$ rpki-client -vvf rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa File: B2A2CFCEF56C11EE90E38718C4F9AE02.roa (raw, json) Hash identifier: 9ef3bsd1YWEQ0cPGMtCDhRdH7824+50itsw2PqzlK9g= Subject key identifier: AC:4A:D1:D0:17:2A:27:10:B8:3B:83:7D:A5:2F:D7:9C:D7:8B:76:EF Certificate issuer: /CN=A918F8B1/serialNumber=B5B3FC3E760877EF4F8D8E843BDD68CE0F405530 Certificate serial: 0D19 Authority key identifier: B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa Signing time: Mon 08 Apr 2024 05:56:10 +0000 ROA not before: Mon 08 Apr 2024 05:56:10 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 8075 IP address blocks: 103.158.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F8B1/serialNumber=B5B3FC3E760877EF4F8D8E843BDD68CE0F405530 Validity Not Before: Apr 8 05:56:10 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=661386fa-9f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:84:6d:62:a8:a2:58:98:40:9d:3c:78:3b:e8: 44:51:c6:7f:0a:ff:88:15:50:1a:f4:be:d4:e3:93: 10:87:9e:2f:93:53:ef:90:80:6d:81:f2:2b:49:08: 32:e2:ce:88:7d:74:fe:ba:c7:8c:e9:62:28:ee:19: 83:87:79:55:f3:2b:e1:a0:63:7b:59:c0:34:e2:f4: a4:11:3a:51:b9:d6:54:70:44:b4:8e:18:17:ca:26: 3b:e0:9e:73:fd:7e:86:d2:94:56:25:00:d4:2c:37: 1e:1f:a9:10:aa:ad:97:59:72:f0:61:22:f7:dc:cd: 18:9b:fd:01:2b:74:4e:41:96:f9:b4:27:7b:1f:f7: 83:95:80:8d:df:d2:43:80:c7:80:cc:88:26:aa:7d: 4a:31:d0:1a:b3:35:e9:46:7e:6f:2b:2a:0a:8a:e8: e7:96:86:f9:09:b3:05:07:0f:96:7f:ad:c0:68:bc: e3:8a:37:b3:48:73:bf:88:71:51:f3:79:1f:ba:40: fe:5b:3c:e8:20:90:27:03:53:6f:41:a9:fd:34:57: 7b:ff:37:47:83:6b:88:ae:4d:64:fa:5b:bc:4f:fd: 56:22:e7:5d:1e:82:77:a5:b6:16:fc:0a:ef:bd:84: bb:b6:6c:c2:65:74:08:52:37:e2:36:ea:44:c9:b1: 6f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:4A:D1:D0:17:2A:27:10:B8:3B:83:7D:A5:2F:D7:9C:D7:8B:76:EF X509v3 Authority Key Identifier: keyid:B5:B3:FC:3E:76:08:77:EF:4F:8D:8E:84:3B:DD:68:CE:0F:40:55:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/tbP8PnYId-9PjY6EO91ozg9AVTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbP8PnYId-9PjY6EO91ozg9AVTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F8B1/7D54A0CAB58611E9AA5F4D65C4F9AE02/B2A2CFCEF56C11EE90E38718C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.243.0/24 Signature Algorithm: sha256WithRSAEncryption 96:69:96:88:42:4a:82:1c:12:90:4b:78:af:af:5a:03:25:fa: e3:fd:3d:67:f3:19:dc:f6:3f:3a:50:53:82:ea:af:d7:ff:62: 94:dd:78:98:9c:12:36:d7:dd:c1:3a:f1:61:16:25:42:30:b9: ff:f7:78:de:d3:9c:56:b7:94:ba:68:3e:a2:b9:cd:0b:e1:1e: 14:40:f0:b9:48:93:37:34:e4:82:8d:d0:94:ad:00:7b:e3:5a: e6:f2:91:be:13:12:f5:72:33:77:9d:e2:e1:b1:f2:a9:81:20: 7d:8e:f3:bf:23:25:81:c2:57:7e:8f:da:65:0b:fe:c7:72:4a: d4:77:85:03:9a:ac:8b:cc:3a:c3:16:22:1f:3a:da:46:11:41: 12:2d:23:10:a6:18:13:1c:2e:c9:cc:0a:6a:a9:0d:4b:de:d0: 91:43:d6:0a:c9:9d:ef:1c:12:51:84:95:a5:6f:dd:c0:bf:0a: 79:e6:c0:f9:36:07:04:fd:79:e2:58:92:46:3a:73:0b:25:34: cd:c5:a1:d6:2a:c0:64:ed:ee:df:4a:73:e8:86:ad:19:75:25: c2:e8:93:94:84:86:fe:d5:2b:48:2c:b6:28:06:fc:2d:2d:14: 3d:3d:93:54:7c:ca:ac:f5:aa:41:0d:30:1a:21:43:b7:8b:fa: b5:92:80:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4QjExMTAvBgNVBAUTKEI1QjNGQzNFNzYwODc3RUY0RjhEOEU4NDNCREQ2OENF MEY0MDU1MzAwHhcNMjQwNDA4MDU1NjEwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjEzODZmYS05ZjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYRtYqiiWJhAnTx4O+hEUcZ/Cv+IFVAa9L7U45MQh54vk1PvkIBtgfIrSQgy 4s6IfXT+useM6WIo7hmDh3lV8yvhoGN7WcA04vSkETpRudZUcES0jhgXyiY74J5z /X6G0pRWJQDULDceH6kQqq2XWXLwYSL33M0Ym/0BK3ROQZb5tCd7H/eDlYCN39JD gMeAzIgmqn1KMdAaszXpRn5vKyoKiujnlob5CbMFBw+Wf63AaLzjijezSHO/iHFR 83kfukD+WzzoIJAnA1NvQan9NFd7/zdHg2uIrk1k+lu8T/1WIuddHoJ3pbYW/Arv vYS7tmzCZXQIUjfiNupEybFv6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxK0dAX KicQuDuDfaUv15zXi3bvMB8GA1UdIwQYMBaAFLWz/D52CHfvT42OhDvdaM4PQFUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjhCMS83RDU0QTBDQUI1 ODYxMUU5QUE1RjRENjVDNEY5QUUwMi90YlA4UG5ZSWQtOVBqWTZFTzkxb3pnOUFW VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RiUDhQbllJZC05UGpZNkVPOTFvemc5QVZUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4QjEvN0Q1NEEwQ0FCNTg2MTFFOUFBNUY0RDY1QzRGOUFFMDIvQjJBMkNGQ0VG NTZDMTFFRTkwRTM4NzE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnvMwDQYJKoZIhvcNAQELBQADggEBAJZplohCSoIcEpBL eK+vWgMl+uP9PWfzGdz2PzpQU4Lqr9f/YpTdeJicEjbX3cE68WEWJUIwuf/3eN7T nFa3lLpoPqK5zQvhHhRA8LlIkzc05IKN0JStAHvjWubykb4TEvVyM3ed4uGx8qmB IH2O878jJYHCV36P2mUL/sdyStR3hQOarIvMOsMWIh862kYRQRItIxCmGBMcLsnM CmqpDUve0JFD1grJne8cElGElaVv3cC/CnnmwPk2BwT9eeJYkkY6cwslNM3FodYq wGTt7t9Kc+iGrRl1JcLok5SEhv7VK0gstigG/C0tFD09k1R8yqz1qkENMBohQ7eL +rWSgAQ= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:00 2024 by rpki-client on console-ams.rpki-client.org