$ rpki-client -vvf rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/7DA22F2C199D11EFB19DA380C4F9AE02.roa File: 7DA22F2C199D11EFB19DA380C4F9AE02.roa (raw, json) Hash identifier: A08tXG6MBFf3Rb9oSP5OxY5ld6uWXfT6PhOoxgfD4Yk= Subject key identifier: D1:25:6F:63:6E:7F:2B:98:82:A3:2E:54:CE:32:F8:AB:22:39:6C:FE Certificate issuer: /CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Certificate serial: 02 Authority key identifier: 8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/7DA22F2C199D11EFB19DA380C4F9AE02.roa Signing time: Fri 24 May 2024 07:16:08 +0000 ROA not before: Fri 24 May 2024 07:16:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152715 IP address blocks: 103.42.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AACD/serialNumber=8A27F1B51459FD36CB2C8060871C5538F9D23D7E Validity Not Before: May 24 07:16:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66503eb8-06c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b5:c5:1a:85:57:76:b8:94:15:41:8c:f5:72: 4a:eb:c4:4f:58:22:c9:3e:01:cc:cd:eb:e1:f1:72: b2:c0:6f:4b:5c:25:57:d1:68:1a:f3:b1:5d:f2:34: 94:0c:3a:22:1c:de:f3:e3:dc:14:3e:90:b1:9d:1c: 3f:c3:99:91:f5:7c:2b:79:ff:48:8c:7d:62:00:ca: 23:8a:99:e3:2b:56:04:a1:a1:e8:de:67:79:4a:98: bd:48:ed:e9:ba:61:a2:dd:f3:38:84:07:ae:9c:8b: b9:40:f4:56:34:7a:60:d9:13:52:c7:8c:0f:ef:15: b1:d5:9f:cb:14:2b:6b:07:e4:77:c6:f1:71:35:13: 41:cc:5b:f6:e1:1a:ce:8a:19:b7:a0:39:aa:5b:00: bc:11:94:21:dc:c9:cb:1e:6e:56:83:66:23:f4:63: d4:02:8e:de:23:d2:41:90:c3:5f:13:e4:05:b5:0f: 0d:da:45:bc:13:61:e5:38:5f:f8:92:ad:0a:65:ad: 58:07:fc:60:f7:84:49:2a:12:3f:43:c8:f5:d7:81: ee:67:81:db:6c:3e:73:a6:83:9f:a9:bd:89:98:4c: 59:ba:67:80:b8:e6:3c:1c:dd:5d:4a:b2:26:22:2e: 8e:e9:63:1e:eb:6b:fb:5d:4c:52:66:7d:61:c7:d7: 7e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:25:6F:63:6E:7F:2B:98:82:A3:2E:54:CE:32:F8:AB:22:39:6C:FE X509v3 Authority Key Identifier: keyid:8A:27:F1:B5:14:59:FD:36:CB:2C:80:60:87:1C:55:38:F9:D2:3D:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/iifxtRRZ_TbLLIBghxxVOPnSPX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iifxtRRZ_TbLLIBghxxVOPnSPX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AACD/8EA19AA2199C11EF9697347FC4F9AE02/7DA22F2C199D11EFB19DA380C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.50.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:78:da:28:6e:71:64:d0:f0:9f:95:45:34:cf:3f:51:b7:2b: bf:e2:67:8d:5b:aa:62:ab:c7:ec:f9:5c:34:59:97:ef:48:aa: 1d:a8:64:e4:c5:78:2b:34:b6:37:55:3c:d5:01:bc:93:f2:50: 68:b7:f6:5a:eb:81:f1:bd:d4:f0:df:01:88:1c:22:d2:e8:04: ee:38:18:0c:50:19:8b:95:b2:16:00:a5:c2:f9:7c:be:4b:e8: 91:d4:b5:c8:05:cb:fb:ae:04:d6:5c:36:0f:7f:cc:61:77:fd: 04:45:9d:61:02:c5:6e:64:f7:03:93:84:27:0d:24:35:ed:89: f3:f8:98:ab:aa:94:0e:b3:98:37:96:7a:cb:56:c2:12:ae:b0: c6:2d:81:d0:53:bb:2a:3b:f9:43:60:13:c5:fd:17:96:ed:c7: f3:4e:d1:22:0f:77:3e:5b:9a:28:09:5f:f9:ab:40:df:b6:6a: c1:ff:c1:6c:b4:fa:41:8e:c7:b2:28:49:13:40:60:4a:9b:e0: 62:3c:7d:95:da:b3:c6:9a:7f:f1:7a:37:de:b0:3f:98:ef:65: 8b:21:9e:3c:68:9a:15:7b:46:fb:5a:38:ec:3d:1c:66:b4:6f: 9d:b8:6e:9d:07:0e:5d:93:d8:82:41:9a:5c:81:3a:c1:de:06: 12:8f:b6:8d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUFDRDExMC8GA1UEBRMoOEEyN0YxQjUxNDU5RkQzNkNCMkM4MDYwODcxQzU1MzhG OUQyM0Q3RTAeFw0yNDA1MjQwNzE2MDhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTAzZWI4LTA2YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCptcUahVd2uJQVQYz1ckrrxE9YIsk+AczN6+HxcrLAb0tcJVfRaBrzsV3yNJQM OiIc3vPj3BQ+kLGdHD/DmZH1fCt5/0iMfWIAyiOKmeMrVgShoejeZ3lKmL1I7em6 YaLd8ziEB66ci7lA9FY0emDZE1LHjA/vFbHVn8sUK2sH5HfG8XE1E0HMW/bhGs6K GbegOapbALwRlCHcycseblaDZiP0Y9QCjt4j0kGQw18T5AW1Dw3aRbwTYeU4X/iS rQplrVgH/GD3hEkqEj9DyPXXge5ngdtsPnOmg5+pvYmYTFm6Z4C45jwc3V1KsiYi Lo7pYx7ra/tdTFJmfWHH134ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0SVvY25/ K5iCoy5UzjL4qyI5bP4wHwYDVR0jBBgwFoAUiifxtRRZ/TbLLIBghxxVOPnSPX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQUNELzhFQTE5QUEyMTk5 QzExRUY5Njk3MzQ3RkM0RjlBRTAyL2lpZnh0UlJaX1RiTExJQmdoeHhWT1BuU1BY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaWlmeHRSUlpfVGJMTElCZ2h4eFZPUG5TUFg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QUFDRC84RUExOUFBMjE5OUMxMUVGOTY5NzM0N0ZDNEY5QUUwMi83REEyMkYyQzE5 OUQxMUVGQjE5REEzODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcqMjANBgkqhkiG9w0BAQsFAAOCAQEAi3jaKG5xZNDwn5VF NM8/Ubcrv+JnjVuqYqvH7PlcNFmX70iqHahk5MV4KzS2N1U81QG8k/JQaLf2WuuB 8b3U8N8BiBwi0ugE7jgYDFAZi5WyFgClwvl8vkvokdS1yAXL+64E1lw2D3/MYXf9 BEWdYQLFbmT3A5OEJw0kNe2J8/iYq6qUDrOYN5Z6y1bCEq6wxi2B0FO7Kjv5Q2AT xf0Xlu3H807RIg93PluaKAlf+atA37Zqwf/BbLT6QY7HsihJE0BgSpvgYjx9ldqz xpp/8Xo33rA/mO9liyGePGiaFXtG+1o47D0cZrRvnbhunQcOXZPYgkGaXIE6wd4G Eo+2jQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:56 2024 by rpki-client on console-ams.rpki-client.org