$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/F7D72D3E23E211EFA47D6C68C4F9AE02.roa File: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (raw, json) Hash identifier: tuc67jNC26hMIiqAarcR4dbp0Cz/GKv0oBt5OMi14ro= Subject key identifier: 77:97:F5:37:7A:56:FC:E7:54:B1:95:E8:E2:42:EC:45:75:18:26:72 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 02D0 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/F7D72D3E23E211EFA47D6C68C4F9AE02.roa Signing time: Thu 06 Jun 2024 08:58:40 +0000 ROA not before: Thu 06 Jun 2024 08:58:40 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135110 IP address blocks: 103.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jun 6 08:58:40 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66617a40-4b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:30:90:cb:08:15:c5:29:1d:7e:73:cd:53:41: 96:95:96:b9:cf:47:df:ae:f3:fc:f7:01:0f:e8:50: ca:35:2f:d2:f4:f9:10:74:10:fc:f5:ed:cc:fe:9a: b5:ff:90:64:9d:ee:07:f8:14:ab:72:c7:6f:ee:86: 51:d3:b5:41:29:2e:ca:1c:2d:10:d0:a1:1c:63:c1: cd:52:a2:a7:1a:19:10:74:0f:d8:ff:b9:f1:a7:28: 21:34:6c:9c:62:a4:58:d1:e6:e1:ed:6d:9a:6d:c0: 14:46:78:c4:4c:b6:d1:d4:f8:5f:01:d5:a5:06:02: 13:ad:c5:f8:cb:9f:98:c7:27:e1:fd:46:a0:d0:ae: 9e:5d:00:7e:14:46:6d:c5:5e:fe:0d:9b:5a:6f:57: 02:7f:ee:37:ca:99:37:88:11:0b:cc:53:da:b7:24: 04:80:89:e2:cb:9d:e1:b8:b0:24:a3:fc:f4:6f:5e: e7:24:eb:74:94:87:9d:b3:33:86:22:11:1d:d3:77: a9:f0:55:6d:3d:9d:02:5b:b5:2f:79:a9:34:02:07: 5e:82:56:ec:c8:5a:14:a9:6e:19:0e:68:ef:f2:48: 9d:b0:a9:08:4f:87:1c:77:77:b4:38:0c:8b:2f:95: b0:9f:d3:85:da:9a:26:29:89:b3:a6:0c:7b:46:aa: 3a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:97:F5:37:7A:56:FC:E7:54:B1:95:E8:E2:42:EC:45:75:18:26:72 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/F7D72D3E23E211EFA47D6C68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 58:1a:19:8d:d9:d6:61:4d:ed:6d:ee:d9:d9:28:0f:78:73:81: 9b:77:d1:5c:5e:a1:a6:b5:c5:e5:c4:1b:1e:0b:13:de:d9:b9: ac:71:bf:3c:31:bb:b2:01:a0:cc:00:b8:94:10:2b:f9:47:bf: 6c:72:4a:92:5a:e1:db:67:8b:32:a1:5e:83:77:6f:0c:fe:37: 0e:2c:5b:15:d7:e9:10:53:bd:48:68:8b:0d:5d:a9:de:38:3d: 2b:13:a1:7e:25:50:87:6b:89:7d:88:f4:94:44:cd:17:7e:3f: 35:68:99:25:ba:17:00:08:bb:58:c1:16:25:d7:18:b6:cd:90: 74:7c:a4:31:02:94:ac:a8:d0:e8:c4:99:b2:a3:47:e9:9f:a3: 59:20:d5:c9:5c:87:4c:a5:f2:64:e0:dc:c4:21:5f:52:7a:d5: 14:87:86:f8:ef:af:85:d1:4d:75:cd:58:5e:b5:08:7c:db:ac: 0f:8e:2c:6f:d1:0c:04:49:a1:1e:f2:cf:37:a5:5e:20:d7:ce: 65:74:87:6d:79:92:77:11:1b:06:a1:81:3e:d2:44:9e:38:b4: 44:35:f0:e3:e3:b4:f0:3b:10:67:b6:b2:1c:e3:ef:72:72:f5: e9:cd:79:93:ac:4f:ac:15:9c:c8:6a:6a:23:2b:2e:8b:87:23: b7:d6:37:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQwNjA2MDg1ODQwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxN2E0MC00YjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjCQywgVxSkdfnPNU0GWlZa5z0ffrvP89wEP6FDKNS/S9PkQdBD89e3M/pq1 /5Bkne4H+BSrcsdv7oZR07VBKS7KHC0Q0KEcY8HNUqKnGhkQdA/Y/7nxpyghNGyc YqRY0ebh7W2abcAURnjETLbR1PhfAdWlBgITrcX4y5+Yxyfh/Uag0K6eXQB+FEZt xV7+DZtab1cCf+43ypk3iBELzFPatyQEgIniy53huLAko/z0b17nJOt0lIedszOG IhEd03ep8FVtPZ0CW7Uveak0AgdeglbsyFoUqW4ZDmjv8kidsKkIT4ccd3e0OAyL L5Wwn9OF2pomKYmzpgx7Rqo6TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHeX9Td6 VvznVLGV6OJC7EV1GCZyMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvRjdENzJEM0Uy M0UyMTFFRkE0N0Q2QzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn72YwDQYJKoZIhvcNAQELBQADggEBAFgaGY3Z1mFN7W3u 2dkoD3hzgZt30Vxeoaa1xeXEGx4LE97Zuaxxvzwxu7IBoMwAuJQQK/lHv2xySpJa 4dtnizKhXoN3bwz+Nw4sWxXX6RBTvUhoiw1dqd44PSsToX4lUIdriX2I9JREzRd+ PzVomSW6FwAIu1jBFiXXGLbNkHR8pDEClKyo0OjEmbKjR+mfo1kg1clch0yl8mTg 3MQhX1J61RSHhvjvr4XRTXXNWF61CHzbrA+OLG/RDARJoR7yzzelXiDXzmV0h215 kncRGwahgT7SRJ44tEQ18OPjtPA7EGe2shzj73Jy9enNeZOsT6wVnMhqaiMrLouH I7fWNyw= -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:21 2024 by rpki-client on console-fra.rpki-client.org