$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa File: 8B0201183E8911EFB2DCA846C4F9AE02.roa (raw, json) Hash identifier: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8= Subject key identifier: 26:05:CA:1D:3A:56:F1:A9:3B:9E:FB:D8:9F:0C:7E:B0:31:F9:80:03 Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: 33 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa Signing time: Sat 21 Sep 2024 06:19:38 +0000 ROA not before: Sat 21 Sep 2024 06:19:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 18196 IP address blocks: 103.72.204.0/22 maxlen: 22 103.72.204.0/24 maxlen: 24 103.72.205.0/24 maxlen: 24 103.72.206.0/24 maxlen: 24 103.72.207.0/24 maxlen: 24 160.202.12.0/22 maxlen: 22 160.202.12.0/24 maxlen: 24 160.202.13.0/24 maxlen: 24 160.202.14.0/24 maxlen: 24 160.202.15.0/24 maxlen: 24 2406:e880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Sep 21 06:19:38 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ee657a-300b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:01:a0:42:f3:10:ff:0c:38:18:7a:a8:31:16: 93:b7:fd:ab:06:e7:7d:48:b5:0f:96:9b:1b:cc:64: f1:27:c0:05:ca:85:69:6e:7a:da:1c:07:ba:22:b3: 6f:25:00:a6:80:07:fc:b4:56:9b:ab:80:c6:df:aa: d6:7f:96:42:ec:f8:d5:78:d3:66:4f:ab:28:8f:59: 02:bb:5e:32:d8:ff:0a:df:ad:2a:8a:51:ad:40:d8: 62:9b:12:9a:dd:1e:52:ee:92:da:05:36:7d:f1:f5: b9:82:c6:af:a2:db:2d:37:94:cc:fa:2f:d5:5e:a1: 15:ee:18:b2:5f:17:39:cb:19:bc:9c:7c:95:b6:4f: 7c:c6:88:ad:47:03:b0:bb:e3:bf:d6:82:dc:ec:31: d0:e3:b2:af:5f:f8:28:80:e5:16:0e:cf:98:1a:d8: 6f:0c:aa:e9:6e:b7:4d:32:f4:98:e1:d0:17:d3:e9: 93:77:9d:b7:ac:7d:1f:73:16:bc:6c:95:86:fb:c6: 1c:58:74:0c:10:2f:24:06:a0:23:be:b5:f5:8d:4d: 43:bd:c1:84:b2:82:29:ca:80:79:5f:2e:d7:29:b5: 28:70:0a:ab:a3:d3:63:94:24:7d:41:08:8c:07:18: 1a:4f:4f:b2:7e:f0:db:19:fe:28:d6:04:33:00:2d: 3c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:05:CA:1D:3A:56:F1:A9:3B:9E:FB:D8:9F:0C:7E:B0:31:F9:80:03 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/8B0201183E8911EFB2DCA846C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.204.0/22 160.202.12.0/22 IPv6: 2406:e880::/32 Signature Algorithm: sha256WithRSAEncryption 05:5e:14:ea:d5:18:93:86:e6:3b:13:bc:09:18:be:4d:54:8f: b7:cf:b6:3f:30:c5:d3:29:64:18:af:db:bf:d2:ff:f8:ca:56: e1:85:8a:40:fb:5a:85:3a:2c:88:47:ae:5b:3d:da:23:ed:66: ff:c6:bf:07:29:a1:7f:4f:54:3d:1d:c6:1a:70:0e:a1:32:00: 35:8b:f4:88:63:ca:06:bb:5c:f0:71:30:52:03:6f:52:e9:62: 41:ff:33:df:e5:2d:53:61:70:e8:16:b2:37:b5:35:69:a4:94: 76:d3:dd:8d:ee:fb:e0:e3:5a:2e:b6:18:fb:cf:fc:ce:f0:aa: d9:46:be:21:5a:c6:ca:f2:73:40:8c:92:f1:8f:a5:12:d3:f9: e7:2f:69:81:7c:c7:cb:86:f5:fd:ad:f9:ca:a9:46:15:b9:5d: 86:4a:21:8e:be:2a:7c:60:47:c6:12:f0:9f:dc:0e:0f:bb:8d: 6f:d0:01:fc:d3:cf:bd:be:32:ce:29:0b:21:5f:d1:c9:ff:c6: 67:e1:0e:4d:23:a7:57:d2:51:ef:08:3a:e8:ba:a4:95:13:78: 32:91:65:9d:cf:fc:3d:27:e1:81:77:94:9a:63:06:4b:1c:bb: 02:3c:71:5c:e0:80:2f:be:14:a7:47:d3:e4:7f:a9:41:44:1a: e6:ea:1b:31 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTFFRTExMC8GA1UEBRMoRkFDMkIyRTU0MTQ0NUI1QjQ3QzU5REFFMURFMkRERTg4 NzlBQjhCQjAeFw0yNDA5MjEwNjE5MzhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWU2NTdhLTMwMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD9AaBC8xD/DDgYeqgxFpO3/asG531ItQ+WmxvMZPEnwAXKhWluetocB7ois28l AKaAB/y0VpurgMbfqtZ/lkLs+NV402ZPqyiPWQK7XjLY/wrfrSqKUa1A2GKbEprd HlLuktoFNn3x9bmCxq+i2y03lMz6L9VeoRXuGLJfFznLGbycfJW2T3zGiK1HA7C7 47/WgtzsMdDjsq9f+CiA5RYOz5ga2G8Mqulut00y9Jjh0BfT6ZN3nbesfR9zFrxs lYb7xhxYdAwQLyQGoCO+tfWNTUO9wYSyginKgHlfLtcptShwCquj02OUJH1BCIwH GBpPT7J+8NsZ/ijWBDMALTxxAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUJgXKHTpW 8ak7nvvYnwx+sDH5gAMwHwYDVR0jBBgwFoAU+sKy5UFEW1tHxZ2uHeLd6IeauLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxMUVFL0U5OEE0NjUyM0U4 NzExRUZBQTI0QUE0M0M0RjlBRTAyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXNLeTVVRkVXMXRIeFoydUhlTGQ2SWVhdUxzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi84QjAyMDExODNF ODkxMUVGQjJEQ0E4NDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAmdIzAMEAqDKDDANBAIAAjAHAwUAJAbogDANBgkqhkiG9w0B AQsFAAOCAQEABV4U6tUYk4bmOxO8CRi+TVSPt8+2PzDF0ylkGK/bv9L/+MpW4YWK QPtahTosiEeuWz3aI+1m/8a/Bymhf09UPR3GGnAOoTIANYv0iGPKBrtc8HEwUgNv UuliQf8z3+UtU2Fw6BayN7U1aaSUdtPdje774ONaLrYY+8/8zvCq2Ua+IVrGyvJz QIyS8Y+lEtP55y9pgXzHy4b1/a35yqlGFbldhkohjr4qfGBHxhLwn9wOD7uNb9AB /NPPvb4yzikLIV/Ryf/GZ+EOTSOnV9JR7wg66LqklRN4MpFlnc/8PSfhgXeUmmMG Sxy7AjxxXOCAL74Up0fT5H+pQUQa5uobMQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org