$ rpki-client -vvf rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/ED6D9A0C047211EAA9BAFB77C4F9AE02.roa File: ED6D9A0C047211EAA9BAFB77C4F9AE02.roa (raw, json) Hash identifier: VMA/DaW08DK9v/lxWPtZwnO804CFumuELv89I609LTY= Subject key identifier: 14:70:9A:90:7D:FF:2F:DA:B8:AD:F1:B0:ED:B9:2D:9F:AE:E6:28:B0 Certificate issuer: /CN=A915B598/serialNumber=7DC462AF3E6278A8218905A1B3E7DB37F2EF7A82 Certificate serial: 0BA2 Authority key identifier: 7D:C4:62:AF:3E:62:78:A8:21:89:05:A1:B3:E7:DB:37:F2:EF:7A:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fcRirz5ieKghiQWhs-fbN_LveoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/ED6D9A0C047211EAA9BAFB77C4F9AE02.roa Signing time: Tue 02 Jul 2024 19:07:01 +0000 ROA not before: Tue 02 Jul 2024 19:07:01 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58946 IP address blocks: 103.26.136.0/23 maxlen: 23 103.26.136.0/24 maxlen: 24 103.26.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/fcRirz5ieKghiQWhs-fbN_LveoI.crl rsync://rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/fcRirz5ieKghiQWhs-fbN_LveoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fcRirz5ieKghiQWhs-fbN_LveoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B598/serialNumber=7DC462AF3E6278A8218905A1B3E7DB37F2EF7A82 Validity Not Before: Jul 2 19:07:01 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66844fd4-556a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:74:f1:8f:9a:be:32:9e:af:ce:52:ed:41:7c: 69:9b:97:1a:a0:5b:e7:74:d2:f3:25:aa:7e:24:63: 0d:54:96:02:e0:4f:2d:5e:cc:72:6f:ee:b6:e0:3d: 8e:1f:2b:65:73:8b:11:7b:5a:2a:27:07:d7:fa:8e: 65:1f:dc:a2:55:5c:83:b3:65:b9:c5:b6:64:a2:90: f2:cd:e9:6e:9b:00:c6:65:4b:7b:7d:d9:18:ec:83: 43:86:46:e4:b6:95:ef:bd:7a:78:78:8a:0b:0a:72: cc:8b:d7:dd:33:5a:0d:bd:a4:fe:dc:3b:c0:d1:86: 0e:93:8a:c9:36:0c:39:27:fa:1a:0c:b0:02:f9:90: a5:94:eb:d9:8d:cc:59:65:c4:f9:7a:d0:3e:9b:f6: 37:58:8c:53:ea:0b:4e:ce:a5:26:cf:8e:e2:c4:6d: d0:4d:23:3e:44:b5:b8:32:bc:54:1e:9d:3c:eb:cf: b1:b6:9b:62:0f:9f:11:51:fd:14:cb:60:00:8d:26: 67:10:86:8a:06:da:c4:be:b8:c9:0a:7d:51:de:b3: 9e:5b:00:06:69:95:23:1f:86:c6:3e:86:d0:bb:e5: 1f:13:2d:1f:7e:92:e6:cf:4d:80:e8:0b:39:63:b7: 62:42:8e:6f:91:2d:08:a5:4e:5b:8f:61:40:07:c7: 25:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:70:9A:90:7D:FF:2F:DA:B8:AD:F1:B0:ED:B9:2D:9F:AE:E6:28:B0 X509v3 Authority Key Identifier: keyid:7D:C4:62:AF:3E:62:78:A8:21:89:05:A1:B3:E7:DB:37:F2:EF:7A:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/fcRirz5ieKghiQWhs-fbN_LveoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fcRirz5ieKghiQWhs-fbN_LveoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B598/812CE9D4047111EAB6AD8775C4F9AE02/ED6D9A0C047211EAA9BAFB77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.136.0/23 Signature Algorithm: sha256WithRSAEncryption ce:f3:60:80:0f:26:18:71:f0:a5:6e:01:18:b0:bf:3e:9b:e2: 0d:c7:e0:72:59:d0:2f:ba:4d:54:ff:4c:2a:32:11:80:42:c2: 82:dc:b9:94:30:dd:24:d0:fb:43:64:a0:ea:ed:1b:42:fd:f0: 0d:a4:e6:a7:05:7b:ff:2e:b7:ca:6c:39:d3:53:1e:a6:51:74: f7:48:2d:df:11:ad:1a:cd:39:53:cb:a1:99:68:fc:6e:95:b7: 64:ef:2e:a6:a9:51:6f:dc:1f:a2:2b:77:77:c5:ac:a1:ae:ae: 67:5a:41:fa:fb:79:8f:3c:23:74:56:b8:47:f8:4f:2c:28:1b: dd:07:f0:32:9d:8f:fc:c9:f7:65:64:c0:9b:92:7d:03:1d:f4: 0c:36:07:b2:3c:20:64:86:5b:e4:33:20:58:e7:41:c5:3c:a0: ca:cc:8a:ea:d4:4e:8a:54:e6:89:a8:33:11:9e:d0:e7:f9:c0: 34:a5:54:ed:e2:8e:6f:ef:7f:fa:f3:69:7a:54:0c:a8:7a:f1: 84:73:ab:20:e6:61:d3:ad:9f:56:89:7b:31:fa:4a:46:6b:7a: ed:1a:5b:4c:81:00:f9:26:e8:60:5e:1f:76:63:9a:37:28:6f: 3f:37:f0:b7:7f:b7:0c:a4:29:40:71:e2:dc:1b:0b:71:29:86: 44:3d:2b:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1OTgxMTAvBgNVBAUTKDdEQzQ2MkFGM0U2Mjc4QTgyMTg5MDVBMUIzRTdEQjM3 RjJFRjdBODIwHhcNMjQwNzAyMTkwNzAxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NGZkNC01NTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHTxj5q+Mp6vzlLtQXxpm5caoFvndNLzJap+JGMNVJYC4E8tXsxyb+624D2O Hytlc4sRe1oqJwfX+o5lH9yiVVyDs2W5xbZkopDyzelumwDGZUt7fdkY7INDhkbk tpXvvXp4eIoLCnLMi9fdM1oNvaT+3DvA0YYOk4rJNgw5J/oaDLAC+ZCllOvZjcxZ ZcT5etA+m/Y3WIxT6gtOzqUmz47ixG3QTSM+RLW4MrxUHp0868+xtptiD58RUf0U y2AAjSZnEIaKBtrEvrjJCn1R3rOeWwAGaZUjH4bGPobQu+UfEy0ffpLmz02A6As5 Y7diQo5vkS0IpU5bj2FAB8cl7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBRwmpB9 /y/auK3xsO25LZ+u5iiwMB8GA1UdIwQYMBaAFH3EYq8+YnioIYkFobPn2zfy73qC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU5OC84MTJDRTlENDA0 NzExMUVBQjZBRDg3NzVDNEY5QUUwMi9mY1Jpcno1aWVLZ2hpUVdocy1mYk5fTHZl b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZjUmlyejVpZUtnaGlRV2hzLWZiTl9MdmVvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1OTgvODEyQ0U5RDQwNDcxMTFFQUI2QUQ4Nzc1QzRGOUFFMDIvRUQ2RDlBMEMw NDcyMTFFQUE5QkFGQjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGogwDQYJKoZIhvcNAQELBQADggEBAM7zYIAPJhhx8KVu ARiwvz6b4g3H4HJZ0C+6TVT/TCoyEYBCwoLcuZQw3STQ+0NkoOrtG0L98A2k5qcF e/8ut8psOdNTHqZRdPdILd8RrRrNOVPLoZlo/G6Vt2TvLqapUW/cH6Ird3fFrKGu rmdaQfr7eY88I3RWuEf4TywoG90H8DKdj/zJ92VkwJuSfQMd9Aw2B7I8IGSGW+Qz IFjnQcU8oMrMiurUTopU5omoMxGe0Of5wDSlVO3ijm/vf/rzaXpUDKh68YRzqyDm YdOtn1aJezH6SkZreu0aW0yBAPkm6GBeH3Zjmjcobz838Ld/twykKUBx4twbC3Ep hkQ9K+0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org