$ rpki-client -vvf rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa File: 8D3BB78A3AEA11EC84E6634EC4F9AE02.roa (raw, json) Hash identifier: xauhUxQAlRpApB1Jh66cBppkUInGl6bYhK2vyq9MndE= Subject key identifier: 84:CE:4A:13:93:21:A6:1F:5C:2B:C9:BB:93:CF:FA:43:6E:11:3A:92 Certificate issuer: /CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Certificate serial: 0C0B Authority key identifier: 53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa Signing time: Wed 22 Nov 2023 19:07:06 +0000 ROA not before: Wed 22 Nov 2023 19:07:06 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45785 IP address blocks: 103.10.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Validity Not Before: Nov 22 19:07:06 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=655e515a-18d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:97:1b:c1:b2:4e:8b:95:71:33:49:5a:09: 86:93:96:6e:8d:9b:42:2c:a0:9f:aa:8f:62:83:66: 2d:69:19:b7:86:e1:c7:40:d1:85:e4:5d:ba:0a:ab: 4a:5a:4f:51:f1:85:de:c6:52:e8:1f:99:11:cf:87: 9c:ef:2a:a5:32:a6:95:05:c5:76:52:e1:1e:7a:26: e9:fd:d4:08:fa:fb:27:66:18:af:f1:4f:91:db:e9: ad:7e:ce:05:29:30:93:d1:90:b3:71:51:d2:6f:79: dc:7a:51:bb:66:62:90:b7:1d:ce:b9:59:42:17:24: ed:3e:63:23:45:1d:81:71:73:2b:bd:f3:eb:e2:51: e4:13:2a:19:89:73:9b:df:f8:54:59:ac:fa:b7:a3: 98:2e:7b:f0:30:fd:2f:a0:b8:4e:c0:ee:3f:fd:99: 31:be:67:14:97:da:ea:64:24:9c:02:96:5e:83:65: 99:93:53:fa:28:8a:68:5c:a3:c5:19:77:b2:27:20: f3:be:bd:7d:9e:b2:3a:0b:33:2b:01:0e:88:02:47: e5:8b:f4:98:62:93:7d:e7:f1:cf:6d:7a:ca:e9:e3: db:41:ed:23:d3:34:9b:b6:8b:96:01:5c:29:c4:c8: a9:d5:11:03:f9:80:ce:62:aa:ed:31:5b:15:e7:e8: 7a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CE:4A:13:93:21:A6:1F:5C:2B:C9:BB:93:CF:FA:43:6E:11:3A:92 X509v3 Authority Key Identifier: keyid:53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.196.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d3:6c:1b:a6:39:07:3d:73:98:9d:d0:5e:0d:4d:de:81:43: c0:36:ab:cc:52:63:51:24:3b:5e:9e:e5:9b:b3:4d:f0:92:6f: 73:1e:a3:3b:f0:bf:93:48:97:6e:1b:a8:0b:e9:76:cd:28:7d: b2:44:3a:0b:9c:d4:8d:a6:50:da:16:48:48:20:60:ae:cf:1c: 62:90:da:fe:85:32:dd:36:75:b6:49:33:20:42:6f:6d:d3:82: eb:10:8e:cf:32:16:48:28:39:48:ae:5b:4f:7e:88:e5:9a:d7: 26:11:89:41:d2:9e:74:78:59:04:8c:c3:8f:99:a8:fc:c7:21: c1:52:03:1a:5a:04:22:39:2f:d9:2a:54:5e:18:c5:f7:02:2c: d9:09:04:e7:75:2f:c3:9c:9b:5e:89:79:6e:72:d4:02:a2:bc: 30:19:4e:64:a2:f0:76:fc:2c:0b:46:ea:7c:cc:b3:bc:c8:62: 0d:0d:1d:50:e8:ac:a5:5c:78:be:18:3b:95:fb:8d:2e:92:6d: 5b:3d:d9:76:ff:e4:47:23:59:2b:c4:77:50:a4:4c:03:41:41: 3d:85:6b:32:34:e4:27:70:e7:73:e9:e1:61:6a:01:a7:88:5b: 09:a1:54:9f:65:22:96:2a:7a:79:2f:d4:e1:cd:66:a5:d2:f4: b1:99:ba:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg4NUMxMTAvBgNVBAUTKDUzNzRDNkU3NUYxODYwNTI0NTVBMkQ4REE1MjkyRkVG MDA5Q0M5QUYwHhcNMjMxMTIyMTkwNzA2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlNTE1YS0xOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYqXG8GyTouVcTNJWgmGk5ZujZtCLKCfqo9ig2YtaRm3huHHQNGF5F26CqtK Wk9R8YXexlLoH5kRz4ec7yqlMqaVBcV2UuEeeibp/dQI+vsnZhiv8U+R2+mtfs4F KTCT0ZCzcVHSb3ncelG7ZmKQtx3OuVlCFyTtPmMjRR2BcXMrvfPr4lHkEyoZiXOb 3/hUWaz6t6OYLnvwMP0voLhOwO4//ZkxvmcUl9rqZCScApZeg2WZk1P6KIpoXKPF GXeyJyDzvr19nrI6CzMrAQ6IAkfli/SYYpN95/HPbXrK6ePbQe0j0zSbtouWAVwp xMip1RED+YDOYqrtMVsV5+h6MwIDAQABo4IClTCCApEwHQYDVR0OBBYEFITOShOT IaYfXCvJu5PP+kNuETqSMB8GA1UdIwQYMBaAFFN0xudfGGBSRVotjaUpL+8AnMmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODg1Qy81QzE5Rjg0MkYy NjcxMUU5ODdDNzEzMUZDNEY5QUUwMi9VM1RHNTE4WVlGSkZXaTJOcFNrdjd3Q2N5 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzVEc1MThZWUZKRldpMk5wU2t2N3dDY3lhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg4NUMvNUMxOUY4NDJGMjY3MTFFOTg3QzcxMzFGQzRGOUFFMDIvOEQzQkI3OEEz QUVBMTFFQzg0RTY2MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCsQwDQYJKoZIhvcNAQELBQADggEBADrTbBumOQc9c5id 0F4NTd6BQ8A2q8xSY1EkO16e5ZuzTfCSb3Meozvwv5NIl24bqAvpds0ofbJEOguc 1I2mUNoWSEggYK7PHGKQ2v6FMt02dbZJMyBCb23TgusQjs8yFkgoOUiuW09+iOWa 1yYRiUHSnnR4WQSMw4+ZqPzHIcFSAxpaBCI5L9kqVF4YxfcCLNkJBOd1L8Ocm16J eW5y1AKivDAZTmSi8Hb8LAtG6nzMs7zIYg0NHVDorKVceL4YO5X7jS6SbVs92Xb/ 5EcjWSvEd1CkTANBQT2FazI05Cdw53Pp4WFqAaeIWwmhVJ9lIpYqenkv1OHNZqXS 9LGZuiU= -----END CERTIFICATE-----Generated at Thu May 16 20:25:54 2024 by rpki-client on console-ams.rpki-client.org