$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/800676321BD311EAA341A62DC4F9AE02.roa File: 800676321BD311EAA341A62DC4F9AE02.roa (raw, json) Hash identifier: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM= Subject key identifier: E3:D2:D5:AD:17:FA:D5:41:77:39:57:30:EA:42:28:22:BC:BF:6F:21 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0B72 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/800676321BD311EAA341A62DC4F9AE02.roa Signing time: Fri 22 Nov 2024 19:07:56 +0000 ROA not before: Fri 22 Nov 2024 19:07:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55854 IP address blocks: 103.237.132.0/24 maxlen: 24 103.237.133.0/24 maxlen: 24 103.241.105.0/24 maxlen: 24 202.74.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Nov 22 19:07:56 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6740d68b-ecd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:59:09:c5:61:57:07:88:ea:e6:81:bb:aa:9c: 7a:8f:24:8b:7f:8c:f5:33:99:1e:d0:69:22:7f:bc: 89:29:6a:ba:c0:e6:3f:9a:69:27:c1:2b:7e:7d:41: b3:f3:72:d5:46:68:a4:6b:d5:ef:de:cc:56:0f:17: 51:10:86:97:5d:7f:43:93:12:17:01:4c:68:10:85: bc:26:09:80:6a:ed:03:e7:dd:f0:00:a7:0f:54:a9: b0:80:fe:4b:f5:52:98:fc:43:e0:cb:3b:55:67:75: 59:c4:50:90:68:8e:82:e9:d9:de:b5:85:3a:45:9e: 4a:28:01:a7:f9:a1:d0:cd:3d:57:11:ed:d9:ef:b0: 01:2f:76:c4:a9:7a:96:1b:30:d3:cc:71:5d:fc:8a: ba:d0:fc:93:61:7e:22:80:d5:a2:c4:0a:bf:0d:b3: 97:aa:3b:89:b8:a5:e3:73:0e:d5:77:59:59:53:48: 53:e8:24:82:a5:7c:44:45:a9:39:dc:15:bf:9d:98: 18:61:49:a2:e9:2f:cc:db:bf:a8:8b:de:42:13:68: 85:1c:81:a4:fb:77:b0:84:27:ac:d2:5e:a9:41:24: c6:b3:7c:df:e7:1b:08:2e:7a:9f:92:fb:8e:91:f6: 9d:e4:84:b3:4d:f5:4b:58:ae:e9:d3:a9:cb:3f:02: 59:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D2:D5:AD:17:FA:D5:41:77:39:57:30:EA:42:28:22:BC:BF:6F:21 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/800676321BD311EAA341A62DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.132.0/23 103.241.105.0/24 202.74.37.0/24 Signature Algorithm: sha256WithRSAEncryption 27:3b:1e:09:64:83:10:a3:5a:43:ba:87:10:84:3d:de:ec:8d: d2:f6:e2:1b:01:0e:cf:d3:f6:b3:f7:6c:0a:c7:47:33:f3:3e: 1f:82:0e:b0:48:c6:32:87:b5:92:93:49:ee:84:8c:1e:da:5f: 60:60:a7:13:13:c9:20:b9:e2:1c:46:46:34:18:bf:85:90:0e: 61:a7:fc:b0:8c:e7:3c:cd:7b:0a:8d:2e:7c:0c:eb:b0:89:4a: 78:a6:41:fd:c9:f9:25:b1:b1:32:68:a5:c3:e8:ab:f7:75:fa: 98:85:96:bc:24:c2:cd:db:e2:5c:33:43:c3:02:d4:66:eb:96: a3:d0:ce:48:b1:b9:2b:01:98:09:b1:57:71:8e:33:03:7c:8d: b3:84:2b:a1:e5:ce:f2:cc:8f:32:a3:a8:61:77:d7:d9:91:80: 42:ec:d4:59:bc:68:f0:53:4e:fa:0f:66:30:4a:a8:6b:f0:ec: 39:02:19:f9:99:75:72:45:ed:42:7e:8d:67:42:56:e3:0e:fd: ca:68:8f:aa:f0:6c:1f:21:7e:12:29:8a:6a:39:e1:11:ec:78: 17:8b:6b:36:fe:6b:eb:b7:82:30:25:05:bd:7e:74:6d:de:c8: 0a:e8:96:86:c3:57:8f:f1:db:a6:c3:27:58:e7:6e:5e:aa:29: 81:2d:a6:53 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjQxMTIyMTkwNzU2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQwZDY4Yi1lY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFkJxWFXB4jq5oG7qpx6jySLf4z1M5ke0Gkif7yJKWq6wOY/mmknwSt+fUGz 83LVRmika9Xv3sxWDxdREIaXXX9DkxIXAUxoEIW8JgmAau0D593wAKcPVKmwgP5L 9VKY/EPgyztVZ3VZxFCQaI6C6dnetYU6RZ5KKAGn+aHQzT1XEe3Z77ABL3bEqXqW GzDTzHFd/Iq60PyTYX4igNWixAq/DbOXqjuJuKXjcw7Vd1lZU0hT6CSCpXxERak5 3BW/nZgYYUmi6S/M27+oi95CE2iFHIGk+3ewhCes0l6pQSTGs3zf5xsILnqfkvuO kfad5ISzTfVLWK7p06nLPwJZdwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOPS1a0X +tVBdzlXMOpCKCK8v28hMB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDg3N0IvMjU5MTAxMUUxQkQyMTFFQUFCRDBFRTJBQzRGOUFFMDIvODAwNjc2MzIx QkQzMTFFQUEzNDFBNjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFn7YQDBABn8WkDBADKSiUwDQYJKoZIhvcNAQELBQADggEB ACc7HglkgxCjWkO6hxCEPd7sjdL24hsBDs/T9rP3bArHRzPzPh+CDrBIxjKHtZKT Se6EjB7aX2BgpxMTySC54hxGRjQYv4WQDmGn/LCM5zzNewqNLnwM67CJSnimQf3J +SWxsTJopcPoq/d1+piFlrwkws3b4lwzQ8MC1GbrlqPQzkixuSsBmAmxV3GOMwN8 jbOEK6HlzvLMjzKjqGF319mRgELs1Fm8aPBTTvoPZjBKqGvw7DkCGfmZdXJF7UJ+ jWdCVuMO/cpoj6rwbB8hfhIpimo54RHseBeLazb+a+u3gjAlBb1+dG3eyArolobD V4/x26bDJ1jnbl6qKYEtplM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org