$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa File: 07D38A6669C011EF90EADF5CC4F9AE02.roa (raw, json) Hash identifier: ScQtJPSVJx+6Uv2+v0YYDaBUUcH/TqdhRsYQylV+YHk= Subject key identifier: F9:98:BB:E9:7B:4E:D8:B4:E1:4D:F2:9C:46:2F:31:FD:EC:59:85:63 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0338 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa Signing time: Tue 03 Sep 2024 06:45:36 +0000 ROA not before: Tue 03 Sep 2024 06:45:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 40065 IP address blocks: 103.103.245.0/24 maxlen: 24 103.235.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Sep 3 06:45:36 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66d6b090-d902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:bd:12:44:a7:3d:08:8a:f5:51:45:02:fa:6e: 44:be:06:4b:bc:49:7c:da:6c:94:d0:8e:f5:3d:fe: cc:3e:55:4e:4f:f7:38:ef:db:73:42:e7:70:13:cc: 03:83:f3:61:e8:fd:f3:f2:30:c5:27:66:30:43:ef: 84:2e:74:ff:e3:e2:5a:03:b4:cc:64:6d:40:97:69: 41:30:e2:c7:b4:dd:90:69:cf:51:d0:62:96:c3:68: a7:52:cd:87:d0:5a:ab:c7:e2:56:ac:76:9a:c7:03: 09:27:fd:32:22:d8:0d:fd:c5:85:dd:4d:3a:57:2b: f1:1c:a0:9a:1e:c0:88:92:10:c7:e3:f9:b8:86:9a: 24:f4:c7:ba:48:cf:18:8b:7f:dc:4f:bd:b7:25:9d: 7a:8a:ae:1c:cf:22:8a:3f:72:d2:71:f5:9e:e1:80: 59:45:7d:9b:09:94:03:a9:95:ce:3b:a8:8d:4d:b6: b7:60:04:68:fe:07:0b:80:c3:c4:72:3b:19:a7:d6: 80:7a:2e:3b:fd:ab:99:d9:ea:20:92:99:ea:a5:93: e7:dd:d9:25:1c:a4:0b:01:76:10:fc:fc:34:08:7d: fc:b5:3b:3f:f8:b9:64:57:b4:3f:d0:13:61:60:e1: b6:bb:6f:74:42:c0:a5:25:89:fa:7a:ca:79:23:d8: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:98:BB:E9:7B:4E:D8:B4:E1:4D:F2:9C:46:2F:31:FD:EC:59:85:63 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/07D38A6669C011EF90EADF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.245.0/24 103.235.18.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:de:35:7b:98:a3:97:db:b9:de:9c:86:ad:e2:55:40:b9:56: 2c:bc:3d:be:c9:c7:c2:7f:fe:02:50:91:37:36:44:65:4b:cb: b4:c9:48:bc:54:a1:e0:b9:1d:5f:03:ba:71:cb:c6:19:75:1a: 05:b6:32:8f:93:81:76:df:cc:ff:65:a7:7b:d4:7b:1a:46:50: 1e:38:83:01:ad:b3:32:0a:70:58:c7:c1:c9:d7:31:a7:60:60: 29:bb:64:12:bf:16:b2:39:42:4e:88:0f:97:e3:79:c1:7d:03: a2:97:dc:42:34:5e:7d:71:8f:fc:6d:bc:fe:6b:91:c5:a7:87: 00:2e:9f:8a:23:75:6b:a8:16:72:04:fa:67:97:2e:96:2a:df: 76:6f:41:de:89:c7:0b:7b:f4:ee:eb:bf:0b:2a:aa:7c:0b:81: b7:93:3b:56:90:c6:93:b5:7f:dd:d0:6c:fb:2f:32:c0:72:ba: f5:f5:27:19:90:dc:2f:dc:f4:67:4f:0a:d7:c9:c5:20:d8:34: d2:25:d7:77:b6:84:4c:f6:f4:d2:00:fe:82:19:44:23:f6:c4: 9b:d5:c1:14:b2:72:33:e6:c3:99:c2:1a:5d:71:13:94:98:d4: e5:dd:e8:82:20:48:69:bc:c7:9e:28:f8:47:14:0f:b1:40:32: 54:a8:c5:03 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQwOTAzMDY0NTM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2YjA5MC1kOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnL0SRKc9CIr1UUUC+m5EvgZLvEl82myU0I71Pf7MPlVOT/c479tzQudwE8wD g/Nh6P3z8jDFJ2YwQ++ELnT/4+JaA7TMZG1Al2lBMOLHtN2Qac9R0GKWw2inUs2H 0Fqrx+JWrHaaxwMJJ/0yItgN/cWF3U06VyvxHKCaHsCIkhDH4/m4hpok9Me6SM8Y i3/cT723JZ16iq4czyKKP3LScfWe4YBZRX2bCZQDqZXOO6iNTba3YARo/gcLgMPE cjsZp9aAei47/auZ2eogkpnqpZPn3dklHKQLAXYQ/Pw0CH38tTs/+LlkV7Q/0BNh YOG2u290QsClJYn6esp5I9jUmQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPmYu+l7 Tti04U3ynEYvMf3sWYVjMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvMDdEMzhBNjY2 OUMwMTFFRjkwRUFERjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZ/UDBABn6xIwDQYJKoZIhvcNAQELBQADggEBAB7eNXuY o5fbud6chq3iVUC5Viy8Pb7Jx8J//gJQkTc2RGVLy7TJSLxUoeC5HV8DunHLxhl1 GgW2Mo+TgXbfzP9lp3vUexpGUB44gwGtszIKcFjHwcnXMadgYCm7ZBK/FrI5Qk6I D5fjecF9A6KX3EI0Xn1xj/xtvP5rkcWnhwAun4ojdWuoFnIE+meXLpYq33ZvQd6J xwt79O7rvwsqqnwLgbeTO1aQxpO1f93QbPsvMsByuvX1JxmQ3C/c9GdPCtfJxSDY NNIl13e2hEz29NIA/oIZRCP2xJvVwRSycjPmw5nCGl1xE5SY1OXd6IIgSGm8x54o +EcUD7FAMlSoxQM= -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:21 2024 by rpki-client on console-fra.rpki-client.org