$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/F87AC94C35BB11EDB0314E29C4F9AE02.roa File: F87AC94C35BB11EDB0314E29C4F9AE02.roa (raw, json) Hash identifier: k9wHhpt8UiUsBAqNUER2NNEPeQj08b6887cRTKa39g0= Subject key identifier: 56:B8:78:13:1F:94:44:5A:E0:6E:15:A7:A5:43:81:AD:7E:EB:9F:8B Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 079B Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/F87AC94C35BB11EDB0314E29C4F9AE02.roa Signing time: Wed 12 Jun 2024 18:40:19 +0000 ROA not before: Wed 12 Jun 2024 18:40:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137498 IP address blocks: 103.110.216.0/22 maxlen: 22 103.110.216.0/24 maxlen: 24 103.110.217.0/24 maxlen: 24 103.110.218.0/24 maxlen: 24 103.110.219.0/24 maxlen: 24 2402:9040::/32 maxlen: 32 2402:9040::/36 maxlen: 36 2402:9040:1000::/36 maxlen: 36 2402:9040:2000::/36 maxlen: 36 2402:9040:3000::/36 maxlen: 36 2402:9040:4000::/36 maxlen: 36 2402:9040:5000::/36 maxlen: 36 2402:9040:6000::/36 maxlen: 36 2402:9040:7000::/36 maxlen: 36 2402:9040:8000::/36 maxlen: 36 2402:9040:9000::/36 maxlen: 36 2402:9040:a000::/36 maxlen: 36 2402:9040:b000::/36 maxlen: 36 2402:9040:c000::/36 maxlen: 36 2402:9040:d000::/36 maxlen: 36 2402:9040:e000::/36 maxlen: 36 2402:9040:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:13:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: Jun 12 18:40:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6669eb93-b204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:97:4d:b7:c2:88:ab:2a:70:b6:e2:48:bb:c4: 75:85:4e:21:f4:ad:bb:5d:fc:37:57:8e:eb:99:24: 64:15:f4:fb:df:65:96:92:10:fa:2c:42:d7:51:d4: dc:c2:3e:fb:c4:fd:cb:5b:7a:c8:92:31:c4:49:4c: 31:77:57:34:1f:69:31:e3:1a:9f:bc:06:18:27:fd: 91:2c:80:13:97:fa:fe:78:36:56:30:3d:39:4e:14: 93:a4:ff:cc:1f:f0:7e:8e:e9:3c:88:a2:11:b6:9c: 11:4f:3b:f5:6b:ed:c0:b1:c6:b6:87:d0:0a:f9:56: 4b:51:7d:3a:cf:8b:84:a7:74:9c:48:7a:d3:a7:ac: 71:3d:00:f9:5b:1b:e3:3c:7a:0d:a9:7f:29:24:f5: 4d:fe:2b:04:52:4f:ef:7d:6e:a1:e8:ad:28:a2:f9: 5e:17:1f:fe:7f:3a:79:15:a6:2b:63:78:34:91:ad: 3e:85:33:9c:42:73:d5:2a:bb:29:82:fd:72:fc:1e: a4:49:03:98:0c:8c:93:f2:61:26:ca:2f:e1:01:8a: 47:b4:2f:f1:0b:27:5d:69:d1:91:8a:e7:92:a5:e9: 68:03:ff:d5:57:b8:f3:b7:d7:04:c8:88:54:fd:0f: 43:cc:a3:45:af:06:ff:5a:c7:da:e3:8a:a8:fe:80: b1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:B8:78:13:1F:94:44:5A:E0:6E:15:A7:A5:43:81:AD:7E:EB:9F:8B X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/F87AC94C35BB11EDB0314E29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.216.0/22 IPv6: 2402:9040::/32 Signature Algorithm: sha256WithRSAEncryption 5b:c3:c5:f1:45:8a:71:55:82:79:12:56:bd:00:0e:7b:14:0b: 65:ac:31:bc:b4:e8:c4:c7:52:59:87:de:9f:a7:a8:b6:d1:be: ef:45:53:2f:7a:78:88:31:e5:da:48:30:ae:7a:e5:67:f8:a0: 94:e0:64:85:e2:a5:4d:0e:0b:71:64:3d:e2:c0:03:d5:c9:93: 6b:73:73:52:dc:c7:5d:2a:4d:cb:b6:e0:88:c9:ec:84:90:8f: 05:de:12:7f:9f:6e:90:d9:76:3c:0f:aa:c5:ef:45:77:ef:71: 0c:8e:f6:09:46:49:5a:87:69:9f:eb:8e:ed:d8:9c:8b:26:a7: f0:80:54:11:6b:9e:72:d6:b2:43:17:e9:d1:a2:16:bc:13:6e: 12:8e:33:ec:9d:83:3c:81:51:d6:0f:e4:dc:e8:ce:c9:17:de: 21:14:b4:49:a6:37:10:14:e1:72:f3:e4:5f:a0:23:cd:2d:e5: 92:7b:41:ea:64:0e:17:37:4d:f3:71:d7:40:7f:2e:41:3b:bd: 1e:55:bd:b1:ed:9f:b2:ee:65:67:7f:c1:72:f0:3c:b2:11:cc: 3d:7d:25:97:a3:a7:0b:7c:37:fd:9e:1d:30:81:ef:65:54:00: 17:52:9d:62:fe:50:0b:81:70:e9:25:c9:65:3c:5a:8d:9a:16: 09:32:7f:8a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjQwNjEyMTg0MDE5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY5ZWI5My1iMjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pdNt8KIqypwtuJIu8R1hU4h9K27Xfw3V47rmSRkFfT732WWkhD6LELXUdTc wj77xP3LW3rIkjHESUwxd1c0H2kx4xqfvAYYJ/2RLIATl/r+eDZWMD05ThSTpP/M H/B+juk8iKIRtpwRTzv1a+3Asca2h9AK+VZLUX06z4uEp3ScSHrTp6xxPQD5Wxvj PHoNqX8pJPVN/isEUk/vfW6h6K0oovleFx/+fzp5FaYrY3g0ka0+hTOcQnPVKrsp gv1y/B6kSQOYDIyT8mEmyi/hAYpHtC/xCyddadGRiueSpeloA//VV7jzt9cEyIhU /Q9DzKNFrwb/Wsfa44qo/oCxAwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFa4eBMf lERa4G4Vp6VDga1+65+LMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjcxRTgvNjJCNzg3QTBFRUU0MTFFODlFNjY1RDREQzRGOUFFMDIvRjg3QUM5NEMz NUJCMTFFREIwMzE0RTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbtgwDQQCAAIwBwMFACQCkEAwDQYJKoZIhvcNAQELBQAD ggEBAFvDxfFFinFVgnkSVr0ADnsUC2WsMby06MTHUlmH3p+nqLbRvu9FUy96eIgx 5dpIMK565Wf4oJTgZIXipU0OC3FkPeLAA9XJk2tzc1Lcx10qTcu24IjJ7ISQjwXe En+fbpDZdjwPqsXvRXfvcQyO9glGSVqHaZ/rju3YnIsmp/CAVBFrnnLWskMX6dGi FrwTbhKOM+ydgzyBUdYP5NzozskX3iEUtEmmNxAU4XLz5F+gI80t5ZJ7QepkDhc3 TfNx10B/LkE7vR5VvbHtn7LuZWd/wXLwPLIRzD19JZejpwt8N/2eHTCB72VUABdS nWL+UAuBcOklyWU8Wo2aFgkyf4o= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org