$ rpki-client -vvf rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa File: 8B8DEE220F0911E9A8CC815EC4F9AE02.roa (raw, json) Hash identifier: cp4F4jMIgfMAt85H7Jg8xGE9loHPzsrPu/dVe17GTAg= Subject key identifier: 14:6E:41:20:2D:7E:04:34:59:64:3C:1A:5A:87:08:B2:13:5C:22:1B Certificate issuer: /CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Certificate serial: 1026 Authority key identifier: 85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa Signing time: Fri 12 Jan 2024 18:05:52 +0000 ROA not before: Fri 12 Jan 2024 18:05:52 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138528 IP address blocks: 103.132.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4134 (0x1026) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Validity Not Before: Jan 12 18:05:52 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a17f7f-678d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:63:db:8f:80:2a:cc:78:64:07:b1:3f:36:c0: d4:83:ce:30:ea:3a:f6:2e:f4:6e:79:35:79:14:bb: 00:30:e9:1d:03:eb:92:a8:dc:76:d5:ef:6c:bd:10: 89:a9:7d:0d:70:ec:e3:f8:75:6e:2d:e5:9c:bc:61: 95:6a:5a:eb:e7:4a:f3:fe:61:39:f3:65:5a:d7:f7: b9:fb:3a:b9:5e:1a:86:f5:e8:31:6c:62:bf:09:f6: 0c:79:24:94:92:99:10:79:78:42:6d:bd:db:02:9a: 25:43:db:79:fb:17:0f:31:09:4c:68:ce:9a:bb:d3: d0:18:58:9d:5b:2c:a6:c2:0c:b0:0f:bf:a8:66:c7: 22:88:68:6e:06:d9:bc:9a:c8:eb:f2:62:b3:36:09: 81:3d:85:37:4b:33:c2:a9:9c:1d:af:61:66:6d:99: 6d:3d:f3:a4:c4:a5:4e:8b:b4:85:50:5e:63:7f:ba: 32:6f:83:04:1a:57:29:36:dc:e1:6f:cd:c2:dd:59: a4:4f:c4:e9:93:44:bb:fa:80:0f:62:76:58:b1:14: 0e:5a:95:c5:b3:30:39:2b:20:8d:57:3b:cd:19:73: 92:83:d1:2a:04:07:51:cd:d0:65:61:2c:6f:5d:e2: b6:5a:3d:7a:4c:ac:53:f1:e2:c8:ec:48:05:52:51: fa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:6E:41:20:2D:7E:04:34:59:64:3C:1A:5A:87:08:B2:13:5C:22:1B X509v3 Authority Key Identifier: keyid:85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.8.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:ef:ad:bc:f1:56:3c:8f:d0:21:6a:5f:2a:57:ba:24:4c:a6: eb:fe:42:32:32:e5:5f:12:46:d4:92:1f:fa:49:79:f3:38:56: 97:a0:51:c8:db:7b:6e:ff:09:d1:78:0a:c2:de:4c:76:0e:22: 1d:04:f0:a7:b3:28:ef:56:ae:ae:4c:ee:82:a2:a6:55:dd:1d: 44:0e:b9:02:ec:a8:40:dc:ec:e1:f5:b8:1f:6d:18:a0:e2:f7: a2:34:66:15:89:af:c3:bd:6f:21:62:d0:68:88:95:dc:f1:2e: e3:3e:57:73:a0:76:46:6c:df:3c:4c:85:fe:56:a9:79:8a:95: 31:bc:d5:20:b3:7a:41:b6:81:63:4f:f1:33:7f:24:c0:42:6d: d9:ca:ed:5a:2e:c1:80:0f:04:c5:0b:68:ce:1b:29:13:3f:28: 62:3b:13:47:e4:46:56:70:07:83:e0:e6:73:28:a5:8f:93:5c: fc:7b:e2:8e:23:07:67:c0:c0:b5:d7:84:0c:e8:b9:cc:cd:8c: 9d:78:30:30:73:ea:08:88:52:f6:ee:53:43:35:44:95:d9:af: 7d:84:8c:8b:30:b3:8a:d2:e2:34:7a:31:53:5c:cd:8c:6f:ad: e8:3c:6b:1c:eb:64:f1:74:57:f3:8a:5d:85:d1:d7:12:a2:40: 0c:2e:bf:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICECYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNjUxMTAvBgNVBAUTKDg1RUU4QzZGOTU4RDZGM0MxRjE1RDJDMUFCQzRGRTlC QkU2Q0VFRDcwHhcNMjQwMTEyMTgwNTUyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExN2Y3Zi02NzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2Pbj4AqzHhkB7E/NsDUg84w6jr2LvRueTV5FLsAMOkdA+uSqNx21e9svRCJ qX0NcOzj+HVuLeWcvGGValrr50rz/mE582Va1/e5+zq5XhqG9egxbGK/CfYMeSSU kpkQeXhCbb3bApolQ9t5+xcPMQlMaM6au9PQGFidWyymwgywD7+oZsciiGhuBtm8 msjr8mKzNgmBPYU3SzPCqZwdr2FmbZltPfOkxKVOi7SFUF5jf7oyb4MEGlcpNtzh b83C3VmkT8Tpk0S7+oAPYnZYsRQOWpXFszA5KyCNVzvNGXOSg9EqBAdRzdBlYSxv XeK2Wj16TKxT8eLI7EgFUlH6ZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBRuQSAt fgQ0WWQ8GlqHCLITXCIbMB8GA1UdIwQYMBaAFIXujG+VjW88HxXSwavE/pu+bO7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE2NS85MEYwRkZBRTBG MDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6d2ZGZExCcThULW03NXM3 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNk1iNVdOYnp3ZkZkTEJxOFQtbTc1czd0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNjUvOTBGMEZGQUUwRjA4MTFFOTg2ODBFODVDQzRGOUFFMDIvOEI4REVFMjIw RjA5MTFFOUE4Q0M4MTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhAgwDQYJKoZIhvcNAQELBQADggEBAC/vrbzxVjyP0CFq XypXuiRMpuv+QjIy5V8SRtSSH/pJefM4VpegUcjbe27/CdF4CsLeTHYOIh0E8Kez KO9Wrq5M7oKiplXdHUQOuQLsqEDc7OH1uB9tGKDi96I0ZhWJr8O9byFi0GiIldzx LuM+V3OgdkZs3zxMhf5WqXmKlTG81SCzekG2gWNP8TN/JMBCbdnK7VouwYAPBMUL aM4bKRM/KGI7E0fkRlZwB4Pg5nMopY+TXPx74o4jB2fAwLXXhAzouczNjJ14MDBz 6giIUvbuU0M1RJXZr32EjIsws4rS4jR6MVNczYxvreg8axzrZPF0V/OKXYXR1xKi QAwuv3s= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org