$ rpki-client -vvf rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa File: 47862E7E129C11EEA43CFD46C4F9AE02.roa (raw, json) Hash identifier: M9MqZsVmz62prCxeOcSq9CpUw3/czHK+Un3uXWoG0WQ= Subject key identifier: 27:99:3B:80:2F:64:7E:F4:2A:8B:0A:94:AF:68:BA:AF:85:F2:F6:78 Certificate issuer: /CN=A914C7F8/serialNumber=E50963D70468727356B78B7FC4380974429B64E1 Certificate serial: DE Authority key identifier: E5:09:63:D7:04:68:72:73:56:B7:8B:7F:C4:38:09:74:42:9B:64:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa Signing time: Sat 27 Jul 2024 05:57:07 +0000 ROA not before: Sat 27 Jul 2024 05:57:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151354 IP address blocks: 103.208.67.0/24 maxlen: 24 103.254.214.0/24 maxlen: 24 2001:df2:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.crl rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C7F8/serialNumber=E50963D70468727356B78B7FC4380974429B64E1 Validity Not Before: Jul 27 05:57:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a48c32-be34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f7:dd:06:13:b9:5a:a5:a7:28:5b:6c:5c:16: a3:fa:85:34:fe:26:45:2a:f8:8b:47:dd:f3:c9:89: 09:33:bb:d1:9c:40:9b:64:47:8c:d6:73:d0:7c:e6: df:3c:30:a3:5f:d9:f4:3f:fc:1b:a6:45:39:d2:89: 65:db:62:f4:37:19:6d:58:63:74:08:7a:68:47:6a: 6a:aa:5f:52:ce:ba:c4:7f:29:41:41:59:b4:d1:8b: a0:32:2b:55:70:cf:ae:43:a3:72:62:f0:0a:1e:55: b6:61:00:2e:c4:c3:2b:1a:c4:eb:fe:90:ba:2d:0f: f4:23:aa:36:58:bd:21:81:84:e6:d9:c8:09:b6:fe: e4:81:dd:e4:29:6b:21:79:3a:27:fd:25:05:ee:c2: a9:41:f8:f8:e7:19:f8:12:a9:4f:2c:a9:3e:ba:af: d0:54:5c:ab:6d:72:05:f2:46:b9:4a:67:70:51:fc: 8c:05:14:41:7e:86:6a:96:13:cb:dc:a4:ea:24:7a: 85:e9:ab:73:2d:bb:1a:90:8a:00:6f:c1:ce:4e:7d: 87:05:8d:b4:00:7b:c4:d8:75:b3:62:6b:d8:3c:e5: 1c:58:1b:3b:e0:3c:09:ab:41:f4:c2:04:03:46:bf: 8d:53:16:97:4a:1e:1c:cf:f1:e6:7c:c1:8f:03:76: 85:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:99:3B:80:2F:64:7E:F4:2A:8B:0A:94:AF:68:BA:AF:85:F2:F6:78 X509v3 Authority Key Identifier: keyid:E5:09:63:D7:04:68:72:73:56:B7:8B:7F:C4:38:09:74:42:9B:64:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/5Qlj1wRocnNWt4t_xDgJdEKbZOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Qlj1wRocnNWt4t_xDgJdEKbZOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C7F8/E2510E1C129511EE84BAD746C4F9AE02/47862E7E129C11EEA43CFD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.67.0/24 103.254.214.0/24 IPv6: 2001:df2:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:95:74:c1:b5:47:d1:83:d8:5f:b3:5a:64:a8:04:fa:77:73: cd:b4:14:a1:e9:c9:97:5c:f5:72:97:10:60:4f:4d:32:c5:df: a1:f3:2f:d1:6f:b9:5e:c6:e8:28:1d:36:3c:47:b5:19:59:7d: cf:9b:71:da:0e:44:92:e4:72:b4:23:3e:92:f2:05:c9:64:16: a0:27:1d:be:23:7c:23:0d:65:b2:15:e2:23:77:31:88:a6:ff: 14:80:89:99:e2:6a:b1:ac:95:2e:de:c4:cb:4b:10:76:f4:67: d3:a0:80:62:de:33:a8:49:5a:2a:be:dc:3a:c7:17:5b:f3:69: 54:6b:f4:35:a6:5f:77:fb:b9:26:3b:35:31:51:2c:9e:75:11: ef:01:0f:a3:64:1d:38:f8:8d:21:e2:0f:7f:23:76:72:e1:64: 30:3d:5d:db:d0:5b:fa:33:9e:bb:f9:50:7c:f2:5c:60:1f:0f: 78:13:d0:ac:ae:31:1c:d2:e4:df:50:4d:b5:29:ca:ff:2a:2b: 86:2d:b7:9f:80:72:bd:7a:72:3e:fe:10:25:89:8b:d8:ab:19: 2c:9d:d2:b1:13:ae:6e:f8:56:7f:14:57:85:b9:8c:70:93:7e: 05:dc:26:a6:f7:ef:1b:69:0e:be:88:fd:7c:f9:23:a3:89:75: 43:b8:fd:4e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM3RjgxMTAvBgNVBAUTKEU1MDk2M0Q3MDQ2ODcyNzM1NkI3OEI3RkM0MzgwOTc0 NDI5QjY0RTEwHhcNMjQwNzI3MDU1NzA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE0OGMzMi1iZTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ffdBhO5WqWnKFtsXBaj+oU0/iZFKviLR93zyYkJM7vRnECbZEeM1nPQfObf PDCjX9n0P/wbpkU50oll22L0NxltWGN0CHpoR2pqql9SzrrEfylBQVm00YugMitV cM+uQ6NyYvAKHlW2YQAuxMMrGsTr/pC6LQ/0I6o2WL0hgYTm2cgJtv7kgd3kKWsh eTon/SUF7sKpQfj45xn4EqlPLKk+uq/QVFyrbXIF8ka5SmdwUfyMBRRBfoZqlhPL 3KTqJHqF6atzLbsakIoAb8HOTn2HBY20AHvE2HWzYmvYPOUcWBs74DwJq0H0wgQD Rr+NUxaXSh4cz/HmfMGPA3aFMQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCeZO4Av ZH70KosKlK9ouq+F8vZ4MB8GA1UdIwQYMBaAFOUJY9cEaHJzVreLf8Q4CXRCm2Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzdGOC9FMjUxMEUxQzEy OTUxMUVFODRCQUQ3NDZDNEY5QUUwMi81UWxqMXdSb2NuTld0NHRfeERnSmRFS2Ja T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRbGoxd1JvY25OV3Q0dF94RGdKZEVLYlpPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM3RjgvRTI1MTBFMUMxMjk1MTFFRTg0QkFENzQ2QzRGOUFFMDIvNDc4NjJFN0Ux MjlDMTFFRUE0M0NGRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABn0EMDBABn/tYwDwQCAAIwCQMHACABDfJ+wDANBgkqhkiG 9w0BAQsFAAOCAQEAOpV0wbVH0YPYX7NaZKgE+ndzzbQUoenJl1z1cpcQYE9NMsXf ofMv0W+5XsboKB02PEe1GVl9z5tx2g5EkuRytCM+kvIFyWQWoCcdviN8Iw1lshXi I3cxiKb/FICJmeJqsayVLt7Ey0sQdvRn06CAYt4zqElaKr7cOscXW/NpVGv0NaZf d/u5Jjs1MVEsnnUR7wEPo2QdOPiNIeIPfyN2cuFkMD1d29Bb+jOeu/lQfPJcYB8P eBPQrK4xHNLk31BNtSnK/yorhi23n4ByvXpyPv4QJYmL2KsZLJ3SsROubvhWfxRX hbmMcJN+BdwmpvfvG2kOvoj9fPkjo4l1Q7j9Tg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org