$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/70E436A4155311EDB5B4C084C4F9AE02.roa File: 70E436A4155311EDB5B4C084C4F9AE02.roa (raw, json) Hash identifier: I/CztQTncibMDYSxCkVeaVPo7AP0a3VGi32K5e2kfXc= Subject key identifier: 2C:AE:26:71:87:C8:4F:69:43:C4:84:9F:99:5C:C1:FE:D6:66:CD:1A Certificate issuer: /CN=A91CC1BE/serialNumber=0A37EC91E827E169C862B44CD876B1D376413734 Certificate serial: 0BDC Authority key identifier: 0A:37:EC:91:E8:27:E1:69:C8:62:B4:4C:D8:76:B1:D3:76:41:37:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjfskegn4WnIYrRM2Hax03ZBNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/70E436A4155311EDB5B4C084C4F9AE02.roa Signing time: Tue 10 Sep 2024 19:27:28 +0000 ROA not before: Tue 10 Sep 2024 19:27:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 141731 IP address blocks: 103.119.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/Cjfskegn4WnIYrRM2Hax03ZBNzQ.crl rsync://rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/Cjfskegn4WnIYrRM2Hax03ZBNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjfskegn4WnIYrRM2Hax03ZBNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1BE/serialNumber=0A37EC91E827E169C862B44CD876B1D376413734 Validity Not Before: Sep 10 19:27:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e09d9f-755d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:8f:c3:c6:7a:7f:87:ea:4e:bb:51:b8:5f: a8:84:53:77:e7:d0:fa:1b:57:5c:d5:37:df:87:ea: 92:c7:b5:43:d8:a1:df:70:ac:f0:35:8e:90:dc:d3: e3:73:21:29:75:a0:cd:07:ec:9d:68:80:52:42:9c: 8b:a2:47:1d:13:d4:b3:62:5d:e2:6c:eb:7e:52:64: c4:ee:7e:cd:5e:5c:86:3a:57:41:1e:7c:75:3f:d9: 93:1a:19:f4:18:b2:4b:6b:bd:d4:26:68:2b:23:85: a1:37:4c:a7:1e:e6:4a:15:2d:5a:e4:38:6a:6a:2a: fa:bd:48:20:27:e0:93:9c:46:2d:72:41:fa:9a:03: 87:46:21:66:eb:71:08:ba:23:db:43:7e:49:2f:b3: 79:6f:1f:1d:04:61:39:2a:0e:84:95:df:03:ff:6e: 8d:1c:68:77:67:3c:b2:d9:d2:b0:bc:22:31:d7:7a: d1:3e:72:d2:7d:bf:22:91:3e:0d:4c:d2:3b:f3:9c: f8:82:50:91:94:a8:a2:81:f0:9f:06:d7:bf:73:8a: 1e:b6:a0:93:9f:4f:4b:dd:a5:45:03:31:53:7a:5e: 79:30:07:1c:f2:00:1d:d5:a2:7c:b3:11:01:65:ac: 36:f1:65:f2:f6:99:cb:7d:e5:c5:6d:aa:1a:c1:b3: 77:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:AE:26:71:87:C8:4F:69:43:C4:84:9F:99:5C:C1:FE:D6:66:CD:1A X509v3 Authority Key Identifier: keyid:0A:37:EC:91:E8:27:E1:69:C8:62:B4:4C:D8:76:B1:D3:76:41:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/Cjfskegn4WnIYrRM2Hax03ZBNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjfskegn4WnIYrRM2Hax03ZBNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1BE/E1EABF0A048311EA8028BE2FC4F9AE02/70E436A4155311EDB5B4C084C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.103.0/24 Signature Algorithm: sha256WithRSAEncryption 71:da:b2:f4:33:33:34:8f:33:a2:3d:bd:6d:c1:8b:0e:82:dd: af:4f:e7:f6:4e:38:33:47:fe:66:3c:a7:ad:c4:03:b5:65:1b: 87:22:bb:b8:9c:a6:2a:76:6d:6f:3b:5b:dc:8c:9d:4e:52:e8: 9a:22:e1:f9:0b:3f:4a:85:4b:b8:0c:2c:32:cb:af:60:9a:0e: 3f:45:59:ce:98:de:1b:d8:e8:45:17:66:4e:32:e6:f8:68:6b: b0:ad:3a:52:37:c4:77:e8:ef:94:d7:60:d5:cf:ce:04:00:18: f3:66:8a:01:7c:b1:98:90:47:bd:c4:89:4f:bd:9a:ea:a1:9d: 60:7e:24:af:05:2c:97:8b:e6:79:da:0e:47:2c:16:73:77:48: ac:54:34:fa:6b:0f:63:3b:99:37:1f:df:9c:a0:1c:96:77:b4: 15:9f:63:3f:f1:84:61:a6:8f:02:54:50:a6:23:99:c7:52:3f: 32:ba:09:a2:ae:8c:24:5e:38:a4:03:45:9e:c8:fc:08:c5:8b: 85:c9:9a:f8:e5:7c:44:52:b1:3d:67:d7:f5:08:8a:b2:52:59: 99:19:07:4f:74:69:75:cf:82:99:8d:89:92:ba:11:33:91:bb: c0:37:30:f4:71:eb:e4:10:8e:47:f6:e0:3e:ef:09:5c:97:b7: e8:ee:45:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxQkUxMTAvBgNVBAUTKDBBMzdFQzkxRTgyN0UxNjlDODYyQjQ0Q0Q4NzZCMUQz NzY0MTM3MzQwHhcNMjQwOTEwMTkyNzI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwOWQ5Zi03NTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YePw8Z6f4fqTrtRuF+ohFN359D6G1dc1Tffh+qSx7VD2KHfcKzwNY6Q3NPj cyEpdaDNB+ydaIBSQpyLokcdE9SzYl3ibOt+UmTE7n7NXlyGOldBHnx1P9mTGhn0 GLJLa73UJmgrI4WhN0ynHuZKFS1a5Dhqair6vUggJ+CTnEYtckH6mgOHRiFm63EI uiPbQ35JL7N5bx8dBGE5Kg6Eld8D/26NHGh3Zzyy2dKwvCIx13rRPnLSfb8ikT4N TNI785z4glCRlKiigfCfBte/c4oetqCTn09L3aVFAzFTel55MAcc8gAd1aJ8sxEB Zaw28WXy9pnLfeXFbaoawbN3RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCyuJnGH yE9pQ8SEn5lcwf7WZs0aMB8GA1UdIwQYMBaAFAo37JHoJ+FpyGK0TNh2sdN2QTc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFCRS9FMUVBQkYwQTA0 ODMxMUVBODAyOEJFMkZDNEY5QUUwMi9DamZza2VnbjRXbklZclJNMkhheDAzWkJO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqZnNrZWduNFduSVlyUk0ySGF4MDNaQk56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxQkUvRTFFQUJGMEEwNDgzMTFFQTgwMjhCRTJGQzRGOUFFMDIvNzBFNDM2QTQx NTUzMTFFREI1QjRDMDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnd2cwDQYJKoZIhvcNAQELBQADggEBAHHasvQzMzSPM6I9 vW3Biw6C3a9P5/ZOODNH/mY8p63EA7VlG4ciu7icpip2bW87W9yMnU5S6Joi4fkL P0qFS7gMLDLLr2CaDj9FWc6Y3hvY6EUXZk4y5vhoa7CtOlI3xHfo75TXYNXPzgQA GPNmigF8sZiQR73EiU+9muqhnWB+JK8FLJeL5nnaDkcsFnN3SKxUNPprD2M7mTcf 35ygHJZ3tBWfYz/xhGGmjwJUUKYjmcdSPzK6CaKujCReOKQDRZ7I/AjFi4XJmvjl fERSsT1n1/UIirJSWZkZB090aXXPgpmNiZK6ETORu8A3MPRx6+QQjkf24D7vCVyX t+juRU4= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org