$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/7E8D9A52895411E6B3538424C4F9AE02.roa File: 7E8D9A52895411E6B3538424C4F9AE02.roa (raw, json) Hash identifier: aU2YJVr1JgNSnSBDLACjKPXwpUH3eD6D3PqoxsGGeXU= Subject key identifier: FF:AA:8C:81:C4:A9:41:D8:86:88:C2:31:65:18:82:68:60:FD:8F:E8 Certificate issuer: /CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Certificate serial: 1D5B Authority key identifier: 1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/7E8D9A52895411E6B3538424C4F9AE02.roa Signing time: Thu 06 Jun 2024 16:56:28 +0000 ROA not before: Thu 06 Jun 2024 16:56:28 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135524 IP address blocks: 103.221.252.0/22 maxlen: 22 103.221.252.0/23 maxlen: 23 103.221.252.0/24 maxlen: 24 103.221.253.0/24 maxlen: 24 103.221.254.0/23 maxlen: 23 103.221.254.0/24 maxlen: 24 103.221.255.0/24 maxlen: 24 2405:ac80::/32 maxlen: 36 2405:ac80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7515 (0x1d5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB3F/serialNumber=1AB1DE8EC891AFA2D4E1C91AF5583490BFBBC209 Validity Not Before: Jun 6 16:56:28 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6661ea3c-615d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:b9:11:ab:72:58:b9:68:35:3e:22:d0:a8: d1:5a:50:ae:9d:07:f9:55:c4:c6:56:c5:03:62:26: 7d:d5:a8:4e:43:b0:32:5b:3d:57:d0:4d:5e:49:b4: 2c:18:2e:48:cc:40:6b:74:bb:17:1b:49:a6:ae:a6: 0b:93:34:e3:58:de:d4:0e:b7:cd:89:37:71:41:e5: bd:a2:ab:d6:23:dd:11:81:3b:1c:73:bd:a7:ee:90: 22:02:6c:29:ee:20:66:8e:35:ef:71:00:6e:be:f1: 09:87:f4:a8:87:35:3a:a0:cf:6a:c2:f0:aa:cf:10: af:33:9f:9a:1e:ea:d0:8b:f8:4c:ad:3a:8f:39:76: e4:b8:3d:ce:12:fe:68:c7:16:8b:b4:57:49:46:ef: 78:fb:09:d8:6d:68:1f:99:42:73:e0:4a:ae:d1:4a: 98:60:f3:12:17:f2:06:77:fe:ca:2b:39:55:53:df: 17:d8:d0:d3:63:12:fe:3d:ca:7f:26:fd:aa:59:6c: f2:72:18:11:68:2f:b5:a4:c3:03:1d:ac:f2:77:52: 31:d7:c2:7d:de:10:81:73:1f:5d:50:ac:aa:97:68: 41:3c:99:da:24:57:2c:66:cb:51:c2:81:ac:90:bc: 6c:e9:16:ef:7d:d9:4b:24:e7:9c:e2:60:13:a0:2d: 22:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AA:8C:81:C4:A9:41:D8:86:88:C2:31:65:18:82:68:60:FD:8F:E8 X509v3 Authority Key Identifier: keyid:1A:B1:DE:8E:C8:91:AF:A2:D4:E1:C9:1A:F5:58:34:90:BF:BB:C2:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/GrHejsiRr6LU4cka9Vg0kL-7wgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GrHejsiRr6LU4cka9Vg0kL-7wgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB3F/D3910134895311E68A854923C4F9AE02/7E8D9A52895411E6B3538424C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.252.0/22 IPv6: 2405:ac80::/32 Signature Algorithm: sha256WithRSAEncryption 3d:ee:39:1d:7d:9d:30:bd:95:e7:77:39:f3:c0:6c:ea:6b:70: 49:91:ca:64:e6:34:a4:2d:94:2d:01:4b:24:49:5f:ae:f9:90: 5d:c8:1a:96:a7:b2:ec:37:0f:a1:d4:f1:32:a7:0e:08:e4:34: 13:d4:0d:42:16:5e:87:7d:93:d2:ad:90:d0:77:9d:cb:6a:56: cd:d5:b5:8b:ba:a7:0a:65:b1:e1:c5:f7:0e:4f:2b:21:37:03: 09:ad:65:8e:86:b7:94:9a:ad:5b:c1:54:06:3e:3a:1d:82:8f: 96:52:8e:10:2c:b5:94:83:5f:0b:21:30:77:f0:5c:53:c0:18: 00:38:ad:c0:9b:9d:4d:d3:32:b8:b6:f3:96:10:0b:73:46:6e: 37:38:52:05:42:2b:78:17:27:ff:74:c8:cf:f0:4d:29:fa:ee: bd:73:e7:b1:f8:9b:86:86:05:aa:81:ba:5e:28:f9:da:2b:31: 75:42:1a:b7:76:b4:14:9f:8c:f6:24:f4:61:e1:88:43:cb:bf: c0:57:08:71:d1:e9:47:65:3b:8e:24:a3:a8:5d:14:12:15:cb: da:fd:9e:ee:8e:18:8a:8b:11:29:bf:93:78:c1:2d:bd:43:69: e1:62:dd:9a:61:c6:09:29:4a:3a:72:f5:a9:ce:59:32:cf:96: 26:2d:c6:9f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCM0YxMTAvBgNVBAUTKDFBQjFERThFQzg5MUFGQTJENEUxQzkxQUY1NTgzNDkw QkZCQkMyMDkwHhcNMjQwNjA2MTY1NjI4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYxZWEzYy02MTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysy5EatyWLloNT4i0KjRWlCunQf5VcTGVsUDYiZ91ahOQ7AyWz1X0E1eSbQs GC5IzEBrdLsXG0mmrqYLkzTjWN7UDrfNiTdxQeW9oqvWI90RgTscc72n7pAiAmwp 7iBmjjXvcQBuvvEJh/SohzU6oM9qwvCqzxCvM5+aHurQi/hMrTqPOXbkuD3OEv5o xxaLtFdJRu94+wnYbWgfmUJz4Equ0UqYYPMSF/IGd/7KKzlVU98X2NDTYxL+Pcp/ Jv2qWWzychgRaC+1pMMDHazyd1Ix18J93hCBcx9dUKyql2hBPJnaJFcsZstRwoGs kLxs6RbvfdlLJOec4mAToC0iEQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP+qjIHE qUHYhojCMWUYgmhg/Y/oMB8GA1UdIwQYMBaAFBqx3o7Ika+i1OHJGvVYNJC/u8IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REIzRi9EMzkxMDEzNDg5 NTMxMUU2OEE4NTQ5MjNDNEY5QUUwMi9HckhlanNpUnI2TFU0Y2thOVZnMGtMLTd3 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dySGVqc2lScjZMVTRja2E5Vmcwa0wtN3dnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRCM0YvRDM5MTAxMzQ4OTUzMTFFNjhBODU0OTIzQzRGOUFFMDIvN0U4RDlBNTI4 OTU0MTFFNkIzNTM4NDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn3fwwDQQCAAIwBwMFACQFrIAwDQYJKoZIhvcNAQELBQAD ggEBAD3uOR19nTC9led3OfPAbOprcEmRymTmNKQtlC0BSyRJX675kF3IGpansuw3 D6HU8TKnDgjkNBPUDUIWXod9k9KtkNB3nctqVs3VtYu6pwplseHF9w5PKyE3Awmt ZY6Gt5SarVvBVAY+Oh2Cj5ZSjhAstZSDXwshMHfwXFPAGAA4rcCbnU3TMri285YQ C3NGbjc4UgVCK3gXJ/90yM/wTSn67r1z57H4m4aGBaqBul4o+dorMXVCGrd2tBSf jPYk9GHhiEPLv8BXCHHR6UdlO44ko6hdFBIVy9r9nu6OGIqLESm/k3jBLb1DaeFi 3ZphxgkpSjpy9anOWTLPliYtxp8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org