$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa File: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (raw, json) Hash identifier: A09DUVwYkWjHYaG8K/Fs4waJczx1Va6QnO4lBZ4e0CM= Subject key identifier: CB:FF:CD:10:C6:DC:8D:BA:E3:2D:78:B9:6F:3E:4D:5E:4C:40:83:99 Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 0831 Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa Signing time: Wed 28 Feb 2024 21:59:33 +0000 ROA not before: Wed 28 Feb 2024 21:59:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18359 IP address blocks: 103.90.7.0/24 maxlen: 24 2001:df0:c900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Feb 28 21:59:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65dfacc5-5e5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:e4:4b:c7:f2:de:42:7b:a8:a5:9a:26:1d:56: b9:52:01:71:d6:3b:10:6a:c8:59:01:c7:44:a6:e8: 9b:c8:dc:41:cb:87:3c:4f:70:d2:70:34:0c:38:e4: 6c:0c:cc:f9:9f:90:92:5c:c3:6e:ba:4e:b2:c7:27: 97:89:90:b2:46:45:72:4a:47:46:b4:bf:0a:b3:fc: d8:95:f8:1c:87:fb:e5:b3:2a:fa:05:64:e0:ef:4d: d3:ee:c2:b1:da:68:17:df:a9:41:cc:d3:14:e9:b9: 86:fb:09:9d:f2:33:04:14:ff:06:09:3c:14:dc:ff: f5:8e:08:f0:c6:09:ec:71:a5:0c:11:40:92:4e:2a: ca:2d:c8:c9:36:fa:75:62:ec:8f:98:c1:48:b2:93: fe:90:89:ad:96:1f:18:98:e1:da:8e:57:7e:10:73: 05:31:e4:31:21:94:de:cc:2a:cf:68:62:91:0a:ec: 76:c6:e2:d7:3f:3f:0c:23:cc:bf:a0:01:30:60:1f: c7:94:77:1b:15:de:ff:06:ef:d5:5d:de:4e:e3:f4: 2e:43:03:55:56:10:71:35:85:4a:4a:9f:03:50:e0: e5:69:13:e4:83:68:1c:0a:76:0f:e5:6c:50:00:dc: 85:ca:20:56:b6:7e:05:14:13:43:17:ec:1b:f7:4d: ad:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FF:CD:10:C6:DC:8D:BA:E3:2D:78:B9:6F:3E:4D:5E:4C:40:83:99 X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/33F713A8A3CF11EAA31D8C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.7.0/24 IPv6: 2001:df0:c900::/48 Signature Algorithm: sha256WithRSAEncryption 94:9d:8d:69:d1:53:62:59:5e:b9:04:d8:8d:78:7e:72:ff:cb: 9d:e9:dd:c2:0c:4d:45:dd:71:80:9e:7f:18:8d:70:14:d0:4e: 8b:e0:8c:bb:5a:c7:97:42:b7:d6:02:84:94:85:5c:5c:16:11: 0d:c1:fb:dc:f0:4e:19:3e:52:96:ee:15:ba:3e:c1:4e:31:99: 82:17:68:23:ea:e2:be:06:ee:c4:a5:2b:b0:d2:ed:d6:0f:7a: 02:05:d5:50:8d:91:3b:2f:64:06:62:c4:8e:56:75:b8:8b:5b: ae:d9:a9:b0:50:98:95:2d:8c:e0:9b:f9:cd:33:78:7d:9a:d2: a2:20:82:ba:3f:b9:b9:1b:39:2a:3d:25:e5:ec:fb:a0:c9:36: 56:0e:d6:75:80:60:60:4a:de:2a:6f:35:01:09:ae:f2:af:be: e8:e7:03:1c:08:e4:4c:a8:5e:d2:af:43:18:20:7d:7f:27:a0: b4:02:37:ff:4d:f9:31:d4:4b:59:44:12:df:14:32:2b:b7:d2: ae:44:b3:a2:cc:48:5c:d9:c1:21:9d:6b:a8:cc:2a:f8:f8:fd: 0a:f6:58:85:6b:9e:ef:f1:dd:60:03:51:b6:d0:25:80:d3:cc: 86:52:cb:03:71:a2:4f:94:f6:d7:d4:5d:86:2e:3d:0b:f5:02: ab:ab:b2:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjQwMjI4MjE1OTMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmYWNjNS01ZTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ORLx/LeQnuopZomHVa5UgFx1jsQashZAcdEpuibyNxBy4c8T3DScDQMOORs DMz5n5CSXMNuuk6yxyeXiZCyRkVySkdGtL8Ks/zYlfgch/vlsyr6BWTg703T7sKx 2mgX36lBzNMU6bmG+wmd8jMEFP8GCTwU3P/1jgjwxgnscaUMEUCSTirKLcjJNvp1 YuyPmMFIspP+kImtlh8YmOHajld+EHMFMeQxIZTezCrPaGKRCux2xuLXPz8MI8y/ oAEwYB/HlHcbFd7/Bu/VXd5O4/QuQwNVVhBxNYVKSp8DUODlaRPkg2gcCnYP5WxQ ANyFyiBWtn4FFBNDF+wb902tsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMv/zRDG 3I264y14uW8+TV5MQIOZMB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFFOEIvODA3REZEQTBBM0NFMTFFQThCQUU2NTIwQzRGOUFFMDIvMzNGNzEzQThB M0NGMTFFQUEzMUQ4QzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnWgcwDwQCAAIwCQMHACABDfDJADANBgkqhkiG9w0BAQsF AAOCAQEAlJ2NadFTYlleuQTYjXh+cv/LnendwgxNRd1xgJ5/GI1wFNBOi+CMu1rH l0K31gKElIVcXBYRDcH73PBOGT5Slu4Vuj7BTjGZghdoI+rivgbuxKUrsNLt1g96 AgXVUI2ROy9kBmLEjlZ1uItbrtmpsFCYlS2M4Jv5zTN4fZrSoiCCuj+5uRs5Kj0l 5ez7oMk2Vg7WdYBgYEreKm81AQmu8q++6OcDHAjkTKhe0q9DGCB9fyegtAI3/035 MdRLWUQS3xQyK7fSrkSzosxIXNnBIZ1rqMwq+Pj9CvZYhWue7/HdYANRttAlgNPM hlLLA3GiT5T219Rdhi49C/UCq6uyEg== -----END CERTIFICATE-----Generated at Wed May 22 23:17:04 2024 by rpki-client on console-ams.rpki-client.org