$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa File: 56EE653C493411EF859C1D49C4F9AE02.roa (raw, json) Hash identifier: bbZorhEHvZGDWgYeGn1wGIwXXDeJcbfTgB66dUy14go= Subject key identifier: 63:D7:57:01:82:DE:42:9F:F4:E2:7D:C5:82:5E:37:A7:30:AB:09:A9 Certificate issuer: /CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Certificate serial: 3418 Authority key identifier: CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa Signing time: Sat 14 Sep 2024 15:00:39 +0000 ROA not before: Sat 14 Sep 2024 15:00:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.212.169.0/24 maxlen: 24 103.212.170.0/24 maxlen: 24 160.202.137.0/24 maxlen: 24 160.202.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13336 (0x3418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9350/serialNumber=CF706D8147D779207D99AF9AD39DD5F2DFE59DE4 Validity Not Before: Sep 14 15:00:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e5a516-7f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:74:11:b9:0d:b5:17:cd:c3:a0:54:84:03:ec: 58:46:23:9b:81:1b:35:1f:fd:a1:ec:78:fd:b0:82: 94:55:7c:20:9e:c6:b7:55:2a:35:1d:5c:70:fb:b8: 98:6a:82:73:3a:97:68:06:13:de:fd:c4:6b:92:fa: 15:8c:92:bb:cf:83:dd:e2:12:4c:3c:c2:c9:56:5e: a8:aa:d8:e4:07:ea:ed:83:b6:9e:0a:93:b1:79:9e: 07:fe:66:f4:23:c1:bd:8a:a7:6d:37:9d:cc:e1:dd: a3:65:0d:ac:f2:ae:f6:24:c2:9f:eb:95:d3:33:81: d2:02:50:bb:18:b1:ce:09:61:56:1c:46:84:77:f5: 65:03:91:30:27:d5:a3:f3:1d:4a:4c:c1:7f:ac:55: b3:b6:85:1d:10:55:05:66:6f:d6:6c:60:42:3a:2e: ae:c4:f5:3c:9e:7e:94:a9:5e:61:2a:aa:2d:5e:36: 4c:36:2b:f7:f8:70:da:c3:c4:36:01:07:50:bf:d0: 93:28:8f:3f:e1:e2:18:e1:a3:3d:67:de:6f:55:30: c1:f5:93:7e:ad:bc:cb:a6:03:de:dc:e3:5f:4d:62: 5a:94:07:a4:dd:b7:fa:75:72:eb:0d:73:96:34:f8: bd:77:a2:b1:a4:bf:e8:9b:8a:7d:0e:29:db:8c:79: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D7:57:01:82:DE:42:9F:F4:E2:7D:C5:82:5E:37:A7:30:AB:09:A9 X509v3 Authority Key Identifier: keyid:CF:70:6D:81:47:D7:79:20:7D:99:AF:9A:D3:9D:D5:F2:DF:E5:9D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/z3BtgUfXeSB9ma-a053V8t_lneQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3BtgUfXeSB9ma-a053V8t_lneQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9350/3913BCA01D8711E2B42B02DF08B02CD2/56EE653C493411EF859C1D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.169.0-103.212.170.255 160.202.137.0-160.202.138.255 Signature Algorithm: sha256WithRSAEncryption 96:64:d5:e5:60:40:9c:da:aa:05:95:14:b5:8b:57:ad:c2:ea: 27:8f:60:4e:6e:db:67:01:b0:a7:0c:bf:bd:68:89:68:58:a4: 99:15:e7:55:52:5f:a0:52:18:83:fb:f9:99:b7:03:9a:88:8d: 02:57:72:48:14:74:71:01:21:98:6f:a3:b6:0a:3d:9d:67:c3: 82:1f:90:0c:92:0d:90:4d:9c:e9:16:d8:25:59:ad:c2:d2:bc: e4:3f:c9:cb:99:e2:10:83:eb:cb:f1:25:99:df:51:53:15:0f: ef:17:1a:16:4d:a7:d6:1a:eb:62:da:49:bc:cd:dc:a2:fc:14: 48:7a:76:ce:f7:94:08:59:a5:51:0e:fa:60:6f:ef:dc:d4:1a: 37:b0:73:63:84:fe:60:23:67:22:b2:e5:ac:1d:92:7e:96:15: 78:ee:4a:60:ef:41:ee:f6:31:3e:52:96:90:6e:6e:07:6a:cf: de:3a:e1:14:16:1c:7b:cc:10:ac:0c:34:1e:36:a5:a3:60:a1: 8a:27:d2:a9:61:57:89:f5:e4:86:12:a3:11:ee:6e:ac:59:86: 6a:fa:72:fe:0e:61:bb:4b:d5:03:79:bd:db:37:94:99:62:82: ce:99:d2:96:3d:92:a9:a1:c3:c9:07:c4:db:f1:56:c9:11:9d: be:76:d9:63 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICNBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzNTAxMTAvBgNVBAUTKENGNzA2RDgxNDdENzc5MjA3RDk5QUY5QUQzOURENUYy REZFNTlERTQwHhcNMjQwOTE0MTUwMDM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU1YTUxNi03ZjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3QRuQ21F83DoFSEA+xYRiObgRs1H/2h7Hj9sIKUVXwgnsa3VSo1HVxw+7iY aoJzOpdoBhPe/cRrkvoVjJK7z4Pd4hJMPMLJVl6oqtjkB+rtg7aeCpOxeZ4H/mb0 I8G9iqdtN53M4d2jZQ2s8q72JMKf65XTM4HSAlC7GLHOCWFWHEaEd/VlA5EwJ9Wj 8x1KTMF/rFWztoUdEFUFZm/WbGBCOi6uxPU8nn6UqV5hKqotXjZMNiv3+HDaw8Q2 AQdQv9CTKI8/4eIY4aM9Z95vVTDB9ZN+rbzLpgPe3ONfTWJalAek3bf6dXLrDXOW NPi9d6KxpL/om4p9DinbjHn6xQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFGPXVwGC 3kKf9OJ9xYJeN6cwqwmpMB8GA1UdIwQYMBaAFM9wbYFH13kgfZmvmtOd1fLf5Z3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTM1MC8zOTEzQkNBMDFE ODcxMUUyQjQyQjAyREYwOEIwMkNEMi96M0J0Z1VmWGVTQjltYS1hMDUzVjh0X2xu ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozQnRnVWZYZVNCOW1hLWEwNTNWOHRfbG5lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzNTAvMzkxM0JDQTAxRDg3MTFFMkI0MkIwMkRGMDhCMDJDRDIvNTZFRTY1M0M0 OTM0MTFFRjg1OUMxRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAGfUqQMEAGfUqjAMAwQAoMqJAwQAoMqKMA0GCSqGSIb3 DQEBCwUAA4IBAQCWZNXlYECc2qoFlRS1i1etwuonj2BObttnAbCnDL+9aIloWKSZ FedVUl+gUhiD+/mZtwOaiI0CV3JIFHRxASGYb6O2Cj2dZ8OCH5AMkg2QTZzpFtgl Wa3C0rzkP8nLmeIQg+vL8SWZ31FTFQ/vFxoWTafWGuti2km8zdyi/BRIenbO95QI WaVRDvpgb+/c1Bo3sHNjhP5gI2cisuWsHZJ+lhV47kpg70Hu9jE+UpaQbm4Has/e OuEUFhx7zBCsDDQeNqWjYKGKJ9KpYVeJ9eSGEqMR7m6sWYZq+nL+DmG7S9UDeb3b N5SZYoLOmdKWPZKpocPJB8Tb8VbJEZ2+dtlj -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:21 2024 by rpki-client on console-ams.rpki-client.org