$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa File: 7A40B730E2D811EBAB97665DC4F9AE02.roa (raw, json) Hash identifier: zKRcCckVz57z0VxNoDUTAF4AYak1diEBJ0bZxZgdtMU= Subject key identifier: 39:A3:39:80:75:3C:FC:C0:2D:88:B6:91:45:08:F7:EA:D2:8C:5B:01 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0D98 Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa Signing time: Wed 20 Dec 2023 18:26:26 +0000 ROA not before: Wed 20 Dec 2023 18:26:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 59238 IP address blocks: 103.253.132.0/23 maxlen: 24 2400:c540::/32 maxlen: 32 2400:c540::/47 maxlen: 48 2400:c540:2::/47 maxlen: 47 2400:c540:2::/48 maxlen: 48 2400:c540:4::/48 maxlen: 48 2400:c540:52::/48 maxlen: 48 2400:c540:53::/48 maxlen: 48 2400:c540:65::/48 maxlen: 48 2400:c540:80::/48 maxlen: 48 2400:c540:ba::/48 maxlen: 48 2400:c540:100::/48 maxlen: 48 2400:c540:110::/48 maxlen: 48 2400:c540:1cc::/48 maxlen: 48 2400:c540:c000::/36 maxlen: 36 2400:c540:c036::/48 maxlen: 48 2400:c540:c276::/48 maxlen: 48 2400:c540:c344::/48 maxlen: 48 2400:c540:c392::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 18:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3480 (0xd98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Dec 20 18:26:26 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658331d2-c91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:5c:04:31:a8:73:c2:d5:65:77:d5:b3:62: 38:56:d6:c5:1b:c9:7b:7d:ec:6f:a6:6b:f4:bb:98: 93:15:da:63:80:5b:6e:cf:53:5b:91:5b:b9:44:a5: 49:2e:ef:ed:98:7a:43:0d:13:af:8e:ff:e5:58:41: 85:15:60:29:35:a7:23:d1:f4:a0:42:10:db:95:d7: 0d:3c:95:70:17:6e:af:6d:e8:a4:8b:b3:2f:6a:e9: 43:7e:8f:d9:5d:89:67:f4:f3:4d:58:6b:1b:71:44: a5:ba:12:a6:12:a6:c1:3d:b7:0f:1a:a0:2b:18:f2: bf:15:33:73:f5:e4:e7:ba:17:26:e0:37:59:fe:e1: 9c:b9:31:09:44:f5:69:16:6f:e8:9b:f2:0c:54:0d: cb:79:f9:f6:18:41:44:6a:a0:63:dd:7c:1d:56:95: e4:66:f2:f2:ba:ad:47:49:35:39:6b:dd:89:31:dd: 37:71:ac:67:32:8e:7b:c3:9e:a1:35:8a:e3:a0:1a: bc:d4:a1:f8:07:21:ad:04:9f:db:28:cd:48:b0:50: ba:e5:d0:20:f4:f7:90:c9:aa:06:3b:4d:08:40:6e: 7a:f2:e5:2b:b5:51:c7:8a:67:df:dd:74:fc:de:e9: f8:ed:4e:d5:cc:11:16:53:4b:fd:4d:73:e0:f8:aa: ae:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A3:39:80:75:3C:FC:C0:2D:88:B6:91:45:08:F7:EA:D2:8C:5B:01 X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/7A40B730E2D811EBAB97665DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.132.0/23 IPv6: 2400:c540::/32 Signature Algorithm: sha256WithRSAEncryption 35:4b:dd:1d:cb:4a:53:9a:ab:2d:ad:c2:51:6b:7f:76:45:58: 10:30:54:b4:dd:8a:78:3a:c5:2e:ce:6f:2d:ff:ca:ae:9b:f9: 4d:7b:da:ce:a4:d0:8e:5b:fb:07:e5:75:7b:88:f7:f3:bf:69: 7a:a1:d4:e5:af:e7:55:9c:f5:0e:ca:7c:c7:92:4f:c9:60:e2: 2b:e2:a2:2d:1b:42:29:4c:0d:6e:81:a4:02:09:8a:93:5e:8b: ed:75:18:1b:07:79:29:79:df:b6:b1:29:77:51:5c:43:3e:50: e7:01:ca:30:d3:e8:0e:af:10:b4:bd:8d:46:78:89:88:c3:2c: bb:c1:29:c2:ad:8d:75:ec:fe:f7:a8:30:63:45:ce:45:27:43: 17:d1:94:d3:6f:a6:e9:24:5c:74:cd:23:6e:f0:87:f2:0c:c7: f8:15:85:c3:be:87:2c:7e:f3:43:10:bd:4c:29:b9:c2:a0:cd: 2b:41:19:19:d4:f0:e6:3d:bb:28:1f:79:2e:57:35:97:4b:70: 93:97:03:e0:d6:44:13:01:87:1d:61:56:5b:b3:2f:5a:71:7c: 03:a8:2c:e0:95:d8:0f:60:bf:1f:44:36:3b:de:6b:3e:7e:86: a8:02:e3:ba:b9:b3:34:71:cd:7b:59:af:64:99:f3:10:45:2b: 71:09:5a:fd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjMxMjIwMTgyNjI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzMzFkMi1jOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNxcBDGoc8LVZXfVs2I4VtbFG8l7fexvpmv0u5iTFdpjgFtuz1NbkVu5RKVJ Lu/tmHpDDROvjv/lWEGFFWApNacj0fSgQhDbldcNPJVwF26vbeiki7MvaulDfo/Z XYln9PNNWGsbcUSluhKmEqbBPbcPGqArGPK/FTNz9eTnuhcm4DdZ/uGcuTEJRPVp Fm/om/IMVA3Lefn2GEFEaqBj3XwdVpXkZvLyuq1HSTU5a92JMd03caxnMo57w56h NYrjoBq81KH4ByGtBJ/bKM1IsFC65dAg9PeQyaoGO00IQG568uUrtVHHimff3XT8 3un47U7VzBEWU0v9TXPg+KquxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDmjOYB1 PPzALYi2kUUI9+rSjFsBMB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVCNEUvQTI4NDNDMDg5NzE3MTFFOTg1RkNBQjE0QzRGOUFFMDIvN0E0MEI3MzBF MkQ4MTFFQkFCOTc2NjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn/YQwDQQCAAIwBwMFACQAxUAwDQYJKoZIhvcNAQELBQAD ggEBADVL3R3LSlOaqy2twlFrf3ZFWBAwVLTding6xS7Oby3/yq6b+U172s6k0I5b +wfldXuI9/O/aXqh1OWv51Wc9Q7KfMeST8lg4ivioi0bQilMDW6BpAIJipNei+11 GBsHeSl537axKXdRXEM+UOcByjDT6A6vELS9jUZ4iYjDLLvBKcKtjXXs/veoMGNF zkUnQxfRlNNvpukkXHTNI27wh/IMx/gVhcO+hyx+80MQvUwpucKgzStBGRnU8OY9 uygfeS5XNZdLcJOXA+DWRBMBhx1hVluzL1pxfAOoLOCV2A9gvx9ENjveaz5+hqgC 47q5szRxzXtZr2SZ8xBFK3EJWv0= -----END CERTIFICATE-----Generated at Sun Jun 2 21:14:27 2024 by rpki-client on console-ams.rpki-client.org