$ rpki-client -vvf rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa File: 71CE3962337511EDAE4C4121C4F9AE02.roa (raw, json) Hash identifier: 6NVu2HEI/2vQueP99wzaqxsinrZpCobkN5jNBib82oA= Subject key identifier: 00:30:DD:94:B1:18:3D:A4:0F:53:D8:27:F2:ED:77:33:7D:8D:B6:7F Certificate issuer: /CN=A912672E/serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Certificate serial: 01A7 Authority key identifier: CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa Signing time: Tue 15 Oct 2024 03:55:26 +0000 ROA not before: Tue 15 Oct 2024 03:55:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150306 IP address blocks: 103.234.118.0/23 maxlen: 23 103.234.118.0/24 maxlen: 24 103.234.119.0/24 maxlen: 24 2001:df1:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912672E/serialNumber=CDC187A642B4D7EC50DCAE59A0066F148D510801 Validity Not Before: Oct 15 03:55:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670de7ad-677e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:26:32:03:02:6d:f0:36:3f:1f:fc:c8:ad:f0: 34:05:ed:f9:2a:a2:5f:d9:de:a9:2f:15:43:19:d1: 35:0f:22:2d:44:5b:4c:b6:7b:1e:ed:21:d9:e9:df: be:ce:b1:99:8d:0f:ec:9e:eb:cd:1e:b3:08:6c:d3: b9:f0:bd:a5:a6:c1:9e:e8:62:9b:29:96:d0:53:a3: eb:51:8b:bb:a4:7d:70:b5:24:02:36:c7:1b:bf:6b: c1:cf:96:8b:3c:a5:41:b0:c3:0f:98:ee:71:12:06: 59:bb:a1:a1:b5:d7:52:7e:e5:c6:2c:51:d6:c6:0c: c9:1c:f6:31:93:22:4a:da:ca:58:6b:36:25:e1:9e: 95:4e:26:38:98:7d:09:cb:7d:da:16:fb:78:c0:97: 7e:b3:97:86:cc:72:80:f8:1f:c8:68:7f:04:2c:6a: d0:8e:b1:be:fa:f1:87:95:d4:5c:75:55:7e:a1:81: 8d:26:c1:21:f4:f2:a3:fe:0d:34:1d:b3:ec:dc:8f: ec:6d:c5:28:67:2a:83:47:01:51:9e:47:e3:97:c1: 39:68:a3:c9:f4:87:e0:1d:80:40:6b:ec:d2:12:13: 69:ca:58:20:75:4e:25:a8:be:85:aa:29:7b:5c:bd: 31:f7:d6:4e:19:ce:36:eb:9e:54:c4:8a:06:85:18: 36:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:30:DD:94:B1:18:3D:A4:0F:53:D8:27:F2:ED:77:33:7D:8D:B6:7F X509v3 Authority Key Identifier: keyid:CD:C1:87:A6:42:B4:D7:EC:50:DC:AE:59:A0:06:6F:14:8D:51:08:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zcGHpkK01-xQ3K5ZoAZvFI1RCAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912672E/AF466574337211ED8EEAD61EC4F9AE02/71CE3962337511EDAE4C4121C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.118.0/23 IPv6: 2001:df1:42c0::/48 Signature Algorithm: sha256WithRSAEncryption 19:3d:d2:9b:ab:25:a9:86:0e:14:84:8c:36:f8:04:2f:8e:95: dd:d8:23:84:a3:b3:bb:7d:f7:ec:2b:2b:04:80:1e:72:40:8d: 0b:c1:8f:3c:48:21:4c:3e:d5:e0:54:50:ab:29:bd:87:ea:5c: 4f:87:9f:bf:9b:74:a6:75:14:e2:b5:ec:37:91:49:ff:f9:09: 5c:c5:3a:e9:7a:d9:91:00:6b:87:24:1f:64:a7:aa:b9:a0:49: 16:1d:81:ea:43:46:1c:f0:8f:c8:a9:d1:d1:6b:0c:67:5a:1c: 82:b4:f9:8d:51:0d:b2:1f:bc:28:c0:6b:aa:32:b9:69:15:e4: aa:75:eb:0f:de:32:06:7c:7f:e3:fe:7d:01:12:19:d6:9b:3f: 35:f4:0a:44:a7:77:94:db:67:ec:da:cf:d2:7a:73:83:f3:18: 50:b2:93:58:92:39:67:7f:0e:29:9c:9b:db:29:e5:b6:47:df: e3:f0:97:3e:3b:ce:40:81:9c:fc:2c:16:9c:f5:b7:76:64:0c: fc:23:d7:de:64:3e:26:2b:6f:3b:9c:6f:19:70:2e:38:ae:25: 87:16:52:27:d3:4c:83:ee:d2:ab:60:80:e1:6c:33:cc:dc:09: 9c:53:2a:11:a8:ab:0d:89:3f:e6:2f:6e:c1:9c:d8:5f:83:fd: c1:5a:6d:50 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY3MkUxMTAvBgNVBAUTKENEQzE4N0E2NDJCNEQ3RUM1MERDQUU1OUEwMDY2RjE0 OEQ1MTA4MDEwHhcNMjQxMDE1MDM1NTI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkZTdhZC02NzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCYyAwJt8DY/H/zIrfA0Be35KqJf2d6pLxVDGdE1DyItRFtMtnse7SHZ6d++ zrGZjQ/snuvNHrMIbNO58L2lpsGe6GKbKZbQU6PrUYu7pH1wtSQCNscbv2vBz5aL PKVBsMMPmO5xEgZZu6GhtddSfuXGLFHWxgzJHPYxkyJK2spYazYl4Z6VTiY4mH0J y33aFvt4wJd+s5eGzHKA+B/IaH8ELGrQjrG++vGHldRcdVV+oYGNJsEh9PKj/g00 HbPs3I/sbcUoZyqDRwFRnkfjl8E5aKPJ9IfgHYBAa+zSEhNpylggdU4lqL6Fqil7 XL0x99ZOGc42655UxIoGhRg2mwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAAw3ZSx GD2kD1PYJ/LtdzN9jbZ/MB8GA1UdIwQYMBaAFM3Bh6ZCtNfsUNyuWaAGbxSNUQgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjcyRS9BRjQ2NjU3NDMz NzIxMUVEOEVFQUQ2MUVDNEY5QUUwMi96Y0dIcGtLMDEteFEzSzVab0FadkZJMVJD QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pjR0hwa0swMS14UTNLNVpvQVp2RkkxUkNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY3MkUvQUY0NjY1NzQzMzcyMTFFRDhFRUFENjFFQzRGOUFFMDIvNzFDRTM5NjIz Mzc1MTFFREFFNEM0MTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn6nYwDwQCAAIwCQMHACABDfFCwDANBgkqhkiG9w0BAQsF AAOCAQEAGT3Sm6slqYYOFISMNvgEL46V3dgjhKOzu3337CsrBIAeckCNC8GPPEgh TD7V4FRQqym9h+pcT4efv5t0pnUU4rXsN5FJ//kJXMU66XrZkQBrhyQfZKequaBJ Fh2B6kNGHPCPyKnR0WsMZ1ocgrT5jVENsh+8KMBrqjK5aRXkqnXrD94yBnx/4/59 ARIZ1ps/NfQKRKd3lNtn7NrP0npzg/MYULKTWJI5Z38OKZyb2ynltkff4/CXPjvO QIGc/CwWnPW3dmQM/CPX3mQ+JitvO5xvGXAuOK4lhxZSJ9NMg+7Sq2CA4WwzzNwJ nFMqEairDYk/5i9uwZzYX4P9wVptUA== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org