$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa File: E4C0040A8C8C11EBB81BA228C4F9AE02.roa (raw, json) Hash identifier: zHLsyhTV60ZHxvQdwbDX5bbqYkoP6kC08f+Bv/mppKY= Subject key identifier: 7E:EF:2A:BA:C7:9A:E8:5A:9E:C8:EE:72:72:AD:7A:70:69:B8:C2:1C Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 063B Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa Signing time: Sat 28 Sep 2024 22:41:58 +0000 ROA not before: Sat 28 Sep 2024 22:41:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 1273 IP address blocks: 103.23.192.0/22 maxlen: 22 202.89.16.0/21 maxlen: 21 202.89.16.0/22 maxlen: 22 203.169.56.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 28 22:41:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f88636-79f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:8c:b3:f8:d9:ea:81:ec:53:86:c0:29:bd: 98:e5:2a:b2:f6:38:9a:50:9a:ed:e4:4a:23:db:78: 0a:4f:2c:47:5a:06:dc:ae:66:58:a9:a9:7b:c1:af: 83:70:8b:bb:5f:b0:ee:6d:9b:bc:b1:c0:f4:96:f4: 62:5d:b3:73:4f:c4:ea:8a:84:d8:16:48:0c:20:73: 66:16:4f:dd:54:e4:09:1b:cb:b0:97:f2:23:cd:94: ee:4f:25:74:da:14:b1:4c:ca:6e:48:32:1c:3e:ad: 53:0f:60:b4:09:75:d2:cc:30:fa:95:5b:95:99:66: 60:9c:be:7d:fe:5e:3c:4c:30:94:ab:65:6b:b1:44: 03:ec:cb:a6:46:f7:51:79:cd:3c:af:84:8d:06:02: 74:db:5f:8f:6b:bf:f2:7e:fa:28:d1:b5:a9:ae:be: 4e:68:31:b5:fa:f7:ec:02:f2:f8:54:58:b9:6b:3c: ec:2d:e0:02:0f:ad:38:97:90:d1:ad:e1:25:cb:22: 8f:68:72:53:e6:7a:17:33:8a:58:20:ff:13:d1:c3: aa:16:69:1f:30:90:33:4a:84:ce:34:74:2d:ec:92: 56:b1:33:5a:ba:9f:2f:44:36:34:2e:22:a4:14:65: db:67:24:82:8e:7a:73:03:72:5d:26:72:50:9b:b9: 6f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:EF:2A:BA:C7:9A:E8:5A:9E:C8:EE:72:72:AD:7A:70:69:B8:C2:1C X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/E4C0040A8C8C11EBB81BA228C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.192.0/22 202.89.16.0/21 203.169.56.0/23 Signature Algorithm: sha256WithRSAEncryption 57:44:91:5a:92:55:10:26:9a:6d:5f:f9:94:4b:09:de:3b:d7: ce:b9:94:37:c7:14:a8:60:d0:5c:e6:14:b0:02:0f:9c:8c:fe: 17:c8:28:35:e5:f5:d6:e3:1e:14:14:28:56:91:f0:98:ff:29: 05:50:22:4f:8f:bd:fe:bf:fd:21:56:93:71:41:92:ad:37:ab: 67:b2:cb:73:50:40:75:a1:0c:f1:e5:9e:1f:17:34:90:8d:a1: f3:ba:41:e9:cc:da:36:11:e8:13:94:f3:bd:33:d3:97:99:27: 07:b4:0b:b5:7c:09:99:03:4c:a3:b3:1b:55:69:8b:03:ff:3c: f2:52:3b:94:57:8e:e5:33:65:5a:d5:f0:b7:4f:10:8b:ea:31: eb:ec:0e:3c:9b:e5:ba:47:79:ae:73:79:44:5e:e9:57:eb:45: 36:d5:47:d3:2a:ac:2b:bf:1b:ac:95:66:e0:a9:71:58:55:8c: cd:a9:d0:c9:8a:fc:b9:43:4d:c3:28:c1:31:46:70:7e:cd:e0: 2b:8f:78:f1:9c:0b:74:b1:f6:5a:44:29:23:52:8e:f2:94:1e: 55:84:6c:36:98:19:74:64:05:d8:d3:8b:82:d3:42:67:73:dc: 39:d1:85:b6:c1:35:07:26:83:e7:43:b8:04:a6:b0:63:44:d4: d7:da:33:0f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjQwOTI4MjI0MTU4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4ODYzNi03OWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXKMs/jZ6oHsU4bAKb2Y5Sqy9jiaUJrt5Eoj23gKTyxHWgbcrmZYqal7wa+D cIu7X7DubZu8scD0lvRiXbNzT8TqioTYFkgMIHNmFk/dVOQJG8uwl/IjzZTuTyV0 2hSxTMpuSDIcPq1TD2C0CXXSzDD6lVuVmWZgnL59/l48TDCUq2VrsUQD7MumRvdR ec08r4SNBgJ021+Pa7/yfvoo0bWprr5OaDG1+vfsAvL4VFi5azzsLeACD604l5DR reElyyKPaHJT5noXM4pYIP8T0cOqFmkfMJAzSoTONHQt7JJWsTNaup8vRDY0LiKk FGXbZySCjnpzA3JdJnJQm7lvmwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH7vKrrH muhansjucnKtenBpuMIcMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvRTRDMDA0MEE4 QzhDMTFFQkI4MUJBMjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnF8ADBAPKWRADBAHLqTgwDQYJKoZIhvcNAQELBQADggEB AFdEkVqSVRAmmm1f+ZRLCd471865lDfHFKhg0FzmFLACD5yM/hfIKDXl9dbjHhQU KFaR8Jj/KQVQIk+Pvf6//SFWk3FBkq03q2eyy3NQQHWhDPHlnh8XNJCNofO6QenM 2jYR6BOU870z05eZJwe0C7V8CZkDTKOzG1VpiwP/PPJSO5RXjuUzZVrV8LdPEIvq MevsDjyb5bpHea5zeURe6VfrRTbVR9MqrCu/G6yVZuCpcVhVjM2p0MmK/LlDTcMo wTFGcH7N4CuPePGcC3Sx9lpEKSNSjvKUHlWEbDaYGXRkBdjTi4LTQmdz3DnRhbbB NQcmg+dDuASmsGNE1NfaMw8= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:46 2024 by rpki-client on console-fra.rpki-client.org