$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa File: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (raw, json) Hash identifier: 6I+uff1UXsEclScW0pxm4ci886ZY0LDxuI+o7m1iBhQ= Subject key identifier: 1D:BC:4D:AA:15:4C:13:95:68:66:3E:62:FE:FE:AC:6D:63:82:0C:DE Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0809 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa Signing time: Mon 22 Jan 2024 17:12:54 +0000 ROA not before: Mon 22 Jan 2024 17:12:54 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138663 IP address blocks: 43.239.204.0/24 maxlen: 24 43.239.205.0/24 maxlen: 24 103.106.6.0/23 maxlen: 24 103.117.164.0/23 maxlen: 24 203.78.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Jan 22 17:12:54 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aea216-f780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:e0:24:0c:a0:47:6b:fb:28:4a:08:e8:52: e3:51:3d:de:49:eb:39:40:07:7f:0a:16:c4:be:0e: e8:76:05:09:c4:cb:bc:b6:6b:76:67:2d:03:af:8c: ad:99:4f:83:20:a2:0a:90:03:56:89:80:9e:9f:c3: 29:5e:0b:5f:1a:7c:88:86:e2:a8:d9:80:25:da:c7: de:06:3d:aa:ed:5f:26:bc:46:64:3c:67:b3:8e:65: 21:f8:ff:20:15:c6:11:ff:66:2f:1a:04:f8:15:bb: 63:b5:41:f2:29:f5:5d:c7:f6:4f:85:79:d3:28:1b: 31:fe:46:de:9d:14:05:e6:1d:7b:60:56:24:26:d9: a0:eb:4a:a3:a1:9e:fb:56:1e:73:14:cd:cc:f4:eb: c6:d5:b7:f1:5c:9b:6b:82:14:6a:8c:24:d0:25:d6: 5d:19:61:53:3f:32:a6:7a:5f:32:60:8e:54:54:73: b1:2f:af:5e:31:33:ca:4a:9d:64:f2:23:7a:a1:63: 4f:b0:59:ec:a5:0d:b0:b1:80:0d:ff:7e:86:85:2f: 94:70:01:02:e4:16:b7:1c:3c:9b:1d:51:8e:36:2f: 31:1b:ee:b4:c8:77:27:d3:46:57:70:95:47:a5:ca: f9:43:61:d4:27:aa:5e:ad:51:e2:33:45:31:19:ae: aa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:BC:4D:AA:15:4C:13:95:68:66:3E:62:FE:FE:AC:6D:63:82:0C:DE X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.204.0/23 103.106.6.0/23 103.117.164.0/23 203.78.162.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:cb:8c:ea:0e:39:44:a3:ea:97:95:7b:03:12:d3:4f:34:05: 68:6f:14:85:be:85:20:20:db:d7:90:7a:4c:32:55:44:2b:1e: 52:59:f8:4d:85:ef:d7:b2:a1:37:6a:6b:ad:ac:f8:95:d8:8f: e0:ff:2a:45:ca:6d:72:d6:fb:1d:a4:67:d4:fd:e5:9a:7c:5e: 8c:59:a5:22:33:97:19:7a:92:79:39:af:93:83:e1:fa:e7:62: 38:d6:e1:6a:c4:d7:cb:65:cf:5d:30:ba:e1:48:30:83:89:ac: 26:d2:c1:c4:15:c7:62:b8:e1:54:df:fe:69:32:28:c1:2f:79: df:35:75:84:a0:f7:10:7f:18:72:94:1e:22:27:1b:01:09:fb: 66:5c:6f:1e:5e:20:90:ef:c4:b5:2f:b4:f4:fb:d1:c1:98:c1: de:95:f7:f7:11:10:aa:3b:d7:4b:d2:f2:1e:a2:b6:ef:34:db: dc:50:b1:07:22:f1:7e:2c:5a:78:c6:63:cf:09:e6:da:11:16: 21:10:a3:77:42:80:34:33:79:39:77:ff:13:a0:a2:53:a4:89: 42:2e:4f:37:eb:b0:a1:d7:da:77:14:cc:37:e1:83:79:03:26: db:6b:19:36:e4:30:1b:c1:ca:b1:43:42:df:db:bf:2e:fd:de: a9:d9:39:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjQwMTIyMTcxMjU0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlYTIxNi1mNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzArgJAygR2v7KEoI6FLjUT3eSes5QAd/ChbEvg7odgUJxMu8tmt2Zy0Dr4yt mU+DIKIKkANWiYCen8MpXgtfGnyIhuKo2YAl2sfeBj2q7V8mvEZkPGezjmUh+P8g FcYR/2YvGgT4FbtjtUHyKfVdx/ZPhXnTKBsx/kbenRQF5h17YFYkJtmg60qjoZ77 Vh5zFM3M9OvG1bfxXJtrghRqjCTQJdZdGWFTPzKmel8yYI5UVHOxL69eMTPKSp1k 8iN6oWNPsFnspQ2wsYAN/36GhS+UcAEC5Ba3HDybHVGONi8xG+60yHcn00ZXcJVH pcr5Q2HUJ6perVHiM0UxGa6q0QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFB28TaoV TBOVaGY+Yv7+rG1jggzeMB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQwQTQvOTVENUUzOTJBQTczMTFFQUExMEFDQzg0QzRGOUFFMDIvQzhDQ0UyQ0NB QTc0MTFFQTlERjJFNjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAEr78wDBAFnagYDBAFndaQDBADLTqIwDQYJKoZIhvcNAQEL BQADggEBAJvLjOoOOUSj6peVewMS0080BWhvFIW+hSAg29eQekwyVUQrHlJZ+E2F 79eyoTdqa62s+JXYj+D/KkXKbXLW+x2kZ9T95Zp8XoxZpSIzlxl6knk5r5OD4frn YjjW4WrE18tlz10wuuFIMIOJrCbSwcQVx2K44VTf/mkyKMEved81dYSg9xB/GHKU HiInGwEJ+2Zcbx5eIJDvxLUvtPT70cGYwd6V9/cREKo710vS8h6itu8029xQsQci 8X4sWnjGY88J5toRFiEQo3dCgDQzeTl3/xOgolOkiUIuTzfrsKHX2ncUzDfhg3kD JttrGTbkMBvByrFDQt/bvy793qnZOTg= -----END CERTIFICATE-----Generated at Thu May 16 22:23:38 2024 by rpki-client on console-fra.rpki-client.org