$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa File: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (raw, json) Hash identifier: Z6w/oPaxagp7eRDDT5xLlgr2cfNwseIx7hDDJJ9ovPA= Subject key identifier: 5D:0B:04:5A:52:1B:DE:1A:C6:1E:A2:6C:07:E9:F9:02:09:0B:32:45 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 0758 Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa Signing time: Sun 12 Nov 2023 21:48:58 +0000 ROA not before: Sun 12 Nov 2023 21:48:58 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 64053 IP address blocks: 103.198.168.0/22 maxlen: 24 2401:f1c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:34:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Nov 12 21:48:58 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6551484a-04bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f2:31:81:72:7c:e1:e4:d3:c5:78:5a:69:8e: 1a:70:ac:fe:85:2a:9a:de:6a:bf:2e:84:cf:c3:29: 49:39:02:34:fe:3b:59:a7:10:a6:6d:d3:8b:34:44: ad:49:87:7d:0b:cf:1d:74:de:b6:6c:68:89:7c:34: a3:c8:23:2f:ab:cb:5b:d5:7b:7d:76:88:87:c0:86: bf:88:98:34:3f:c5:aa:f6:c4:d6:57:7d:cd:f9:b7: 6a:4d:14:b7:18:58:15:1f:85:a1:22:fa:3e:bb:bb: ad:74:06:32:25:ec:1e:c5:74:67:67:c1:b3:fe:aa: ec:08:04:26:91:4d:f9:58:51:59:36:3d:a2:0d:b3: 32:fe:6c:01:f7:68:dd:d0:80:ab:9e:12:ad:c2:fd: 07:f6:ee:ed:78:46:14:69:b2:02:3f:87:4f:72:fe: 5b:1a:0d:a8:f6:1c:08:29:5b:6b:e4:af:54:d3:76: 50:6c:db:63:d7:34:8f:eb:67:fd:56:d9:b1:96:c6: 5a:9e:af:fd:d8:29:95:f8:7a:2b:38:1a:10:9f:a3: 6c:82:18:f3:90:97:a2:b8:47:e4:2a:20:3b:3f:07: 88:0a:04:bc:3c:c4:8a:88:1d:7e:18:ef:03:b5:83: 7c:99:34:71:2f:2e:37:59:eb:66:3f:2c:a0:f4:df: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0B:04:5A:52:1B:DE:1A:C6:1E:A2:6C:07:E9:F9:02:09:0B:32:45 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.168.0/22 IPv6: 2401:f1c0::/32 Signature Algorithm: sha256WithRSAEncryption 27:a6:7d:ea:03:97:6a:77:a9:a8:c8:d6:b3:bc:a2:a6:3d:ad: 23:c6:85:d0:c3:66:31:b1:4e:31:ce:e3:13:54:45:68:4f:21: 84:ea:fd:5e:f7:90:f8:10:14:4c:8a:ba:7f:65:c3:b5:19:c5: 1d:a4:63:0e:ee:d7:c4:68:a4:e8:2e:c8:b7:a3:bf:68:de:27: a9:09:f5:d4:4e:54:fa:78:bb:53:43:f7:05:98:7f:49:10:89: ef:a6:e3:89:84:9d:aa:34:07:ab:8b:2e:cc:39:54:13:74:16: b5:98:b0:b7:cb:65:19:c5:0a:3c:4b:41:86:c6:52:1f:47:97: 13:70:d4:f0:26:00:5c:93:60:c6:c0:76:b3:df:db:e0:6e:92: 64:a6:7b:3d:55:e9:4d:2c:f2:4c:86:93:8a:74:00:9f:3d:f6: 74:90:42:da:1a:8d:44:b5:1b:de:90:5d:7d:04:dd:31:d4:c6: 43:86:1b:f0:2b:94:90:26:38:bd:e2:b2:2b:dc:a7:f7:f6:57: 82:6a:08:e7:d0:2a:ef:cd:00:69:1d:60:b7:14:d1:81:cc:5b: 01:61:90:68:04:e4:2e:43:e5:bf:cb:73:2d:cc:df:81:de:01: 94:ed:75:c9:e7:c2:a2:15:0c:a0:b7:fa:c1:6c:a1:f3:8c:46: 2a:6e:98:0e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjMxMTEyMjE0ODU4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUxNDg0YS0wNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfIxgXJ84eTTxXhaaY4acKz+hSqa3mq/LoTPwylJOQI0/jtZpxCmbdOLNESt SYd9C88ddN62bGiJfDSjyCMvq8tb1Xt9doiHwIa/iJg0P8Wq9sTWV33N+bdqTRS3 GFgVH4WhIvo+u7utdAYyJewexXRnZ8Gz/qrsCAQmkU35WFFZNj2iDbMy/mwB92jd 0ICrnhKtwv0H9u7teEYUabICP4dPcv5bGg2o9hwIKVtr5K9U03ZQbNtj1zSP62f9 VtmxlsZanq/92CmV+HorOBoQn6NsghjzkJeiuEfkKiA7PweICgS8PMSKiB1+GO8D tYN8mTRxLy43WetmPyyg9N+U3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF0LBFpS G94axh6ibAfp+QIJCzJFMB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OTEvN0M3QjFGNjZDMzVBMTFFQUE4RUNCNjdGQzRGOUFFMDIvNDU2Q0QxMkU1 RjAxMTFFQ0FFNEYwMjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnxqgwDQQCAAIwBwMFACQB8cAwDQYJKoZIhvcNAQELBQAD ggEBACemfeoDl2p3qajI1rO8oqY9rSPGhdDDZjGxTjHO4xNURWhPIYTq/V73kPgQ FEyKun9lw7UZxR2kYw7u18RopOguyLejv2jeJ6kJ9dROVPp4u1ND9wWYf0kQie+m 44mEnao0B6uLLsw5VBN0FrWYsLfLZRnFCjxLQYbGUh9HlxNw1PAmAFyTYMbAdrPf 2+BukmSmez1V6U0s8kyGk4p0AJ899nSQQtoajUS1G96QXX0E3THUxkOGG/ArlJAm OL3isivcp/f2V4JqCOfQKu/NAGkdYLcU0YHMWwFhkGgE5C5D5b/Lcy3M34HeAZTt dcnnwqIVDKC3+sFsofOMRipumA4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org