$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07F0A538FB8F11EDA5230D60C4F9AE02.roa File: 07F0A538FB8F11EDA5230D60C4F9AE02.roa (raw, json) Hash identifier: jnKSx4xRGrWdxM75pbejEVPMZW+26Ws0dtcSYnzhn/M= Subject key identifier: B8:EA:2D:86:AC:FB:87:B6:6C:99:D1:86:34:34:69:04:0A:A2:88:DB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 8F04 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07F0A538FB8F11EDA5230D60C4F9AE02.roa Signing time: Thu 30 May 2024 16:22:04 +0000 ROA not before: Thu 30 May 2024 16:22:04 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149271 IP address blocks: 103.123.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36612 (0x8f04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 30 16:22:04 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6658a7ac-4153 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:4d:27:8f:a7:b2:26:e0:3d:64:38:a8:c1: 45:63:11:3c:c2:1b:f7:8c:51:08:67:9f:bb:4d:f5: 8e:39:cb:2e:e4:2b:04:7d:6f:e4:32:4e:8f:dc:93: 2e:29:8c:86:ab:dc:bb:6c:88:d0:27:4c:74:69:35: 55:99:bf:4d:ce:64:c1:70:7b:24:7a:81:e9:fa:25: f0:a6:1d:10:96:87:42:87:76:92:92:75:0d:3c:fa: b3:3f:62:00:87:66:46:50:d7:4b:12:1d:95:ce:56: 61:8e:f2:be:ae:e5:a2:77:49:e8:c6:ba:68:49:20: 80:de:1b:31:1d:e2:85:5f:4d:90:5b:d6:38:16:4e: 36:7d:0c:9c:95:e6:b8:d1:95:23:58:86:6d:9f:99: 10:62:fc:6c:e4:ec:65:1d:5f:e5:15:40:95:43:51: a8:02:c0:a5:ec:63:10:cd:6d:1a:a2:e3:19:ff:5a: 61:b0:d7:65:a6:ef:2e:7a:f6:e3:94:40:36:b5:51: cf:37:2e:ac:a6:bf:fd:c0:42:ec:ac:b5:e3:98:ea: 68:b9:f0:6b:1d:2d:e5:ba:d3:8b:b4:69:79:e9:d9: c9:4e:19:ef:e9:21:88:8d:21:13:14:17:ec:01:2d: 0e:cb:42:9b:a2:ac:d7:05:75:db:26:d1:e4:9e:62: a7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EA:2D:86:AC:FB:87:B6:6C:99:D1:86:34:34:69:04:0A:A2:88:DB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/07F0A538FB8F11EDA5230D60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.152.0/23 Signature Algorithm: sha256WithRSAEncryption 75:dc:ad:e0:61:d1:18:12:12:12:7c:7e:a6:c8:10:f7:c6:f5: aa:23:63:95:f0:75:8a:37:89:c3:8f:de:e6:2f:5a:65:c0:b3: 79:43:4f:e1:7f:a4:d8:1e:03:8b:75:80:d1:66:91:61:91:e6: 51:0f:27:8d:0a:a6:8b:2b:a3:76:93:3b:96:2f:41:2b:e6:07: bc:32:ff:4f:60:a7:00:c7:19:75:13:2c:f5:65:01:f4:6c:ee: f7:38:5d:8d:f9:4c:7f:74:03:6b:bc:a6:74:08:60:d1:08:4b: b1:6d:cf:f7:d2:bd:5d:bc:f6:67:4d:e0:49:56:16:bf:63:d6: 03:49:d0:21:e4:e8:c1:bf:ba:62:66:13:c0:e8:f9:59:97:24: a3:66:40:93:79:8d:69:65:56:79:9e:c1:b7:c9:92:ab:1f:e5: 59:39:11:a2:09:b3:2c:ee:79:6b:87:58:c2:92:9f:db:5e:be: 98:f1:6f:f8:08:ea:8b:41:9a:d5:e3:3b:59:56:58:7a:36:f2: 01:da:23:56:05:a2:86:8d:3f:3d:e0:ed:12:ee:dd:fd:5d:e2: f9:0c:e6:12:83:17:77:8b:77:8a:b6:08:88:8b:8a:f9:1a:30: a6:39:43:29:0a:f0:0c:c4:9b:24:0f:b5:3d:02:e5:61:81:39: f0:c9:6e:19 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAI8EMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MDUzMDE2MjIwNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjY1OGE3YWMtNDE1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALooTSePp7Im4D1kOKjBRWMRPMIb94xRCGefu031jjnLLuQrBH1v5DJOj9yT LimMhqvcu2yI0CdMdGk1VZm/Tc5kwXB7JHqB6fol8KYdEJaHQod2kpJ1DTz6sz9i AIdmRlDXSxIdlc5WYY7yvq7londJ6Ma6aEkggN4bMR3ihV9NkFvWOBZONn0MnJXm uNGVI1iGbZ+ZEGL8bOTsZR1f5RVAlUNRqALApexjEM1tGqLjGf9aYbDXZabvLnr2 45RANrVRzzcurKa//cBC7Ky145jqaLnwax0t5brTi7RpeenZyU4Z7+khiI0hExQX 7AEtDstCm6Ks1wV12ybR5J5ip5ECAwEAAaOCApUwggKRMB0GA1UdDgQWBBS46i2G rPuHtmyZ0YY0NGkECqKI2zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzA3RjBBNTM4 RkI4RjExRURBNTIzMEQ2MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ3uYMA0GCSqGSIb3DQEBCwUAA4IBAQB13K3gYdEYEhIS fH6myBD3xvWqI2OV8HWKN4nDj97mL1plwLN5Q0/hf6TYHgOLdYDRZpFhkeZRDyeN CqaLK6N2kzuWL0Er5ge8Mv9PYKcAxxl1Eyz1ZQH0bO73OF2N+Ux/dANrvKZ0CGDR CEuxbc/30r1dvPZnTeBJVha/Y9YDSdAh5OjBv7piZhPA6PlZlySjZkCTeY1pZVZ5 nsG3yZKrH+VZORGiCbMs7nlrh1jCkp/bXr6Y8W/4COqLQZrV4ztZVlh6NvIB2iNW BaKGjT894O0S7t39XeL5DOYSgxd3i3eKtgiIi4r5GjCmOUMpCvAMxJskD7U9AuVh gTnwyW4Z -----END CERTIFICATE-----Generated at Fri Nov 22 11:47:32 2024 by rpki-client on console-ams.rpki-client.org