$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/39EB3CA08EEB11EB8B952A3CC4F9AE02.roa File: 39EB3CA08EEB11EB8B952A3CC4F9AE02.roa (raw, json) Hash identifier: QRaDHXz02qY4t1WAHrdiVBd0L3kERvBYA+eCyMWOaM0= Subject key identifier: 6A:A9:EE:F6:6E:81:6D:94:45:E1:53:FE:9D:02:36:D2:03:9B:F2:1F Certificate issuer: /CN=A91E9925/serialNumber=C1FF6B82658BBEB7A8C4E6924F9FBE1505202A1C Certificate serial: 0513 Authority key identifier: C1:FF:6B:82:65:8B:BE:B7:A8:C4:E6:92:4F:9F:BE:15:05:20:2A:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wf9rgmWLvreoxOaST5--FQUgKhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/39EB3CA08EEB11EB8B952A3CC4F9AE02.roa Signing time: Wed 04 Oct 2023 23:42:00 +0000 ROA not before: Wed 04 Oct 2023 23:42:00 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141218 IP address blocks: 103.156.163.0/24 maxlen: 24 2406:8b40:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/wf9rgmWLvreoxOaST5--FQUgKhw.crl rsync://rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/wf9rgmWLvreoxOaST5--FQUgKhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wf9rgmWLvreoxOaST5--FQUgKhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9925/serialNumber=C1FF6B82658BBEB7A8C4E6924F9FBE1505202A1C Validity Not Before: Oct 4 23:42:00 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=651df848-494c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cd:c7:d7:89:27:72:70:cd:35:1f:26:b5:24: b6:91:df:22:5e:01:f7:3f:9f:3c:f5:b0:9e:c0:2b: 3b:8d:78:ea:96:a3:08:19:21:fa:3f:3b:ef:fd:44: af:c8:30:b8:e3:15:91:07:50:16:2e:88:7f:5b:bd: 10:61:10:af:93:af:f8:67:27:97:28:41:f0:f5:96: 6c:8f:ac:4b:57:9d:8d:83:5a:cc:4f:9c:51:78:a4: 28:da:44:d1:42:8c:1f:d4:03:12:c1:e6:a4:72:37: 8d:2e:07:ae:51:95:2a:23:dc:a2:b6:16:15:7b:58: 83:10:e1:33:c8:05:93:11:ce:d9:d0:17:6c:4d:7b: 00:a9:a4:b5:04:cc:4e:15:ef:ea:6e:0b:a2:26:2b: 4f:42:76:c9:f9:ef:3b:9f:a3:b1:f9:4b:56:2e:fb: e7:80:55:08:1e:8f:7b:e1:d9:28:7d:a0:14:6c:75: e4:e0:db:11:8b:8b:2e:11:a4:b3:19:a0:27:09:6b: 72:92:a2:f6:00:64:8d:1e:d5:db:c2:38:84:68:f9: 52:2c:4f:8d:31:5e:e3:1b:2f:df:6b:bc:4f:17:b6: 55:d6:b8:ea:d1:21:1a:5b:59:af:c7:f2:19:34:3c: 9f:e4:eb:5b:c4:65:f0:b8:b0:20:43:41:13:e4:b9: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A9:EE:F6:6E:81:6D:94:45:E1:53:FE:9D:02:36:D2:03:9B:F2:1F X509v3 Authority Key Identifier: keyid:C1:FF:6B:82:65:8B:BE:B7:A8:C4:E6:92:4F:9F:BE:15:05:20:2A:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/wf9rgmWLvreoxOaST5--FQUgKhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wf9rgmWLvreoxOaST5--FQUgKhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9925/E9BFDF9A8EBF11EB8892877FC4F9AE02/39EB3CA08EEB11EB8B952A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.163.0/24 IPv6: 2406:8b40:100::/40 Signature Algorithm: sha256WithRSAEncryption b4:78:83:14:21:3a:d7:f9:96:d3:3c:d6:38:ec:77:35:40:e8: c9:ff:22:7e:ae:14:4f:34:20:10:be:6d:0a:76:15:8c:ce:fd: ba:7e:f0:c1:2c:3f:7d:a7:47:9e:d4:08:88:94:8c:e3:35:04: 71:91:64:68:7d:b5:48:e1:02:0d:16:2e:4d:1f:7e:77:49:ed: 64:d9:c8:91:81:78:39:9a:9c:59:75:48:5f:2d:65:f5:23:18: 02:64:aa:ff:44:c0:9c:65:e1:0b:92:69:32:67:a9:cb:dc:5e: e2:6b:a1:cd:f6:8e:da:16:e1:5a:8e:52:03:6c:06:54:e1:db: 51:45:53:32:b4:05:c1:a1:11:14:14:be:ca:73:72:54:85:a1: f3:79:28:33:56:d4:ed:3f:42:c9:28:bf:e1:9f:d8:46:a2:06: 0f:eb:c0:50:c8:3a:ff:b8:44:af:ff:7d:34:73:1a:f5:fc:bb: 54:10:25:67:d4:fc:23:80:51:be:44:77:ac:36:14:f0:d6:a7: 8a:b9:e7:a9:3c:7c:42:2f:5d:62:80:90:8b:dd:09:b0:18:99: db:81:f9:21:4f:13:4f:50:95:ef:5c:19:66:08:75:b2:0e:51: e4:41:48:fc:ad:5f:54:a6:4c:d9:84:2b:74:5b:4d:ee:31:88: 4f:d7:6a:b4 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk5MjUxMTAvBgNVBAUTKEMxRkY2QjgyNjU4QkJFQjdBOEM0RTY5MjRGOUZCRTE1 MDUyMDJBMUMwHhcNMjMxMDA0MjM0MjAwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkZjg0OC00OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA083H14kncnDNNR8mtSS2kd8iXgH3P5889bCewCs7jXjqlqMIGSH6Pzvv/USv yDC44xWRB1AWLoh/W70QYRCvk6/4ZyeXKEHw9ZZsj6xLV52Ng1rMT5xReKQo2kTR Qowf1AMSweakcjeNLgeuUZUqI9yithYVe1iDEOEzyAWTEc7Z0BdsTXsAqaS1BMxO Fe/qbguiJitPQnbJ+e87n6Ox+UtWLvvngFUIHo974dkofaAUbHXk4NsRi4suEaSz GaAnCWtykqL2AGSNHtXbwjiEaPlSLE+NMV7jGy/fa7xPF7ZV1rjq0SEaW1mvx/IZ NDyf5OtbxGXwuLAgQ0ET5LnafQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGqp7vZu gW2UReFT/p0CNtIDm/IfMB8GA1UdIwQYMBaAFMH/a4Jli763qMTmkk+fvhUFICoc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTkyNS9FOUJGREY5QThF QkYxMUVCODg5Mjg3N0ZDNEY5QUUwMi93ZjlyZ21XTHZyZW94T2FTVDUtLUZRVWdL aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dmOXJnbVdMdnJlb3hPYVNUNS0tRlFVZ0tody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk5MjUvRTlCRkRGOUE4RUJGMTFFQjg4OTI4NzdGQzRGOUFFMDIvMzlFQjNDQTA4 RUVCMTFFQjhCOTUyQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnnKMwDgQCAAIwCAMGACQGi0ABMA0GCSqGSIb3DQEBCwUA A4IBAQC0eIMUITrX+ZbTPNY47Hc1QOjJ/yJ+rhRPNCAQvm0KdhWMzv26fvDBLD99 p0ee1AiIlIzjNQRxkWRofbVI4QINFi5NH353Se1k2ciRgXg5mpxZdUhfLWX1IxgC ZKr/RMCcZeELkmkyZ6nL3F7ia6HN9o7aFuFajlIDbAZU4dtRRVMytAXBoREUFL7K c3JUhaHzeSgzVtTtP0LJKL/hn9hGogYP68BQyDr/uESv/300cxr1/LtUECVn1Pwj gFG+RHesNhTw1qeKueepPHxCL11igJCL3QmwGJnbgfkhTxNPUJXvXBlmCHWyDlHk QUj8rV9UpkzZhCt0W03uMYhP12q0 -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org