$ rpki-client -vvf rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/DD3C61621DCD11EF88E9EE3DC4F9AE02.roa File: DD3C61621DCD11EF88E9EE3DC4F9AE02.roa (raw, json) Hash identifier: G27vxGc4AAV38UzLImTap6lHREuZgSB88+/EZ+pmblM= Subject key identifier: 16:90:3D:DB:18:A1:70:DC:03:F2:43:72:38:6B:06:FD:F5:25:AD:3C Certificate issuer: /CN=A91D26C6/serialNumber=D29B64E634465AB4132054BB7E83C9D5F18349F7 Certificate serial: 05EE Authority key identifier: D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/DD3C61621DCD11EF88E9EE3DC4F9AE02.roa Signing time: Wed 29 May 2024 15:12:29 +0000 ROA not before: Wed 29 May 2024 15:12:29 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134424 IP address blocks: 103.162.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.crl rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D26C6/serialNumber=D29B64E634465AB4132054BB7E83C9D5F18349F7 Validity Not Before: May 29 15:12:29 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=665745dd-6b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3c:33:ce:e9:88:12:b2:1c:f6:0b:26:5f:61: 91:5c:9d:9c:99:10:80:85:91:58:74:64:90:1e:41: cd:82:1e:70:a6:69:ba:01:c4:36:d1:db:a6:fe:b8: 37:42:cc:bf:d3:dd:49:6d:2f:83:f0:4a:7f:19:66: 6f:97:e7:38:0f:10:ec:0d:c6:f5:5a:70:f7:03:e1: 8d:f3:ef:e6:d2:e7:5d:45:bb:64:cd:9f:06:af:f9: 02:26:e8:ff:3d:96:cd:f7:9f:75:30:bc:f6:e4:98: 78:b9:79:05:f4:49:3a:d5:9d:a8:48:00:d2:f0:d8: 35:f6:7a:5f:c3:ef:ac:b9:f1:7a:4e:44:71:7c:43: a9:68:97:65:8a:13:53:70:29:04:ed:aa:e2:23:f5: fe:bc:58:b3:e7:b3:e7:a0:5f:0e:db:85:5e:95:70: 59:de:f8:55:9e:7c:6f:92:b1:f7:dd:85:1a:21:e1: 21:0b:8f:56:6a:a7:95:0f:4b:12:78:ee:9f:9c:87: 9e:35:61:8e:1c:cc:f6:6b:b0:38:b7:68:7a:dd:17: 19:e5:04:e6:33:21:8a:a9:56:2c:97:3e:f2:24:b2: 70:f5:f3:20:0e:47:67:ab:89:df:20:f9:7d:2d:76: d5:9b:09:7a:d9:d7:ed:11:ac:63:2a:65:e9:00:82: 21:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:90:3D:DB:18:A1:70:DC:03:F2:43:72:38:6B:06:FD:F5:25:AD:3C X509v3 Authority Key Identifier: keyid:D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/DD3C61621DCD11EF88E9EE3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.56.0/24 Signature Algorithm: sha256WithRSAEncryption ac:0c:0b:3f:8c:ec:73:20:db:92:6e:99:1b:61:7a:c3:4e:30: 4d:4e:eb:08:89:1d:4a:68:8c:7c:dd:2c:5c:40:41:1a:42:95: 85:ba:f9:72:19:22:11:02:db:ea:91:20:8e:e0:09:97:2e:16: 16:d0:4c:59:08:77:c6:a9:ce:32:25:0f:db:01:99:bf:90:67: 00:06:81:a5:5b:1a:a6:30:57:bf:f4:a0:6d:27:46:e8:0f:f8: db:dd:46:06:0b:a7:e9:59:5f:7f:d4:29:e9:8c:86:eb:a9:2c: 8e:b7:a7:7e:8f:49:4c:d4:37:ff:47:ba:de:e4:b2:ea:0c:6b: c8:3d:0b:9b:c9:2d:dc:79:2a:f3:33:60:e8:49:b5:f2:58:a8: 3f:17:3f:b1:dc:48:18:c2:22:e6:cc:32:d0:e4:e6:bd:b1:84: 21:aa:92:46:be:76:d1:2c:6f:df:87:14:0e:75:24:6b:22:4d: 55:1a:71:77:f6:f6:b5:7d:1f:42:c0:71:9e:d5:e3:bf:b6:45: f0:98:82:d1:09:2b:a8:87:2a:40:3d:30:1c:fb:a7:17:5b:7a: c9:7f:5a:25:5a:94:bf:f1:99:9a:e6:11:17:7d:9c:07:02:c2: e1:dd:ef:83:00:5f:10:88:81:85:00:ab:44:59:da:ba:da:5c: 2d:40:d5:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2QzYxMTAvBgNVBAUTKEQyOUI2NEU2MzQ0NjVBQjQxMzIwNTRCQjdFODNDOUQ1 RjE4MzQ5RjcwHhcNMjQwNTI5MTUxMjI5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU3NDVkZC02YjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTwzzumIErIc9gsmX2GRXJ2cmRCAhZFYdGSQHkHNgh5wpmm6AcQ20dum/rg3 Qsy/091JbS+D8Ep/GWZvl+c4DxDsDcb1WnD3A+GN8+/m0uddRbtkzZ8Gr/kCJuj/ PZbN9591MLz25Jh4uXkF9Ek61Z2oSADS8Ng19npfw++sufF6TkRxfEOpaJdlihNT cCkE7ariI/X+vFiz57PnoF8O24VelXBZ3vhVnnxvkrH33YUaIeEhC49WaqeVD0sS eO6fnIeeNWGOHMz2a7A4t2h63RcZ5QTmMyGKqVYslz7yJLJw9fMgDkdnq4nfIPl9 LXbVmwl62dftEaxjKmXpAIIhoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBaQPdsY oXDcA/JDcjhrBv31Ja08MB8GA1UdIwQYMBaAFNKbZOY0Rlq0EyBUu36DydXxg0n3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjZDNi81OEU5OUU5NDZG NzkxMUVCQTREMjIyODdDNEY5QUUwMi8wcHRrNWpSR1dyUVRJRlM3Zm9QSjFmR0RT ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwdGs1alJHV3JRVElGUzdmb1BKMWZHRFNmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI2QzYvNThFOTlFOTQ2Rjc5MTFFQkE0RDIyMjg3QzRGOUFFMDIvREQzQzYxNjIx RENEMTFFRjg4RTlFRTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnojgwDQYJKoZIhvcNAQELBQADggEBAKwMCz+M7HMg25Ju mRthesNOME1O6wiJHUpojHzdLFxAQRpClYW6+XIZIhEC2+qRII7gCZcuFhbQTFkI d8apzjIlD9sBmb+QZwAGgaVbGqYwV7/0oG0nRugP+NvdRgYLp+lZX3/UKemMhuup LI63p36PSUzUN/9Hut7ksuoMa8g9C5vJLdx5KvMzYOhJtfJYqD8XP7HcSBjCIubM MtDk5r2xhCGqkka+dtEsb9+HFA51JGsiTVUacXf29rV9H0LAcZ7V47+2RfCYgtEJ K6iHKkA9MBz7pxdbesl/WiValL/xmZrmERd9nAcCwuHd74MAXxCIgYUAq0RZ2rra XC1A1fQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org