$ rpki-client -vvf rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa File: 2907520205DA11EF974A6A0BC4F9AE02.roa (raw, json) Hash identifier: OrAHJTjZ/RqHAwIjIMccBjE+JqFUpBNrVGrdl3fQy10= Subject key identifier: 50:0F:D4:B6:2F:12:BA:2D:67:C7:A7:20:01:36:38:9D:71:A5:A2:28 Certificate issuer: /CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Certificate serial: 6C Authority key identifier: D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa Signing time: Thu 07 Nov 2024 04:57:53 +0000 ROA not before: Thu 07 Nov 2024 04:57:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 152477 IP address blocks: 103.213.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Validity Not Before: Nov 7 04:57:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c48d1-e000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5b:7e:e7:f5:cd:dd:01:16:09:3c:5d:06:21: 17:a0:87:07:53:88:d4:a0:ee:32:58:91:5a:9a:2c: c3:4d:cf:38:ec:60:19:f0:6e:18:54:67:56:68:cf: 46:43:50:98:e6:6a:99:db:24:35:9b:69:31:91:c1: 58:f2:47:43:16:76:1d:03:1a:9c:17:1e:ce:b0:8c: 1a:c4:4b:f7:05:6e:7c:1e:86:41:cd:84:93:96:a0: f4:a2:0a:ac:a9:43:db:c6:36:04:4e:13:45:e9:53: 5e:8b:ab:ed:53:52:76:a0:e9:5e:7b:8d:aa:b0:d6: f1:be:98:db:36:b1:94:1d:2c:5d:13:ec:ec:16:7c: 08:8c:59:37:72:6e:7f:69:57:9c:30:8b:e3:23:70: 78:29:a9:3c:d0:e0:c0:e1:5e:4e:47:53:cd:1d:61: b2:1d:1f:2c:9e:8b:2e:7a:c7:d7:ce:07:a0:99:b4: 25:04:05:08:4b:e1:9e:60:c0:e7:8d:f5:8d:ab:b8: 9b:3e:27:e9:de:85:c2:4c:8d:b2:35:25:cc:19:ac: 1c:e2:a3:c5:e5:8a:55:fa:52:cf:0b:fd:7d:ed:6c: ee:b8:e7:10:09:01:f7:a7:75:76:a7:fe:26:f6:ca: b1:93:cd:2c:bf:81:02:1f:1a:9b:07:77:96:22:0c: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0F:D4:B6:2F:12:BA:2D:67:C7:A7:20:01:36:38:9D:71:A5:A2:28 X509v3 Authority Key Identifier: keyid:D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/2907520205DA11EF974A6A0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.10.0/23 Signature Algorithm: sha256WithRSAEncryption 12:ea:cf:b7:74:a3:1d:43:f1:00:33:66:7e:84:cc:70:50:77: 1e:0d:83:fe:ec:7f:31:ad:d2:cd:a7:c5:9c:e6:15:02:4d:fd: c4:60:44:8f:b5:48:62:b2:1f:b7:db:53:ec:21:0c:80:7b:90: 3e:56:b5:99:3b:07:4b:b0:c8:ca:b2:27:06:4d:43:2a:85:f3: 8b:63:7b:1e:c4:ac:d8:98:dc:bc:1a:5e:55:cd:9d:30:fe:3f: b6:00:ef:ed:ab:ff:5e:7c:c6:1d:fd:ef:fa:f8:dd:1d:21:04: 87:a1:b7:75:07:f7:1b:2f:b7:bb:24:a2:51:7f:ec:a0:37:50: 29:fe:d9:93:df:10:ee:41:59:fe:c7:ef:c1:ed:51:af:bf:31: 3d:6a:9b:8d:da:f3:3f:d5:97:ba:79:21:e9:60:8d:13:dc:c6: a2:a0:6e:c4:04:35:0a:e4:80:78:b1:a7:20:96:9c:fa:b3:0d: 5e:96:b5:e0:69:82:1c:6c:cf:7f:36:26:a9:29:90:23:95:07: 96:a7:03:3b:f2:b3:5d:ee:2e:c9:30:a6:b8:dc:c1:9c:c3:93: d5:af:ee:f7:d2:bf:ff:2c:90:9b:87:33:98:1a:9b:cd:22:e1: 10:4d:ae:27:fa:c0:8e:fb:8c:56:72:aa:7c:d9:de:a9:f5:ca: 23:b8:3c:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 QTQ5QjExMC8GA1UEBRMoRDUwMzdBRjk2OUM4QUNFQTAxQjU3MEZDNjRBREQ0ODI4 QUMwNjQxNDAeFw0yNDExMDcwNDU3NTNaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmM0OGQxLWUwMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUW37n9c3dARYJPF0GIReghwdTiNSg7jJYkVqaLMNNzzjsYBnwbhhUZ1Zoz0ZD UJjmapnbJDWbaTGRwVjyR0MWdh0DGpwXHs6wjBrES/cFbnwehkHNhJOWoPSiCqyp Q9vGNgROE0XpU16Lq+1TUnag6V57jaqw1vG+mNs2sZQdLF0T7OwWfAiMWTdybn9p V5wwi+MjcHgpqTzQ4MDhXk5HU80dYbIdHyyeiy56x9fOB6CZtCUEBQhL4Z5gwOeN 9Y2ruJs+J+nehcJMjbI1JcwZrBzio8XlilX6Us8L/X3tbO645xAJAfendXan/ib2 yrGTzSy/gQIfGpsHd5YiDJDdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUA/Uti8S ui1nx6cgATY4nXGloigwHwYDVR0jBBgwFoAU1QN6+WnIrOoBtXD8ZK3UgorAZBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRBNDlCL0I5NEY2OTM2MDE1 MTExRUY5ODU3QzAxRUM0RjlBRTAyLzFRTjYtV25Jck9vQnRYRDhaSzNVZ29yQVpC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVFONi1XbklyT29CdFhEOFpLM1Vnb3JBWkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ5Qi9COTRGNjkzNjAxNTExMUVGOTg1N0MwMUVDNEY5QUUwMi8yOTA3NTIwMjA1 REExMUVGOTc0QTZBMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfVCjANBgkqhkiG9w0BAQsFAAOCAQEAEurPt3SjHUPxADNm foTMcFB3Hg2D/ux/Ma3SzafFnOYVAk39xGBEj7VIYrIft9tT7CEMgHuQPla1mTsH S7DIyrInBk1DKoXzi2N7HsSs2JjcvBpeVc2dMP4/tgDv7av/XnzGHf3v+vjdHSEE h6G3dQf3Gy+3uySiUX/soDdQKf7Zk98Q7kFZ/sfvwe1Rr78xPWqbjdrzP9WXunkh 6WCNE9zGoqBuxAQ1CuSAeLGnIJac+rMNXpa14GmCHGzPfzYmqSmQI5UHlqcDO/Kz Xe4uyTCmuNzBnMOT1a/u99K//yyQm4czmBqbzSLhEE2uJ/rAjvuMVnKqfNneqfXK I7g8hA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org