$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/65866C4815D111EABE986319C4F9AE02.roa File: 65866C4815D111EABE986319C4F9AE02.roa (raw, json) Hash identifier: bE3U6nrCmV5LZYyjfhqmrx0+q5PYDYCOOXB/IfjAEuo= Subject key identifier: 9F:ED:11:09:5F:08:6C:37:86:26:8A:31:5F:CA:05:5E:44:18:51:D4 Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0AE6 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/65866C4815D111EABE986319C4F9AE02.roa Signing time: Wed 20 Dec 2023 19:47:38 +0000 ROA not before: Wed 20 Dec 2023 19:47:38 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134971 IP address blocks: 103.252.224.0/22 maxlen: 24 123.253.220.0/22 maxlen: 24 2401:7940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2790 (0xae6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Dec 20 19:47:38 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658344d9-60bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:18:3d:c4:f3:70:90:f7:53:c4:00:00:e9:58: be:42:fb:96:40:3e:03:9f:51:f4:60:4e:3e:23:7e: c9:78:b3:69:17:3a:7f:a9:bf:ce:8a:cd:2b:d8:21: 2c:77:2b:9b:a5:8c:94:8d:63:52:e0:3c:df:38:32: f3:5e:ad:0d:b2:31:f9:85:14:4f:5b:9f:eb:5a:ff: 29:ff:5d:15:39:37:9e:a0:d7:79:5b:17:c9:bd:9b: 02:8e:2d:a4:2e:2e:57:ec:50:2e:4a:c2:39:4e:2f: 60:27:f8:d0:27:26:4b:f8:2e:e7:da:48:fb:41:ea: 77:dd:b9:b6:fc:d7:20:e4:cc:06:05:97:69:02:c6: 02:be:23:9e:cd:1f:ea:85:89:c9:c9:ff:97:2c:1f: 03:04:96:0c:63:ed:0c:37:32:0f:7e:9d:18:e4:ff: 64:86:49:01:2b:5c:93:3e:04:26:a8:09:f1:8d:25: 66:20:0b:2c:b8:56:b8:e2:a0:b7:5a:af:fa:62:c7: 6b:5b:b1:6a:d3:e2:ec:7e:92:cc:1b:18:53:3d:a7: 3c:78:17:be:42:b0:e6:5a:bb:6a:71:d9:fe:f6:72: fe:4e:17:c8:2e:5e:ac:12:0f:12:37:1b:4c:bb:c4: ab:a3:87:be:af:7a:09:91:92:63:b1:4b:24:d7:1a: 3b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:ED:11:09:5F:08:6C:37:86:26:8A:31:5F:CA:05:5E:44:18:51:D4 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/65866C4815D111EABE986319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.224.0/22 123.253.220.0/22 IPv6: 2401:7940::/32 Signature Algorithm: sha256WithRSAEncryption b5:78:00:bc:34:65:25:97:85:a4:82:c1:76:8c:ee:0f:fb:d6: f6:aa:11:8c:61:6a:57:6a:5e:bc:21:a1:44:87:9e:6b:9e:17: f2:df:89:1c:68:9c:9f:af:89:27:69:24:f9:d6:88:f4:0e:27: 5e:28:7c:98:56:f1:f6:c4:9b:9d:97:2e:66:48:81:31:4f:50: ea:f5:8d:a2:c3:4c:71:39:35:7a:b2:f0:6d:59:3d:bd:f7:19: 1c:da:0d:c1:61:3e:59:e5:e4:5a:1b:58:84:92:8f:b2:51:3e: e9:13:8c:d8:7d:47:36:1c:6f:ca:2a:38:c9:ff:8e:53:5f:6c: 8f:db:c3:29:23:37:0d:c5:df:f6:d8:a3:8b:24:f8:8e:2f:80: 1d:df:3d:d2:87:bf:16:96:0c:72:6c:37:1e:fb:e0:22:3b:24: 04:03:5c:8f:d9:12:f6:71:ec:02:4d:be:ee:50:ec:98:40:58: 37:85:fb:aa:1b:24:f0:b7:37:32:7e:ce:6b:01:ad:a3:72:14: b0:e9:c6:83:fa:c1:35:5d:47:65:e6:76:87:9f:fd:c1:a5:50: 81:f4:7b:c8:07:75:3f:b6:41:13:3d:65:43:4b:f2:39:2e:87: 9a:d0:3b:e9:63:bf:66:bd:7a:6a:44:cb:13:db:9d:ca:5f:59: 40:40:80:7f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjMxMjIwMTk0NzM4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNDRkOS02MGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xg9xPNwkPdTxAAA6Vi+QvuWQD4Dn1H0YE4+I37JeLNpFzp/qb/Ois0r2CEs dyubpYyUjWNS4DzfODLzXq0NsjH5hRRPW5/rWv8p/10VOTeeoNd5WxfJvZsCji2k Li5X7FAuSsI5Ti9gJ/jQJyZL+C7n2kj7Qep33bm2/Ncg5MwGBZdpAsYCviOezR/q hYnJyf+XLB8DBJYMY+0MNzIPfp0Y5P9khkkBK1yTPgQmqAnxjSVmIAssuFa44qC3 Wq/6YsdrW7Fq0+LsfpLMGxhTPac8eBe+QrDmWrtqcdn+9nL+ThfILl6sEg8SNxtM u8Sro4e+r3oJkZJjsUsk1xo7tQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJ/tEQlf CGw3hiaKMV/KBV5EGFHUMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI2QUMvRDdFOThBNkUxNUQwMTFFQTkzQ0EwRTE5QzRGOUFFMDIvNjU4NjZDNDgx NUQxMTFFQUJFOTg2MzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn/OADBAJ7/dwwDQQCAAIwBwMFACQBeUAwDQYJKoZIhvcN AQELBQADggEBALV4ALw0ZSWXhaSCwXaM7g/71vaqEYxhaldqXrwhoUSHnmueF/Lf iRxonJ+viSdpJPnWiPQOJ14ofJhW8fbEm52XLmZIgTFPUOr1jaLDTHE5NXqy8G1Z Pb33GRzaDcFhPlnl5FobWISSj7JRPukTjNh9RzYcb8oqOMn/jlNfbI/bwykjNw3F 3/bYo4sk+I4vgB3fPdKHvxaWDHJsNx774CI7JAQDXI/ZEvZx7AJNvu5Q7JhAWDeF +6obJPC3NzJ+zmsBraNyFLDpxoP6wTVdR2Xmdoef/cGlUIH0e8gHdT+2QRM9ZUNL 8jkuh5rQO+ljv2a9empEyxPbncpfWUBAgH8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org