$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/52801AD8D07111ECAF21A75DC4F9AE02.roa File: 52801AD8D07111ECAF21A75DC4F9AE02.roa (raw, json) Hash identifier: qF7Z9bCq6Bb/CjCCcxi/i5YpMx2Ig2rtU2KcJKtS8jU= Subject key identifier: 73:A5:D2:AA:98:67:41:F4:98:0B:33:E3:3B:05:F9:67:F9:B9:78:71 Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Certificate serial: 025A Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/52801AD8D07111ECAF21A75DC4F9AE02.roa Signing time: Fri 31 May 2024 05:00:54 +0000 ROA not before: Fri 31 May 2024 05:00:54 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132073 IP address blocks: 103.186.52.0/23 maxlen: 23 103.186.52.0/24 maxlen: 24 103.186.53.0/24 maxlen: 24 2001:df0:a140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Validity Not Before: May 31 05:00:54 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66595986-2cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b5:fe:3f:bf:b5:a6:38:b3:58:09:c9:25:e9: 1d:62:20:65:06:6e:54:f1:dd:7e:b3:a1:83:7d:7f: 30:a5:ad:49:84:53:19:a4:f7:16:b2:8c:ec:50:0d: d3:d4:87:a5:d2:b6:bb:45:2a:55:bf:7c:f7:93:39: 41:b6:da:a3:59:dc:b4:a3:41:f7:4f:45:fa:e8:51: a6:66:9c:9b:b7:c0:1d:7d:95:f3:0d:d4:10:80:bb: 87:57:7b:a6:7a:d2:9a:17:06:97:22:a8:05:cc:94: 9b:ea:b3:c2:ec:e6:7c:a7:1d:fe:16:d3:e5:b3:95: 02:a3:0c:55:4d:c4:a6:ae:b0:74:db:30:4a:c3:99: d0:11:66:88:9f:98:f1:85:cc:18:29:71:55:c4:df: 92:e7:94:29:4e:57:96:f0:b2:2f:de:af:ae:59:ce: 33:e3:66:ac:4d:63:7c:d2:24:0f:37:31:7b:8b:4b: 0b:5c:a5:eb:21:10:31:af:55:22:48:ae:92:fe:6d: 64:d5:3d:99:fc:8e:d7:cf:46:e4:6a:69:7d:6a:23: 0b:1c:bc:a6:1b:51:d7:0d:f5:ec:ad:90:5e:0a:81: 78:fe:0b:bb:8f:d7:62:05:0c:16:e2:c7:4e:b4:a7: e7:76:ce:0b:3d:88:7c:84:b8:f4:11:61:a6:4b:54: 59:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A5:D2:AA:98:67:41:F4:98:0B:33:E3:3B:05:F9:67:F9:B9:78:71 X509v3 Authority Key Identifier: keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/52801AD8D07111ECAF21A75DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.52.0/23 IPv6: 2001:df0:a140::/48 Signature Algorithm: sha256WithRSAEncryption 78:46:b1:eb:d9:2f:6c:f7:99:32:af:91:a1:ac:08:6e:97:ae: 5e:ad:d1:a9:09:fc:34:87:5e:34:88:ec:5b:a6:19:72:66:6f: dc:45:54:4e:3f:1b:f8:67:ae:89:f2:a2:9c:c8:98:ea:a7:39: 41:83:23:1a:7f:11:c4:34:42:30:25:57:47:e0:b0:8c:ac:c8: 3a:01:61:67:a8:05:dc:61:e1:8c:6e:b0:e1:e6:cd:d7:a7:30: 2c:86:07:71:05:b8:2e:cd:70:26:95:3c:26:fb:df:21:c5:16: 4d:86:a2:38:ee:86:ba:4f:fe:f6:7e:75:c2:4a:21:e9:68:5a: a2:ee:0b:88:ba:04:18:6e:25:04:ef:fd:c3:f9:14:d3:d1:17: 4e:be:58:c6:c4:8b:9a:bc:61:b1:fe:7f:13:92:1f:46:b2:fc: d7:1d:a3:7e:ce:78:20:bd:4c:7a:f5:39:c4:5d:c7:b9:a1:80: 8d:61:bc:74:f6:fa:61:0c:f4:de:79:d1:89:09:28:a9:d3:6c: 72:ff:cb:13:6e:19:5a:95:34:df:ef:c3:d9:22:73:57:46:03: bb:06:da:45:f3:43:fb:dd:96:88:29:6b:fe:eb:7a:ea:1b:28: 98:4c:05:56:9b:2c:6b:c6:19:ad:df:12:c4:e7:b2:45:21:42: ba:c8:cf:2c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYyNEMxMTAvBgNVBAUTKDZEODBGRUI1MTc4MEY3RjEwNkU2MTkwREMzRTJFRTdD RTc0RUVGQkIwHhcNMjQwNTMxMDUwMDU0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTk4Ni0yY2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5bX+P7+1pjizWAnJJekdYiBlBm5U8d1+s6GDfX8wpa1JhFMZpPcWsozsUA3T 1Iel0ra7RSpVv3z3kzlBttqjWdy0o0H3T0X66FGmZpybt8AdfZXzDdQQgLuHV3um etKaFwaXIqgFzJSb6rPC7OZ8px3+FtPls5UCowxVTcSmrrB02zBKw5nQEWaIn5jx hcwYKXFVxN+S55QpTleW8LIv3q+uWc4z42asTWN80iQPNzF7i0sLXKXrIRAxr1Ui SK6S/m1k1T2Z/I7Xz0bkaml9aiMLHLymG1HXDfXsrZBeCoF4/gu7j9diBQwW4sdO tKfnds4LPYh8hLj0EWGmS1RZYQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHOl0qqY Z0H0mAsz4zsF+Wf5uXhxMB8GA1UdIwQYMBaAFG2A/rUXgPfxBuYZDcPi7nznTu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjI0Qy9CQjUwRDlEMEQw NkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlfRUc1aGtOdy1MdWZPZE83 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JZRC10UmVBOV9FRzVoa053LUx1Zk9kTzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYyNEMvQkI1MEQ5RDBEMDZDMTFFQ0IyQUFBQTM3QzRGOUFFMDIvNTI4MDFBRDhE MDcxMTFFQ0FGMjFBNzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnujQwDwQCAAIwCQMHACABDfChQDANBgkqhkiG9w0BAQsF AAOCAQEAeEax69kvbPeZMq+RoawIbpeuXq3RqQn8NIdeNIjsW6YZcmZv3EVUTj8b +GeuifKinMiY6qc5QYMjGn8RxDRCMCVXR+CwjKzIOgFhZ6gF3GHhjG6w4ebN16cw LIYHcQW4Ls1wJpU8JvvfIcUWTYaiOO6Guk/+9n51wkoh6Whaou4LiLoEGG4lBO/9 w/kU09EXTr5YxsSLmrxhsf5/E5IfRrL81x2jfs54IL1MevU5xF3HuaGAjWG8dPb6 YQz03nnRiQkoqdNscv/LE24ZWpU03+/D2SJzV0YDuwbaRfND+92WiClr/ut66hso mEwFVpssa8YZrd8SxOeyRSFCusjPLA== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org