$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa File: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (raw, json) Hash identifier: Zj+iHPxvMADUxX/J3R3nQF997c2L/tq6sljYaBjJeZc= Subject key identifier: 17:D7:CB:CC:49:53:6A:71:89:B0:D9:EC:2A:AA:D8:45:7D:B1:AF:A2 Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 1593 Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa Signing time: Wed 08 Nov 2023 17:24:46 +0000 ROA not before: Wed 08 Nov 2023 17:24:46 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64089 IP address blocks: 45.253.130.0/23 maxlen: 24 103.85.42.0/23 maxlen: 24 103.247.36.0/23 maxlen: 24 2402:5c40:1000::/40 maxlen: 40 2402:5c40:1100::/40 maxlen: 40 2402:5c40:1200::/40 maxlen: 40 2402:5c40:1300::/40 maxlen: 40 2402:5c40:1400::/40 maxlen: 40 2402:5c40:1500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5523 (0x1593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: Nov 8 17:24:46 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=654bc45e-80df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ea:fd:8d:db:4b:c8:e1:fd:f8:94:d2:56:05: 71:b5:d8:19:02:88:57:b9:c4:d5:dc:69:ee:42:01: 6c:57:15:bc:b8:ed:50:90:dc:c7:86:48:66:aa:b1: 23:3a:c0:8e:e2:1e:5e:da:ca:e8:f2:c1:25:e5:b4: 9b:f9:03:23:92:1d:59:83:22:1b:3d:1f:06:22:6f: 28:4a:78:79:62:7e:09:5c:6d:ea:78:77:17:46:b2: 79:e4:33:95:96:44:c6:52:f9:5a:e0:cb:38:56:84: 27:95:38:3b:06:4f:10:f8:2b:9c:68:26:e8:51:64: ac:a3:b4:25:82:3f:22:d3:02:71:a9:92:00:ff:a4: 4b:23:15:89:87:26:fd:9b:47:e7:da:33:0b:e0:8e: 92:9a:dd:72:89:25:a2:f2:b2:28:90:4a:67:05:eb: 66:ec:ff:7d:7b:a3:44:b0:a0:9a:fc:69:92:74:7b: a4:6d:df:5f:d6:11:a2:09:23:0e:57:35:f2:50:a2: 41:df:58:ac:0a:57:d6:37:bd:87:27:97:4a:97:46: 14:b6:d4:4c:a3:48:22:c4:91:03:1c:e3:44:a0:11: da:cf:c4:c1:6a:ca:64:cb:39:1e:47:7e:21:18:e7: 6f:aa:42:28:6e:79:08:81:f9:8b:97:d9:75:e4:99: 35:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D7:CB:CC:49:53:6A:71:89:B0:D9:EC:2A:AA:D8:45:7D:B1:AF:A2 X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/C109FFF4FC0511E7BAFB3E48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.253.130.0/23 103.85.42.0/23 103.247.36.0/23 IPv6: 2402:5c40:1000::-2402:5c40:15ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 67:53:78:aa:f3:4e:fb:50:38:fd:50:9f:7c:b1:74:f1:16:b6: c4:54:f1:54:71:ed:5b:a3:f7:c4:a7:de:1b:c1:2b:66:97:d2: e6:9a:f9:df:d8:1b:27:0a:e7:f7:a0:b9:61:fc:3c:24:85:af: 18:10:a0:b0:1e:35:0b:77:90:3b:fa:1b:73:ef:4b:30:80:04: fa:0e:7d:67:fa:e6:c9:30:37:83:3c:14:61:45:75:d3:57:12: db:36:23:c6:3d:3e:6d:3d:67:67:33:d6:f9:71:b0:7d:e3:5d: a0:c5:28:1b:25:e5:0a:39:85:28:eb:bb:64:32:a7:32:3e:52: 50:c5:7b:43:27:54:d9:55:7b:b8:a0:56:0d:c7:69:5a:87:06: f5:53:cb:aa:fb:7a:58:eb:33:66:13:dd:41:6b:41:14:6e:2b: d0:55:8d:c5:2b:86:f3:c9:fd:37:59:2c:dc:64:1f:58:f3:b8: 19:16:d0:c9:95:99:03:eb:91:69:2e:79:4c:ff:1c:ed:25:cd: aa:72:6d:8e:77:ef:e2:9b:6d:2f:f5:b0:95:6a:51:f2:3a:92: 9a:d3:8d:c5:6a:07:fa:3e:83:62:b4:6f:e0:77:02:fb:6d:2b: e3:5b:bd:cc:f1:8b:11:33:f5:45:c8:04:ec:60:5d:17:67:aa: 32:09:69:1d -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICFZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjMxMTA4MTcyNDQ2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRiYzQ1ZS04MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOr9jdtLyOH9+JTSVgVxtdgZAohXucTV3GnuQgFsVxW8uO1QkNzHhkhmqrEj OsCO4h5e2sro8sEl5bSb+QMjkh1ZgyIbPR8GIm8oSnh5Yn4JXG3qeHcXRrJ55DOV lkTGUvla4Ms4VoQnlTg7Bk8Q+CucaCboUWSso7Qlgj8i0wJxqZIA/6RLIxWJhyb9 m0fn2jML4I6Smt1yiSWi8rIokEpnBetm7P99e6NEsKCa/GmSdHukbd9f1hGiCSMO VzXyUKJB31isClfWN72HJ5dKl0YUttRMo0gixJEDHONEoBHaz8TBaspkyzkeR34h GOdvqkIobnkIgfmLl9l15Jk1KwIDAQABo4ICuzCCArcwHQYDVR0OBBYEFBfXy8xJ U2pxibDZ7Cqq2EV9sa+iMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTgxNjEvNjcwNjEyQjBGQTY0MTFFN0E0QzI2OTNFQzRGOUFFMDIvQzEwOUZGRjRG QzA1MTFFN0JBRkIzRTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAEt/YIDBAFnVSoDBAFn9yQwGAQCAAIwEjAQAwYEJAJcQBAD BgEkAlxAFDANBgkqhkiG9w0BAQsFAAOCAQEAZ1N4qvNO+1A4/VCffLF08Ra2xFTx VHHtW6P3xKfeG8ErZpfS5pr539gbJwrn96C5Yfw8JIWvGBCgsB41C3eQO/obc+9L MIAE+g59Z/rmyTA3gzwUYUV101cS2zYjxj0+bT1nZzPW+XGwfeNdoMUoGyXlCjmF KOu7ZDKnMj5SUMV7QydU2VV7uKBWDcdpWocG9VPLqvt6WOszZhPdQWtBFG4r0FWN xSuG88n9N1ks3GQfWPO4GRbQyZWZA+uRaS55TP8c7SXNqnJtjnfv4pttL/WwlWpR 8jqSmtONxWoH+j6DYrRv4HcC+20r41u9zPGLETP1RcgE7GBdF2eqMglpHQ== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org