$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa File: D968823E3DA111EA9A3FD550C4F9AE02.roa (raw, json) Hash identifier: 8PwBQiPMjwBwm2C6NRT5Vk8KuFu9hRXjCMRCPWAI/SU= Subject key identifier: B8:94:19:69:F2:1B:A4:ED:FC:29:20:A7:60:DE:AF:B0:95:DA:2D:34 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0A11 Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa Signing time: Sun 22 Oct 2023 20:08:05 +0000 ROA not before: Sun 22 Oct 2023 20:08:05 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 38320 IP address blocks: 103.122.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2577 (0xa11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Oct 22 20:08:05 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65358125-9704 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:02:18:01:e9:4f:2c:fc:e0:a0:96:ba:c2: c5:06:45:92:92:82:f9:24:c7:9d:63:0a:be:b8:42: f1:b6:4a:b3:7e:04:c5:87:98:e9:41:11:a5:75:c9: e7:bd:0f:e6:11:ed:14:5f:8f:9e:8f:d0:75:bb:84: a0:c7:53:ab:1e:3b:a1:96:81:9f:4a:0b:2b:ea:35: f7:ee:56:3e:f8:23:bd:79:d0:6d:79:ed:17:85:16: 30:60:4e:0b:28:5b:1d:bd:9c:77:03:02:41:d7:a0: f2:41:74:10:93:50:1a:35:46:f4:9d:dd:9c:e3:aa: a8:97:da:ea:63:10:27:58:65:4d:fc:7b:1a:ba:59: f6:99:69:85:0d:36:20:cd:c7:1b:e3:c6:7c:79:78: e4:bf:66:22:41:f4:15:15:f2:33:bf:01:fc:b7:d4: 31:6e:9a:60:d1:ac:82:b4:e1:07:5e:c4:eb:dd:95: 13:87:16:72:3b:85:d5:c2:6c:de:55:b3:7d:dd:0c: 40:57:84:ce:d7:f6:7e:61:3d:b4:e9:a6:0d:87:33: 21:0e:a9:b1:d9:14:bc:dc:04:68:bd:30:02:05:e1: 30:34:72:50:c1:51:09:24:d4:bd:4b:f5:29:8b:6e: 6c:86:15:7e:d7:66:a9:c1:f3:cf:0e:7c:ed:dc:d6: e4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:94:19:69:F2:1B:A4:ED:FC:29:20:A7:60:DE:AF:B0:95:DA:2D:34 X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/D968823E3DA111EA9A3FD550C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.252.0/22 Signature Algorithm: sha256WithRSAEncryption 18:a3:84:74:a2:dc:0c:26:11:fc:80:63:dd:bf:73:3f:75:1c: 6a:1c:96:ef:0d:36:26:52:59:6a:e7:77:5f:0c:21:dd:c5:1b: 5d:71:e0:98:13:bc:a5:a4:cf:9d:d6:ed:9b:76:33:57:2c:4a: ad:d5:a9:df:41:29:ce:f2:e1:44:46:89:dc:fc:0d:0d:fd:06: fe:a5:18:db:77:9a:15:2b:93:01:ea:15:f9:91:11:30:8a:e3: 84:9e:34:1a:57:3f:b0:1d:f1:6c:78:19:ca:3f:e3:85:cc:fd: 61:5f:bc:34:b4:c0:5c:94:96:66:30:b7:5f:8f:d0:09:b3:c8: dd:1d:37:9f:0d:5f:ee:3a:61:57:4a:f2:df:0a:b1:14:cb:59: 57:c5:35:92:05:4f:25:14:6d:5a:4a:45:4e:30:d1:c2:28:d2: 8d:47:60:ac:93:d2:a3:6f:3b:96:4a:22:c0:68:d9:c0:36:7b: d9:69:b5:f0:f7:3a:81:57:84:5c:59:ac:61:04:bc:97:e2:44: 7b:f3:75:e8:a7:08:6d:3e:ad:42:72:6f:70:7e:4c:04:35:fa: 11:a4:0c:a3:97:c1:09:c8:46:61:99:4f:15:92:b1:bd:b2:dd: 00:c9:5b:a0:b9:47:30:12:3b:63:79:a7:d7:5f:d4:ae:80:ad: 46:a6:06:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjMxMDIyMjAwODA1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM1ODEyNS05NzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlgCGAHpTyz84KCWusLFBkWSkoL5JMedYwq+uELxtkqzfgTFh5jpQRGldcnn vQ/mEe0UX4+ej9B1u4Sgx1OrHjuhloGfSgsr6jX37lY++CO9edBtee0XhRYwYE4L KFsdvZx3AwJB16DyQXQQk1AaNUb0nd2c46qol9rqYxAnWGVN/Hsauln2mWmFDTYg zccb48Z8eXjkv2YiQfQVFfIzvwH8t9Qxbppg0ayCtOEHXsTr3ZUThxZyO4XVwmze VbN93QxAV4TO1/Z+YT206aYNhzMhDqmx2RS83ARovTACBeEwNHJQwVEJJNS9S/Up i25shhV+12apwfPPDnzt3NbkEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLiUGWny G6Tt/Ckgp2Der7CV2i00MB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM5QjQvMUVFMTgyOUUzREExMTFFQThCNjdFOTRGQzRGOUFFMDIvRDk2ODgyM0Uz REExMTFFQTlBM0ZENTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnevwwDQYJKoZIhvcNAQELBQADggEBABijhHSi3AwmEfyA Y92/cz91HGoclu8NNiZSWWrnd18MId3FG11x4JgTvKWkz53W7Zt2M1csSq3Vqd9B Kc7y4URGidz8DQ39Bv6lGNt3mhUrkwHqFfmRETCK44SeNBpXP7Ad8Wx4Gco/44XM /WFfvDS0wFyUlmYwt1+P0AmzyN0dN58NX+46YVdK8t8KsRTLWVfFNZIFTyUUbVpK RU4w0cIo0o1HYKyT0qNvO5ZKIsBo2cA2e9lptfD3OoFXhFxZrGEEvJfiRHvzdein CG0+rUJyb3B+TAQ1+hGkDKOXwQnIRmGZTxWSsb2y3QDJW6C5RzASO2N5p9df1K6A rUamBgo= -----END CERTIFICATE-----Generated at Mon May 6 22:41:04 2024 by rpki-client on console-ams.rpki-client.org