$ rpki-client -vvf rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa File: 800F1868BEB311EAAFE28B42C4F9AE02.roa (raw, json) Hash identifier: wpAzbtu5F53kU4ooHDJQYR2Sx5W2H0NgT0BgO9+1V88= Subject key identifier: 7C:16:8A:65:38:CB:D7:85:F3:AB:DF:C9:E8:78:81:80:DB:63:EF:D7 Certificate issuer: /CN=A916683C/serialNumber=A6C5049DFFC264271F4A77A5AEEAE477D7EEEAF3 Certificate serial: 0974 Authority key identifier: A6:C5:04:9D:FF:C2:64:27:1F:4A:77:A5:AE:EA:E4:77:D7:EE:EA:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:20:35 +0000 ROA not before: Mon 28 Oct 2024 20:20:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140583 IP address blocks: 103.152.0.0/24 maxlen: 24 103.157.17.0/24 maxlen: 24 2001:df3:7880::/48 maxlen: 48 2407:3dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.crl rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2420 (0x974) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916683C/serialNumber=A6C5049DFFC264271F4A77A5AEEAE477D7EEEAF3 Validity Not Before: Oct 28 20:20:35 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff213-c6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f3:57:24:1f:d6:b3:e9:40:fb:26:8b:37:0b: 74:95:94:9d:89:17:e8:47:01:6b:cf:86:15:62:4a: af:1f:00:2b:f7:73:a0:50:da:f4:08:2e:15:95:8d: f3:f6:3a:de:47:71:9c:25:18:d3:47:a6:16:4c:a6: 56:bf:4f:ad:e5:25:27:85:6b:d2:0e:8c:95:ac:08: f1:49:5c:58:48:c7:c6:98:f7:8c:ee:fb:62:2d:dd: 30:7e:02:c6:36:13:3b:f7:33:65:d8:7d:a3:96:53: 4f:b0:ce:e2:f1:55:00:8c:c7:e8:93:45:ba:18:ce: 65:f3:d9:6d:4c:6e:b3:7a:6b:23:88:0e:4d:eb:49: af:5a:04:d2:75:e0:ca:d0:db:85:d4:a6:3b:a9:43: ef:78:c5:dc:51:31:0b:ee:40:7e:e2:22:1f:a6:77: 4b:18:a7:c2:ba:77:bb:19:bb:76:d8:03:a3:3d:45: a6:db:d5:5f:ab:21:ca:43:f6:cf:72:b9:89:e4:ea: aa:1e:02:1c:3f:5e:67:5e:f1:62:ef:b4:f7:29:0b: 1d:6e:82:d3:0d:6b:a2:17:2c:2b:ff:53:04:0d:60: 28:d1:fd:43:55:d7:8b:39:d0:f9:19:49:89:45:7a: 6f:a3:80:13:96:60:53:06:b0:31:55:18:2a:05:6f: c5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:16:8A:65:38:CB:D7:85:F3:AB:DF:C9:E8:78:81:80:DB:63:EF:D7 X509v3 Authority Key Identifier: keyid:A6:C5:04:9D:FF:C2:64:27:1F:4A:77:A5:AE:EA:E4:77:D7:EE:EA:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/psUEnf_CZCcfSnelrurkd9fu6vM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psUEnf_CZCcfSnelrurkd9fu6vM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916683C/E0B5802E807B11EA82446125C4F9AE02/800F1868BEB311EAAFE28B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.0.0/24 103.157.17.0/24 IPv6: 2001:df3:7880::/48 2407:3dc0::/32 Signature Algorithm: sha256WithRSAEncryption 79:50:ed:a2:6e:ca:c1:47:2b:46:f6:51:58:31:e8:e1:df:d4: dc:db:04:28:68:85:38:fe:a8:6a:09:d0:59:b1:51:cc:38:61: ed:46:7d:f5:90:af:fc:e9:b7:9f:20:c7:c2:56:ea:dc:2f:2c: 0a:dc:e1:b7:cc:19:d9:05:4a:7c:50:21:97:94:16:90:55:64: 06:5b:da:f5:b7:65:59:b1:2b:d0:1e:11:fd:be:b7:bd:88:d6: ab:63:8b:f5:61:fc:55:5a:a1:9d:6d:d4:f6:52:73:94:a1:c7: b1:9e:ed:8b:f6:a8:f6:b6:1d:3b:f9:3a:f8:50:42:d6:f8:35: b7:7a:6a:bb:cc:f2:8a:17:3c:25:14:fc:ad:27:82:ce:90:4d: de:9c:74:64:52:1d:5e:d7:54:73:3b:71:33:5e:d3:2e:5b:f4: 98:d8:e1:60:bc:de:a2:a7:7a:79:b9:7d:0a:77:c9:f6:cc:15: e6:78:32:e4:1a:e2:51:8a:fe:55:37:16:23:e9:85:56:aa:ad: d6:50:29:e7:4a:3f:dc:98:c5:8a:a0:8a:e2:21:e0:14:3f:d2: 62:76:3a:df:ae:de:09:ec:8b:77:7d:57:09:e9:56:49:04:91: a1:15:85:f2:a7:94:05:1d:7d:e6:9c:65:14:e5:f7:89:d0:83: 36:e7:0f:7b -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICCXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY4M0MxMTAvBgNVBAUTKEE2QzUwNDlERkZDMjY0MjcxRjRBNzdBNUFFRUFFNDc3 RDdFRUVBRjMwHhcNMjQxMDI4MjAyMDM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjIxMy1jNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfNXJB/Ws+lA+yaLNwt0lZSdiRfoRwFrz4YVYkqvHwAr93OgUNr0CC4VlY3z 9jreR3GcJRjTR6YWTKZWv0+t5SUnhWvSDoyVrAjxSVxYSMfGmPeM7vtiLd0wfgLG NhM79zNl2H2jllNPsM7i8VUAjMfok0W6GM5l89ltTG6zemsjiA5N60mvWgTSdeDK 0NuF1KY7qUPveMXcUTEL7kB+4iIfpndLGKfCune7Gbt22AOjPUWm29VfqyHKQ/bP crmJ5OqqHgIcP15nXvFi77T3KQsdboLTDWuiFywr/1MEDWAo0f1DVdeLOdD5GUmJ RXpvo4ATlmBTBrAxVRgqBW/FgwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFHwWimU4 y9eF86vfyeh4gYDbY+/XMB8GA1UdIwQYMBaAFKbFBJ3/wmQnH0p3pa7q5HfX7urz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjgzQy9FMEI1ODAyRTgw N0IxMUVBODI0NDYxMjVDNEY5QUUwMi9wc1VFbmZfQ1pDY2ZTbmVscnVya2Q5ZnU2 dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzVUVuZl9DWkNjZlNuZWxydXJrZDlmdTZ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY4M0MvRTBCNTgwMkU4MDdCMTFFQTgyNDQ2MTI1QzRGOUFFMDIvODAwRjE4NjhC RUIzMTFFQUFGRTI4QjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBABnmAADBABnnREwFgQCAAIwEAMHACABDfN4gAMFACQHPcAw DQYJKoZIhvcNAQELBQADggEBAHlQ7aJuysFHK0b2UVgx6OHf1NzbBChohTj+qGoJ 0FmxUcw4Ye1GffWQr/zpt58gx8JW6twvLArc4bfMGdkFSnxQIZeUFpBVZAZb2vW3 ZVmxK9AeEf2+t72I1qtji/Vh/FVaoZ1t1PZSc5Shx7Ge7Yv2qPa2HTv5OvhQQtb4 Nbd6arvM8ooXPCUU/K0ngs6QTd6cdGRSHV7XVHM7cTNe0y5b9JjY4WC83qKnenm5 fQp3yfbMFeZ4MuQa4lGK/lU3FiPphVaqrdZQKedKP9yYxYqgiuIh4BQ/0mJ2Ot+u 3gnsi3d9VwnpVkkEkaEVhfKnlAUdfeacZRTl94nQgzbnD3s= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org