODFC MUExMUVBOTczODlGNzdDNEY5QUUwMi95YlRlU0hTV1dfODdMd1J4QVNKWGZtMmJI UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3liVGVTSFNXV184N0x3UnhBU0pYZm0yYkhSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE2NkQvMkU3NjIzNTgxQjFBMTFFQTk3Mzg5Rjc3QzRGOUFFMDIvQUEzNzhCRDY0 MDUxMTFFQ0I5MUYyQTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkjAwDQYJKoZIhvcNAQELBQADggEBABQbO1YueESmrjm/ Ps8UigJy/3jNBoQzapV2IQ0hG2dKcuTKh5w6Z3Abj0F8L9ML5Vq/S9RChkbg+LTi F2iOSPaUm5TFZmEndiUwTikx7IXsOOVFwRCigUYDOGJXKhnHfH3WMo56biMRnCgk m99wrV/CwRiNWBDkvCTsqUJMBkX+JKosXCmTTtJq+bC9Xx36dnSnDLy04I3DGM7q QaFjfH5a3UjNcnGxcVyr4P7JxpzcLMxz/bjflXf6lpWvmhyMYIgybiNmHhkyp+uJ fbhcLbGzvqjVvIuQUoTlu3gulJ/s6huU0DkP9ciqXpbq4WKaDLkFbUmL+YpuZYp4 ZTQ9CAI= -----END CERTIFICATE-----Generated at Thu May 16 21:45:30 2024 by rpki-client on console-fra.rpki-client.org