$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/D2E9BA7EFD1911EC9E748466C4F9AE02.roa File: D2E9BA7EFD1911EC9E748466C4F9AE02.roa (raw, json) Hash identifier: 3mXWOSXoGGGoIw3Jc45rTgdUlsOtzRtgn3W5YkMOraE= Subject key identifier: BA:96:F0:F1:74:7C:C7:C4:8F:BE:8B:6E:DC:67:39:01:70:2E:6D:70 Certificate issuer: /CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Certificate serial: 020A Authority key identifier: 2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/D2E9BA7EFD1911EC9E748466C4F9AE02.roa Signing time: Wed 31 Jul 2024 03:34:42 +0000 ROA not before: Wed 31 Jul 2024 03:34:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149991 IP address blocks: 103.190.72.0/23 maxlen: 23 103.190.72.0/24 maxlen: 24 103.190.73.0/24 maxlen: 24 2001:df0:e6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8A3/serialNumber=2FC430F1E215CBD7E08F26438837035002DE31A9 Validity Not Before: Jul 31 03:34:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9b0d2-8963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:b3:60:ba:16:2c:07:7e:77:eb:5e:a0:3e: 3f:99:0a:4c:2e:13:da:8a:5a:a4:37:b0:53:b3:ad: e0:05:cf:dc:30:08:d1:c2:b4:48:90:71:19:30:6b: 0e:df:43:fa:f3:12:11:5b:a1:b5:33:e2:e2:48:d1: 5e:1b:19:9a:bd:80:bc:ad:97:0f:be:6e:4f:05:26: 99:b9:08:41:62:9f:84:ff:38:1e:53:6c:2e:bc:cd: 2f:08:48:62:b2:26:14:29:0c:32:25:59:a5:12:b3: fc:4b:8c:4c:85:ee:3f:88:c2:c1:cf:ad:69:d6:fe: 5f:f0:31:23:39:a3:a8:a1:c5:e3:b9:48:23:84:94: f6:5c:42:6b:bb:ed:40:88:29:ae:b3:2a:f8:c8:bc: ee:30:1b:4e:cb:55:c8:e7:6d:f8:19:91:e9:4e:92: b4:37:23:21:43:55:8e:42:bc:fe:2c:de:45:06:d5: 12:31:0f:88:68:28:d0:13:9b:95:1d:94:f3:8d:45: 49:14:a5:14:d1:af:d3:07:b7:c9:ba:2a:8f:30:05: 01:eb:6d:50:f1:7f:2c:b4:fb:ff:20:e3:cf:29:39: 1e:4c:94:51:2d:e9:ac:5b:50:87:14:6c:7e:58:fe: e8:a7:94:08:59:63:9e:7a:3f:e9:4a:a8:13:ba:89: e0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:96:F0:F1:74:7C:C7:C4:8F:BE:8B:6E:DC:67:39:01:70:2E:6D:70 X509v3 Authority Key Identifier: keyid:2F:C4:30:F1:E2:15:CB:D7:E0:8F:26:43:88:37:03:50:02:DE:31:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/L8Qw8eIVy9fgjyZDiDcDUALeMak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L8Qw8eIVy9fgjyZDiDcDUALeMak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8A3/96650F38FD1711EC82898365C4F9AE02/D2E9BA7EFD1911EC9E748466C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.72.0/23 IPv6: 2001:df0:e6c0::/48 Signature Algorithm: sha256WithRSAEncryption 5d:4f:8c:8e:20:b2:1e:eb:16:81:f5:05:cb:a6:f3:c8:82:ca: d8:b3:cc:84:66:a2:15:ef:14:dd:5c:f1:80:6b:1d:c9:fe:53: 34:8f:a2:a2:7e:d7:2c:9b:ae:08:9e:33:2b:29:c4:83:23:ab: ab:03:4f:7c:ce:67:bb:5a:d4:ee:7e:a4:e0:cc:48:59:d5:2c: 15:4f:37:db:f8:bf:70:50:eb:ba:65:fb:68:e5:93:da:7a:9f: 56:df:44:3a:5f:bc:de:e7:5f:92:75:21:04:b5:8e:55:c2:1a: cd:0c:17:73:3c:ff:7c:b2:55:ca:ce:90:87:b5:84:8b:83:aa: 27:ef:07:36:dc:9c:3f:00:13:95:0a:36:28:44:64:94:e7:6f: a7:cb:28:bb:f3:74:02:a5:b9:74:40:0c:af:a5:c7:1e:47:34: 3e:b5:5c:52:f1:96:47:db:99:b8:65:2f:b7:8a:2f:aa:66:df: 15:a5:4a:41:bb:44:90:35:ca:ee:0d:79:a8:f0:81:d3:1d:3c: 37:e8:4e:37:89:57:91:31:cb:14:d1:0e:1b:3e:59:4b:b8:97: 04:3d:8b:f0:0b:d6:1a:3f:f3:d4:8f:3d:8e:9f:ad:56:5f:73: 24:3c:d6:d6:79:83:c4:b0:84:fa:bb:5e:2a:df:04:94:3e:a8: cb:a4:f5:9d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QTMxMTAvBgNVBAUTKDJGQzQzMEYxRTIxNUNCRDdFMDhGMjY0Mzg4MzcwMzUw MDJERTMxQTkwHhcNMjQwNzMxMDMzNDQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YjBkMi04OTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNezYLoWLAd+d+teoD4/mQpMLhPailqkN7BTs63gBc/cMAjRwrRIkHEZMGsO 30P68xIRW6G1M+LiSNFeGxmavYC8rZcPvm5PBSaZuQhBYp+E/zgeU2wuvM0vCEhi siYUKQwyJVmlErP8S4xMhe4/iMLBz61p1v5f8DEjOaOoocXjuUgjhJT2XEJru+1A iCmusyr4yLzuMBtOy1XI5234GZHpTpK0NyMhQ1WOQrz+LN5FBtUSMQ+IaCjQE5uV HZTzjUVJFKUU0a/TB7fJuiqPMAUB621Q8X8stPv/IOPPKTkeTJRRLemsW1CHFGx+ WP7op5QIWWOeej/pSqgTuongbQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLqW8PF0 fMfEj76LbtxnOQFwLm1wMB8GA1UdIwQYMBaAFC/EMPHiFcvX4I8mQ4g3A1AC3jGp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhBMy85NjY1MEYzOEZE MTcxMUVDODI4OTgzNjVDNEY5QUUwMi9MOFF3OGVJVnk5ZmdqeVpEaURjRFVBTGVN YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w4UXc4ZUlWeTlmZ2p5WkRpRGNEVUFMZU1hay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4QTMvOTY2NTBGMzhGRDE3MTFFQzgyODk4MzY1QzRGOUFFMDIvRDJFOUJBN0VG RDE5MTFFQzlFNzQ4NDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvkgwDwQCAAIwCQMHACABDfDmwDANBgkqhkiG9w0BAQsF AAOCAQEAXU+MjiCyHusWgfUFy6bzyILK2LPMhGaiFe8U3VzxgGsdyf5TNI+ion7X LJuuCJ4zKynEgyOrqwNPfM5nu1rU7n6k4MxIWdUsFU832/i/cFDrumX7aOWT2nqf Vt9EOl+83udfknUhBLWOVcIazQwXczz/fLJVys6Qh7WEi4OqJ+8HNtycPwATlQo2 KERklOdvp8sou/N0AqW5dEAMr6XHHkc0PrVcUvGWR9uZuGUvt4ovqmbfFaVKQbtE kDXK7g15qPCB0x08N+hON4lXkTHLFNEOGz5ZS7iXBD2L8AvWGj/z1I89jp+tVl9z JDzW1nmDxLCE+rteKt8ElD6oy6T1nQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org