$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/7A532A308E1D11EE9CC5535CC4F9AE02.roa File: 7A532A308E1D11EE9CC5535CC4F9AE02.roa (raw, json) Hash identifier: YC1fkcNyqst3k86mmPxwO5+P7fBEQho6xbNQ1jSrZCw= Subject key identifier: 3E:A0:B6:6B:6E:25:35:DB:CA:4A:E9:A5:23:7D:C5:9D:A0:AD:69:12 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 0425 Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/7A532A308E1D11EE9CC5535CC4F9AE02.roa Signing time: Tue 28 Nov 2023 18:39:35 +0000 ROA not before: Tue 28 Nov 2023 18:39:35 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 24499 IP address blocks: 103.123.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Nov 28 18:39:35 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=656633e7-499b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:56:83:52:3d:2b:22:af:6f:20:c2:e4:d2:9a: 5e:6b:ca:4b:8f:00:e0:1b:73:82:b1:39:7f:67:c0: 25:78:79:66:d4:79:b9:9c:31:ac:14:ee:5f:c3:13: 97:5d:87:06:03:e7:ea:7f:7f:b0:90:a7:0b:5e:d7: 49:1f:4e:a6:16:7b:38:25:bd:f8:e0:7e:69:42:30: ed:8d:5d:0c:f4:b4:b4:1f:3d:89:90:31:35:93:44: ac:ef:12:f4:fa:28:0a:25:92:7f:fe:18:e0:0c:e9: d1:34:41:9f:88:4c:5b:8e:08:1a:0e:0d:b9:19:db: 61:ab:55:e5:28:61:5c:49:51:97:eb:12:0b:e1:0c: 83:90:e6:89:b6:b7:78:94:61:0b:70:a0:8d:fe:ae: 23:f5:e9:21:a7:02:49:db:1c:49:3e:0a:c8:ea:d2: 9d:f0:ae:a3:b7:5c:63:90:71:df:fd:03:13:0f:65: 73:25:3e:a8:48:ea:13:3a:bb:4f:95:74:98:2f:8a: 08:79:48:43:7c:fc:c7:18:90:c5:29:b6:c2:23:d3: bb:ac:8d:ba:ce:28:a0:4f:83:eb:ea:5a:ed:d8:06: 30:f6:c9:83:8e:86:fa:16:20:90:10:a7:ed:82:82: 88:23:36:ae:a9:26:cd:8c:cc:3b:42:09:68:f6:ef: e4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A0:B6:6B:6E:25:35:DB:CA:4A:E9:A5:23:7D:C5:9D:A0:AD:69:12 X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/7A532A308E1D11EE9CC5535CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.115.0/24 Signature Algorithm: sha256WithRSAEncryption 83:b8:e7:09:8e:27:77:ee:8a:4f:1f:67:cb:14:12:97:d5:63: 1a:60:ed:d2:23:8c:30:5c:52:1e:e1:4e:7d:6b:e0:48:2f:4c: ca:b9:09:c4:df:32:c9:f3:8a:b3:db:0b:e3:68:55:88:7f:5e: 38:fd:55:b1:a1:bc:7c:3d:15:67:81:66:b1:d4:4c:54:c4:d1: 80:7e:1d:d2:38:f7:26:de:d7:7b:b6:8a:86:48:7e:5f:67:cf: 1a:27:0a:06:dc:80:bb:16:33:6b:28:c3:04:00:6b:ec:89:1d: 97:bd:50:45:ef:90:0b:08:de:47:0f:4e:76:a7:f1:97:27:66: e7:d1:a3:8d:dd:ce:52:67:24:a4:6d:9a:5a:de:0a:c1:e6:1c: 80:76:f1:50:ed:7e:10:41:0e:1f:06:ac:0a:e2:b6:51:18:78: ac:94:86:84:39:d3:7a:b5:c5:aa:7f:f8:b9:8c:16:5a:50:fe: 39:5d:0f:09:99:4b:52:d5:38:a7:40:a4:67:05:fc:93:f2:3d: 1e:66:52:43:a4:b4:39:c2:73:2a:5b:85:3d:5e:e7:a7:e5:68: b4:75:91:bc:38:0b:59:be:8c:1d:a7:61:d1:d0:05:3f:9a:ed: 5b:5e:16:4b:9e:6c:59:94:d2:10:e4:37:c9:c5:5f:cd:60:7b: f2:9f:65:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjMxMTI4MTgzOTM1WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MzNlNy00OTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5laDUj0rIq9vIMLk0ppea8pLjwDgG3OCsTl/Z8AleHlm1Hm5nDGsFO5fwxOX XYcGA+fqf3+wkKcLXtdJH06mFns4Jb344H5pQjDtjV0M9LS0Hz2JkDE1k0Ss7xL0 +igKJZJ//hjgDOnRNEGfiExbjggaDg25Gdthq1XlKGFcSVGX6xIL4QyDkOaJtrd4 lGELcKCN/q4j9ekhpwJJ2xxJPgrI6tKd8K6jt1xjkHHf/QMTD2VzJT6oSOoTOrtP lXSYL4oIeUhDfPzHGJDFKbbCI9O7rI26ziigT4Pr6lrt2AYw9smDjob6FiCQEKft goKIIzauqSbNjMw7Qglo9u/kqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD6gtmtu JTXbykrppSN9xZ2grWkSMB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NFRTMvOUE3N0FBMkEwNTk0MTFFQzlGNjQ2ODU0QzRGOUFFMDIvN0E1MzJBMzA4 RTFEMTFFRTlDQzU1MzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABne3MwDQYJKoZIhvcNAQELBQADggEBAIO45wmOJ3fuik8f Z8sUEpfVYxpg7dIjjDBcUh7hTn1r4EgvTMq5CcTfMsnzirPbC+NoVYh/Xjj9VbGh vHw9FWeBZrHUTFTE0YB+HdI49ybe13u2ioZIfl9nzxonCgbcgLsWM2sowwQAa+yJ HZe9UEXvkAsI3kcPTnan8ZcnZufRo43dzlJnJKRtmlreCsHmHIB28VDtfhBBDh8G rAritlEYeKyUhoQ503q1xap/+LmMFlpQ/jldDwmZS1LVOKdApGcF/JPyPR5mUkOk tDnCcypbhT1e56flaLR1kbw4C1m+jB2nYdHQBT+a7VteFkuebFmU0hDkN8nFX81g e/KfZfc= -----END CERTIFICATE-----Generated at Wed May 1 03:20:33 2024 by rpki-client on console-fra.rpki-client.org