$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa File: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (raw, json) Hash identifier: Ce9BbpW+u6Lf3eiA8gD0/jqkNi4bCrcEPxDFa4yC7Go= Subject key identifier: F9:44:76:72:04:1A:63:E6:34:F1:1F:D9:21:EA:5F:A5:F0:8A:D0:4F Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0E44 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa Signing time: Tue 26 Mar 2024 18:36:57 +0000 ROA not before: Tue 26 Mar 2024 18:36:56 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 59340 IP address blocks: 103.87.112.0/22 maxlen: 22 103.87.112.0/23 maxlen: 23 103.87.112.0/24 maxlen: 24 103.87.113.0/24 maxlen: 24 103.87.114.0/23 maxlen: 23 103.87.114.0/24 maxlen: 24 103.87.115.0/24 maxlen: 24 116.204.220.0/22 maxlen: 22 116.204.220.0/23 maxlen: 23 116.204.220.0/24 maxlen: 24 116.204.221.0/24 maxlen: 24 116.204.222.0/23 maxlen: 23 116.204.222.0/24 maxlen: 24 116.204.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Mar 26 18:36:56 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660315c8-289b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:aa:12:c2:ea:c3:e1:f8:a3:32:5b:4d:ce: 1b:3b:3c:fd:35:a6:67:17:da:b3:7f:4d:b3:88:e5: 3f:d7:0d:13:6b:58:97:f9:ce:06:19:32:69:b2:ea: a8:a3:eb:e1:26:28:d2:e9:b7:93:26:b8:71:f7:a3: 28:e2:ad:cc:e3:9f:0b:a2:f7:fa:e9:a4:d9:86:a8: 61:6e:03:df:f3:f7:1f:4b:f8:9c:48:69:de:6f:2b: 1e:ba:78:2c:ad:21:33:ce:a8:cb:da:29:e1:ba:b6: 48:cc:28:6b:51:00:50:8c:54:93:22:1d:93:4f:3b: 95:b0:e8:53:81:ab:05:14:6a:7e:48:26:22:f0:d4: 52:e2:04:3a:d5:b5:78:0c:15:a8:71:0f:f8:aa:43: 2f:0c:ec:ce:68:c5:c6:09:4d:b0:7c:d6:7b:a1:f7: c8:c4:4c:e6:eb:ca:fe:dd:76:7a:0e:c0:76:d6:35: 1f:69:72:3a:be:81:b4:6b:a2:39:ca:55:13:b6:fe: 44:81:a4:10:18:63:e5:f6:45:90:50:75:3a:be:fa: da:37:8f:e2:62:11:4f:90:02:51:b5:51:77:af:6e: c1:c5:62:00:1b:37:e1:82:27:78:a2:57:a8:ed:71: 50:08:f5:f4:bd:71:8b:e4:12:61:08:6a:76:76:94: b8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:44:76:72:04:1A:63:E6:34:F1:1F:D9:21:EA:5F:A5:F0:8A:D0:4F X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/4ECF0A4C765C11E9A01A6E34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.112.0/22 116.204.220.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:1e:e8:a0:66:80:6c:d6:a7:e1:9a:ce:2b:0f:95:00:49:c1: ca:bf:bc:9c:01:95:7a:9e:70:35:2a:06:34:64:72:0d:a7:89: 56:eb:00:64:5f:81:f7:32:d5:a8:d0:9f:3a:72:72:e6:a5:6d: 97:f9:1f:74:e3:ab:0e:39:88:d3:87:45:fb:a6:ae:e7:3c:6b: 72:04:93:82:32:25:41:f8:46:c2:75:81:e4:c8:4c:8c:cd:a2: 5e:46:fa:7a:fd:e3:97:74:ec:6e:9d:10:50:ca:54:26:f9:b5: c5:7c:dc:43:42:0f:f0:4b:0e:e3:17:2c:e8:03:22:1c:e1:39: 80:34:64:d9:96:65:4c:7d:6d:bf:99:95:21:44:9a:be:47:37: e1:b2:57:df:5b:14:8e:37:53:01:58:46:94:79:bf:01:2d:24: 64:91:85:f9:03:2e:e2:ed:a4:b5:3f:8e:8d:ae:19:6a:9a:59: 2e:20:50:5b:4a:f0:8f:52:dc:40:c0:ef:ff:f6:ec:e3:d6:c0: d7:b3:da:60:b8:47:f9:fb:4d:de:05:ea:0b:bd:e2:b2:bc:46: 3a:3d:f0:5e:32:e7:90:3a:62:5e:20:d4:fc:40:20:02:30:6b: 6a:f9:5a:ad:8b:36:58:b0:1b:ab:eb:72:3b:c4:e9:6a:f8:36: ff:98:94:28 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjQwMzI2MTgzNjU2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMTVjOC0yODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9aqEsLqw+H4ozJbTc4bOzz9NaZnF9qzf02ziOU/1w0Ta1iX+c4GGTJpsuqo o+vhJijS6beTJrhx96Mo4q3M458Lovf66aTZhqhhbgPf8/cfS/icSGnebyseungs rSEzzqjL2inhurZIzChrUQBQjFSTIh2TTzuVsOhTgasFFGp+SCYi8NRS4gQ61bV4 DBWocQ/4qkMvDOzOaMXGCU2wfNZ7offIxEzm68r+3XZ6DsB21jUfaXI6voG0a6I5 ylUTtv5EgaQQGGPl9kWQUHU6vvraN4/iYhFPkAJRtVF3r27BxWIAGzfhgid4oleo 7XFQCPX0vXGL5BJhCGp2dpS4KwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPlEdnIE GmPmNPEf2SHqX6XwitBPMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVDMjUvNjg3QTEwQTY3NjVBMTFFOTlEMDFFNDJFQzRGOUFFMDIvNEVDRjBBNEM3 NjVDMTFFOUEwMUE2RTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnV3ADBAJ0zNwwDQYJKoZIhvcNAQELBQADggEBAH0e6KBm gGzWp+GazisPlQBJwcq/vJwBlXqecDUqBjRkcg2niVbrAGRfgfcy1ajQnzpycual bZf5H3Tjqw45iNOHRfumruc8a3IEk4IyJUH4RsJ1geTITIzNol5G+nr945d07G6d EFDKVCb5tcV83ENCD/BLDuMXLOgDIhzhOYA0ZNmWZUx9bb+ZlSFEmr5HN+GyV99b FI43UwFYRpR5vwEtJGSRhfkDLuLtpLU/jo2uGWqaWS4gUFtK8I9S3EDA7//27OPW wNez2mC4R/n7Td4F6gu94rK8Rjo98F4y55A6Yl4g1PxAIAIwa2r5Wq2LNliwG6vr cjvE6Wr4Nv+YlCg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org