$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/C32984BE6B1011EEACECDE38C4F9AE02.roa File: C32984BE6B1011EEACECDE38C4F9AE02.roa (raw, json) Hash identifier: QV8yDdB/aBnujvUw9k5YEZKIEFHi0AQt3Gc1cTTRp5Y= Subject key identifier: 1E:FE:D0:B3:E0:1C:52:39:A3:B1:C5:E2:18:A4:2F:7C:FE:1C:70:BC Certificate issuer: /CN=A91D46FD/serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Certificate serial: 033C Authority key identifier: BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/C32984BE6B1011EEACECDE38C4F9AE02.roa Signing time: Thu 29 Feb 2024 02:44:59 +0000 ROA not before: Thu 29 Feb 2024 02:44:59 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149436 IP address blocks: 103.179.125.0/24 maxlen: 24 2001:df0:4c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46FD/serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Validity Not Before: Feb 29 02:44:59 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65dfefaa-9d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:30:30:3a:f3:0f:28:93:24:eb:73:a4:0a: 77:be:42:56:72:0a:57:17:b1:d7:eb:02:21:74:a4: dd:c2:1b:50:5c:b8:7f:a6:bd:77:8a:c4:f8:c6:70: 85:7b:aa:e0:60:8c:86:8f:eb:12:f8:21:f6:1b:23: a1:fe:dc:76:bb:f5:85:5e:84:26:4a:0c:c9:bd:87: de:c5:6b:66:b5:19:3d:ee:c3:1d:02:71:aa:2c:84: 4c:97:16:5a:ff:01:64:7f:83:90:46:cb:f2:51:f1: 56:8d:9c:9a:10:1f:70:19:a7:cc:dc:74:64:7e:41: 26:9c:15:b0:f8:35:e2:07:3b:00:48:dd:70:66:42: 0c:59:02:62:d8:fc:3c:ac:10:dc:59:65:82:2e:a4: e4:8f:f2:00:24:d5:74:9c:34:8d:c0:a7:d9:68:04: 79:18:73:96:c4:50:cb:77:78:43:35:63:9b:3c:9b: cc:1f:0c:39:6d:8b:79:9a:c0:e2:7f:52:0c:1c:7b: 4c:14:e3:4b:c8:6e:e8:78:ab:76:1e:af:fc:ee:af: 06:51:f7:74:fa:0a:21:7a:bc:0f:ab:c5:e3:43:ab: e2:98:88:8c:9e:9f:b5:6f:90:70:a5:7e:33:5e:b2: 5a:35:63:e3:f6:5e:de:5d:e0:c9:bf:e2:bd:f8:d2: af:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:FE:D0:B3:E0:1C:52:39:A3:B1:C5:E2:18:A4:2F:7C:FE:1C:70:BC X509v3 Authority Key Identifier: keyid:BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/C32984BE6B1011EEACECDE38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.125.0/24 IPv6: 2001:df0:4c40::/48 Signature Algorithm: sha256WithRSAEncryption 39:a6:58:da:9e:d2:c0:2a:6d:8d:92:aa:a1:a9:22:86:1e:69: 4d:99:1d:d6:b9:d6:60:d6:bd:90:99:e3:50:4c:d9:15:85:2d: 8b:e7:1f:3b:83:67:f4:91:d5:7c:4a:c2:9d:d8:ff:00:18:85: 78:aa:bd:eb:32:aa:9b:aa:96:6a:26:5d:e7:51:ea:31:b7:2d: 57:ac:09:b3:4f:6c:f0:24:61:12:f2:6b:85:86:96:56:06:24: c6:bc:e0:9c:95:f6:ff:74:34:89:2d:61:e3:dc:f4:f0:0d:bd: 2c:6f:cc:12:22:a4:7f:cd:e0:80:81:69:99:0c:17:bc:79:33: 2c:77:30:d8:d7:a5:fb:b2:97:b8:8f:15:25:c8:19:dd:34:71: 84:88:88:69:11:2e:b6:b1:8c:a0:21:17:59:ab:ba:b9:dd:14: 20:a9:33:d7:6a:84:0a:9c:c7:06:60:ca:ec:b3:71:49:6d:fa: a4:3d:57:03:c1:5d:58:06:23:ef:82:0d:d2:3d:7f:bd:21:c0: 0f:f7:aa:00:fa:18:86:9e:d5:ab:16:f3:84:63:95:d6:94:b5: d3:b8:9a:c4:01:2b:7c:3e:09:d2:d5:c3:9e:da:ea:b1:8f:f9: 0e:d7:ef:5b:e7:97:17:36:d1:88:f4:54:fb:ed:5a:f4:88:1d: df:45:db:f0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2RkQxMTAvBgNVBAUTKEJCREY1OENENjExMjkxRUY1QkExQUFDQjZCMkNDNEVE NTBCMDExNTcwHhcNMjQwMjI5MDI0NDU5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmZWZhYS05ZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6YwMDrzDyiTJOtzpAp3vkJWcgpXF7HX6wIhdKTdwhtQXLh/pr13isT4xnCF e6rgYIyGj+sS+CH2GyOh/tx2u/WFXoQmSgzJvYfexWtmtRk97sMdAnGqLIRMlxZa /wFkf4OQRsvyUfFWjZyaEB9wGafM3HRkfkEmnBWw+DXiBzsASN1wZkIMWQJi2Pw8 rBDcWWWCLqTkj/IAJNV0nDSNwKfZaAR5GHOWxFDLd3hDNWObPJvMHww5bYt5msDi f1IMHHtMFONLyG7oeKt2Hq/87q8GUfd0+goherwPq8XjQ6vimIiMnp+1b5BwpX4z XrJaNWPj9l7eXeDJv+K9+NKvBwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB7+0LPg HFI5o7HF4hikL3z+HHC8MB8GA1UdIwQYMBaAFLvfWM1hEpHvW6Gqy2ssxO1QsBFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZGRC81OUJGMjE0RTc0 NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tlOWJvYXJMYXl6RTdWQ3dF VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5OVl6V0VTa2U5Ym9hckxheXpFN1ZDd0VWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ2RkQvNTlCRjIxNEU3NDUxMTFFQ0E5RTlGODU4QzRGOUFFMDIvQzMyOTg0QkU2 QjEwMTFFRUFDRUNERTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABns30wDwQCAAIwCQMHACABDfBMQDANBgkqhkiG9w0BAQsF AAOCAQEAOaZY2p7SwCptjZKqoakihh5pTZkd1rnWYNa9kJnjUEzZFYUti+cfO4Nn 9JHVfErCndj/ABiFeKq96zKqm6qWaiZd51HqMbctV6wJs09s8CRhEvJrhYaWVgYk xrzgnJX2/3Q0iS1h49z08A29LG/MEiKkf83ggIFpmQwXvHkzLHcw2Nel+7KXuI8V JcgZ3TRxhIiIaREutrGMoCEXWau6ud0UIKkz12qECpzHBmDK7LNxSW36pD1XA8Fd WAYj74IN0j1/vSHAD/eqAPoYhp7VqxbzhGOV1pS107iaxAErfD4J0tXDntrqsY/5 DtfvW+eXFzbRiPRU++1a9Igd30Xb8A== -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org