$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/D0763FECA68A11EB9F23D74FC4F9AE02.roa File: D0763FECA68A11EB9F23D74FC4F9AE02.roa (raw, json) Hash identifier: VQCVLpNqfWDjo91C5wVq3XZaJfc6UnpFTN8P8OxpyeY= Subject key identifier: 26:24:31:AA:DD:62:B9:71:52:86:16:24:C9:0C:E8:23:72:B6:9C:75 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 054C Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/D0763FECA68A11EB9F23D74FC4F9AE02.roa Signing time: Wed 29 May 2024 01:36:30 +0000 ROA not before: Wed 29 May 2024 01:36:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.166.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: May 29 01:36:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6656869e-2ce4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f2:e7:57:a9:2a:33:36:1c:e2:8a:57:40:5b: 36:f6:96:f7:43:2b:e8:90:70:5a:39:cf:25:22:a6: 10:63:7a:49:1e:b4:6f:ad:47:00:3e:86:b0:b8:60: 6a:ac:46:23:69:8f:7c:98:a9:9d:47:89:ca:8e:49: 9b:48:1c:5c:01:44:30:1f:10:fa:a0:14:a2:f4:31: c3:7e:06:82:d8:d3:89:f6:32:2a:df:b6:a5:2e:b2: 24:14:22:bf:e9:85:ed:bb:68:13:18:c7:45:61:2a: 67:27:f5:92:68:e6:c6:09:56:b6:8a:ef:d8:d5:19: e6:6b:0a:50:6c:8b:34:84:52:30:43:d5:60:5e:57: bf:22:e9:64:34:6a:fc:ec:bd:8f:5c:b2:8c:d0:7d: 82:a8:14:8d:54:48:df:63:5b:9b:02:4a:4e:1c:b2: 84:ef:b6:05:a2:5b:66:91:5b:c2:a4:bc:35:b7:8f: c4:a9:3b:26:97:e4:f6:4c:8e:1e:2a:6e:b5:53:35: dd:ae:f8:c6:bb:22:af:89:d2:9a:a4:ba:ca:fe:0a: 18:5c:6d:d9:fc:81:1c:79:23:7e:77:26:01:ea:60: ff:76:a6:52:f7:b5:13:cf:9e:cf:37:9c:bd:f3:44: 05:d1:50:86:b8:1a:6a:1d:5a:9b:8e:95:9d:9e:cf: 2e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:24:31:AA:DD:62:B9:71:52:86:16:24:C9:0C:E8:23:72:B6:9C:75 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/D0763FECA68A11EB9F23D74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:d4:79:89:5d:04:e5:5b:60:4d:e6:f5:f2:92:0d:8a:5a:da: b7:6e:e8:f9:cc:dd:48:7b:f0:61:3f:c2:bc:44:c5:b1:18:9b: 8c:d0:4c:c4:c2:04:72:81:64:b7:bb:f6:46:d9:ff:85:13:60: 63:ce:18:c8:76:3c:53:7d:2e:bc:0b:4f:7e:6b:cf:0e:61:40: bc:15:4f:79:a6:cb:14:bf:cb:18:d7:12:a3:6c:c4:43:a3:93: ac:51:0d:67:62:b2:14:69:6b:73:c6:a2:3b:e3:7c:52:4f:97: 52:bb:0f:73:d2:28:74:f1:51:c7:45:9a:c0:12:eb:01:4d:76: 78:ce:70:3d:91:77:e7:40:99:9e:96:24:23:f2:b9:fd:f8:09: 26:b3:18:06:ec:bc:72:46:ab:2b:61:d9:63:50:67:c6:77:1d: fe:fe:cd:23:95:8b:7e:37:9d:56:3b:d7:cb:40:37:93:af:be: 6d:7c:99:15:de:d4:2f:b0:c7:80:27:68:f9:06:ee:56:36:af: af:12:37:e2:61:9f:00:17:9e:65:83:e9:1e:d7:5a:9f:e2:8b: 82:fd:e1:07:68:56:58:ae:50:7f:81:9f:c3:ac:f8:54:8b:5c: 20:c2:94:39:88:90:8c:10:02:8d:60:ba:d9:90:24:13:89:34: be:fb:a0:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjQwNTI5MDEzNjMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2ODY5ZS0yY2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/LnV6kqMzYc4opXQFs29pb3QyvokHBaOc8lIqYQY3pJHrRvrUcAPoawuGBq rEYjaY98mKmdR4nKjkmbSBxcAUQwHxD6oBSi9DHDfgaC2NOJ9jIq37alLrIkFCK/ 6YXtu2gTGMdFYSpnJ/WSaObGCVa2iu/Y1RnmawpQbIs0hFIwQ9VgXle/IulkNGr8 7L2PXLKM0H2CqBSNVEjfY1ubAkpOHLKE77YFoltmkVvCpLw1t4/EqTsml+T2TI4e Km61UzXdrvjGuyKvidKapLrK/goYXG3Z/IEceSN+dyYB6mD/dqZS97UTz57PN5y9 80QF0VCGuBpqHVqbjpWdns8uLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCYkMard YrlxUoYWJMkM6CNytpx1MB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ3NUQvN0UyNzJGN0NBNjg5MTFFQkE0NEIwMjRGQzRGOUFFMDIvRDA3NjNGRUNB NjhBMTFFQjlGMjNENzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpnYwDQYJKoZIhvcNAQELBQADggEBAJ7UeYldBOVbYE3m 9fKSDYpa2rdu6PnM3Uh78GE/wrxExbEYm4zQTMTCBHKBZLe79kbZ/4UTYGPOGMh2 PFN9LrwLT35rzw5hQLwVT3mmyxS/yxjXEqNsxEOjk6xRDWdishRpa3PGojvjfFJP l1K7D3PSKHTxUcdFmsAS6wFNdnjOcD2Rd+dAmZ6WJCPyuf34CSazGAbsvHJGqyth 2WNQZ8Z3Hf7+zSOVi343nVY718tAN5Ovvm18mRXe1C+wx4AnaPkG7lY2r68SN+Jh nwAXnmWD6R7XWp/ii4L94QdoVliuUH+Bn8Os+FSLXCDClDmIkIwQAo1gutmQJBOJ NL77oB8= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:22 2024 by rpki-client on console-fra.rpki-client.org