$ rpki-client -vvf rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa File: 7DE2804AB4BC11EEA02E9A19C4F9AE02.roa (raw, json) Hash identifier: CRo8pDS3QFFaAXTL+9qZM9K187fka63VWkrPnljCSFw= Subject key identifier: 29:1F:B2:06:2E:9F:D0:A1:FC:A5:83:4A:C4:15:11:8B:92:F1:E7:D0 Certificate issuer: /CN=A912B85B/serialNumber=C275F7B8AECC2948D4B4BA999FA9C0E2AD54EA59 Certificate serial: 42 Authority key identifier: C2:75:F7:B8:AE:CC:29:48:D4:B4:BA:99:9F:A9:C0:E2:AD:54:EA:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa Signing time: Fri 17 May 2024 08:42:24 +0000 ROA not before: Fri 17 May 2024 08:42:24 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139000 IP address blocks: 103.138.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.crl rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B85B/serialNumber=C275F7B8AECC2948D4B4BA999FA9C0E2AD54EA59 Validity Not Before: May 17 08:42:24 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66471870-8996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5d:ba:70:8b:68:80:3c:83:8f:ab:1d:1a:2b: 84:6e:35:d9:6e:79:0b:da:f3:c5:ff:49:0b:3b:70: c8:a0:46:cb:8a:f6:d8:da:81:9c:f9:01:e9:bf:c9: 8b:80:d0:39:81:7b:ae:36:83:3c:5e:01:e0:6c:88: 94:84:2d:14:12:3a:44:86:62:17:8a:2e:da:bf:5f: ab:11:7c:ad:50:b6:99:12:d5:1c:0a:72:58:61:91: 8a:09:41:a7:b5:96:ad:cc:ef:88:f5:c9:5d:cc:75: a9:6a:6e:65:96:a9:d6:47:40:cd:b4:40:45:e8:5a: b3:b1:e3:57:38:7b:2e:cc:cd:e4:6b:86:41:76:fe: da:f2:a6:56:bf:2a:a2:de:38:5e:07:c1:3f:8b:64: 6e:f1:cb:43:ec:1b:e5:27:d5:6d:11:cc:87:78:7b: 5b:f0:0f:7f:91:d5:b9:c9:68:25:bd:56:84:f3:0d: e5:d8:b1:48:d0:16:46:93:f9:f9:f2:90:58:ae:47: 24:a7:dc:52:e5:13:70:f6:e8:6f:97:5f:65:e1:96: 5f:cd:24:1c:32:04:f3:67:8d:2d:11:15:53:45:5f: d6:f9:43:b7:62:f3:a5:54:12:fa:55:a5:e7:5e:23: db:43:71:34:61:26:4a:a1:84:54:44:67:44:ab:94: f1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1F:B2:06:2E:9F:D0:A1:FC:A5:83:4A:C4:15:11:8B:92:F1:E7:D0 X509v3 Authority Key Identifier: keyid:C2:75:F7:B8:AE:CC:29:48:D4:B4:BA:99:9F:A9:C0:E2:AD:54:EA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/wnX3uK7MKUjUtLqZn6nA4q1U6lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wnX3uK7MKUjUtLqZn6nA4q1U6lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B85B/2047D746B4BC11EE8D03A518C4F9AE02/7DE2804AB4BC11EEA02E9A19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.87.0/24 Signature Algorithm: sha256WithRSAEncryption bd:4d:bc:4d:4d:10:7b:f3:33:91:7e:85:74:2d:5a:d4:1e:84: a5:09:44:89:71:6f:ca:46:6a:09:0a:a9:98:60:e6:78:81:bd: 25:ba:8a:ea:2e:db:2f:77:80:91:d0:98:e5:63:c9:7d:47:14: 95:cb:06:f6:97:56:b8:b0:4d:1f:48:0d:3b:bf:5a:a4:92:ca: 2c:31:9a:27:c2:ee:b5:97:ac:61:9f:9b:aa:2b:f7:5d:83:a6: 3e:06:f5:86:3a:31:01:f7:74:ab:36:c2:64:11:40:d9:b6:80: 12:5f:ea:f4:b8:ce:6d:a8:b2:da:92:64:87:77:60:be:53:a3: 44:87:dc:73:7c:44:a3:19:21:69:a8:7d:cb:99:13:df:31:31: f6:ff:ec:1a:89:d9:5b:af:7a:ff:b2:98:b2:3e:eb:bc:d3:10: 63:73:8e:e3:d0:09:17:c7:68:cd:83:87:06:7d:4f:86:48:c6: 4b:28:5c:28:55:cc:af:e8:41:bb:82:27:ec:73:93:29:29:ea: 66:03:50:79:b1:8f:84:44:d7:5d:30:e4:ef:97:f1:50:6c:2c: 9a:3d:e6:0a:4c:6f:8e:50:b1:bc:91:95:51:fc:22:a7:e0:27: 57:46:d7:24:4c:12:bf:40:9f:32:aa:be:0f:44:b6:0a:f7:00: 20:b9:de:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qjg1QjExMC8GA1UEBRMoQzI3NUY3QjhBRUNDMjk0OEQ0QjRCQTk5OUZBOUMwRTJB RDU0RUE1OTAeFw0yNDA1MTcwODQyMjRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDcxODcwLTg5OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsXbpwi2iAPIOPqx0aK4RuNdlueQva88X/SQs7cMigRsuK9tjagZz5Aem/yYuA 0DmBe642gzxeAeBsiJSELRQSOkSGYheKLtq/X6sRfK1QtpkS1RwKclhhkYoJQae1 lq3M74j1yV3MdalqbmWWqdZHQM20QEXoWrOx41c4ey7MzeRrhkF2/trypla/KqLe OF4HwT+LZG7xy0PsG+Un1W0RzId4e1vwD3+R1bnJaCW9VoTzDeXYsUjQFkaT+fny kFiuRySn3FLlE3D26G+XX2Xhll/NJBwyBPNnjS0RFVNFX9b5Q7di86VUEvpVpede I9tDcTRhJkqhhFREZ0SrlPHXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKR+yBi6f 0KH8pYNKxBURi5Lx59AwHwYDVR0jBBgwFoAUwnX3uK7MKUjUtLqZn6nA4q1U6lkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCODVCLzIwNDdENzQ2QjRC QzExRUU4RDAzQTUxOEM0RjlBRTAyL3duWDN1SzdNS1VqVXRMcVpuNm5BNHExVTZs ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd25YM3VLN01LVWpVdExxWm42bkE0cTFVNmxrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjg1Qi8yMDQ3RDc0NkI0QkMxMUVFOEQwM0E1MThDNEY5QUUwMi83REUyODA0QUI0 QkMxMUVFQTAyRTlBMTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeKVzANBgkqhkiG9w0BAQsFAAOCAQEAvU28TU0Qe/MzkX6F dC1a1B6EpQlEiXFvykZqCQqpmGDmeIG9JbqK6i7bL3eAkdCY5WPJfUcUlcsG9pdW uLBNH0gNO79apJLKLDGaJ8LutZesYZ+bqiv3XYOmPgb1hjoxAfd0qzbCZBFA2baA El/q9LjObaiy2pJkh3dgvlOjRIfcc3xEoxkhaah9y5kT3zEx9v/sGonZW696/7KY sj7rvNMQY3OO49AJF8dozYOHBn1PhkjGSyhcKFXMr+hBu4In7HOTKSnqZgNQebGP hETXXTDk75fxUGwsmj3mCkxvjlCxvJGVUfwip+AnV0bXJEwSv0CfMqq+D0S2CvcA ILnenw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org