$ rpki-client -vvf rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/77EDB752588311EA98A7C452C4F9AE02.roa File: 77EDB752588311EA98A7C452C4F9AE02.roa (raw, json) Hash identifier: 1xdS0of8jq6b+9XXSYhXqSMAsRL9VgQ5wBfYf2X41Dk= Subject key identifier: 0F:F4:DB:9B:A7:47:35:5C:B1:99:2A:FF:D5:86:98:F7:AE:00:CA:CD Certificate issuer: /CN=A914CD2D/serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Certificate serial: 0A18 Authority key identifier: 32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/77EDB752588311EA98A7C452C4F9AE02.roa Signing time: Sat 22 Jun 2024 20:32:48 +0000 ROA not before: Sat 22 Jun 2024 20:32:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132826 IP address blocks: 103.19.32.0/24 maxlen: 24 103.19.33.0/24 maxlen: 24 103.19.34.0/24 maxlen: 24 103.19.35.0/24 maxlen: 24 110.92.24.0/24 maxlen: 24 110.92.28.0/24 maxlen: 24 110.92.29.0/24 maxlen: 24 110.92.30.0/24 maxlen: 24 203.55.67.0/24 maxlen: 24 203.171.6.0/24 maxlen: 24 203.171.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:31:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CD2D/serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Validity Not Before: Jun 22 20:32:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667734f0-bb6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:46:c7:f2:5f:01:ef:a2:6f:da:da:31:35:b0: 0d:9e:2c:d0:c2:43:c3:60:28:df:a6:32:fb:10:31: 38:b5:e1:11:54:f5:4d:87:27:e2:22:49:cf:7a:0e: 16:ec:95:76:85:a2:8a:a9:bf:b8:8d:34:1a:72:02: c0:77:08:e9:70:0c:30:02:51:62:d0:aa:05:b9:96: ad:9b:9a:ca:a6:39:f9:e5:c3:3d:4c:b6:6a:ac:95: 9c:18:c8:5c:12:08:ec:0b:91:ce:5a:9e:ba:41:62: 1e:7c:b3:f7:cf:5a:96:35:12:07:c7:1e:f0:11:f1: cc:62:02:6f:9b:47:fa:50:eb:f6:68:d0:61:51:f6: 30:2b:c9:b8:61:bf:41:c0:99:70:ad:6d:5f:60:c6: 5c:af:fb:30:15:59:b9:6e:87:7d:f9:cb:9d:ce:9d: f1:54:ac:ce:91:c1:e7:ec:ea:59:1e:7c:c9:b8:5b: a2:6f:60:30:2d:89:4d:e0:10:30:56:16:55:81:1a: d3:9a:4b:00:e1:cf:6c:ee:cc:1f:c3:ec:27:d5:72: 4d:f8:ae:bb:63:a1:05:c5:34:f4:5a:54:62:d4:61: c7:f2:f4:7c:80:e8:26:63:86:61:7f:04:f8:17:9d: 9e:7f:28:5d:73:29:64:8f:a5:b9:f5:4f:cb:49:55: e7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F4:DB:9B:A7:47:35:5C:B1:99:2A:FF:D5:86:98:F7:AE:00:CA:CD X509v3 Authority Key Identifier: keyid:32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/77EDB752588311EA98A7C452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.32.0/22 110.92.24.0/24 110.92.28.0-110.92.30.255 203.55.67.0/24 203.171.6.0/23 Signature Algorithm: sha256WithRSAEncryption 73:bd:1f:c1:f7:48:6f:6a:1b:9c:af:ef:3e:eb:60:11:31:fa: 1c:79:69:1d:29:56:94:18:e3:91:48:7a:8b:ff:28:9a:74:1f: ca:27:60:88:93:1e:02:5e:c4:80:4d:98:06:76:64:f8:ea:6f: 77:3b:04:a3:d2:9f:bd:0f:4f:48:c0:26:81:c7:14:8b:bb:e5: 25:6e:b0:aa:ea:d9:1b:07:bf:e8:04:06:c5:88:40:57:55:8e: cc:84:10:21:45:27:e3:92:ed:4e:c7:97:9f:78:b9:26:a4:20: f7:cb:9a:8a:49:39:04:87:0b:27:4d:21:49:a8:2c:ec:21:83: 09:e1:ec:bf:31:3a:a7:b3:51:9f:6d:9c:9e:4e:95:25:0d:02: 3a:06:58:af:ef:60:0b:6a:d9:98:b2:e4:d2:2b:89:2a:33:d0: 2c:4d:cd:ee:7f:6c:3a:a6:29:20:e3:5e:44:23:80:17:26:8f: 72:40:42:7f:87:f1:1a:6e:61:31:fc:4a:22:e6:fd:f5:6a:20: a4:7f:da:11:f1:24:80:07:b8:28:5b:c6:8b:b4:44:12:e3:85: dd:c4:73:19:9e:d2:3a:8d:0b:e2:14:97:08:0e:72:26:74:f4: 2f:3c:d2:67:7e:2f:b8:aa:cd:54:0e:7b:c8:18:19:34:79:92: d3:76:e5:39 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENEMkQxMTAvBgNVBAUTKDMyOTUyRUE0NjE5NTYzNTZEMzc3RUJERDRCRkExODcy QThFMUU0NDMwHhcNMjQwNjIyMjAzMjQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3MzRmMC1iYjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0bH8l8B76Jv2toxNbANnizQwkPDYCjfpjL7EDE4teERVPVNhyfiIknPeg4W 7JV2haKKqb+4jTQacgLAdwjpcAwwAlFi0KoFuZatm5rKpjn55cM9TLZqrJWcGMhc EgjsC5HOWp66QWIefLP3z1qWNRIHxx7wEfHMYgJvm0f6UOv2aNBhUfYwK8m4Yb9B wJlwrW1fYMZcr/swFVm5bod9+cudzp3xVKzOkcHn7OpZHnzJuFuib2AwLYlN4BAw VhZVgRrTmksA4c9s7swfw+wn1XJN+K67Y6EFxTT0WlRi1GHH8vR8gOgmY4ZhfwT4 F52efyhdcylkj6W59U/LSVXncwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFA/025un RzVcsZkq/9WGmPeuAMrNMB8GA1UdIwQYMBaAFDKVLqRhlWNW03fr3Uv6GHKo4eRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0QyRC85NEZGMUZCQzU4 ODIxMUVBOTVCNDdGNTFDNEY5QUUwMi9NcFV1cEdHVlkxYlRkLXZkU19vWWNxamg1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wVXVwR0dWWTFiVGQtdmRTX29ZY3FqaDVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENEMkQvOTRGRjFGQkM1ODgyMTFFQTk1QjQ3RjUxQzRGOUFFMDIvNzdFREI3NTI1 ODgzMTFFQTk4QTdDNDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYDBAJnEyADBABuXBgwDAMEAm5cHAMEAG5cHgMEAMs3QwMEAcur BjANBgkqhkiG9w0BAQsFAAOCAQEAc70fwfdIb2obnK/vPutgETH6HHlpHSlWlBjj kUh6i/8omnQfyidgiJMeAl7EgE2YBnZk+OpvdzsEo9KfvQ9PSMAmgccUi7vlJW6w qurZGwe/6AQGxYhAV1WOzIQQIUUn45LtTseXn3i5JqQg98uaikk5BIcLJ00hSags 7CGDCeHsvzE6p7NRn22cnk6VJQ0COgZYr+9gC2rZmLLk0iuJKjPQLE3N7n9sOqYp IONeRCOAFyaPckBCf4fxGm5hMfxKIub99WogpH/aEfEkgAe4KFvGi7REEuOF3cRz GZ7SOo0L4hSXCA5yJnT0LzzSZ34vuKrNVA57yBgZNHmS03blOQ== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org