$ rpki-client -vvf rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/2CCF44AE37A211EFB241BD1EC4F9AE02.roa File: 2CCF44AE37A211EFB241BD1EC4F9AE02.roa (raw, json) Hash identifier: 1El5xsPmSJYRYdSUpOfp942TcgeTIv4kFJ/pipu2+P4= Subject key identifier: D8:38:A8:19:5C:2A:98:47:BC:05:0E:E5:43:0C:32:5D:DA:08:8D:60 Certificate issuer: /CN=A9137242/serialNumber=EAB24A90C6D046CD83FB5EF4A3C598E4EA9A168C Certificate serial: 06FC Authority key identifier: EA:B2:4A:90:C6:D0:46:CD:83:FB:5E:F4:A3:C5:98:E4:EA:9A:16:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/2CCF44AE37A211EFB241BD1EC4F9AE02.roa Signing time: Wed 31 Jul 2024 15:38:30 +0000 ROA not before: Wed 31 Jul 2024 15:38:30 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138192 IP address blocks: 103.139.144.0/24 maxlen: 24 103.139.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.crl rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:56:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1788 (0x6fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137242, serialNumber=EAB24A90C6D046CD83FB5EF4A3C598E4EA9A168C Validity Not Before: Jul 31 15:38:30 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66aa5a76-4ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6e:6e:65:f6:b1:e2:2e:1f:ba:33:4b:d9:dd: 02:68:18:f1:d0:7f:ff:94:cd:23:6e:14:2e:13:73: 3d:5d:b3:a5:f9:11:b3:a4:86:0f:12:6e:37:7c:44: bf:5a:17:57:40:8d:00:3d:2f:43:ca:db:87:8c:d9: fa:f3:9b:4d:48:14:64:b2:40:ac:0f:84:82:44:77: 7e:0e:40:28:0a:ab:3f:5d:a6:5f:06:26:d5:3d:1b: bd:ab:5b:c2:dc:2a:53:64:67:d3:e8:8b:59:b8:3f: 02:8e:16:da:9e:4c:a5:79:71:9b:a6:1f:f4:db:a9: 85:16:f6:3a:0a:6f:ca:22:62:e1:b6:10:86:7b:3e: c3:17:17:88:cb:e0:c1:36:32:25:af:7e:2e:04:9b: 50:7e:ad:1d:98:d5:32:4a:db:d7:69:9b:d0:4a:99: c7:c0:f7:05:6b:98:0b:e8:38:63:57:ed:ea:d7:39: d3:26:7a:8a:da:2d:d7:3d:28:c7:12:00:cc:2e:f1: 7e:da:a2:e0:3d:26:18:61:0e:62:dd:0a:96:cd:18: 4f:df:28:07:a1:78:08:35:e2:c4:93:7d:ed:f8:35: 06:43:d3:2a:29:71:98:f2:22:60:f6:25:31:39:3f: 96:64:35:1a:6a:f5:04:10:21:8e:d0:c6:5a:3b:28: 2f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:38:A8:19:5C:2A:98:47:BC:05:0E:E5:43:0C:32:5D:DA:08:8D:60 X509v3 Authority Key Identifier: keyid:EA:B2:4A:90:C6:D0:46:CD:83:FB:5E:F4:A3:C5:98:E4:EA:9A:16:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/2CCF44AE37A211EFB241BD1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.144.0/23 Signature Algorithm: sha256WithRSAEncryption 66:79:6b:c0:ca:b8:8e:2b:9b:ef:ed:64:97:ec:b7:20:ef:21: 78:d6:00:11:71:b6:97:2b:df:3c:1e:d8:47:0d:ea:83:0b:1d: 80:57:89:16:e6:95:13:d4:eb:1b:35:d2:4c:f2:52:35:13:9e: 33:8c:99:e6:9d:59:5e:96:f8:74:2a:c4:55:da:c1:75:21:e9: 92:8d:0a:df:f9:d5:c9:1e:ad:62:0d:cb:0e:81:88:f0:d4:76: d2:51:d4:39:37:14:a9:81:b2:b2:7c:01:0b:58:22:3a:e6:bd: 63:a2:99:38:62:cd:3b:2d:d4:95:11:e6:32:87:ba:f2:d2:67: e3:32:06:70:e5:3f:79:ad:de:a1:33:42:11:a2:d6:80:7c:ff: 19:e1:f4:71:2e:f7:c0:bf:44:22:9d:bb:33:91:8c:bc:a8:d6: 23:6a:78:61:ea:8b:b7:81:03:59:06:3f:26:f1:30:86:f1:2b: 92:4b:c1:04:fe:50:7d:b0:d5:54:b9:49:68:0f:37:d1:fc:62: 9a:3f:ef:69:00:25:bc:44:00:55:7b:0e:ba:5f:fe:d7:35:ce: 20:cd:21:ff:7f:24:ec:59:65:d5:cf:56:e7:bf:cd:86:a3:1b: 36:17:ba:5a:63:c0:64:5b:17:ff:e1:29:c6:d4:e6:9e:6c:b0: ab:d7:02:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcyNDIxMTAvBgNVBAUTKEVBQjI0QTkwQzZEMDQ2Q0Q4M0ZCNUVGNEEzQzU5OEU0 RUE5QTE2OEMwHhcNMjQwNzMxMTUzODMwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhNWE3Ni00Y2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0W5uZfax4i4fujNL2d0CaBjx0H//lM0jbhQuE3M9XbOl+RGzpIYPEm43fES/ WhdXQI0APS9DytuHjNn685tNSBRkskCsD4SCRHd+DkAoCqs/XaZfBibVPRu9q1vC 3CpTZGfT6ItZuD8CjhbankyleXGbph/026mFFvY6Cm/KImLhthCGez7DFxeIy+DB NjIlr34uBJtQfq0dmNUyStvXaZvQSpnHwPcFa5gL6DhjV+3q1znTJnqK2i3XPSjH EgDMLvF+2qLgPSYYYQ5i3QqWzRhP3ygHoXgINeLEk33t+DUGQ9MqKXGY8iJg9iUx OT+WZDUaavUEECGO0MZaOygvdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNg4qBlc KphHvAUO5UMMMl3aCI1gMB8GA1UdIwQYMBaAFOqySpDG0EbNg/te9KPFmOTqmhaM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzI0Mi8wQjYwODc5NkNB MzQxMUU5QkM3NjkwNTVDNEY5QUUwMi82ckpLa01iUVJzMkQtMTcwbzhXWTVPcWFG b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZySktrTWJRUnMyRC0xNzBvOFdZNU9xYUZvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzcyNDIvMEI2MDg3OTZDQTM0MTFFOUJDNzY5MDU1QzRGOUFFMDIvMkNDRjQ0QUUz N0EyMTFFRkIyNDFCRDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFni5AwDQYJKoZIhvcNAQELBQADggEBAGZ5a8DKuI4rm+/t ZJfstyDvIXjWABFxtpcr3zwe2EcN6oMLHYBXiRbmlRPU6xs10kzyUjUTnjOMmead WV6W+HQqxFXawXUh6ZKNCt/51ckerWINyw6BiPDUdtJR1Dk3FKmBsrJ8AQtYIjrm vWOimThizTst1JUR5jKHuvLSZ+MyBnDlP3mt3qEzQhGi1oB8/xnh9HEu98C/RCKd uzORjLyo1iNqeGHqi7eBA1kGPybxMIbxK5JLwQT+UH2w1VS5SWgPN9H8Ypo/72kA JbxEAFV7Drpf/tc1ziDNIf9/JOxZZdXPVue/zYajGzYXulpjwGRbF//hKcbU5p5s sKvXAj0= -----END CERTIFICATE-----Generated at Sat Apr 26 09:39:48 2025 by rpki-client