$ rpki-client -vvf rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/215FAD42B98611E9A053044FC4F9AE02.roa File: 215FAD42B98611E9A053044FC4F9AE02.roa (raw, json) Hash identifier: 1jbkg9LW6RgDfHIeGNZI/aPYd/3lSxoGjvv7ph3A8oA= Subject key identifier: 78:57:B2:C5:7F:3E:65:7C:D7:8F:C2:38:A4:46:9E:63:3E:37:4D:61 Certificate issuer: /CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Certificate serial: 0D7D Authority key identifier: DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/215FAD42B98611E9A053044FC4F9AE02.roa Signing time: Sat 31 Aug 2024 18:36:21 +0000 ROA not before: Sat 31 Aug 2024 18:36:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139293 IP address blocks: 103.140.238.0/24 maxlen: 24 103.140.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3453 (0xd7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Validity Not Before: Aug 31 18:36:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d362a5-21e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ec:75:67:78:f2:27:68:97:98:4d:2c:5d:8b: 46:b3:16:a8:29:70:6c:ac:20:20:8d:cb:75:63:f7: d9:ca:ff:43:d5:24:5c:3b:2d:46:e1:59:7a:19:d0: e0:0b:29:23:e8:6b:eb:36:99:2c:80:01:c2:22:08: 0f:7e:d5:83:72:5e:eb:0e:59:75:82:0c:2d:cb:69: 09:df:4a:01:eb:aa:52:81:e4:8c:a4:c6:a0:72:05: 36:65:72:66:15:19:b7:83:f8:92:9b:05:96:b1:c3: 5e:de:ff:3f:25:ee:a2:30:6d:96:c9:b0:91:f9:65: dd:9a:54:5c:dc:bd:b2:c4:b0:6b:73:44:dc:29:2a: 75:cd:4f:3a:4a:5b:af:f6:cf:a6:a2:94:65:c5:8e: aa:23:b6:c6:3b:f6:17:b3:d9:53:c9:8e:3b:99:ef: b8:d7:d8:7a:e5:a6:7d:f1:26:d4:38:06:7a:e6:20: 07:8d:19:c3:ad:34:a7:15:ea:90:08:6e:f8:a0:7d: e8:d3:65:00:a4:2e:bc:0e:11:02:4c:69:c6:79:58: 63:8f:20:3f:dd:6d:56:bd:6b:f7:9c:b8:7e:d9:2c: 06:f7:98:26:9e:62:43:1d:14:19:b3:c7:a2:ca:dd: 93:8d:ea:bd:fb:38:e7:df:32:41:07:a6:93:5e:c7: 95:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:57:B2:C5:7F:3E:65:7C:D7:8F:C2:38:A4:46:9E:63:3E:37:4D:61 X509v3 Authority Key Identifier: keyid:DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/215FAD42B98611E9A053044FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.238.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:b0:6f:4e:aa:da:a6:d9:56:84:ac:ad:8a:1a:81:e3:e9:94: 29:fd:bd:ae:14:c8:0c:e9:c1:3f:e3:d6:8f:a8:29:6b:7c:27: b9:47:de:fc:23:c8:8f:a2:04:50:0f:59:ee:7f:cd:3b:65:da: 92:c6:04:09:4c:05:d2:d3:3f:b6:68:09:8f:40:3a:ea:b9:6e: 07:c6:b7:c0:c6:4e:d0:6f:dc:dc:7d:cc:26:f4:b9:ad:09:53: 36:6e:a4:85:5c:4d:6f:07:3e:57:fc:a9:00:a7:05:c3:14:1d: 91:7a:94:3b:fe:ce:8e:32:14:0f:e8:2b:0b:a4:49:60:45:53: aa:88:fc:2b:3b:24:25:96:e5:bc:4b:08:1f:8e:66:17:93:15: cd:97:67:cc:72:34:02:65:b7:cf:3e:0b:cd:e2:0d:63:dc:be: 8f:2e:5c:68:ab:96:02:c9:cb:58:85:d0:06:9f:25:10:8f:c2: 3e:18:c8:37:ea:45:89:26:e6:f4:bc:2f:be:66:09:c4:f8:b3: 34:99:41:d5:5c:c7:de:87:c9:04:3b:78:e4:b7:48:73:10:68: ef:76:32:ac:82:48:62:6e:8f:32:ae:00:67:b4:f8:5d:e1:e6: 5d:40:fc:a5:e9:f4:06:93:f1:39:c2:a8:0e:0b:ef:5e:e8:61: e8:44:c5:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxOEUxMTAvBgNVBAUTKERERjhBNEM5QkVDMDEwNEUxNkNDRTMyMUE5NjVBOTJD NjYxNDQ1MzAwHhcNMjQwODMxMTgzNjIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQzNjJhNS0yMWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApux1Z3jyJ2iXmE0sXYtGsxaoKXBsrCAgjct1Y/fZyv9D1SRcOy1G4Vl6GdDg Cykj6GvrNpksgAHCIggPftWDcl7rDll1ggwty2kJ30oB66pSgeSMpMagcgU2ZXJm FRm3g/iSmwWWscNe3v8/Je6iMG2WybCR+WXdmlRc3L2yxLBrc0TcKSp1zU86Sluv 9s+mopRlxY6qI7bGO/YXs9lTyY47me+419h65aZ98SbUOAZ65iAHjRnDrTSnFeqQ CG74oH3o02UApC68DhECTGnGeVhjjyA/3W1WvWv3nLh+2SwG95gmnmJDHRQZs8ei yt2Tjeq9+zjn3zJBB6aTXseVQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHhXssV/ PmV814/COKRGnmM+N01hMB8GA1UdIwQYMBaAFN34pMm+wBBOFszjIallqSxmFEUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE4RS9BNzk2RTkwQUFF MDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVFNFd6T01ocVdXcExHWVVS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaWt5YjdBRUU0V3pPTWhxV1dwTEdZVVJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUxOEUvQTc5NkU5MEFBRTAyMTFFOUIzN0Q4OTY3QzRGOUFFMDIvMjE1RkFENDJC OTg2MTFFOUEwNTMwNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjO4wDQYJKoZIhvcNAQELBQADggEBAF2wb06q2qbZVoSs rYoagePplCn9va4UyAzpwT/j1o+oKWt8J7lH3vwjyI+iBFAPWe5/zTtl2pLGBAlM BdLTP7ZoCY9AOuq5bgfGt8DGTtBv3Nx9zCb0ua0JUzZupIVcTW8HPlf8qQCnBcMU HZF6lDv+zo4yFA/oKwukSWBFU6qI/Cs7JCWW5bxLCB+OZheTFc2XZ8xyNAJlt88+ C83iDWPcvo8uXGirlgLJy1iF0AafJRCPwj4YyDfqRYkm5vS8L75mCcT4szSZQdVc x96HyQQ7eOS3SHMQaO92MqyCSGJujzKuAGe0+F3h5l1A/KXp9AaT8TnCqA4L717o YehExfg= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:20 2024 by rpki-client on console-fra.rpki-client.org