$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa File: 8E20940E32AE11EFAE6AE719C4F9AE02.roa (raw, json) Hash identifier: deEx+RaooY/v2zuNK6Z4bMh+A406WK5212/1xqrRouE= Subject key identifier: 8A:F1:7E:5B:4B:D7:DF:A7:FE:B3:8F:37:62:1A:1D:54:7D:26:C1:A5 Certificate issuer: /CN=A91DC324/serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Certificate serial: 08 Authority key identifier: 4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa Signing time: Tue 25 Jun 2024 04:51:16 +0000 ROA not before: Tue 25 Jun 2024 04:51:16 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152707 IP address blocks: 103.37.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC324/serialNumber=4B28F5F3A9BE6C955FF1BE0F7B50803AB17EB460 Validity Not Before: Jun 25 04:51:16 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667a4cc4-4666 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7d:86:e5:b1:ea:cc:6d:0a:02:af:40:b2:dc: e0:02:2c:b8:ca:94:55:d8:e8:3b:de:17:ec:07:d7: f0:d4:f0:d6:a5:d8:6b:ed:37:b0:16:e3:9c:5c:29: 53:98:b3:33:7c:6c:96:f1:b6:27:6b:8e:29:7d:a7: 40:bc:e6:f3:12:a3:66:0f:81:51:3b:a4:e2:52:0b: 3e:da:d1:a2:6d:f0:db:8c:ae:ba:37:1a:89:e7:97: f4:92:a8:57:07:3b:88:b9:b4:06:31:ce:c3:d5:ce: 4d:55:91:4e:e8:43:fe:c3:7d:4f:69:50:2c:06:1a: 81:ad:38:cc:5f:5a:f0:3d:ab:93:0b:98:7e:25:8e: 72:52:9e:2b:67:2e:b6:fd:ff:1c:aa:56:6f:ff:9d: 6d:ce:7d:e7:be:ac:57:83:c1:c6:aa:2d:6e:a4:20: 49:f0:19:d3:f1:20:3a:61:c5:0c:c5:82:a7:df:0e: ec:a8:98:91:28:6a:1f:7c:1a:92:32:37:38:62:4f: 8d:61:a1:91:69:39:54:10:d7:9d:71:c4:86:aa:0f: 7e:d9:6b:21:ac:27:4b:ab:f8:64:01:d6:a3:58:9c: 67:85:dc:65:7c:62:b3:1d:b2:8c:70:e2:be:a9:59: 0c:81:01:3a:2d:b6:e6:6e:4b:87:84:b1:cd:66:b7: 0c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F1:7E:5B:4B:D7:DF:A7:FE:B3:8F:37:62:1A:1D:54:7D:26:C1:A5 X509v3 Authority Key Identifier: keyid:4B:28:F5:F3:A9:BE:6C:95:5F:F1:BE:0F:7B:50:80:3A:B1:7E:B4:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/Syj186m-bJVf8b4Pe1CAOrF-tGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Syj186m-bJVf8b4Pe1CAOrF-tGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC324/982C761231E011EF99953D22C4F9AE02/8E20940E32AE11EFAE6AE719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.202.0/23 Signature Algorithm: sha256WithRSAEncryption 51:34:7b:61:ec:c6:02:ec:68:37:6d:d5:4b:b1:9a:ba:77:0f: 82:55:09:95:19:c9:fe:38:25:ca:ae:3b:98:73:95:e7:0d:d9: 0a:e5:89:26:d7:87:85:07:bd:e7:ce:33:54:98:39:94:16:56: 3d:11:f1:91:a5:b6:2b:86:2b:5c:42:fb:07:99:1d:cc:2a:33: 61:ed:1f:d0:ad:7a:62:3e:37:bb:52:cf:a7:32:3d:89:bc:a6: b8:ae:6b:80:b1:24:2a:ac:0e:d7:82:25:b7:ff:5c:6b:99:f2: 03:42:3b:18:49:85:b4:bd:1d:4b:7a:53:f1:79:8a:67:69:6e: fe:63:46:ba:97:12:40:a0:2b:7b:ec:1a:a0:a3:a8:b0:ee:9f: 26:d9:ac:6f:bf:85:8a:d0:59:2d:f9:69:f2:6d:37:b1:f8:0c: 4a:a8:df:4c:82:d4:22:17:86:3e:d4:a0:8e:77:cc:61:79:07: 37:04:cc:01:aa:04:a4:bf:2f:1f:13:25:05:70:c5:48:3a:ec: 8a:35:b4:13:de:79:52:c3:72:42:f5:7d:6e:6f:0b:51:13:d7: 4c:24:56:90:73:fb:36:a9:49:9f:fc:25:82:5e:11:74:88:4e: 50:9f:82:16:c7:75:d5:4f:26:a7:ca:1e:ee:41:ba:28:f0:1c: 76:5d:1d:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzMyNDExMC8GA1UEBRMoNEIyOEY1RjNBOUJFNkM5NTVGRjFCRTBGN0I1MDgwM0FC MTdFQjQ2MDAeFw0yNDA2MjUwNDUxMTZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2N2E0Y2M0LTQ2NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSfYblserMbQoCr0Cy3OACLLjKlFXY6DveF+wH1/DU8Nal2GvtN7AW45xcKVOY szN8bJbxtidrjil9p0C85vMSo2YPgVE7pOJSCz7a0aJt8NuMrro3Gonnl/SSqFcH O4i5tAYxzsPVzk1VkU7oQ/7DfU9pUCwGGoGtOMxfWvA9q5MLmH4ljnJSnitnLrb9 /xyqVm//nW3Ofee+rFeDwcaqLW6kIEnwGdPxIDphxQzFgqffDuyomJEoah98GpIy NzhiT41hoZFpOVQQ151xxIaqD37ZayGsJ0ur+GQB1qNYnGeF3GV8YrMdsoxw4r6p WQyBATottuZuS4eEsc1mtww/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUivF+W0vX 36f+s483YhodVH0mwaUwHwYDVR0jBBgwFoAUSyj186m+bJVf8b4Pe1CAOrF+tGAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDMzI0Lzk4MkM3NjEyMzFF MDExRUY5OTk1M0QyMkM0RjlBRTAyL1N5ajE4Nm0tYkpWZjhiNFBlMUNBT3JGLXRH QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU3lqMTg2bS1iSlZmOGI0UGUxQ0FPckYtdEdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMyNC85ODJDNzYxMjMxRTAxMUVGOTk5NTNEMjJDNEY5QUUwMi84RTIwOTQwRTMy QUUxMUVGQUU2QUU3MTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWclyjANBgkqhkiG9w0BAQsFAAOCAQEAUTR7YezGAuxoN23V S7GauncPglUJlRnJ/jglyq47mHOV5w3ZCuWJJteHhQe9584zVJg5lBZWPRHxkaW2 K4YrXEL7B5kdzCozYe0f0K16Yj43u1LPpzI9ibymuK5rgLEkKqwO14Ilt/9ca5ny A0I7GEmFtL0dS3pT8XmKZ2lu/mNGupcSQKAre+waoKOosO6fJtmsb7+FitBZLflp 8m03sfgMSqjfTILUIheGPtSgjnfMYXkHNwTMAaoEpL8vHxMlBXDFSDrsijW0E955 UsNyQvV9bm8LURPXTCRWkHP7NqlJn/wlgl4RdIhOUJ+CFsd11U8mp8oe7kG6KPAc dl0dtg== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:29 2024 by rpki-client on console-ams.rpki-client.org