$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa File: 7E7B632E8D6611EDB7F20B1FC4F9AE02.roa (raw, json) Hash identifier: ywhvDJvQxyWr5M5HeSY6XX6kpPDyeGDW1U6yRs4SzyA= Subject key identifier: BF:0D:CD:2D:8B:D8:26:80:C4:F8:9E:66:52:60:CF:13:26:84:1A:49 Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 0119 Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa Signing time: Wed 27 Mar 2024 05:38:01 +0000 ROA not before: Wed 27 Mar 2024 05:38:01 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138687 IP address blocks: 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Mar 27 05:38:01 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6603b0b9-6ffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:6c:e8:a8:44:cb:d9:92:fb:2e:b8:15:5c: 7b:b1:81:0d:7d:3f:f6:03:ff:d6:f1:d6:f1:2d:46: 06:75:d0:32:ee:1e:05:f6:ae:82:a2:9a:10:9f:3d: 0c:0b:f4:48:d8:ee:41:51:bd:45:c9:40:a7:d2:95: 78:10:05:6f:fe:c2:31:d8:ce:a2:08:f8:81:23:78: 9b:cf:86:42:2e:da:88:1d:09:af:bf:cc:de:aa:a4: 96:6e:ce:db:23:19:2f:36:c2:89:63:1d:7f:8b:f2: 1e:76:e1:40:80:60:9c:1b:20:0b:a2:b3:11:6e:66: bc:d2:d7:1d:59:a9:34:0c:e2:5b:30:4f:17:09:8b: 86:1a:5b:39:a9:80:c0:c2:31:20:32:2f:7a:3b:bc: 28:be:ee:b5:51:3e:4a:98:71:12:3b:80:4f:f9:f4: 66:5c:c8:9c:87:38:6a:9a:7d:98:46:cb:0b:26:e9: 46:bb:77:05:8e:40:aa:fc:03:56:7c:80:c8:19:8c: 7a:ad:c9:c9:d3:f0:38:5a:d4:69:02:0f:bf:a9:2d: 57:d3:e3:f0:10:ef:31:08:31:4f:25:33:25:44:85: d9:5c:74:b7:eb:10:01:7b:10:a3:2c:eb:35:62:c0: 3b:89:ab:be:2d:a2:55:a4:c9:27:b3:9a:94:72:0d: c3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0D:CD:2D:8B:D8:26:80:C4:F8:9E:66:52:60:CF:13:26:84:1A:49 X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.123.0/24 Signature Algorithm: sha256WithRSAEncryption b3:96:a5:10:aa:cd:95:96:3f:c3:c9:0e:a0:aa:33:6a:37:0f: 4b:28:cf:ca:c3:40:09:7e:11:29:63:43:0f:13:70:b3:59:50: 11:b4:22:e6:b6:b2:dc:d8:f3:47:0b:71:d7:5a:bb:cb:79:7c: 97:1e:82:81:dd:bc:84:75:67:6d:3a:e1:7f:27:70:66:eb:39: 2f:26:72:87:17:d0:f4:b7:0a:bb:be:1c:26:99:99:3b:20:35: 1b:02:39:e7:8f:44:ab:31:fb:4a:57:bb:3f:51:fb:14:b9:32: 33:c7:49:5c:55:c8:2b:45:f2:5f:b2:42:3a:51:6c:cb:e2:0e: 45:ed:f6:a0:4f:ff:1d:fe:e8:dd:11:1d:2d:eb:31:d6:bd:37: 15:a5:68:1a:63:d5:94:cd:22:60:92:0d:f5:6d:50:04:2f:ce: 33:2f:72:eb:7d:7f:c5:1b:1e:07:5a:5d:30:13:89:24:52:bb: 16:b0:e8:2a:39:48:4a:b0:34:4d:2d:d4:ae:f4:c8:5d:62:bf: 3c:7e:74:92:c0:9a:5c:c2:06:3d:12:43:07:72:68:c9:e6:fe: 10:db:5f:44:82:b3:65:4b:fa:3b:9d:a5:f4:40:31:8c:af:70: fc:3b:95:9c:0d:27:8d:cd:53:35:d0:7e:28:31:21:13:f4:6e: f4:be:1d:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjQwMzI3MDUzODAxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzYjBiOS02ZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxhs6KhEy9mS+y64FVx7sYENfT/2A//W8dbxLUYGddAy7h4F9q6CopoQnz0M C/RI2O5BUb1FyUCn0pV4EAVv/sIx2M6iCPiBI3ibz4ZCLtqIHQmvv8zeqqSWbs7b IxkvNsKJYx1/i/IeduFAgGCcGyALorMRbma80tcdWak0DOJbME8XCYuGGls5qYDA wjEgMi96O7wovu61UT5KmHESO4BP+fRmXMichzhqmn2YRssLJulGu3cFjkCq/ANW fIDIGYx6rcnJ0/A4WtRpAg+/qS1X0+PwEO8xCDFPJTMlRIXZXHS36xABexCjLOs1 YsA7iau+LaJVpMkns5qUcg3DQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL8NzS2L 2CaAxPieZlJgzxMmhBpJMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvN0U3QjYzMkU4 RDY2MTFFREI3RjIwQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVnswDQYJKoZIhvcNAQELBQADggEBALOWpRCqzZWWP8PJ DqCqM2o3D0soz8rDQAl+ESljQw8TcLNZUBG0Iua2stzY80cLcddau8t5fJcegoHd vIR1Z2064X8ncGbrOS8mcocX0PS3Cru+HCaZmTsgNRsCOeePRKsx+0pXuz9R+xS5 MjPHSVxVyCtF8l+yQjpRbMviDkXt9qBP/x3+6N0RHS3rMda9NxWlaBpj1ZTNImCS DfVtUAQvzjMvcut9f8UbHgdaXTATiSRSuxaw6Co5SEqwNE0t1K70yF1ivzx+dJLA mlzCBj0SQwdyaMnm/hDbX0SCs2VL+judpfRAMYyvcPw7lZwNJ43NUzXQfigxIRP0 bvS+HYU= -----END CERTIFICATE-----Generated at Sat May 11 07:50:53 2024 by rpki-client on console-ams.rpki-client.org