$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F4740B2CB92711EBA6B43A86C4F9AE02.roa File: F4740B2CB92711EBA6B43A86C4F9AE02.roa (raw, json) Hash identifier: UVYU38/2P4ZcsBnZKHRUezkcR8i0kOVNyl3hZT7lyzo= Subject key identifier: 74:29:07:A7:DE:50:85:24:32:AF:EE:90:CD:C5:ED:DF:41:CE:43:60 Certificate issuer: /CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Certificate serial: 0535 Authority key identifier: FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F4740B2CB92711EBA6B43A86C4F9AE02.roa Signing time: Fri 05 Jul 2024 00:22:37 +0000 ROA not before: Fri 05 Jul 2024 00:22:37 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142271 IP address blocks: 103.167.66.0/24 maxlen: 24 2400:c3e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Validity Not Before: Jul 5 00:22:37 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66873ccd-6202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:02:85:46:7c:5b:b6:c2:09:42:c0:b3:e7:cc: 8f:59:fc:f1:b8:26:ef:7f:3c:87:76:7f:6b:22:48: 98:db:7c:cb:ef:23:ea:90:25:4e:81:4e:52:28:2d: bb:13:62:df:af:fd:d6:b4:c2:62:72:ed:5a:dd:1b: 29:6f:f8:86:2f:e4:ee:e4:ea:b4:7c:94:74:03:70: fd:02:3a:8a:a2:f8:c7:8a:b2:b2:ba:25:18:6f:f5: a4:48:65:ee:59:5d:30:23:a1:a5:e5:5a:89:f7:4e: 67:33:6c:8a:0c:eb:98:7e:f9:a5:66:65:52:59:53: 80:f2:55:8b:4d:ce:3d:3b:a1:05:f6:35:fe:52:03: 1d:36:82:89:77:a8:f6:64:cd:5d:2d:10:c0:db:b9: dc:65:46:9a:ea:cf:a7:00:a9:05:0a:ea:58:7a:ad: 7e:3a:d3:c2:fe:1e:46:b2:87:90:58:6e:c8:d6:26: 14:6d:e1:50:b6:6b:d7:33:56:20:ba:38:e5:8a:9a: 32:a6:27:7a:0e:43:35:91:0c:51:a3:5c:2a:d4:3b: 2a:e7:dc:b0:b2:b7:84:bd:41:12:a6:c5:33:13:fd: a6:89:b2:27:42:bf:e2:44:a6:1f:1b:c5:cb:28:f3: 7d:19:cd:78:aa:f0:18:15:16:de:d5:c0:58:a5:79: af:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:29:07:A7:DE:50:85:24:32:AF:EE:90:CD:C5:ED:DF:41:CE:43:60 X509v3 Authority Key Identifier: keyid:FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F4740B2CB92711EBA6B43A86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.66.0/24 IPv6: 2400:c3e0::/32 Signature Algorithm: sha256WithRSAEncryption 98:d1:c9:02:38:fa:da:42:a0:d2:46:5b:35:52:30:fd:49:94: bc:a1:25:75:2a:f1:8c:9e:1b:01:9b:49:74:8b:6a:25:c6:a0: 2b:e2:f0:81:90:3f:19:c8:ed:4f:fe:5d:27:c4:5f:02:1f:52: 98:e1:9b:db:b3:51:b1:5c:65:50:6e:0c:1e:af:5d:52:61:66: 82:f5:57:f2:62:63:74:ed:2f:89:30:53:7e:9d:40:9f:d4:47: 3b:6c:f2:7e:1a:0d:0a:1a:e0:e0:b3:cf:b4:00:aa:ef:29:72: 4c:55:dd:e6:72:be:04:93:ae:30:05:b6:a1:15:1d:4c:72:52: 16:89:7b:14:c7:33:da:d8:92:7a:3b:39:4c:47:6b:90:e5:c5: d5:48:d5:f8:a1:b7:0a:a6:67:09:3e:e3:7e:6b:11:c7:d8:82: ac:1e:7f:04:46:39:a8:d4:87:04:9a:65:29:35:02:b8:b2:71: 00:5e:a1:e6:ba:ef:f0:9f:94:64:4d:1a:5d:5a:bf:0a:46:3e: 24:36:ba:a5:eb:72:73:5d:c5:ad:c6:eb:a4:a9:93:76:95:16: 80:e3:02:1a:c0:3b:73:ff:dd:30:13:3e:34:2d:e3:c3:96:8b: 90:e8:0e:33:d5:36:2e:39:88:c8:0f:1b:34:f2:05:32:f2:38: 77:fd:de:25 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFQ0ExMTAvBgNVBAUTKEZCODA1RDUzNzlDQjA3RDUyQTQxMUVGRkZEMDQ5MUNB MzlCN0JGMjcwHhcNMjQwNzA1MDAyMjM3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3M2NjZC02MjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAKFRnxbtsIJQsCz58yPWfzxuCbvfzyHdn9rIkiY23zL7yPqkCVOgU5SKC27 E2Lfr/3WtMJicu1a3Rspb/iGL+Tu5Oq0fJR0A3D9AjqKovjHirKyuiUYb/WkSGXu WV0wI6Gl5VqJ905nM2yKDOuYfvmlZmVSWVOA8lWLTc49O6EF9jX+UgMdNoKJd6j2 ZM1dLRDA27ncZUaa6s+nAKkFCupYeq1+OtPC/h5GsoeQWG7I1iYUbeFQtmvXM1Yg ujjlipoypid6DkM1kQxRo1wq1Dsq59ywsreEvUESpsUzE/2mibInQr/iRKYfG8XL KPN9Gc14qvAYFRbe1cBYpXmvQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHQpB6fe UIUkMq/ukM3F7d9BzkNgMB8GA1UdIwQYMBaAFPuAXVN5ywfVKkEe//0Ekco5t78n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUVDQS9CRkQyMzIwNkI5 MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5VXFRUjdfX1FTUnlqbTN2 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy00QmRVM25MQjlVcVFSN19fUVNSeWptM3Z5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVFQ0EvQkZEMjMyMDZCOTI1MTFFQkIwRTJDQjgyQzRGOUFFMDIvRjQ3NDBCMkNC OTI3MTFFQkE2QjQzQTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnp0IwDQQCAAIwBwMFACQAw+AwDQYJKoZIhvcNAQELBQAD ggEBAJjRyQI4+tpCoNJGWzVSMP1JlLyhJXUq8YyeGwGbSXSLaiXGoCvi8IGQPxnI 7U/+XSfEXwIfUpjhm9uzUbFcZVBuDB6vXVJhZoL1V/JiY3TtL4kwU36dQJ/URzts 8n4aDQoa4OCzz7QAqu8pckxV3eZyvgSTrjAFtqEVHUxyUhaJexTHM9rYkno7OUxH a5DlxdVI1fihtwqmZwk+435rEcfYgqwefwRGOajUhwSaZSk1AriycQBeoea67/Cf lGRNGl1avwpGPiQ2uqXrcnNdxa3G66Spk3aVFoDjAhrAO3P/3TATPjQt48OWi5Do DjPVNi45iMgPGzTyBTLyOHf93iU= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:35 2024 by rpki-client on console-fra.rpki-client.org