$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa File: 8336727A0ECC11EBB12DD732C4F9AE02.roa (raw, json) Hash identifier: 5i89i/PjnmDJEuqnD5s7NtKAUr7TOwXV7drWzGsb988= Subject key identifier: CC:96:82:2D:F2:E7:BC:2F:83:B8:C3:DD:77:4C:69:49:D4:DB:02:48 Certificate issuer: /CN=A915FDCF/serialNumber=A78902F4F0D824B40F496D5DFC3E9F0633B71299 Certificate serial: 0661 Authority key identifier: A7:89:02:F4:F0:D8:24:B4:0F:49:6D:5D:FC:3E:9F:06:33:B7:12:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa Signing time: Wed 16 Aug 2023 18:15:55 +0000 ROA not before: Wed 16 Aug 2023 18:15:55 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 134732 IP address blocks: 103.139.234.0/23 maxlen: 23 103.139.234.0/24 maxlen: 24 103.139.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.crl rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDCF/serialNumber=A78902F4F0D824B40F496D5DFC3E9F0633B71299 Validity Not Before: Aug 16 18:15:55 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd125a-6300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:97:73:3d:ae:28:fb:0f:d3:14:ad:55:d7:d8: ee:87:fc:12:db:f8:ec:1d:28:e1:5b:2d:dc:28:42: 48:7a:68:db:07:f4:7a:b1:ae:9f:25:b2:d4:8c:4b: f2:02:2c:1c:52:1d:c1:58:82:47:5a:39:fc:e5:a0: 80:ed:2d:c6:e1:d7:20:30:2a:b1:e0:01:e5:fa:f0: 1f:b7:6d:cf:87:fd:11:63:1f:05:d9:94:bc:51:61: e5:2c:e5:8f:1a:02:b7:56:a5:f3:7c:e1:68:77:d9: 72:e2:56:3e:27:66:fd:0f:ff:43:c5:ea:be:59:81: 86:7e:6d:8b:95:d2:de:99:47:92:65:5f:db:ab:af: 51:a0:83:d8:0d:cd:93:6c:62:bf:72:ce:06:74:6f: c4:1a:49:14:de:6e:0b:bf:5c:25:e7:7b:d6:5e:5a: 3f:d0:c2:4f:95:8e:ba:29:6a:21:fb:9a:5e:76:fa: 1a:6b:55:a6:4c:a5:f6:43:e7:6d:06:b3:88:2d:69: 14:bb:08:6b:15:44:f5:34:7c:4f:cf:92:e6:78:18: 59:3a:fd:32:7d:0b:84:0c:2d:6d:db:ea:38:ba:43: e4:fc:d5:d3:a3:b4:30:33:7f:41:44:7a:b6:97:6b: 53:a9:55:83:6c:19:ec:55:48:c0:0a:7d:f2:99:7d: b0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:96:82:2D:F2:E7:BC:2F:83:B8:C3:DD:77:4C:69:49:D4:DB:02:48 X509v3 Authority Key Identifier: keyid:A7:89:02:F4:F0:D8:24:B4:0F:49:6D:5D:FC:3E:9F:06:33:B7:12:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/p4kC9PDYJLQPSW1d_D6fBjO3Epk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4kC9PDYJLQPSW1d_D6fBjO3Epk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDCF/F4FDF5EE8D4111E981516A32C4F9AE02/8336727A0ECC11EBB12DD732C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.234.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:d4:c8:3c:6e:8f:4f:43:90:fa:40:72:25:b3:1f:e5:8a:fb: 99:0a:26:3b:2f:97:36:cb:0a:ca:c3:c4:1b:90:99:f8:c0:37: 8b:37:ea:f8:f8:07:09:f1:82:c8:52:3b:90:38:96:0f:c0:45: 63:08:cd:d1:4f:64:95:f3:0a:f2:d6:7d:18:67:cc:e3:b0:46: f7:2c:15:06:b3:37:25:9d:28:b7:04:24:fd:9c:b9:b3:48:20: d8:fe:ce:f3:07:56:58:57:2c:54:77:b4:b0:5a:9a:fb:fa:5d: 1e:b0:a6:32:d8:f5:fd:81:38:2b:46:8f:f7:00:8a:d4:ee:23: 56:69:70:8d:e3:9a:a7:24:aa:55:01:8a:04:55:c5:86:d4:7c: e4:e5:51:bb:99:25:7a:63:e8:5c:47:0a:71:1b:77:56:b6:f6: 4d:1a:e0:93:22:db:3e:ed:a9:16:b2:a0:ff:5a:41:78:f6:63: 56:34:75:f3:23:ef:e9:42:a8:28:15:48:44:22:80:1e:a2:4a: d5:90:56:e4:e1:9a:4a:bb:21:66:ff:c6:ce:1e:3b:73:7d:a0: 30:a6:00:fc:28:9a:18:7e:e9:a0:1a:60:75:30:46:eb:fb:8e: d2:4f:d3:3b:54:28:6d:61:2a:77:f5:3b:3d:8b:ee:3c:38:13: e4:38:c8:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZEQ0YxMTAvBgNVBAUTKEE3ODkwMkY0RjBEODI0QjQwRjQ5NkQ1REZDM0U5RjA2 MzNCNzEyOTkwHhcNMjMwODE2MTgxNTU1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMTI1YS02MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZdzPa4o+w/TFK1V19juh/wS2/jsHSjhWy3cKEJIemjbB/R6sa6fJbLUjEvy AiwcUh3BWIJHWjn85aCA7S3G4dcgMCqx4AHl+vAft23Ph/0RYx8F2ZS8UWHlLOWP GgK3VqXzfOFod9ly4lY+J2b9D/9Dxeq+WYGGfm2LldLemUeSZV/bq69RoIPYDc2T bGK/cs4GdG/EGkkU3m4Lv1wl53vWXlo/0MJPlY66KWoh+5pedvoaa1WmTKX2Q+dt BrOILWkUuwhrFUT1NHxPz5LmeBhZOv0yfQuEDC1t2+o4ukPk/NXTo7QwM39BRHq2 l2tTqVWDbBnsVUjACn3ymX2wbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMyWgi3y 57wvg7jD3XdMaUnU2wJIMB8GA1UdIwQYMBaAFKeJAvTw2CS0D0ltXfw+nwYztxKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkRDRi9GNEZERjVFRThE NDExMUU5ODE1MTZBMzJDNEY5QUUwMi9wNGtDOVBEWUpMUVBTVzFkX0Q2ZkJqTzNF cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0a0M5UERZSkxRUFNXMWRfRDZmQmpPM0Vway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZEQ0YvRjRGREY1RUU4RDQxMTFFOTgxNTE2QTMyQzRGOUFFMDIvODMzNjcyN0Ew RUNDMTFFQkIxMkRENzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni+owDQYJKoZIhvcNAQELBQADggEBAJ3UyDxuj09DkPpA ciWzH+WK+5kKJjsvlzbLCsrDxBuQmfjAN4s36vj4BwnxgshSO5A4lg/ARWMIzdFP ZJXzCvLWfRhnzOOwRvcsFQazNyWdKLcEJP2cubNIINj+zvMHVlhXLFR3tLBamvv6 XR6wpjLY9f2BOCtGj/cAitTuI1ZpcI3jmqckqlUBigRVxYbUfOTlUbuZJXpj6FxH CnEbd1a29k0a4JMi2z7tqRayoP9aQXj2Y1Y0dfMj7+lCqCgVSEQigB6iStWQVuTh mkq7IWb/xs4eO3N9oDCmAPwomhh+6aAaYHUwRuv7jtJP0ztUKG1hKnf1Oz2L7jw4 E+Q4yAs= -----END CERTIFICATE-----Generated at Wed May 22 20:08:00 2024 by rpki-client on console-ams.rpki-client.org