$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/7C58D40872CD11EE81C60650C4F9AE02.roa File: 7C58D40872CD11EE81C60650C4F9AE02.roa (raw, json) Hash identifier: hhVy8VlS8PQRYDzu0z2SFqVi4xOaWLt/VFPzg2LCqTM= Subject key identifier: 52:15:DE:0D:84:68:3B:AD:D7:93:DB:AA:EC:52:98:C9:91:7B:37:BD Certificate issuer: /CN=A91BA1BF/serialNumber=70EA37C1932BD34FB3B4859A34831A10E611D0F6 Certificate serial: CD Authority key identifier: 70:EA:37:C1:93:2B:D3:4F:B3:B4:85:9A:34:83:1A:10:E6:11:D0:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOo3wZMr00-ztIWaNIMaEOYR0PY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/7C58D40872CD11EE81C60650C4F9AE02.roa Signing time: Thu 21 Nov 2024 04:07:51 +0000 ROA not before: Thu 21 Nov 2024 04:07:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4049 IP address blocks: 103.67.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/cOo3wZMr00-ztIWaNIMaEOYR0PY.crl rsync://rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/cOo3wZMr00-ztIWaNIMaEOYR0PY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOo3wZMr00-ztIWaNIMaEOYR0PY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA1BF/serialNumber=70EA37C1932BD34FB3B4859A34831A10E611D0F6 Validity Not Before: Nov 21 04:07:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673eb216-fbd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e0:e5:0e:d6:ba:02:5a:84:d5:a1:29:58:39: 36:32:9e:95:94:c0:1f:20:1b:16:ad:33:c4:e5:52: de:26:ef:21:e1:20:c4:f0:fd:a6:a8:42:23:34:0c: 2b:f0:7d:de:7f:ed:da:29:6b:33:e2:03:b1:88:df: 11:2d:51:e9:f3:0c:ce:76:13:9f:4f:a7:42:a9:ff: 4c:05:cd:e1:93:cc:eb:0a:f0:9d:ac:ea:84:01:22: 8b:c2:53:25:ed:69:e0:4d:5a:7a:5f:a7:c5:b2:26: 36:9c:4d:23:9e:af:b1:1e:e0:97:85:27:fb:8a:4a: 57:c8:31:13:d9:99:26:ea:e6:0d:7e:12:57:ab:80: c1:34:ea:59:41:36:c2:f8:b2:e2:e0:48:3a:76:2d: 90:a5:9b:ea:2d:ad:d9:9c:70:b2:fe:ea:de:be:48: 60:40:2b:67:4a:df:f3:ee:7f:39:e4:99:e1:aa:cb: fb:1c:65:cc:e1:17:b4:c5:4b:bc:a9:ac:24:82:32: 2a:97:62:39:8b:fc:7e:92:80:ff:58:fd:90:94:1d: 7f:a1:a3:0d:d8:59:2b:55:8d:e4:44:d5:05:02:40: 20:8a:80:9f:a0:d5:70:cd:b8:93:16:bc:c3:4c:6a: e2:2f:79:a1:28:02:65:34:74:ee:a5:c2:32:60:1b: eb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:15:DE:0D:84:68:3B:AD:D7:93:DB:AA:EC:52:98:C9:91:7B:37:BD X509v3 Authority Key Identifier: keyid:70:EA:37:C1:93:2B:D3:4F:B3:B4:85:9A:34:83:1A:10:E6:11:D0:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/cOo3wZMr00-ztIWaNIMaEOYR0PY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOo3wZMr00-ztIWaNIMaEOYR0PY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA1BF/84E10A4272CC11EEB7945A4DC4F9AE02/7C58D40872CD11EE81C60650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.94.0/23 Signature Algorithm: sha256WithRSAEncryption 87:b6:5f:26:86:05:0e:0d:b2:da:cf:da:dd:4f:2e:de:d1:ed: 33:95:77:43:1c:2e:69:13:00:d4:43:3a:97:37:32:5d:2d:eb: 7c:c7:a6:6c:e0:01:b3:f7:7b:f9:1f:36:15:d6:60:0b:98:f2: 9b:74:16:8b:0c:00:8a:2b:9d:9b:b4:dc:12:1e:5f:1d:d9:b4: 3f:fa:e6:e0:21:51:3a:11:1f:51:42:f6:e1:4c:99:6c:b9:a8: 96:f7:70:0d:82:b3:86:e0:87:3c:5a:74:6e:43:8f:d0:77:17: 06:8b:b7:ac:8c:4c:a4:f7:dc:e8:dd:44:a1:18:e3:82:51:8b: be:0d:6f:3a:65:18:66:0e:86:3b:e3:e7:89:4c:8d:dc:6a:a3: b4:bc:fe:bb:74:8b:e6:61:8f:68:82:2d:cc:49:6b:dc:3a:c4: 7c:5f:4d:c3:c7:30:95:0c:15:ad:36:7e:91:e3:d2:3f:7b:40: 1d:93:c3:87:3c:68:96:57:f4:3e:09:fa:53:3e:86:74:dd:5b: 03:48:67:21:ac:1c:f2:ee:89:38:ac:17:22:f0:f0:ea:31:fb: dc:be:99:b5:1e:2c:09:da:0e:96:55:50:e4:81:00:16:aa:08: df:4d:e0:62:e4:61:6c:39:2f:a4:9b:89:87:4b:a8:e5:59:fd: 19:b9:02:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExQkYxMTAvBgNVBAUTKDcwRUEzN0MxOTMyQkQzNEZCM0I0ODU5QTM0ODMxQTEw RTYxMUQwRjYwHhcNMjQxMTIxMDQwNzUxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlYjIxNi1mYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+DlDta6AlqE1aEpWDk2Mp6VlMAfIBsWrTPE5VLeJu8h4SDE8P2mqEIjNAwr 8H3ef+3aKWsz4gOxiN8RLVHp8wzOdhOfT6dCqf9MBc3hk8zrCvCdrOqEASKLwlMl 7WngTVp6X6fFsiY2nE0jnq+xHuCXhSf7ikpXyDET2Zkm6uYNfhJXq4DBNOpZQTbC +LLi4Eg6di2QpZvqLa3ZnHCy/urevkhgQCtnSt/z7n855Jnhqsv7HGXM4Re0xUu8 qawkgjIql2I5i/x+koD/WP2QlB1/oaMN2FkrVY3kRNUFAkAgioCfoNVwzbiTFrzD TGriL3mhKAJlNHTupcIyYBvr8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFIV3g2E aDut15PbquxSmMmReze9MB8GA1UdIwQYMBaAFHDqN8GTK9NPs7SFmjSDGhDmEdD2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTFCRi84NEUxMEE0Mjcy Q0MxMUVFQjc5NDVBNERDNEY5QUUwMi9jT28zd1pNcjAwLXp0SVdhTklNYUVPWVIw UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPbzN3Wk1yMDAtenRJV2FOSU1hRU9ZUjBQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkExQkYvODRFMTBBNDI3MkNDMTFFRUI3OTQ1QTREQzRGOUFFMDIvN0M1OEQ0MDg3 MkNEMTFFRTgxQzYwNjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQ14wDQYJKoZIhvcNAQELBQADggEBAIe2XyaGBQ4NstrP 2t1PLt7R7TOVd0McLmkTANRDOpc3Ml0t63zHpmzgAbP3e/kfNhXWYAuY8pt0FosM AIornZu03BIeXx3ZtD/65uAhUToRH1FC9uFMmWy5qJb3cA2Cs4bghzxadG5Dj9B3 FwaLt6yMTKT33OjdRKEY44JRi74NbzplGGYOhjvj54lMjdxqo7S8/rt0i+Zhj2iC LcxJa9w6xHxfTcPHMJUMFa02fpHj0j97QB2Tw4c8aJZX9D4J+lM+hnTdWwNIZyGs HPLuiTisFyLw8Oox+9y+mbUeLAnaDpZVUOSBABaqCN9N4GLkYWw5L6SbiYdLqOVZ /Rm5Anc= -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:58 2024 by rpki-client on console-ams.rpki-client.org