$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa File: 425602A0AD2111EA9510AC0DC4F9AE02.roa (raw, json) Hash identifier: /7CSrLoWR8aR13lBtLre9qbhzd0pZBgpO/Lz0opKvSI= Subject key identifier: 1A:D0:BB:AD:81:F4:59:21:2C:70:8D:34:C2:F3:EA:0E:2B:EE:40:67 Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Certificate serial: 0826 Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa Signing time: Fri 10 May 2024 22:00:46 +0000 ROA not before: Fri 10 May 2024 22:00:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140635 IP address blocks: 103.151.76.0/23 maxlen: 23 103.151.76.0/24 maxlen: 24 103.151.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2086 (0x826) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Validity Not Before: May 10 22:00:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663e990e-a62b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:c7:46:aa:d5:ac:74:bb:2a:52:cc:b8:f7: fa:82:2d:40:2a:a9:c1:54:20:bf:63:ee:9c:af:44: c5:cf:8a:2a:67:ba:5f:cf:ac:41:1a:34:f0:13:ea: 35:1b:3c:b8:2b:1e:8e:06:8a:e0:af:a6:47:d0:ba: 10:96:35:42:bc:4f:89:be:36:68:d9:5d:0a:5a:38: c0:b8:7b:0a:37:25:d6:62:c3:bf:07:9d:93:81:92: 2e:5b:1e:f1:58:a2:f6:ef:a0:e9:c1:55:31:33:20: 1e:e4:23:12:d5:b5:70:78:d4:73:43:77:d8:3b:60: ee:d6:45:f9:c9:eb:95:5a:c0:63:1c:c2:01:79:4b: f9:dc:9e:70:67:4e:61:bd:ec:33:81:5a:ba:7c:fe: e3:7b:8c:e5:91:69:76:0e:b2:52:85:e6:40:55:3a: 14:22:c2:81:40:45:b4:e0:10:7b:b5:25:ee:60:a0: b8:a3:aa:da:88:9d:9d:11:9a:9f:cc:d9:a8:e7:4a: a0:32:77:1f:00:ef:d9:7c:85:10:28:e2:e9:c8:f4: d1:56:ad:4d:87:c7:31:d3:1d:a4:41:ac:81:82:ab: e7:4c:9d:3a:83:54:58:73:6a:65:6c:7e:b9:1f:34: 29:6c:f4:9a:78:0a:24:09:c2:a7:4d:74:5a:e3:1b: 74:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D0:BB:AD:81:F4:59:21:2C:70:8D:34:C2:F3:EA:0E:2B:EE:40:67 X509v3 Authority Key Identifier: keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/425602A0AD2111EA9510AC0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.76.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:df:db:78:5b:25:1a:e7:7e:9b:2a:51:70:86:ee:b3:1d:dc: 98:72:9f:12:52:f1:fd:f4:bb:8e:ce:05:f9:85:01:6d:86:8c: ea:d3:a0:0b:66:3f:4d:f6:34:63:08:07:0e:90:bc:2d:16:d5: 48:ef:35:b8:48:e7:5f:51:03:e2:4b:67:fc:8b:cf:2b:83:ef: 63:4a:c9:a7:19:c6:dd:60:4d:cc:fe:61:8c:ac:5e:6b:d6:49: ac:d8:fe:5c:42:49:ae:4f:75:83:2b:64:24:87:99:ec:26:b1: 32:03:1b:fa:65:f2:77:a7:59:31:a2:24:2d:ed:4f:8a:0a:9f: 41:04:28:a2:fa:bc:1d:e9:84:69:f8:c0:06:c4:b7:1e:76:57: e7:17:02:32:c8:58:20:47:bd:8a:ce:a0:8f:60:a7:6b:85:ab: fe:4e:41:35:17:7a:f8:20:64:b7:28:44:47:16:8e:77:a2:42: a8:1c:3d:02:bd:08:e2:7e:89:f3:18:2c:b4:14:69:14:f9:50: dd:e2:cc:4e:13:74:0f:4c:9b:18:25:ea:a4:9d:df:2b:2e:ae: cf:a2:54:c6:97:a3:29:50:14:f2:4f:3b:c7:2f:bd:67:7a:f6: 60:6b:96:74:59:17:73:4a:13:8d:fd:ce:36:5a:1c:85:56:d5: dc:03:73:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMUQxMTAvBgNVBAUTKEQzQTlCNENFNzkzOEQ3MkEyNTUwNTRBMEMwODVCRjc4 OEVCMDY5QjAwHhcNMjQwNTEwMjIwMDQ2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlOTkwZS1hNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugrHRqrVrHS7KlLMuPf6gi1AKqnBVCC/Y+6cr0TFz4oqZ7pfz6xBGjTwE+o1 Gzy4Kx6OBorgr6ZH0LoQljVCvE+JvjZo2V0KWjjAuHsKNyXWYsO/B52TgZIuWx7x WKL276DpwVUxMyAe5CMS1bVweNRzQ3fYO2Du1kX5yeuVWsBjHMIBeUv53J5wZ05h vewzgVq6fP7je4zlkWl2DrJSheZAVToUIsKBQEW04BB7tSXuYKC4o6raiJ2dEZqf zNmo50qgMncfAO/ZfIUQKOLpyPTRVq1Nh8cx0x2kQayBgqvnTJ06g1RYc2plbH65 HzQpbPSaeAokCcKnTXRa4xt0PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBrQu62B 9FkhLHCNNMLz6g4r7kBnMB8GA1UdIwQYMBaAFNOptM55ONcqJVBUoMCFv3iOsGmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMxRC80QjQ1QkZFOEFE MUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5b2xVRlNnd0lXX2VJNndh YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2bTB6bms0MXlvbFVGU2d3SVdfZUk2d2FiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzMUQvNEI0NUJGRThBRDFFMTFFQTk0QzdFNTgxQzRGOUFFMDIvNDI1NjAyQTBB RDIxMTFFQTk1MTBBQzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl0wwDQYJKoZIhvcNAQELBQADggEBAAvf23hbJRrnfpsq UXCG7rMd3JhynxJS8f30u47OBfmFAW2GjOrToAtmP032NGMIBw6QvC0W1UjvNbhI 519RA+JLZ/yLzyuD72NKyacZxt1gTcz+YYysXmvWSazY/lxCSa5PdYMrZCSHmewm sTIDG/pl8nenWTGiJC3tT4oKn0EEKKL6vB3phGn4wAbEtx52V+cXAjLIWCBHvYrO oI9gp2uFq/5OQTUXevggZLcoREcWjneiQqgcPQK9COJ+ifMYLLQUaRT5UN3izE4T dA9Mmxgl6qSd3ysurs+iVMaXoylQFPJPO8cvvWd69mBrlnRZF3NKE439zjZaHIVW 1dwDcwo= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org