$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa File: 89BDDA4A2F6F11EEB73F3231C4F9AE02.roa (raw, json) Hash identifier: mjOOkG8qUpO+xbmYGSj1aPD8sXpbieWikDw9vb+D/OA= Subject key identifier: DF:CF:E6:D4:65:14:00:F8:17:86:AC:A8:8F:E5:74:DA:A3:9F:7F:FB Certificate issuer: /CN=A91EE099/serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Certificate serial: CC Authority key identifier: F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa Signing time: Mon 19 Aug 2024 05:26:49 +0000 ROA not before: Mon 19 Aug 2024 05:26:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151640 IP address blocks: 103.245.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE099/serialNumber=F9AA636B5C3E30C7A0BA9743015B5B12104CB7A8 Validity Not Before: Aug 19 05:26:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c2d799-8593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c6:3e:3b:9c:d1:bd:a3:48:19:89:6e:d1:71: f9:64:68:eb:22:4f:67:07:14:78:2f:c3:8a:c2:32: 43:40:d1:b4:b1:c3:38:a7:da:f7:49:04:3c:96:ff: 62:28:33:4c:64:6f:f2:e3:39:79:3e:cd:e7:e1:1d: 77:52:d6:8f:1a:01:a5:ec:78:b0:1c:28:0b:40:28: 7c:7d:1f:02:31:ed:3c:68:33:1c:53:7a:a7:2a:e2: 87:ee:74:79:bf:98:74:57:1b:6f:02:ba:88:4b:d9: e5:f2:3d:95:6e:06:06:33:d5:9b:5b:45:76:e4:20: b7:bd:b2:7d:80:b8:07:89:bd:15:37:b4:c7:6c:89: 1f:7e:26:9f:2e:91:52:8f:b9:92:4f:51:2d:f8:fb: 87:8e:83:ce:7f:28:94:04:c2:54:a7:c2:27:2c:1f: c1:07:3b:1a:8e:cd:f2:bc:62:14:cc:76:18:24:54: 75:5b:56:b9:97:18:90:04:fb:19:fa:1c:af:d4:9b: 40:ef:f2:f3:ad:2e:cd:7f:13:27:5c:c9:db:a6:78: 46:0b:71:47:27:a5:b2:47:70:7d:cb:0c:c3:44:05: 0b:d8:61:96:ac:d3:52:9b:65:52:ee:32:6a:05:01: 31:ec:7b:b1:b0:4f:0a:8b:a8:57:5d:12:80:6e:de: e3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CF:E6:D4:65:14:00:F8:17:86:AC:A8:8F:E5:74:DA:A3:9F:7F:FB X509v3 Authority Key Identifier: keyid:F9:AA:63:6B:5C:3E:30:C7:A0:BA:97:43:01:5B:5B:12:10:4C:B7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/-apja1w-MMegupdDAVtbEhBMt6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-apja1w-MMegupdDAVtbEhBMt6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE099/0221D7CE2F6711EE824ADC59C4F9AE02/89BDDA4A2F6F11EEB73F3231C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.24.0/23 Signature Algorithm: sha256WithRSAEncryption 33:85:f7:e8:ce:c2:a1:f4:28:a2:52:be:aa:f7:2c:a3:b3:e0: 6e:7c:1f:41:b0:34:26:38:62:ca:b5:3f:01:f2:b1:cd:76:76: c0:b3:46:d5:15:ed:1c:9f:eb:a5:9a:95:87:57:d8:34:04:86: b8:aa:43:eb:c7:44:68:91:6d:08:94:d5:5d:0f:0d:b2:11:36: 7b:aa:7c:a4:a1:d9:f2:0d:2f:23:9c:58:93:ae:bb:42:7d:75: 43:26:71:8a:73:91:a7:64:ca:82:66:c7:c5:70:40:6e:71:f0: e5:f3:2c:e4:ed:32:27:b8:7a:4a:cd:34:e5:95:69:f3:e6:c5: a2:b7:6a:ad:a3:72:d7:b8:31:f7:30:95:76:1d:c3:d5:b2:fa: 66:8f:04:4c:7b:36:03:31:53:5b:44:a5:4c:fe:be:ef:36:66: 82:0f:c8:f4:f4:8b:ca:69:02:13:51:11:68:fa:a5:48:93:f0: 66:14:25:61:62:8e:18:47:33:31:c4:35:79:18:1e:39:53:67: d6:c5:69:21:e0:63:5b:54:68:c6:76:64:c2:58:8e:f2:c6:d8: 70:09:97:5e:27:16:42:27:c3:9e:8b:e0:fb:4d:58:4a:c3:7d: 30:fd:74:b3:50:68:48:9e:2d:8a:97:e3:69:4b:cc:85:5c:33: 64:ef:59:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwOTkxMTAvBgNVBAUTKEY5QUE2MzZCNUMzRTMwQzdBMEJBOTc0MzAxNUI1QjEy MTA0Q0I3QTgwHhcNMjQwODE5MDUyNjQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyZDc5OS04NTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sY+O5zRvaNIGYlu0XH5ZGjrIk9nBxR4L8OKwjJDQNG0scM4p9r3SQQ8lv9i KDNMZG/y4zl5Ps3n4R13UtaPGgGl7HiwHCgLQCh8fR8CMe08aDMcU3qnKuKH7nR5 v5h0VxtvArqIS9nl8j2VbgYGM9WbW0V25CC3vbJ9gLgHib0VN7THbIkffiafLpFS j7mST1Et+PuHjoPOfyiUBMJUp8InLB/BBzsajs3yvGIUzHYYJFR1W1a5lxiQBPsZ +hyv1JtA7/LzrS7NfxMnXMnbpnhGC3FHJ6WyR3B9ywzDRAUL2GGWrNNSm2VS7jJq BQEx7HuxsE8Ki6hXXRKAbt7jRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/P5tRl FAD4F4asqI/ldNqjn3/7MB8GA1UdIwQYMBaAFPmqY2tcPjDHoLqXQwFbWxIQTLeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTA5OS8wMjIxRDdDRTJG NjcxMUVFODI0QURDNTlDNEY5QUUwMi8tYXBqYTF3LU1NZWd1cGREQVZ0YkVoQk10 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1hcGphMXctTU1lZ3VwZERBVnRiRWhCTXQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwOTkvMDIyMUQ3Q0UyRjY3MTFFRTgyNEFEQzU5QzRGOUFFMDIvODlCRERBNEEy RjZGMTFFRUI3M0YzMjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9RgwDQYJKoZIhvcNAQELBQADggEBADOF9+jOwqH0KKJS vqr3LKOz4G58H0GwNCY4Ysq1PwHysc12dsCzRtUV7Ryf66WalYdX2DQEhriqQ+vH RGiRbQiU1V0PDbIRNnuqfKSh2fINLyOcWJOuu0J9dUMmcYpzkadkyoJmx8VwQG5x 8OXzLOTtMie4ekrNNOWVafPmxaK3aq2jcte4MfcwlXYdw9Wy+maPBEx7NgMxU1tE pUz+vu82ZoIPyPT0i8ppAhNREWj6pUiT8GYUJWFijhhHMzHENXkYHjlTZ9bFaSHg Y1tUaMZ2ZMJYjvLG2HAJl14nFkInw56L4PtNWErDfTD9dLNQaEieLYqX42lLzIVc M2TvWbY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:08 2024 by rpki-client on console-fra.rpki-client.org