$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/C9819022CE7011E98E86DD52C4F9AE02.roa File: C9819022CE7011E98E86DD52C4F9AE02.roa (raw, json) Hash identifier: kI5JnSJu06qgqTZp/9lZiT474okX7X5b01wQ0iP2l+4= Subject key identifier: FB:C9:3B:AE:DF:73:5B:EA:AD:F4:0B:1C:5D:24:0E:90:6C:C4:8F:22 Certificate issuer: /CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Certificate serial: 0C6B Authority key identifier: F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/C9819022CE7011E98E86DD52C4F9AE02.roa Signing time: Wed 14 Feb 2024 18:56:31 +0000 ROA not before: Wed 14 Feb 2024 18:56:30 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133210 IP address blocks: 103.112.80.0/24 maxlen: 24 103.255.250.0/24 maxlen: 24 2001:df1:a800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED571/serialNumber=F4F15C675ED9A5C2D1995B27FB53FF60FF0249E0 Validity Not Before: Feb 14 18:56:30 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65cd0cde-2d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:83:5d:78:a1:86:cd:6c:e9:f8:62:b2:b2:17: 15:f3:64:f5:1c:8d:d0:99:4d:97:2f:31:98:e6:f5: 43:3e:d2:dd:db:e8:16:3a:4d:47:a0:6f:49:12:10: 17:74:e1:f9:c9:8f:dc:57:29:22:a6:59:58:00:77: 2c:a3:ae:26:ef:a5:00:e9:57:41:db:57:35:fd:87: dc:06:86:f1:3f:29:e4:ee:d4:56:b5:a4:0f:3a:f8: 54:9f:a6:db:e0:ff:27:91:39:de:25:0d:15:f8:8a: 5f:29:9f:1e:e4:5b:4b:bc:eb:0a:f0:bc:8a:c9:db: c0:0f:c8:83:7f:97:68:43:25:f6:9a:a0:bc:1d:5f: 37:d5:f8:51:04:d1:5f:93:40:5a:03:21:75:85:8e: c7:6f:6d:22:b3:8c:ed:ff:99:24:cf:e2:04:09:32: 85:8b:b9:f7:72:1c:86:97:89:40:bd:8f:bd:8a:c3: db:c9:7a:6c:36:87:0e:5d:78:75:0d:ca:9e:59:63: 04:07:2d:95:49:48:dc:53:1a:2d:d7:67:61:66:56: 03:d1:b0:8a:e5:a6:99:ef:2e:2f:25:d6:66:17:5f: 62:7b:d8:01:4e:d6:f4:5a:27:62:3f:45:80:26:d1: 72:9b:21:1a:0a:04:48:b3:69:f6:83:0a:c1:8b:c2: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C9:3B:AE:DF:73:5B:EA:AD:F4:0B:1C:5D:24:0E:90:6C:C4:8F:22 X509v3 Authority Key Identifier: keyid:F4:F1:5C:67:5E:D9:A5:C2:D1:99:5B:27:FB:53:FF:60:FF:02:49:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9PFcZ17ZpcLRmVsn-1P_YP8CSeA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED571/ECD2DF96CE6F11E9A0D86D51C4F9AE02/C9819022CE7011E98E86DD52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.80.0/24 103.255.250.0/24 IPv6: 2001:df1:a800::/48 Signature Algorithm: sha256WithRSAEncryption b2:8b:ff:0e:1d:e7:9a:72:44:c5:77:4f:9c:e5:be:51:4e:d5: 91:42:0d:6b:89:b6:b9:dc:1d:6e:6d:0c:d2:ba:ad:e1:51:71: 68:77:33:4f:3f:79:d7:2c:48:81:c1:00:66:d9:9a:16:5d:03: 51:f4:a5:ef:52:94:f9:22:55:9b:42:f6:43:c4:cf:fd:f3:7d: 9a:5f:c6:88:7a:8e:03:64:78:c1:be:3c:c0:6a:82:1f:91:ba: e9:7b:97:74:29:09:69:86:fb:e9:59:ca:c0:ed:b7:5b:24:dd: 4f:3e:9f:16:a5:45:bc:6a:fb:ff:af:8c:91:e9:b1:34:4f:75: 33:5a:86:d4:99:d7:06:9e:9d:4d:bf:4d:09:c0:c7:f3:d7:f3: 90:f7:95:a1:0c:ba:41:68:de:06:86:4f:38:14:8c:38:19:3b: fd:fe:df:ba:c6:6a:0c:09:b1:44:b1:db:7f:c3:08:5d:50:3f: ee:9e:62:40:32:aa:57:8f:aa:4e:5c:8d:d2:d9:bf:7d:d3:14: 79:ad:2e:08:0c:3b:f5:b3:be:0b:8f:eb:bc:6e:55:2c:6d:b9: a7:98:69:dc:36:40:1a:89:e1:63:e1:ca:03:78:81:fa:f8:ea: 22:11:4a:1f:dc:c4:8f:ff:8c:35:d3:73:6a:ef:1d:07:7a:d6: d0:e4:b0:11 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1NzExMTAvBgNVBAUTKEY0RjE1QzY3NUVEOUE1QzJEMTk5NUIyN0ZCNTNGRjYw RkYwMjQ5RTAwHhcNMjQwMjE0MTg1NjMwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkMGNkZS0yZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4NdeKGGzWzp+GKyshcV82T1HI3QmU2XLzGY5vVDPtLd2+gWOk1HoG9JEhAX dOH5yY/cVykipllYAHcso64m76UA6VdB21c1/YfcBobxPynk7tRWtaQPOvhUn6bb 4P8nkTneJQ0V+IpfKZ8e5FtLvOsK8LyKydvAD8iDf5doQyX2mqC8HV831fhRBNFf k0BaAyF1hY7Hb20is4zt/5kkz+IECTKFi7n3chyGl4lAvY+9isPbyXpsNocOXXh1 DcqeWWMEBy2VSUjcUxot12dhZlYD0bCK5aaZ7y4vJdZmF19ie9gBTtb0WidiP0WA JtFymyEaCgRIs2n2gwrBi8L8NQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPvJO67f c1vqrfQLHF0kDpBsxI8iMB8GA1UdIwQYMBaAFPTxXGde2aXC0ZlbJ/tT/2D/Akng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU3MS9FQ0QyREY5NkNF NkYxMUU5QTBEODZENTFDNEY5QUUwMi85UEZjWjE3WnBjTFJtVnNuLTFQX1lQOENT ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQRmNaMTdacGNMUm1Wc24tMVBfWVA4Q1NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ1NzEvRUNEMkRGOTZDRTZGMTFFOUEwRDg2RDUxQzRGOUFFMDIvQzk4MTkwMjJD RTcwMTFFOThFODZERDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABncFADBABn//owDwQCAAIwCQMHACABDfGoADANBgkqhkiG 9w0BAQsFAAOCAQEAsov/Dh3nmnJExXdPnOW+UU7VkUINa4m2udwdbm0M0rqt4VFx aHczTz951yxIgcEAZtmaFl0DUfSl71KU+SJVm0L2Q8TP/fN9ml/GiHqOA2R4wb48 wGqCH5G66XuXdCkJaYb76VnKwO23WyTdTz6fFqVFvGr7/6+MkemxNE91M1qG1JnX Bp6dTb9NCcDH89fzkPeVoQy6QWjeBoZPOBSMOBk7/f7fusZqDAmxRLHbf8MIXVA/ 7p5iQDKqV4+qTlyN0tm/fdMUea0uCAw79bO+C4/rvG5VLG25p5hp3DZAGonhY+HK A3iB+vjqIhFKH9zEj/+MNdNzau8dB3rW0OSwEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org