$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa File: 8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa (raw, json) Hash identifier: EPNFm1X8MnpnhMfq1ASr/F02aUDuHCY7XYN9aoUZxhY= Subject key identifier: 9F:9B:34:62:8D:BE:88:F5:C3:7E:61:EF:C2:6C:88:E8:3B:FB:AA:E3 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0710 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa Signing time: Mon 18 Nov 2024 21:31:02 +0000 ROA not before: Mon 18 Nov 2024 21:31:02 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133525 IP address blocks: 103.29.84.0/23 maxlen: 23 103.42.224.0/23 maxlen: 23 114.142.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Nov 18 21:31:02 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673bb216-b271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:53:43:28:ad:89:fa:97:d9:df:c5:76:ff:1d: 23:3d:3e:aa:61:33:ab:3c:ab:b6:c6:95:a6:2c:8b: 49:db:e9:76:93:0d:31:40:67:c8:18:a9:1a:6e:6d: d6:2d:dc:9e:4d:1e:4f:1e:8a:ec:9b:74:10:37:be: 3f:f9:7c:71:89:45:65:38:38:78:42:c5:b5:ff:d0: 6f:da:db:d7:e7:4d:f8:fa:22:fa:67:16:0f:cd:86: 34:99:8d:1f:d5:75:f1:5e:19:f7:57:25:d3:a4:16: c2:d9:3f:7b:c1:80:d3:ab:d6:4a:df:21:5b:d7:2c: 26:97:8a:ba:1c:13:6b:35:6f:70:5e:1e:bc:b8:49: 48:d9:01:37:f6:a9:87:aa:57:23:3e:38:30:fe:1e: be:ff:4d:a9:13:f8:ec:39:45:83:27:fe:78:1b:fb: fd:de:6d:0f:37:33:53:66:83:b1:93:e8:25:8b:bf: 77:bb:1d:93:15:90:5e:a8:c6:86:5e:55:1b:8b:93: 57:ef:ee:9d:d1:01:a0:03:73:8c:9c:45:2f:be:aa: fe:09:08:f1:b9:73:1f:0a:b3:d8:5e:fb:85:2a:a8: 5a:4a:ef:68:56:d1:91:4d:f5:cf:4e:ba:5d:91:c2: 81:f7:7d:bb:b4:50:55:21:74:9c:4b:43:50:5c:7f: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9B:34:62:8D:BE:88:F5:C3:7E:61:EF:C2:6C:88:E8:3B:FB:AA:E3 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 103.42.224.0/23 114.142.160.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:44:d0:c0:3a:dd:c9:80:f2:8c:4b:5c:7e:31:0e:27:60:5e: 80:ae:22:35:3c:15:cf:18:19:e4:9c:c2:9f:ba:b8:a4:b3:6a: e5:a1:59:b3:7e:49:e1:73:cf:3f:42:71:00:12:2d:82:12:b9: 17:d8:a6:b5:23:a5:54:14:ea:8f:7e:aa:3b:a0:6a:fd:6f:1f: 3a:34:16:f7:e9:0d:96:4c:8c:45:96:a6:7c:af:b4:76:74:3d: a3:c3:a6:5b:99:6f:d2:0b:a3:4e:1d:e9:ac:f1:7a:2b:94:e4: ce:78:20:b7:ad:3c:fd:58:bb:09:1a:b0:e0:a5:cf:88:a5:24: b8:9c:65:45:d3:dd:78:5d:dd:cd:0a:0c:cb:29:af:4b:4c:13: ce:26:3b:87:36:74:cb:38:03:c4:72:92:bd:dc:3d:fc:64:1f: 68:66:78:8b:88:58:4f:d3:ca:32:1a:8d:66:41:41:d2:15:29: 69:5f:30:f7:52:af:4e:de:92:bb:97:f0:d3:82:41:37:7a:5c: e6:4b:ce:bc:52:30:85:43:18:cc:ab:e1:c3:e0:c1:e1:37:56: 37:6e:53:c7:49:60:02:f0:c9:df:e8:a8:f5:1c:cd:0c:51:98: c5:32:aa:1f:19:83:45:40:8f:63:78:33:a1:6e:08:95:2d:5d: 94:e6:cf:d5 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjQxMTE4MjEzMTAyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiYjIxNi1iMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFNDKK2J+pfZ38V2/x0jPT6qYTOrPKu2xpWmLItJ2+l2kw0xQGfIGKkabm3W LdyeTR5PHorsm3QQN74/+XxxiUVlODh4QsW1/9Bv2tvX5034+iL6ZxYPzYY0mY0f 1XXxXhn3VyXTpBbC2T97wYDTq9ZK3yFb1ywml4q6HBNrNW9wXh68uElI2QE39qmH qlcjPjgw/h6+/02pE/jsOUWDJ/54G/v93m0PNzNTZoOxk+gli793ux2TFZBeqMaG XlUbi5NX7+6d0QGgA3OMnEUvvqr+CQjxuXMfCrPYXvuFKqhaSu9oVtGRTfXPTrpd kcKB9327tFBVIXScS0NQXH9n3QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJ+bNGKN voj1w35h78JsiOg7+6rjMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvOEEwMUJDREMx REE4MTFFQkFGQTVCNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnHVQDBAFnKuADBAByjqAwDQYJKoZIhvcNAQELBQADggEB AG5E0MA63cmA8oxLXH4xDidgXoCuIjU8Fc8YGeScwp+6uKSzauWhWbN+SeFzzz9C cQASLYISuRfYprUjpVQU6o9+qjugav1vHzo0FvfpDZZMjEWWpnyvtHZ0PaPDpluZ b9ILo04d6azxeiuU5M54ILetPP1YuwkasOClz4ilJLicZUXT3Xhd3c0KDMspr0tM E84mO4c2dMs4A8Rykr3cPfxkH2hmeIuIWE/TyjIajWZBQdIVKWlfMPdSr07ekruX 8NOCQTd6XOZLzrxSMIVDGMyr4cPgweE3VjduU8dJYALwyd/oqPUczQxRmMUyqh8Z g0VAj2N4M6FuCJUtXZTmz9U= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org