$ rpki-client -vvf rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/5A2DDDF2368F11EAB3D4CE7FC4F9AE02.roa File: 5A2DDDF2368F11EAB3D4CE7FC4F9AE02.roa (raw, json) Hash identifier: 3F/TejTZYAuiF6kSX5sGBk6FgiPZU1gx1/Gn0XMbkqU= Subject key identifier: 68:14:5B:27:DE:29:5B:D2:5F:96:A8:8A:10:C8:41:E0:62:39:02:82 Certificate issuer: /CN=A912F22D/serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Certificate serial: 0A44 Authority key identifier: 2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/5A2DDDF2368F11EAB3D4CE7FC4F9AE02.roa Signing time: Thu 04 Jan 2024 20:18:14 +0000 ROA not before: Thu 04 Jan 2024 20:18:13 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138557 IP address blocks: 103.132.216.0/22 maxlen: 22 103.132.216.0/23 maxlen: 23 103.132.216.0/24 maxlen: 24 103.132.217.0/24 maxlen: 24 103.132.218.0/23 maxlen: 23 103.132.218.0/24 maxlen: 24 103.132.219.0/24 maxlen: 24 2404:4040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F22D/serialNumber=2DAB82A0A9B8E4496A9DA0DDEDEF7E9316251768 Validity Not Before: Jan 4 20:18:13 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65971285-c96e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:95:77:28:7c:4f:98:94:a4:fa:51:a3:07:f2: 99:6a:0f:49:78:d4:29:e8:6f:37:d0:9b:95:58:8b: fb:31:0e:87:fc:70:29:be:f9:20:10:3e:18:25:77: 67:1c:38:92:ad:69:6f:73:76:06:ce:1b:84:51:05: 02:52:fe:01:fc:56:6e:86:4c:ff:00:6c:cd:50:14: 89:ab:12:35:1e:79:62:f3:08:77:d7:5f:96:43:6f: 7d:d6:72:d5:6f:96:3c:be:dc:c2:a8:31:d9:8a:11: ce:39:92:8a:aa:0d:65:19:bb:e2:2e:50:1f:ff:04: 98:f5:f5:fb:c1:a5:26:ea:20:43:03:8d:3d:f1:7e: c3:ce:98:f9:22:b1:44:51:48:76:d3:d7:55:82:2f: e3:3f:07:d1:0f:16:73:59:7c:a9:75:21:61:35:b3: 3b:a9:59:33:eb:3d:33:c3:5f:8a:07:cf:d3:0c:e2: 9a:41:f8:b9:80:5a:f2:38:e7:03:db:e1:69:cd:6f: 05:4e:65:24:cc:ab:ed:be:52:9a:c5:d8:d4:87:61: 47:6c:cf:8a:39:d0:96:f8:4c:d3:c3:3f:20:8d:36: a3:2d:b2:d1:69:b8:ce:5a:a3:f6:2a:ed:ca:5c:82: 77:43:f2:c7:a4:5b:91:9f:21:ff:2d:84:d4:70:d7: 55:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:14:5B:27:DE:29:5B:D2:5F:96:A8:8A:10:C8:41:E0:62:39:02:82 X509v3 Authority Key Identifier: keyid:2D:AB:82:A0:A9:B8:E4:49:6A:9D:A0:DD:ED:EF:7E:93:16:25:17:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/LauCoKm45ElqnaDd7e9-kxYlF2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LauCoKm45ElqnaDd7e9-kxYlF2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F22D/2AAFCCEE368E11EA92A49E7DC4F9AE02/5A2DDDF2368F11EAB3D4CE7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.216.0/22 IPv6: 2404:4040::/32 Signature Algorithm: sha256WithRSAEncryption 51:e6:18:ce:6e:48:a5:eb:23:3f:cc:dc:b1:60:47:de:c9:27: 02:93:46:f5:ee:7c:9b:2a:07:ff:42:2d:94:37:a6:b2:65:0e: e6:00:44:7e:fe:9c:4f:58:83:4e:d0:92:ee:ea:51:f9:6d:30: a6:81:4a:60:9a:bb:3d:b3:fc:93:c5:ff:ae:83:f7:73:37:6f: 49:7f:f3:ef:c9:7e:f9:dd:21:ed:e6:47:3e:a7:aa:6b:48:ec: d7:2c:c3:fb:c2:81:0d:4a:c3:3b:f8:df:6b:8a:97:2a:d3:41: f5:bc:59:2f:75:02:7a:f2:ac:4d:51:cd:f5:9a:9c:9c:cc:49: a7:59:f1:f3:3c:8a:1e:12:11:4d:d8:19:a5:09:e7:c9:84:f2: 83:39:71:a0:c8:1e:0b:33:7e:66:f1:04:db:84:53:15:c1:cb: 95:fb:3d:6c:58:7f:98:c2:26:d7:ac:ec:31:8c:bf:3d:bc:7e: a5:a3:c5:1a:a7:2b:c7:61:09:67:0d:82:e5:a6:85:7f:0c:1d: 18:1b:31:05:7b:ff:f4:37:ec:6f:10:6d:53:8f:16:4c:2f:f4: 6b:50:b7:cf:43:f2:06:52:63:e5:89:f0:b6:b0:97:fe:82:08: 56:bd:86:41:e3:c8:20:cd:f9:5e:03:65:d9:11:45:2e:4f:c7: c0:06:d0:6f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYyMkQxMTAvBgNVBAUTKDJEQUI4MkEwQTlCOEU0NDk2QTlEQTBEREVERUY3RTkz MTYyNTE3NjgwHhcNMjQwMTA0MjAxODEzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3MTI4NS1jOTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspV3KHxPmJSk+lGjB/KZag9JeNQp6G830JuVWIv7MQ6H/HApvvkgED4YJXdn HDiSrWlvc3YGzhuEUQUCUv4B/FZuhkz/AGzNUBSJqxI1Hnli8wh311+WQ2991nLV b5Y8vtzCqDHZihHOOZKKqg1lGbviLlAf/wSY9fX7waUm6iBDA4098X7Dzpj5IrFE UUh209dVgi/jPwfRDxZzWXypdSFhNbM7qVkz6z0zw1+KB8/TDOKaQfi5gFryOOcD 2+FpzW8FTmUkzKvtvlKaxdjUh2FHbM+KOdCW+EzTwz8gjTajLbLRabjOWqP2Ku3K XIJ3Q/LHpFuRnyH/LYTUcNdV9QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGgUWyfe KVvSX5aoihDIQeBiOQKCMB8GA1UdIwQYMBaAFC2rgqCpuORJap2g3e3vfpMWJRdo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjIyRC8yQUFGQ0NFRTM2 OEUxMUVBOTJBNDlFN0RDNEY5QUUwMi9MYXVDb0ttNDVFbHFuYURkN2U5LWt4WWxG MmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xhdUNvS200NUVscW5hRGQ3ZTkta3hZbEYyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYyMkQvMkFBRkNDRUUzNjhFMTFFQTkyQTQ5RTdEQzRGOUFFMDIvNUEyRERERjIz NjhGMTFFQUIzRDRDRTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhNgwDQQCAAIwBwMFACQEQEAwDQYJKoZIhvcNAQELBQAD ggEBAFHmGM5uSKXrIz/M3LFgR97JJwKTRvXufJsqB/9CLZQ3prJlDuYARH7+nE9Y g07Qku7qUfltMKaBSmCauz2z/JPF/66D93M3b0l/8+/JfvndIe3mRz6nqmtI7Ncs w/vCgQ1Kwzv432uKlyrTQfW8WS91AnryrE1RzfWanJzMSadZ8fM8ih4SEU3YGaUJ 58mE8oM5caDIHgszfmbxBNuEUxXBy5X7PWxYf5jCJtes7DGMvz28fqWjxRqnK8dh CWcNguWmhX8MHRgbMQV7//Q37G8QbVOPFkwv9GtQt89D8gZSY+WJ8Lawl/6CCFa9 hkHjyCDN+V4DZdkRRS5Px8AG0G8= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org