$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa File: 47C07DB84F9C11ED8B9E4333C4F9AE02.roa (raw, json) Hash identifier: w/vd8cJquU/77tUydhBl7y4vX7K0tJ56IOJFeJTKQQY= Subject key identifier: C3:D0:9B:AD:A7:C2:52:69:58:34:CE:37:87:31:91:F2:42:86:EB:D9 Certificate issuer: /CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Certificate serial: 01E9 Authority key identifier: 25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa Signing time: Sat 13 Jul 2024 04:04:52 +0000 ROA not before: Sat 13 Jul 2024 04:04:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 23966 IP address blocks: 103.189.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 489 (0x1e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77/serialNumber=25293B0A7036C813A9CD02006DFC290AAF253274 Validity Not Before: Jul 13 04:04:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6691fce3-1591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:31:4e:d1:a9:01:3f:08:51:5e:a3:85:eb:2d: 1f:d3:65:ff:91:29:1a:bf:18:fa:8b:f0:d8:84:55: 39:f5:fb:fa:aa:b9:f6:ed:a0:cc:73:24:52:c8:68: e8:41:59:1d:d2:d9:71:ed:b2:6a:35:3d:be:2c:02: 05:7c:de:c0:2b:15:24:2e:d9:25:ca:90:91:ce:b5: 1c:df:a9:df:f9:8d:aa:49:44:61:6a:27:c1:e4:69: 4a:46:05:29:7a:38:58:e1:42:8f:bc:dd:e1:1d:47: d1:33:73:77:c3:b2:4d:53:ea:82:21:66:4d:1f:a3: 05:2e:d9:33:ff:91:6f:89:5e:25:13:40:aa:b5:0c: 44:e8:c7:9d:1d:55:31:d7:2b:17:a0:13:29:57:91: 01:66:83:79:7f:29:e7:17:9d:1e:3e:4a:89:80:fc: 8b:9e:4a:3d:a5:32:3e:fc:87:92:48:01:9f:00:49: 70:fc:ee:5d:86:75:b6:46:28:b7:5c:4f:d2:ca:d7: 00:dd:77:00:6d:09:04:64:3f:79:a1:a7:77:c1:1c: e2:08:d2:1b:0f:1d:08:2b:a2:42:00:34:7b:29:74: cf:f2:d1:58:29:3c:04:0f:81:5d:39:c2:19:8c:cd: e6:f3:ae:44:d3:fc:43:e7:04:6f:3a:71:9c:18:32: 69:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D0:9B:AD:A7:C2:52:69:58:34:CE:37:87:31:91:F2:42:86:EB:D9 X509v3 Authority Key Identifier: keyid:25:29:3B:0A:70:36:C8:13:A9:CD:02:00:6D:FC:29:0A:AF:25:32:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JSk7CnA2yBOpzQIAbfwpCq8lMnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/D3AD07E208D911EDBE92C954C4F9AE02/47C07DB84F9C11ED8B9E4333C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.2.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:57:d9:77:eb:2d:7b:66:2e:ed:86:d6:e8:f8:16:4d:3f:93: d6:62:20:50:41:17:a6:21:ef:f8:b9:72:90:a6:7f:8a:14:90: 3c:e9:fb:ca:a5:70:aa:dc:18:01:4f:69:34:a9:8d:4b:e1:56: fa:42:5f:df:ce:d7:c6:6e:97:9c:be:c1:79:7a:31:35:da:46: f3:e6:60:8e:47:be:5e:50:1d:12:87:83:36:a3:97:05:f8:d4: 8b:2e:e8:db:0c:ff:2f:be:76:32:07:16:62:a8:b1:17:b6:5b: f5:73:b9:d4:97:7f:97:1b:0c:23:45:93:60:58:71:11:99:cf: fc:e4:31:a4:a4:c1:3c:6a:23:33:cf:c3:8b:06:6a:f2:b0:4a: 7b:91:e1:f0:0d:aa:c4:be:cd:f2:29:2c:24:57:15:7f:87:f9: 1e:07:f5:94:59:12:57:1d:a2:cc:a2:58:6d:f1:3e:80:06:20: 2d:21:c0:76:9a:ac:e1:d5:c4:c7:56:51:56:92:ea:fd:a1:84: 93:7f:e4:a0:e4:aa:dc:c8:ba:ab:c5:e5:86:57:fc:b0:08:75: bb:84:fc:8a:ea:36:f3:b9:41:d7:ce:00:a3:90:9e:65:45:0a: 9e:e0:d3:f7:b8:4f:09:3f:39:9e:5a:98:26:85:ae:c4:3f:2f: cb:b3:4a:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKDI1MjkzQjBBNzAzNkM4MTNBOUNEMDIwMDZERkMyOTBB QUYyNTMyNzQwHhcNMjQwNzEzMDQwNDUyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxZmNlMy0xNTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzFO0akBPwhRXqOF6y0f02X/kSkavxj6i/DYhFU59fv6qrn27aDMcyRSyGjo QVkd0tlx7bJqNT2+LAIFfN7AKxUkLtklypCRzrUc36nf+Y2qSURhaifB5GlKRgUp ejhY4UKPvN3hHUfRM3N3w7JNU+qCIWZNH6MFLtkz/5FviV4lE0CqtQxE6MedHVUx 1ysXoBMpV5EBZoN5fynnF50ePkqJgPyLnko9pTI+/IeSSAGfAElw/O5dhnW2Rii3 XE/SytcA3XcAbQkEZD95oad3wRziCNIbDx0IK6JCADR7KXTP8tFYKTwED4FdOcIZ jM3m865E0/xD5wRvOnGcGDJpkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMPQm62n wlJpWDTON4cxkfJChuvZMB8GA1UdIwQYMBaAFCUpOwpwNsgTqc0CAG38KQqvJTJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9EM0FEMDdFMjA4 RDkxMUVEQkU5MkM5NTRDNEY5QUUwMi9KU2s3Q25BMnlCT3B6UUlBYmZ3cENxOGxN blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pTazdDbkEyeUJPcHpRSUFiZndwQ3E4bE1uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBNzcvRDNBRDA3RTIwOEQ5MTFFREJFOTJDOTU0QzRGOUFFMDIvNDdDMDdEQjg0 RjlDMTFFRDhCOUU0MzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvQIwDQYJKoZIhvcNAQELBQADggEBAEpX2XfrLXtmLu2G 1uj4Fk0/k9ZiIFBBF6Yh7/i5cpCmf4oUkDzp+8qlcKrcGAFPaTSpjUvhVvpCX9/O 18Zul5y+wXl6MTXaRvPmYI5Hvl5QHRKHgzajlwX41Isu6NsM/y++djIHFmKosRe2 W/VzudSXf5cbDCNFk2BYcRGZz/zkMaSkwTxqIzPPw4sGavKwSnuR4fANqsS+zfIp LCRXFX+H+R4H9ZRZElcdosyiWG3xPoAGIC0hwHaarOHVxMdWUVaS6v2hhJN/5KDk qtzIuqvF5YZX/LAIdbuE/IrqNvO5QdfOAKOQnmVFCp7g0/e4Twk/OZ5amCaFrsQ/ L8uzSsU= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:50 2024 by rpki-client on console-ams.rpki-client.org