$ rpki-client -vvf rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa File: 7ABD27E4889811EEB99AD46DC4F9AE02.roa (raw, json) Hash identifier: Tzogk+KlaMGiRbq9BoG9FBqCIAU/Ao8ia39qrUgrDpE= Subject key identifier: FB:60:5B:D9:10:9A:EA:98:0F:9C:29:54:F4:E9:7B:1E:FE:2A:3A:10 Certificate issuer: /CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Certificate serial: 0761 Authority key identifier: ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa Signing time: Wed 18 Sep 2024 21:40:31 +0000 ROA not before: Wed 18 Sep 2024 21:40:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141166 IP address blocks: 103.155.150.0/23 maxlen: 23 103.155.150.0/24 maxlen: 24 2001:df4:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1889 (0x761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Validity Not Before: Sep 18 21:40:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eb48cf-2c30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:25:5c:ff:79:97:83:23:94:0a:60:f4:43:e7: d2:b5:a9:81:0a:f2:f4:9a:77:d7:92:04:8d:ef:4d: a0:97:a2:b1:e3:c6:a6:c5:9e:66:2e:6c:6e:c0:de: d6:4a:b0:6d:ce:53:b8:cb:05:eb:84:79:85:0b:af: 30:12:3a:2e:c4:d8:9a:43:0a:74:df:81:2a:17:75: 79:92:b1:8b:2c:34:5a:3c:84:d5:b4:80:5c:15:ea: f7:28:ea:75:d1:5e:00:56:1c:26:4e:16:11:89:b2: 44:ca:89:0c:c5:c0:9b:1e:0d:ce:50:74:d6:48:e1: d8:7d:b1:b4:8a:33:52:d0:b0:b5:ec:8c:5a:e5:a8: 1c:1e:59:9b:9b:98:1f:1e:fd:79:41:63:86:ad:d1: 9f:96:0e:97:15:f1:e9:d6:9d:8d:32:d6:2c:e8:2e: 82:2d:27:8a:e4:88:62:58:6b:33:96:22:9b:cf:da: f6:88:31:d3:78:e3:b8:8d:11:06:5a:b4:5b:52:92: 65:4f:19:52:52:60:38:93:5c:13:a2:0a:a7:44:c4: f2:a5:c9:e5:c0:d2:3b:28:b3:7b:05:a3:da:65:ab: 59:a2:35:2c:23:76:ed:c3:a6:bc:60:2a:00:c3:27: 53:bc:60:fb:a0:af:49:64:ed:ab:bb:fa:a4:f9:e6: 98:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:60:5B:D9:10:9A:EA:98:0F:9C:29:54:F4:E9:7B:1E:FE:2A:3A:10 X509v3 Authority Key Identifier: keyid:ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.150.0/23 IPv6: 2001:df4:ce80::/48 Signature Algorithm: sha256WithRSAEncryption a5:d2:b3:b9:5f:6d:5b:b4:78:50:e0:4a:14:12:66:82:a5:6a: 52:3f:9a:69:4f:86:8c:4e:19:ab:ad:56:87:b3:7f:0c:9a:0b: 00:d3:22:66:c0:3b:aa:72:a6:ee:5c:f1:ec:79:0e:00:7e:4c: 1d:20:c3:42:c7:4e:f6:0a:43:95:f9:f8:57:d2:28:32:d1:04: d5:e6:e3:13:5d:97:93:e2:61:6c:34:67:9e:29:d0:f1:7c:f3: 0c:6a:ad:ee:8e:ce:83:b5:c9:c4:13:a9:8a:6f:51:70:07:ca: ce:5c:26:0c:1d:34:85:c5:b1:3e:2c:12:53:cf:6b:91:08:d2: a4:96:39:4b:b1:a3:a5:b5:36:49:00:58:97:bd:a6:f2:dc:1f: 42:2d:23:1b:88:d5:3f:cc:93:4a:3a:cc:e7:c8:e4:9b:ed:1f: 7a:5f:39:81:68:d3:8c:9f:e6:c9:8e:1d:06:2d:7c:76:3c:a2: 75:67:e2:f7:5a:bf:a1:a5:4a:92:e9:7e:4e:d4:0f:03:9e:a8: 4e:76:75:86:16:d4:ad:89:2f:f8:82:77:dd:0c:a6:b3:e8:a8: 06:cf:bd:7e:0e:c9:64:de:0e:d0:0b:b0:72:e5:2b:58:91:19: 60:46:7b:4c:4b:88:ff:ec:f2:88:c3:bd:24:ca:2e:6f:79:20: a0:a1:75:3d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzRTYxMTAvBgNVBAUTKEVEOENCQzU0Q0Q4NkYyQzFGOTJERUM2QkM5MDlEQkM2 RkE2MzRDODEwHhcNMjQwOTE4MjE0MDMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViNDhjZi0yYzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiVc/3mXgyOUCmD0Q+fStamBCvL0mnfXkgSN702gl6Kx48amxZ5mLmxuwN7W SrBtzlO4ywXrhHmFC68wEjouxNiaQwp034EqF3V5krGLLDRaPITVtIBcFer3KOp1 0V4AVhwmThYRibJEyokMxcCbHg3OUHTWSOHYfbG0ijNS0LC17Ixa5agcHlmbm5gf Hv15QWOGrdGflg6XFfHp1p2NMtYs6C6CLSeK5IhiWGszliKbz9r2iDHTeOO4jREG WrRbUpJlTxlSUmA4k1wTogqnRMTypcnlwNI7KLN7BaPaZatZojUsI3btw6a8YCoA wydTvGD7oK9JZO2ru/qk+eaYbwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPtgW9kQ muqYD5wpVPTpex7+KjoQMB8GA1UdIwQYMBaAFO2MvFTNhvLB+S3sa8kJ28b6Y0yB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTNFNi82NDBENjE4RUYy QzkxMUVBODZGMTI3MTdDNEY5QUUwMi83WXk4Vk0yRzhzSDVMZXhyeVFuYnh2cGpU SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZeThWTTJHOHNINUxleHJ5UW5ieHZwalRJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEzRTYvNjQwRDYxOEVGMkM5MTFFQTg2RjEyNzE3QzRGOUFFMDIvN0FCRDI3RTQ4 ODk4MTFFRUI5OUFENDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnm5YwDwQCAAIwCQMHACABDfTOgDANBgkqhkiG9w0BAQsF AAOCAQEApdKzuV9tW7R4UOBKFBJmgqVqUj+aaU+GjE4Zq61Wh7N/DJoLANMiZsA7 qnKm7lzx7HkOAH5MHSDDQsdO9gpDlfn4V9IoMtEE1ebjE12Xk+JhbDRnninQ8Xzz DGqt7o7Og7XJxBOpim9RcAfKzlwmDB00hcWxPiwSU89rkQjSpJY5S7GjpbU2SQBY l72m8twfQi0jG4jVP8yTSjrM58jkm+0fel85gWjTjJ/myY4dBi18djyidWfi91q/ oaVKkul+TtQPA56oTnZ1hhbUrYkv+IJ33Qyms+ioBs+9fg7JZN4O0AuwcuUrWJEZ YEZ7TEuI/+zyiMO9JMoub3kgoKF1PQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org