$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa File: 0D5F2416B5B811EEA8ACF557C4F9AE02.roa (raw, json) Hash identifier: 007pZaHi7dzfk1B80jPKtGC0xcoQZrmeiL6AHZuwDA8= Subject key identifier: 2D:39:27:AD:9A:D2:71:03:C0:63:C5:BA:44:AB:84:DC:AC:7D:F7:C9 Certificate issuer: /CN=A91B8F34/serialNumber=64943B1D2BE2F93DD640E024EB94D8D38DCE6A83 Certificate serial: 70 Authority key identifier: 64:94:3B:1D:2B:E2:F9:3D:D6:40:E0:24:EB:94:D8:D3:8D:CE:6A:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa Signing time: Wed 19 Jun 2024 08:21:11 +0000 ROA not before: Wed 19 Jun 2024 08:21:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135069 IP address blocks: 103.63.92.0/22 maxlen: 22 103.63.92.0/23 maxlen: 23 103.63.92.0/24 maxlen: 24 103.63.94.0/23 maxlen: 23 103.63.94.0/24 maxlen: 24 103.63.95.0/24 maxlen: 24 103.153.120.0/23 maxlen: 23 103.153.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.crl rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8F34/serialNumber=64943B1D2BE2F93DD640E024EB94D8D38DCE6A83 Validity Not Before: Jun 19 08:21:11 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667294f7-69f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:2d:8d:97:75:84:e1:af:85:7a:b2:4d:38: 5e:7f:54:87:a0:91:58:08:dc:8a:e5:41:59:99:b7: 44:b0:cd:58:7e:87:ee:c1:1a:d5:3a:63:c8:52:b8: fb:97:38:21:3c:ff:4a:10:f9:ee:8e:25:02:50:2a: ef:03:ce:fd:e7:cd:e1:5a:a3:15:cb:d8:be:ff:3a: 8b:42:f0:58:cb:60:39:67:14:7a:c2:f2:32:1f:fb: 77:c5:ec:d9:95:05:8c:0b:ea:ad:44:87:80:c0:4e: 41:e9:4a:68:cb:f0:6d:1b:3c:8e:63:6f:68:49:22: de:d2:46:1f:0a:41:29:4d:ff:db:5f:dc:b4:ab:88: 81:eb:67:0d:88:e1:ca:88:67:f0:03:e5:15:97:de: 0e:46:78:15:0a:cf:2d:cd:ac:03:27:39:fc:82:34: 14:e2:87:20:a3:47:ba:02:e8:56:f0:3c:d6:5a:d0: 9d:b8:b9:23:20:14:e1:96:e7:56:59:f0:c2:b5:f5: 49:9e:98:c6:ca:55:be:d1:f7:1e:2d:b0:ac:ca:57: 3c:5a:16:19:a1:ef:bb:cc:58:89:c8:eb:97:6e:f0: ba:ab:6d:8c:e9:8d:c0:45:49:51:c4:02:7d:51:f8: 6a:5b:d1:ea:3d:f3:be:5a:1e:03:2b:21:a9:87:57: 0c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:39:27:AD:9A:D2:71:03:C0:63:C5:BA:44:AB:84:DC:AC:7D:F7:C9 X509v3 Authority Key Identifier: keyid:64:94:3B:1D:2B:E2:F9:3D:D6:40:E0:24:EB:94:D8:D3:8D:CE:6A:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/ZJQ7HSvi-T3WQOAk65TY043OaoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZJQ7HSvi-T3WQOAk65TY043OaoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8F34/81DAEC5AB59811EE9A18F95FC4F9AE02/0D5F2416B5B811EEA8ACF557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.92.0/22 103.153.120.0/23 Signature Algorithm: sha256WithRSAEncryption 20:dd:57:a8:78:ea:ef:67:6d:2f:ec:9f:1a:07:59:17:3c:18: 98:ac:bc:15:8f:6d:9d:8b:41:f9:13:89:f5:94:ca:d2:bf:bb: d6:0b:ce:2a:19:3b:fb:49:af:d8:4c:40:07:be:ea:8c:b4:28: 34:02:d5:62:a5:6d:78:67:4c:2c:c6:43:79:21:1a:a7:3b:bc: 61:34:41:2d:88:76:b5:95:69:7b:af:a8:e8:e1:1f:37:80:af: c6:d9:88:e4:e9:89:21:60:a3:fa:20:1e:bb:02:75:92:a0:73: 3d:27:fe:55:5f:9c:65:2a:e7:6e:39:b3:62:9d:50:9b:d0:04: ac:52:b9:56:37:5e:55:e4:34:f5:b5:f1:56:4e:9e:a0:58:0a: bf:74:61:53:2b:92:80:e7:2d:c4:ee:70:bb:70:3b:24:69:66: 0c:f3:ce:fd:b1:7f:e2:06:22:82:a8:eb:4a:df:75:fe:d1:d3: 76:b1:00:c6:c8:a9:34:da:0b:94:5f:f4:eb:6e:04:bf:af:6f: 86:4b:fe:88:1b:1b:01:b1:28:e5:d7:f1:c4:c9:4e:a0:d7:a8: e9:7e:dc:84:3a:ba:f9:d0:d5:0d:09:ab:07:cb:5a:b2:64:31: c6:d7:5a:95:e0:1a:28:4b:08:f8:d0:e3:8e:54:b6:19:24:ba: 63:4f:0b:8a -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEYzNDExMC8GA1UEBRMoNjQ5NDNCMUQyQkUyRjkzREQ2NDBFMDI0RUI5NEQ4RDM4 RENFNkE4MzAeFw0yNDA2MTkwODIxMTFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzI5NGY3LTY5ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Ri2Nl3WE4a+FerJNOF5/VIegkVgI3IrlQVmZt0SwzVh+h+7BGtU6Y8hSuPuX OCE8/0oQ+e6OJQJQKu8Dzv3nzeFaoxXL2L7/OotC8FjLYDlnFHrC8jIf+3fF7NmV BYwL6q1Eh4DATkHpSmjL8G0bPI5jb2hJIt7SRh8KQSlN/9tf3LSriIHrZw2I4cqI Z/AD5RWX3g5GeBUKzy3NrAMnOfyCNBTihyCjR7oC6FbwPNZa0J24uSMgFOGW51ZZ 8MK19UmemMbKVb7R9x4tsKzKVzxaFhmh77vMWInI65du8LqrbYzpjcBFSVHEAn1R +Gpb0eo9875aHgMrIamHVwzTAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQULTknrZrS cQPAY8W6RKuE3Kx998kwHwYDVR0jBBgwFoAUZJQ7HSvi+T3WQOAk65TY043OaoMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RjM0LzgxREFFQzVBQjU5 ODExRUU5QTE4Rjk1RkM0RjlBRTAyL1pKUTdIU3ZpLVQzV1FPQWs2NVRZMDQzT2Fv TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkpRN0hTdmktVDNXUU9BazY1VFkwNDNPYW9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEYzNC84MURBRUM1QUI1OTgxMUVFOUExOEY5NUZDNEY5QUUwMi8wRDVGMjQxNkI1 QjgxMUVFQThBQ0Y1NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmc/XAMEAWeZeDANBgkqhkiG9w0BAQsFAAOCAQEAIN1XqHjq 72dtL+yfGgdZFzwYmKy8FY9tnYtB+ROJ9ZTK0r+71gvOKhk7+0mv2ExAB77qjLQo NALVYqVteGdMLMZDeSEapzu8YTRBLYh2tZVpe6+o6OEfN4CvxtmI5OmJIWCj+iAe uwJ1kqBzPSf+VV+cZSrnbjmzYp1Qm9AErFK5VjdeVeQ09bXxVk6eoFgKv3RhUyuS gOctxO5wu3A7JGlmDPPO/bF/4gYigqjrSt91/tHTdrEAxsipNNoLlF/0624Ev69v hkv+iBsbAbEo5dfxxMlOoNeo6X7chDq6+dDVDQmrB8tasmQxxtdaleAaKEsI+NDj jlS2GSS6Y08Lig== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:55 2024 by rpki-client on console-fra.rpki-client.org