$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/93C0837AA52911EC9D2DAE83C4F9AE02.roa File: 93C0837AA52911EC9D2DAE83C4F9AE02.roa (raw, json) Hash identifier: QijzfOAskdpqspHv2hl6DWJmVGpVIoUXprNfU2Pxi8k= Subject key identifier: B8:E1:1A:B5:B8:9A:33:EA:3D:68:94:06:B1:36:40:CA:1D:A5:24:08 Certificate issuer: /CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Certificate serial: 3018 Authority key identifier: 68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/93C0837AA52911EC9D2DAE83C4F9AE02.roa Signing time: Sun 04 Aug 2024 15:51:44 +0000 ROA not before: Sun 04 Aug 2024 15:51:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 6453 IP address blocks: 103.43.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12312 (0x3018) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=686A0057164D1438EC59586DA8BAA5465FD829C7 Validity Not Before: Aug 4 15:51:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66afa390-3420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:35:85:b8:e9:22:1c:f4:5c:a9:85:0a:12:56: ef:d7:d0:50:f9:48:f6:39:a6:90:58:30:a8:2c:3a: a5:60:b2:50:36:01:22:4f:79:ab:d0:5e:1f:7d:f3: 81:a1:e6:36:cb:44:73:14:39:e7:cf:14:d6:6a:25: 3a:ca:6c:82:d0:2b:e7:01:e5:db:32:16:13:5c:90: 0c:f3:4f:66:1b:c8:b0:b6:2e:4b:df:21:e9:c0:15: c7:e5:6d:35:43:74:f9:3c:f8:8d:af:e1:38:3c:65: c4:65:f2:38:8f:22:82:94:0a:70:a3:9f:f3:46:31: c1:49:8d:13:1e:db:07:38:4f:c4:ed:80:7f:1e:56: 06:df:52:3a:bf:16:4b:fd:d1:17:7a:30:40:10:e5: a4:46:8e:cf:49:7b:ca:c8:a5:ce:ac:11:c9:41:28: 84:c1:2c:7e:d3:2a:47:7d:b5:3d:2e:0f:df:27:59: 0a:0d:cf:4a:1e:8a:01:d5:d0:2c:07:70:e1:a2:c0: 55:72:11:dc:ca:03:ff:49:1a:06:8f:a0:ab:23:b5: 5d:33:87:55:dd:f9:ea:43:ed:3d:28:c1:d1:b8:5f: 19:f5:46:21:98:d1:ea:94:07:74:ae:df:16:dd:58: 5a:86:09:f2:21:e1:cf:a3:4a:a7:45:05:f4:cb:24: 8e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E1:1A:B5:B8:9A:33:EA:3D:68:94:06:B1:36:40:CA:1D:A5:24:08 X509v3 Authority Key Identifier: keyid:68:6A:00:57:16:4D:14:38:EC:59:58:6D:A8:BA:A5:46:5F:D8:29:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/aGoAVxZNFDjsWVhtqLqlRl_YKcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aGoAVxZNFDjsWVhtqLqlRl_YKcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/03B80F38DF5C11E2972A94275911EA32/93C0837AA52911EC9D2DAE83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.115.0/24 Signature Algorithm: sha256WithRSAEncryption 84:66:ba:2b:45:4b:e1:63:67:e5:ec:c2:ca:9c:3a:54:7a:a7: 4c:49:f7:f0:ee:f1:16:12:7b:ee:96:56:a9:a7:80:da:e5:50: 83:f9:62:17:88:ee:cd:a2:34:32:ce:54:6a:42:ab:83:a2:c8: 5c:9a:22:92:20:bb:b4:f9:17:f5:b3:6b:2b:df:2f:ee:0c:85: 75:6b:6b:42:7f:20:c8:33:8f:0e:76:67:9c:45:cb:ee:a4:62: 61:da:2c:9d:20:86:a2:c4:bb:2a:49:6a:a2:bd:22:3d:a6:23: a1:91:86:8c:2a:38:15:c3:31:cc:43:18:aa:88:2a:e4:cf:0b: b3:1a:c4:27:f9:0e:8f:e7:c2:e7:22:5d:c0:a9:77:67:c3:3f: 2b:7a:69:3d:50:31:00:3f:9e:3a:57:b0:41:d4:90:ed:b7:95: de:24:10:b1:c1:27:b0:f3:a8:76:46:2f:44:02:aa:75:d2:73: 81:98:9b:f9:2c:77:01:fa:7c:dc:bd:96:ce:9b:8d:ab:25:ed: d0:8e:ed:32:3a:e7:83:47:6d:94:1a:b7:a4:bc:b5:d0:27:15: 5b:08:6b:13:a9:09:54:3b:bc:04:75:da:20:06:18:e5:21:28: b4:9e:88:95:6e:6c:3e:76:e4:c0:71:b9:3e:ca:60:6a:f6:b3: 94:21:03:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKDY4NkEwMDU3MTY0RDE0MzhFQzU5NTg2REE4QkFBNTQ2 NUZEODI5QzcwHhcNMjQwODA0MTU1MTQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmYTM5MC0zNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TWFuOkiHPRcqYUKElbv19BQ+Uj2OaaQWDCoLDqlYLJQNgEiT3mr0F4fffOB oeY2y0RzFDnnzxTWaiU6ymyC0CvnAeXbMhYTXJAM809mG8iwti5L3yHpwBXH5W01 Q3T5PPiNr+E4PGXEZfI4jyKClApwo5/zRjHBSY0THtsHOE/E7YB/HlYG31I6vxZL /dEXejBAEOWkRo7PSXvKyKXOrBHJQSiEwSx+0ypHfbU9Lg/fJ1kKDc9KHooB1dAs B3DhosBVchHcygP/SRoGj6CrI7VdM4dV3fnqQ+09KMHRuF8Z9UYhmNHqlAd0rt8W 3VhahgnyIeHPo0qnRQX0yySOOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLjhGrW4 mjPqPWiUBrE2QModpSQIMB8GA1UdIwQYMBaAFGhqAFcWTRQ47FlYbai6pUZf2CnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wM0I4MEYzOERG NUMxMUUyOTcyQTk0Mjc1OTExRUEzMi9hR29BVnhaTkZEanNXVmh0cUxxbFJsX1lL Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FHb0FWeFpORkRqc1dWaHRxTHFsUmxfWUtjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDNCODBGMzhERjVDMTFFMjk3MkE5NDI3NTkxMUVBMzIvOTNDMDgzN0FB NTI5MTFFQzlEMkRBRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnK3MwDQYJKoZIhvcNAQELBQADggEBAIRmuitFS+FjZ+Xs wsqcOlR6p0xJ9/Du8RYSe+6WVqmngNrlUIP5YheI7s2iNDLOVGpCq4OiyFyaIpIg u7T5F/WzayvfL+4MhXVra0J/IMgzjw52Z5xFy+6kYmHaLJ0ghqLEuypJaqK9Ij2m I6GRhowqOBXDMcxDGKqIKuTPC7MaxCf5Do/nwuciXcCpd2fDPyt6aT1QMQA/njpX sEHUkO23ld4kELHBJ7DzqHZGL0QCqnXSc4GYm/ksdwH6fNy9ls6bjasl7dCO7TI6 54NHbZQat6S8tdAnFVsIaxOpCVQ7vAR12iAGGOUhKLSeiJVubD525MBxuT7KYGr2 s5QhA0A= -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org