$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa File: 8336727A0ECC11EBB12DD732C4F9AE02.roa (raw, json) Hash identifier: tl5DzvfkbZ9N7lyG7kpmNFZc3a/6hFAzkSCHQLoUhnA= Subject key identifier: 7E:4F:00:46:86:81:2E:4E:A4:F2:35:AA:BE:5D:98:86:81:B9:85:82 Certificate issuer: /CN=A915FDCF/serialNumber=A78902F4F0D824B40F496D5DFC3E9F0633B71299 Certificate serial: 0721 Authority key identifier: A7:89:02:F4:F0:D8:24:B4:0F:49:6D:5D:FC:3E:9F:06:33:B7:12:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa Signing time: Fri 16 Aug 2024 18:16:18 +0000 ROA not before: Fri 16 Aug 2024 18:16:18 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134732 IP address blocks: 103.139.234.0/23 maxlen: 23 103.139.234.0/24 maxlen: 24 103.139.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.crl rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Oct 2024 05:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDCF/serialNumber=A78902F4F0D824B40F496D5DFC3E9F0633B71299 Validity Not Before: Aug 16 18:16:18 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bf9772-dbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:01:ec:a3:95:c6:08:15:ff:d3:00:5f:94:dd: f6:f8:65:31:d4:cd:f1:ad:bd:ac:83:57:af:39:0a: cf:e0:c8:84:74:c4:68:5b:b8:35:85:6d:89:82:49: 44:12:6e:c1:24:22:c1:b3:b0:a2:03:69:2f:83:74: fc:08:a5:5b:c0:ab:8f:14:61:3a:02:be:7c:03:ec: c1:c0:c8:d8:1d:80:81:2a:fa:22:4b:18:bd:d6:e3: 03:d7:5a:9b:e6:9e:b3:bf:13:ae:f7:55:af:2f:e1: b5:3f:aa:ff:e5:35:61:04:72:18:bb:77:d8:df:9c: 45:76:eb:6c:35:ab:21:d9:ef:f3:94:ed:22:12:c0: 04:d4:f5:21:92:44:72:09:9c:2e:56:55:6b:5e:df: 5b:f8:e6:fb:48:20:61:a4:1b:4b:94:f5:b1:60:34: 2e:ee:ea:4e:e9:d1:9b:6b:e8:92:da:0a:91:c1:1b: af:35:79:1b:5b:7b:0b:4a:50:23:e2:ef:21:de:ae: 1a:4a:14:ba:9e:50:10:3a:1b:65:3a:20:03:a9:4d: 29:37:f6:ab:2e:60:44:4e:0c:70:2f:8c:e5:cd:3d: a2:7b:ae:2d:5f:87:4f:7c:74:a5:f2:23:bf:cb:a1: a3:df:fd:3b:c1:64:b0:c4:de:9e:b0:42:dc:b2:c4: f8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4F:00:46:86:81:2E:4E:A4:F2:35:AA:BE:5D:98:86:81:B9:85:82 X509v3 Authority Key Identifier: keyid:A7:89:02:F4:F0:D8:24:B4:0F:49:6D:5D:FC:3E:9F:06:33:B7:12:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.234.0/23 Signature Algorithm: sha256WithRSAEncryption 85:4b:ba:4d:2f:a4:f7:fc:c5:c6:91:06:de:13:61:0b:98:bd: 5d:d9:26:ea:6d:a7:3c:78:fa:f7:3b:aa:d5:b2:61:f0:49:cd: 27:07:88:0e:c7:2a:4b:f6:5d:00:2e:39:a5:0a:ed:35:c4:40: d5:b8:fc:20:2e:3c:e3:16:a1:73:ba:f5:8a:97:24:b6:83:8b: 68:45:99:b0:82:0e:04:71:d9:55:d2:0c:76:e2:35:c6:dc:e4: 1f:f5:45:28:5e:f5:da:97:2d:4c:d0:e3:8f:b6:b2:77:74:4b: 2a:5b:93:3f:42:cb:9d:31:b5:d2:ab:bb:d3:d9:7f:e6:09:e2: c9:8f:27:89:78:09:50:ae:d5:c7:5f:1d:e5:bf:88:50:88:53: 82:1d:bd:9a:92:b2:83:14:39:f9:8d:27:4f:13:05:c0:f3:6d: 73:f0:37:c1:b8:54:6b:26:c0:02:95:63:ea:67:f4:9f:ce:9a: 0a:98:df:c7:78:c4:69:ad:42:89:67:7e:c0:d1:ec:c9:28:52: 60:cd:9c:57:34:3b:a5:4a:a8:a6:fe:b2:a7:dd:33:99:d6:9b: b8:84:cb:be:5e:3d:ee:22:05:1d:6c:78:a8:e9:28:42:76:74: 80:c5:1f:91:29:1f:c6:82:6d:df:c5:70:cf:9e:ce:62:9c:d7: f9:3a:33:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEQ0YxMTAvBgNVBAUTKEE3ODkwMkY0RjBEODI0QjQwRjQ5NkQ1REZDM0U5RjA2 MzNCNzEyOTkwHhcNMjQwODE2MTgxNjE4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc3Mi1kYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAHso5XGCBX/0wBflN32+GUx1M3xrb2sg1evOQrP4MiEdMRoW7g1hW2JgklE Em7BJCLBs7CiA2kvg3T8CKVbwKuPFGE6Ar58A+zBwMjYHYCBKvoiSxi91uMD11qb 5p6zvxOu91WvL+G1P6r/5TVhBHIYu3fY35xFdutsNash2e/zlO0iEsAE1PUhkkRy CZwuVlVrXt9b+Ob7SCBhpBtLlPWxYDQu7upO6dGba+iS2gqRwRuvNXkbW3sLSlAj 4u8h3q4aShS6nlAQOhtlOiADqU0pN/arLmBETgxwL4zlzT2ie64tX4dPfHSl8iO/ y6Gj3/07wWSwxN6esELcssT4KwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH5PAEaG gS5OpPI1qr5dmIaBuYWCMB8GA1UdIwQYMBaAFKeJAvTw2CS0D0ltXfw+nwYztxKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkRDRi9GNEZERjVFRThE NDExMUU5ODE1MTZBMzJDNEY5QUUwMi9wNGtDOVBEWUpMUVBTVzFkX0Q2ZkJqTzNF cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0a0M5UERZSkxRUFNXMWRfRDZmQmpPM0Vway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZEQ0YvRjRGREY1RUU4RDQxMTFFOTgxNTE2QTMyQzRGOUFFMDIvODMzNjcyN0Ew RUNDMTFFQkIxMkRENzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni+owDQYJKoZIhvcNAQELBQADggEBAIVLuk0vpPf8xcaR Bt4TYQuYvV3ZJuptpzx4+vc7qtWyYfBJzScHiA7HKkv2XQAuOaUK7TXEQNW4/CAu POMWoXO69YqXJLaDi2hFmbCCDgRx2VXSDHbiNcbc5B/1RShe9dqXLUzQ44+2snd0 Sypbkz9Cy50xtdKru9PZf+YJ4smPJ4l4CVCu1cdfHeW/iFCIU4IdvZqSsoMUOfmN J08TBcDzbXPwN8G4VGsmwAKVY+pn9J/OmgqY38d4xGmtQolnfsDR7MkoUmDNnFc0 O6VKqKb+sqfdM5nWm7iEy75ePe4iBR1seKjpKEJ2dIDFH5EpH8aCbd/FcM+ezmKc 1/k6M4c= -----END CERTIFICATE-----Generated at Thu Sep 26 07:34:19 2024 by rpki-client on console-fra.rpki-client.org