$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa File: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (raw, json) Hash identifier: 06qlKoNMAgG5qkJwM6sNlRAgtRr58eOsszFhlsT8L0o= Subject key identifier: 21:E4:E1:BD:5A:FB:FB:3D:45:D1:6A:E9:C6:9E:68:F3:57:91:C0:B5 Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 0261 Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa Signing time: Thu 07 Nov 2024 01:15:06 +0000 ROA not before: Thu 07 Nov 2024 01:15:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135126 IP address blocks: 103.120.8.0/22 maxlen: 22 103.120.8.0/24 maxlen: 24 103.120.9.0/24 maxlen: 24 103.120.10.0/24 maxlen: 24 103.120.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Nov 7 01:15:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=672c1499-731c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f7:f0:2d:f2:d0:ee:22:a4:fe:09:96:52:04: 89:c5:7d:3c:30:ad:22:b4:6b:5c:0f:e3:43:02:7c: 55:e4:ce:27:e6:70:2e:ea:ae:3e:6b:8e:a0:be:b5: b5:64:93:b0:08:7a:bc:e9:6c:9f:e4:6f:c6:a3:55: 35:93:36:a9:6d:d3:8d:d1:b8:fb:bb:38:86:9e:da: e4:70:57:b7:a0:38:51:06:01:2f:7b:26:7a:61:ee: a3:4d:2c:04:3e:c2:b4:ac:ec:4a:08:0d:f4:ca:66: 47:e0:27:7c:46:c9:f6:6b:38:51:88:3b:4c:19:3c: 75:fc:3b:d9:bd:d4:a3:2b:ff:15:22:33:52:d2:67: d7:a1:3a:38:84:29:df:33:80:67:ef:21:50:e1:60: 2a:ec:75:57:33:d6:33:79:6f:7b:09:89:2c:ae:84: bc:5f:a1:b1:64:5c:60:2e:3b:7f:01:26:c7:dd:16: 41:ec:39:27:c7:f7:4b:1e:bc:cf:db:6d:1b:91:24: 17:44:0d:b9:69:ff:b5:6a:82:7f:8a:b0:65:87:92: 84:1a:eb:0a:0b:de:40:b2:c4:86:41:8d:b8:72:ad: 48:ac:e2:1d:1d:8c:c5:18:93:28:da:2c:f5:35:86: 50:0a:15:7f:47:04:1e:20:15:e0:ae:6c:bf:68:4a: b2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E4:E1:BD:5A:FB:FB:3D:45:D1:6A:E9:C6:9E:68:F3:57:91:C0:B5 X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.8.0/22 Signature Algorithm: sha256WithRSAEncryption 15:5c:3c:4e:71:cd:7f:19:4e:e2:5e:67:5f:14:61:a6:99:0d: 80:2a:c1:2e:d9:d9:97:a6:53:94:ef:93:9e:30:9e:b3:6b:e4: d4:c4:61:24:4c:df:15:7d:7c:85:ff:81:48:77:d3:ed:94:a5: f9:b7:55:d0:43:70:4b:04:5d:83:6b:62:77:24:48:98:c5:31: 31:a7:00:1b:54:13:e0:a2:9c:83:2b:9d:06:aa:a2:e0:b4:22: 56:2d:cc:9f:d6:5c:a3:c2:06:fd:d0:30:75:99:a6:12:fc:5e: 21:e4:28:6e:df:6d:6b:13:e0:fd:62:ce:7c:13:95:4d:83:56: 9d:52:b4:53:39:90:25:d6:e6:47:7a:da:0e:c7:fb:4f:07:1e: 26:5a:76:35:fd:31:09:31:95:a8:b7:6f:5f:33:11:a7:7d:ed: bf:ee:ca:30:6b:13:c0:58:fa:86:cd:41:13:ac:a9:67:6e:79: a6:6d:4b:18:59:f1:06:da:f3:cb:54:59:43:bc:9b:fc:ed:33: 79:9b:cf:b0:57:f5:2e:6b:91:31:af:9a:8b:d9:f4:83:1c:74: 96:fe:9e:ea:fc:fa:f3:c7:bf:f5:38:55:26:10:6a:d3:99:fb: ff:49:d8:4f:f2:1e:1e:97:76:12:ef:2c:60:37:29:b7:4b:26: 8b:2e:ad:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjQxMTA3MDExNTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjMTQ5OS03MzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/fwLfLQ7iKk/gmWUgSJxX08MK0itGtcD+NDAnxV5M4n5nAu6q4+a46gvrW1 ZJOwCHq86Wyf5G/Go1U1kzapbdON0bj7uziGntrkcFe3oDhRBgEveyZ6Ye6jTSwE PsK0rOxKCA30ymZH4Cd8Rsn2azhRiDtMGTx1/DvZvdSjK/8VIjNS0mfXoTo4hCnf M4Bn7yFQ4WAq7HVXM9YzeW97CYksroS8X6GxZFxgLjt/ASbH3RZB7Dknx/dLHrzP 220bkSQXRA25af+1aoJ/irBlh5KEGusKC95AssSGQY24cq1IrOIdHYzFGJMo2iz1 NYZQChV/RwQeIBXgrmy/aEqy9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCHk4b1a +/s9RdFq6caeaPNXkcC1MB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIyNDEvQjY0OUNBOTZGMDc0MTFFQzlBNTFENTQ4QzRGOUFFMDIvQTMzQjAzQTJG MDc5MTFFQ0JEQjFCQzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneAgwDQYJKoZIhvcNAQELBQADggEBABVcPE5xzX8ZTuJe Z18UYaaZDYAqwS7Z2ZemU5Tvk54wnrNr5NTEYSRM3xV9fIX/gUh30+2Upfm3VdBD cEsEXYNrYnckSJjFMTGnABtUE+CinIMrnQaqouC0IlYtzJ/WXKPCBv3QMHWZphL8 XiHkKG7fbWsT4P1iznwTlU2DVp1StFM5kCXW5kd62g7H+08HHiZadjX9MQkxlai3 b18zEad97b/uyjBrE8BY+obNQROsqWdueaZtSxhZ8Qba88tUWUO8m/ztM3mbz7BX 9S5rkTGvmovZ9IMcdJb+nur8+vPHv/U4VSYQatOZ+/9J2E/yHh6XdhLvLGA3KbdL JosurVE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org