$ rpki-client -vvf rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa File: D71B60EC2B5911EE81C7542FC4F9AE02.roa (raw, json) Hash identifier: LOa+P/ojEAQa7LHXQVKaskvdIoCLS3b4cZFOn+kB2uw= Subject key identifier: 30:13:EC:32:00:F4:D4:01:4A:FA:4A:10:0A:70:B3:2E:98:81:E2:8B Certificate issuer: /CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Certificate serial: BB Authority key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa Signing time: Wed 29 May 2024 07:42:22 +0000 ROA not before: Wed 29 May 2024 07:42:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140974 IP address blocks: 103.225.118.0/23 maxlen: 23 103.225.118.0/24 maxlen: 24 103.225.119.0/24 maxlen: 24 2401:be0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B Validity Not Before: May 29 07:42:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6656dc5e-86b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:cb:60:14:73:90:76:87:9d:c4:3d:82:68: 21:ef:51:2b:c7:a1:13:3c:57:67:70:46:a7:69:53: 5d:54:1b:a2:83:f8:7f:a3:b3:1b:ee:83:ad:83:90: cf:f9:7b:b9:8f:ad:d1:fe:85:95:6b:ff:b1:a1:3f: 44:c1:44:d2:d6:03:e4:d8:6f:8a:47:ca:c0:16:be: 84:1e:b9:3d:09:50:a8:01:7f:a3:ea:b0:4b:8d:83: f6:a2:b7:10:fa:08:03:da:c7:dd:a8:b9:4a:f1:48: ba:2d:ed:57:fb:12:14:2d:59:a7:ad:a1:4a:d1:44: ea:de:01:ba:cc:95:63:f3:8d:59:10:71:4f:5d:d1: e8:22:6e:c5:f7:43:16:1d:14:05:64:05:d9:65:df: bb:bc:80:3e:56:80:a8:e7:83:5f:15:63:de:3c:4d: 3e:ba:22:65:86:ce:36:13:b3:ca:56:62:55:f0:a4: fa:e0:76:32:a0:65:5c:0e:bf:cf:41:6f:e9:d1:4a: 59:7d:50:e3:05:b6:1d:05:80:f7:eb:d8:ad:df:f4: 67:a6:03:e7:b3:a1:5f:5b:84:fc:3b:3c:9e:ab:93: d9:93:10:e4:c7:05:ea:fa:aa:7b:0f:53:58:b0:04: d5:a6:13:8b:9b:d2:a4:0b:b0:ef:b7:05:c4:08:ed: ab:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:13:EC:32:00:F4:D4:01:4A:FA:4A:10:0A:70:B3:2E:98:81:E2:8B X509v3 Authority Key Identifier: keyid:4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/D71B60EC2B5911EE81C7542FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.118.0/23 IPv6: 2401:be0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:20:83:52:49:18:57:34:5b:a6:99:f0:46:cf:f4:52:61:16: 7f:8b:92:a4:2a:0e:3d:10:82:3c:1e:75:d4:ff:88:c3:39:3d: 99:99:29:e8:af:fa:10:63:25:94:a6:d2:e3:bd:6c:07:66:84: 2b:ff:3f:46:2a:55:39:0b:60:74:7a:b0:2e:9e:22:fa:16:65: 82:57:d6:66:4f:b0:c9:6f:ce:bc:0c:e0:3b:12:3b:f4:bf:bf: 6c:fc:ea:ce:d2:be:32:77:b6:7f:94:ea:30:83:df:61:6f:d6: c1:18:c8:e7:bd:5e:8c:d4:24:aa:7c:c7:84:e9:6f:c7:66:1b: 33:f9:4d:61:69:ef:58:9f:b0:07:38:b6:03:43:a6:f5:0f:5b: b4:20:f6:db:34:4c:2e:ba:c9:e4:74:74:40:b1:8a:8c:24:48: 1d:78:3d:87:e4:9d:d7:ff:da:13:e4:ed:31:87:da:64:d2:3d: c3:cd:e6:9d:26:ca:3b:37:8d:4b:95:e3:ae:e6:5a:96:6b:12: cf:00:9d:92:be:c9:75:96:c8:ce:32:e4:e4:e6:d3:46:53:8e: f3:6c:43:e8:f3:e4:d3:78:ea:9e:fd:07:ca:1d:58:42:4b:70: 68:28:5f:f9:18:c1:7c:4b:aa:a1:03:67:d3:ed:29:bf:d5:17: 4d:98:b6:5f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIwMEYxMTAvBgNVBAUTKDREOTA5MDg3QkRERkExNTA1RTJCQkEwM0YyMDYxMTJF QUVGRkIxMUIwHhcNMjQwNTI5MDc0MjIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2ZGM1ZS04NmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDvLYBRzkHaHncQ9gmgh71Erx6ETPFdncEanaVNdVBuig/h/o7Mb7oOtg5DP +Xu5j63R/oWVa/+xoT9EwUTS1gPk2G+KR8rAFr6EHrk9CVCoAX+j6rBLjYP2orcQ +ggD2sfdqLlK8Ui6Le1X+xIULVmnraFK0UTq3gG6zJVj841ZEHFPXdHoIm7F90MW HRQFZAXZZd+7vIA+VoCo54NfFWPePE0+uiJlhs42E7PKVmJV8KT64HYyoGVcDr/P QW/p0UpZfVDjBbYdBYD369it3/RnpgPns6FfW4T8Ozyeq5PZkxDkxwXq+qp7D1NY sATVphOLm9KkC7DvtwXECO2rPwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDAT7DIA 9NQBSvpKEApwsy6YgeKLMB8GA1UdIwQYMBaAFE2QkIe936FQXiu6A/IGES6u/7Eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjAwRi8yNTc4NzQwMjE2 NEYxMUVFOUU3MzQwNEVDNEY5QUUwMi9UWkNRaDczZm9WQmVLN29EOGdZUkxxN19z UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQ1FoNzNmb1ZCZUs3b0Q4Z1lSTHE3X3NScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDIwMEYvMjU3ODc0MDIxNjRGMTFFRTlFNzM0MDRFQzRGOUFFMDIvRDcxQjYwRUMy QjU5MTFFRTgxQzc1NDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn4XYwDQQCAAIwBwMFACQBC+AwDQYJKoZIhvcNAQELBQAD ggEBAG0gg1JJGFc0W6aZ8EbP9FJhFn+LkqQqDj0QgjweddT/iMM5PZmZKeiv+hBj JZSm0uO9bAdmhCv/P0YqVTkLYHR6sC6eIvoWZYJX1mZPsMlvzrwM4DsSO/S/v2z8 6s7SvjJ3tn+U6jCD32Fv1sEYyOe9XozUJKp8x4Tpb8dmGzP5TWFp71ifsAc4tgND pvUPW7Qg9ts0TC66yeR0dECxiowkSB14PYfkndf/2hPk7TGH2mTSPcPN5p0myjs3 jUuV467mWpZrEs8AnZK+yXWWyM4y5OTm00ZTjvNsQ+jz5NN46p79B8odWEJLcGgo X/kYwXxLqqEDZ9PtKb/VF02Ytl8= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:33 2024 by rpki-client on console-ams.rpki-client.org