$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa File: 7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa (raw, json) Hash identifier: EdbP6Ic3TKOXeBjm7GNDv83YO0G30y52gbvBzwhEMSM= Subject key identifier: E3:54:68:69:7D:B0:36:85:A9:45:C4:5F:39:AF:B2:AB:12:5F:ED:53 Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 09CB Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa Signing time: Fri 26 Apr 2024 21:09:53 +0000 ROA not before: Fri 26 Apr 2024 21:09:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 23959 IP address blocks: 43.239.249.0/24 maxlen: 24 103.150.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2507 (0x9cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 26 21:09:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c1821-8b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:69:dd:5a:b7:e4:cf:41:90:ab:3d:4f:f1: 33:26:d5:63:22:88:93:a6:72:5f:0a:f3:b3:ef:47: 91:67:c2:a7:08:36:08:b5:8d:b9:d7:dd:28:ec:dd: ee:aa:22:88:e6:1b:5a:b0:78:f5:0b:77:41:32:a7: b2:7f:64:e8:d7:f6:e1:13:cb:e9:a2:80:79:8d:2f: 60:2a:04:5f:b2:cb:ff:15:98:e0:d4:20:2b:51:06: ed:f7:6c:dd:2b:5e:3e:f3:cb:c8:09:43:95:d4:b6: ac:c7:16:0a:c0:16:c0:11:28:0c:f3:82:b1:a3:0d: 3d:13:a3:ad:8c:54:2d:6e:60:bc:48:9b:85:c1:31: a3:4e:e8:62:d8:2f:54:6a:24:96:4b:cc:0e:51:a7: c6:32:0e:42:f3:b2:c2:d8:1b:8f:67:5a:a9:2b:9a: 90:56:d2:6a:fa:90:c8:73:76:45:2e:f2:5f:e9:eb: 9f:58:3b:d6:bc:0e:bc:66:6d:b5:90:e1:37:04:ab: 01:2e:02:01:75:52:0c:2a:1c:28:a8:ac:5f:d4:dd: 47:ab:be:ea:de:72:29:3a:c8:03:9b:25:90:0d:74: b0:c0:e5:3c:be:35:dd:23:2a:52:11:ad:19:eb:f8: 25:f4:75:19:a9:85:d0:05:8b:c0:20:58:ef:10:5c: 6c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:54:68:69:7D:B0:36:85:A9:45:C4:5F:39:AF:B2:AB:12:5F:ED:53 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/7E12F8DC4C0A11ECACB7F96AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.249.0/24 103.150.8.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:20:2a:3c:3a:e0:25:71:16:f4:83:5a:c5:fd:09:eb:29:f9: 1d:d9:55:8a:e8:80:4a:8b:16:9b:6f:62:a9:d6:dc:d2:9b:cb: fe:40:a1:ce:3a:de:df:5c:88:2f:ae:f9:5c:0a:59:07:2e:25: 68:96:5c:ee:b2:a2:a4:a4:75:35:ab:48:35:2e:92:63:b1:ce: 57:67:af:c9:da:64:75:e4:74:07:4c:25:66:e6:0e:b0:fc:d9: d8:e1:bb:86:e1:32:42:5a:b7:75:96:0a:50:d1:21:ca:a3:fd: c9:e7:ab:97:bc:cf:8c:ae:2e:52:b6:6b:b8:51:aa:2b:15:64: f5:c3:3d:ac:c9:99:79:51:47:7d:bf:ae:c2:40:91:c0:dc:f5: 70:3f:a0:82:9f:a1:eb:ad:4b:c9:3b:c1:76:52:cf:84:20:c3: 7b:7b:b9:84:c9:32:72:50:2c:39:61:91:81:f6:fd:57:72:b1: ea:6e:65:53:b4:c8:ac:82:88:d3:e0:b8:47:59:fe:55:d7:35: e6:61:40:c6:27:2d:01:a7:11:1f:3a:88:73:19:f0:2b:79:f8: cb:a2:74:ef:0e:2b:fe:66:dd:8d:99:7c:d7:5b:71:29:10:8a: 85:9d:ba:d5:cd:f8:33:13:ca:c1:93:6d:4f:52:c7:da:cd:53: e6:c6:bc:22 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjQwNDI2MjEwOTUzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjMTgyMS04Yjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6Bp3Vq35M9BkKs9T/EzJtVjIoiTpnJfCvOz70eRZ8KnCDYItY25190o7N3u qiKI5htasHj1C3dBMqeyf2To1/bhE8vpooB5jS9gKgRfssv/FZjg1CArUQbt92zd K14+88vICUOV1LasxxYKwBbAESgM84Kxow09E6OtjFQtbmC8SJuFwTGjTuhi2C9U aiSWS8wOUafGMg5C87LC2BuPZ1qpK5qQVtJq+pDIc3ZFLvJf6eufWDvWvA68Zm21 kOE3BKsBLgIBdVIMKhwoqKxf1N1Hq77q3nIpOsgDmyWQDXSwwOU8vjXdIypSEa0Z 6/gl9HUZqYXQBYvAIFjvEFxs9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFONUaGl9 sDaFqUXEXzmvsqsSX+1TMB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvN0UxMkY4REM0 QzBBMTFFQ0FDQjdGOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr7/kDBABnlggwDQYJKoZIhvcNAQELBQADggEBAJwgKjw6 4CVxFvSDWsX9Cesp+R3ZVYrogEqLFptvYqnW3NKby/5Aoc463t9ciC+u+VwKWQcu JWiWXO6yoqSkdTWrSDUukmOxzldnr8naZHXkdAdMJWbmDrD82djhu4bhMkJat3WW ClDRIcqj/cnnq5e8z4yuLlK2a7hRqisVZPXDPazJmXlRR32/rsJAkcDc9XA/oIKf oeutS8k7wXZSz4Qgw3t7uYTJMnJQLDlhkYH2/VdysepuZVO0yKyCiNPguEdZ/lXX NeZhQMYnLQGnER86iHMZ8Ct5+MuidO8OK/5m3Y2ZfNdbcSkQioWdutXN+DMTysGT bU9Sx9rNU+bGvCI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org