$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/34BB892E449C11EEB60E1441C4F9AE02.roa File: 34BB892E449C11EEB60E1441C4F9AE02.roa (raw, json) Hash identifier: FmDMcqicvsxlDbwC/EaBQPR0koJ5obImCIK4fks4NaY= Subject key identifier: A2:99:35:BE:5A:D9:46:7E:1F:A7:C1:ED:5F:D8:87:6A:FC:92:01:49 Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: C8 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/34BB892E449C11EEB60E1441C4F9AE02.roa Signing time: Thu 01 Feb 2024 05:57:12 +0000 ROA not before: Thu 01 Feb 2024 05:57:12 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133148 IP address blocks: 103.66.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Feb 1 05:57:12 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bb32b7-acf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:12:91:4f:d2:d6:45:3e:a9:84:3c:61:18: 96:00:ab:d3:54:59:88:51:7c:00:7b:a0:67:dc:e3: b4:c6:96:f2:e8:5d:c5:3a:68:ff:97:3d:1a:0f:8f: 8b:62:6b:51:f1:3f:dc:31:b0:dd:8f:65:98:3a:d2: fb:0a:4f:7b:4e:67:e2:e5:eb:15:51:de:08:99:0f: d6:b7:33:8c:3b:fe:a3:16:98:dd:ac:d0:75:93:41: 01:44:bc:15:30:30:97:f5:86:2d:24:be:85:5f:d1: 34:dd:d6:ec:80:b8:f7:9c:c5:17:6e:9a:2d:bf:18: 90:90:b7:a2:d6:a5:f3:43:fa:cd:62:ad:a0:92:51: 78:cc:a1:2a:99:c7:37:72:d7:55:96:7e:10:ec:ad: fc:17:89:97:2b:ed:cf:76:71:f4:7c:88:ab:71:28: 0d:65:71:67:4d:53:80:14:72:68:36:52:18:47:2b: 32:27:cc:b7:cc:bf:c3:e3:b4:c5:76:22:fc:09:37: ca:74:1f:c3:a1:a9:16:87:9d:c5:69:04:25:49:b3: 96:f7:ec:4b:56:71:4e:4c:f5:7d:01:a3:80:0c:51: c7:d5:c2:a4:b8:0c:e0:0d:52:43:32:3a:6f:03:87: f9:76:30:c5:22:6e:81:4c:cb:3d:4b:a2:80:b3:18: 43:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:99:35:BE:5A:D9:46:7E:1F:A7:C1:ED:5F:D8:87:6A:FC:92:01:49 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/34BB892E449C11EEB60E1441C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.229.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:3b:89:ea:34:b0:f3:93:e1:5f:fe:c8:d4:17:b9:af:5a:24: 81:28:bd:c3:df:2f:3a:a6:60:55:62:04:b5:05:73:41:42:28: ef:00:84:1f:d9:c5:a6:24:61:c2:1e:fc:d7:56:47:10:cc:81: f8:35:09:55:9c:62:0a:fc:a0:b2:cd:92:49:48:fd:d6:56:2f: ee:20:80:35:41:76:cd:22:cb:36:d9:d3:cb:8f:18:5d:20:db: 49:9d:7b:bf:ed:ac:cb:43:0d:45:a4:d4:08:79:f5:79:8a:e2: 26:af:aa:16:cb:74:c3:66:3a:ab:09:d8:ab:cf:14:2a:ff:6b: 7d:51:a9:c7:0f:2d:54:2b:38:6e:29:47:ad:ca:bd:bf:28:78: c7:06:c4:51:e1:f8:78:83:5a:a8:90:a5:6d:56:69:44:02:50: ef:61:0b:27:4c:2e:df:23:1e:fe:1c:70:f4:43:a0:a9:72:f4: 7f:ad:20:33:12:13:00:25:35:c9:b9:ce:04:71:87:49:8e:3a: bb:c4:f7:23:ee:a5:41:57:2b:4b:a2:6e:f2:27:74:b5:26:58: 19:30:a4:d4:51:e5:df:fa:4f:55:92:82:9e:58:05:b3:64:ae: b0:c9:cb:0b:16:23:af:29:21:26:fc:43:db:3d:6b:31:f7:9b: 1e:21:27:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjQwMjAxMDU1NzEyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiMzJiNy1hY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaISkU/S1kU+qYQ8YRiWAKvTVFmIUXwAe6Bn3OO0xpby6F3FOmj/lz0aD4+L YmtR8T/cMbDdj2WYOtL7Ck97Tmfi5esVUd4ImQ/WtzOMO/6jFpjdrNB1k0EBRLwV MDCX9YYtJL6FX9E03dbsgLj3nMUXbpotvxiQkLei1qXzQ/rNYq2gklF4zKEqmcc3 ctdVln4Q7K38F4mXK+3PdnH0fIircSgNZXFnTVOAFHJoNlIYRysyJ8y3zL/D47TF diL8CTfKdB/DoakWh53FaQQlSbOW9+xLVnFOTPV9AaOADFHH1cKkuAzgDVJDMjpv A4f5djDFIm6BTMs9S6KAsxhD3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKKZNb5a 2UZ+H6fB7V/Yh2r8kgFJMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQ2NEQvMzcwNzg2Qzg5OTk0MTFFRDg1NjczMTFGQzRGOUFFMDIvMzRCQjg5MkU0 NDlDMTFFRUI2MEUxNDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQuUwDQYJKoZIhvcNAQELBQADggEBAE47ieo0sPOT4V/+ yNQXua9aJIEovcPfLzqmYFViBLUFc0FCKO8AhB/ZxaYkYcIe/NdWRxDMgfg1CVWc Ygr8oLLNkklI/dZWL+4ggDVBds0iyzbZ08uPGF0g20mde7/trMtDDUWk1Ah59XmK 4iavqhbLdMNmOqsJ2KvPFCr/a31RqccPLVQrOG4pR63Kvb8oeMcGxFHh+HiDWqiQ pW1WaUQCUO9hCydMLt8jHv4ccPRDoKly9H+tIDMSEwAlNcm5zgRxh0mOOrvE9yPu pUFXK0uibvIndLUmWBkwpNRR5d/6T1WSgp5YBbNkrrDJywsWI68pISb8Q9s9azH3 mx4hJ9s= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org