$ rpki-client -vvf rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7BDA9EFC3BD011ECBCB98F83C4F9AE02.roa File: 7BDA9EFC3BD011ECBCB98F83C4F9AE02.roa (raw, json) Hash identifier: E+m9L0yJEauLT/loQc4VAkKKPAy/lZhP1VQLxbLboq4= Subject key identifier: AB:29:D3:CE:1C:6A:96:0B:29:AA:75:48:B4:12:82:C1:28:9E:E1:F8 Certificate issuer: /CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Certificate serial: 0388 Authority key identifier: 8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7BDA9EFC3BD011ECBCB98F83C4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:24 +0000 ROA not before: Sat 09 Dec 2023 01:53:24 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139640 IP address blocks: 43.251.224.0/22 maxlen: 24 103.43.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Validity Not Before: Dec 9 01:53:24 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573c894-58ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:75:6b:25:39:ef:95:a4:3b:16:02:e5:e5:82: 7c:08:27:8f:e6:bc:e2:78:61:20:f3:a6:b8:7d:bd: 12:49:f0:25:ce:4b:e0:dc:45:98:1d:59:08:59:d0: 6f:49:e7:0c:be:09:a2:fa:fa:79:10:c5:30:98:3d: e0:ed:c1:b0:6a:fa:7e:f2:50:77:22:91:29:72:4b: 94:7f:ef:17:1f:e9:61:58:30:40:89:b9:ad:94:e3: bd:f7:48:e8:27:e7:f0:5f:30:db:58:a0:32:c5:67: 4d:1d:8e:e1:77:e7:21:56:20:71:19:de:a7:0a:9e: 49:95:9f:f8:11:d9:08:9b:56:0a:5f:41:4b:fb:a8: 85:4e:c4:ce:f1:82:ed:9a:07:1c:dc:67:84:61:e2: ba:2a:df:8c:7c:3f:51:bb:65:91:46:00:d5:4d:05: 41:52:b8:66:22:f8:f0:d3:e2:80:d9:d3:f4:72:40: 39:4b:34:b3:ae:07:18:36:61:f8:b6:da:47:c8:61: 83:b2:11:43:5c:6a:b7:55:9b:ae:b2:ab:d6:f0:43: 9b:7e:e0:63:d9:2d:1f:21:bc:c1:d3:9b:47:f2:98: 72:b1:db:a1:0b:75:7a:44:0a:05:21:e4:7e:22:14: d4:8e:87:93:37:4e:2c:bd:d8:b1:e9:39:b3:d5:7c: cc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:29:D3:CE:1C:6A:96:0B:29:AA:75:48:B4:12:82:C1:28:9E:E1:F8 X509v3 Authority Key Identifier: keyid:8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/7BDA9EFC3BD011ECBCB98F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.224.0/22 103.43.8.0/22 Signature Algorithm: sha256WithRSAEncryption bb:50:b7:e4:eb:c3:f6:32:2d:58:91:63:4c:c4:36:6a:0c:f7: de:89:40:ce:1e:29:7e:f8:d1:a3:fa:b0:68:78:69:37:c6:54: 6f:9f:26:62:38:92:61:cc:27:1c:1c:2c:c8:7b:24:85:ed:b0: 6f:d4:ca:b5:91:fe:e9:8c:43:94:5e:12:85:93:0f:7d:5e:73: 5d:5f:a0:f0:79:1f:a4:79:99:1b:2f:11:b5:a3:f1:a6:c3:47: e9:31:2b:e4:7d:dd:8c:41:ca:77:03:ea:b3:fa:fb:b5:9a:ec: 3b:72:cf:72:b2:bc:cc:19:df:e4:b6:df:37:0e:f7:23:61:76: cf:0d:64:62:b7:82:6f:58:91:74:86:2c:cd:e1:b1:e7:68:9b: 91:13:cb:c5:56:cd:a1:35:73:90:dd:77:d9:4b:4e:30:44:43: 25:ec:45:e3:b7:8c:f7:91:73:34:81:87:e5:a1:dc:bc:5c:e5: 89:93:a4:45:83:ba:f3:91:f4:ec:62:e9:e6:53:a6:87:a5:af: ea:c2:ce:4c:e8:e7:ea:da:11:33:8c:f8:18:75:48:c2:e9:aa: 26:ea:dc:72:90:71:28:75:45:84:76:f5:ef:b8:5b:f3:fa:8b: 61:4c:89:ae:ce:05:dd:0a:3a:16:00:3f:36:40:f2:20:7e:bd: 6e:be:d5:98 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MEQxMTAvBgNVBAUTKDhDMzgxNDcyM0ZDNzU1RTlBOUJBMUJDMzM1NjY0QTUx OUJCQzFDRUUwHhcNMjMxMjA5MDE1MzI0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzg5NC01OGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHVrJTnvlaQ7FgLl5YJ8CCeP5rzieGEg86a4fb0SSfAlzkvg3EWYHVkIWdBv SecMvgmi+vp5EMUwmD3g7cGwavp+8lB3IpEpckuUf+8XH+lhWDBAibmtlOO990jo J+fwXzDbWKAyxWdNHY7hd+chViBxGd6nCp5JlZ/4EdkIm1YKX0FL+6iFTsTO8YLt mgcc3GeEYeK6Kt+MfD9Ru2WRRgDVTQVBUrhmIvjw0+KA2dP0ckA5SzSzrgcYNmH4 ttpHyGGDshFDXGq3VZuusqvW8EObfuBj2S0fIbzB05tH8physduhC3V6RAoFIeR+ IhTUjoeTN04svdix6Tmz1XzMBQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKsp084c apYLKap1SLQSgsEonuH4MB8GA1UdIwQYMBaAFIw4FHI/x1XpqbobwzVmSlGbvBzu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQwRC81MEY3NzVBNjNC Q0MxMUVDQTc5MUYyNURDNEY5QUUwMi9qRGdVY2pfSFZlbXB1aHZETldaS1VadThI TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEZ1Vjal9IVmVtcHVodkROV1pLVVp1OEhPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MEQvNTBGNzc1QTYzQkNDMTFFQ0E3OTFGMjVEQzRGOUFFMDIvN0JEQTlFRkMz QkQwMTFFQ0JDQjk4RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr++ADBAJnKwgwDQYJKoZIhvcNAQELBQADggEBALtQt+Tr w/YyLViRY0zENmoM996JQM4eKX740aP6sGh4aTfGVG+fJmI4kmHMJxwcLMh7JIXt sG/UyrWR/umMQ5ReEoWTD31ec11foPB5H6R5mRsvEbWj8abDR+kxK+R93YxByncD 6rP6+7Wa7Dtyz3KyvMwZ3+S23zcO9yNhds8NZGK3gm9YkXSGLM3hsedom5ETy8VW zaE1c5Ddd9lLTjBEQyXsReO3jPeRczSBh+Wh3Lxc5YmTpEWDuvOR9Oxi6eZTpoel r+rCzkzo5+raETOM+Bh1SMLpqibq3HKQcSh1RYR29e+4W/P6i2FMia7OBd0KOhYA PzZA8iB+vW6+1Zg= -----END CERTIFICATE-----Generated at Sun May 5 03:47:42 2024 by rpki-client on console-fra.rpki-client.org