$ rpki-client -vvf rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa File: 673F4DC6894911EEB032426EC4F9AE02.roa (raw, json) Hash identifier: A4cWT1FQnbB1RV9fDjJNCe1bIriG2tb4PlUO0o2Lg90= Subject key identifier: 56:4B:6F:0F:F8:68:EE:52:07:F9:5D:31:AF:FD:C2:18:72:89:6B:0A Certificate issuer: /CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Certificate serial: 017E Authority key identifier: BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa Signing time: Sat 23 Nov 2024 02:25:31 +0000 ROA not before: Sat 23 Nov 2024 02:25:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150394 IP address blocks: 103.29.60.0/23 maxlen: 23 103.29.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Validity Not Before: Nov 23 02:25:31 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67413d1b-dd1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ad:d2:8e:04:62:cb:01:85:ad:e4:09:b5:12: 72:b7:04:a9:9d:01:9e:9c:f9:1d:0a:29:06:ab:87: 57:28:ce:76:df:46:6d:d5:b1:58:61:78:23:af:35: 49:89:ab:eb:58:ff:5f:2f:60:7d:9b:62:53:cd:0d: 8f:99:49:65:00:0a:43:08:89:48:bd:ae:d1:c0:f4: fd:47:d2:03:6c:ca:5d:e9:c4:50:01:80:79:bf:e2: 90:74:9c:f6:73:32:80:cd:eb:24:52:17:1c:e9:d1: ae:b0:90:c6:56:30:ee:de:9a:ff:69:a2:c8:19:42: 3e:98:3a:9b:9f:4a:38:64:f6:9b:87:b2:41:26:d5: 56:94:70:9c:69:f8:32:9f:ca:1b:9f:c5:20:4c:2e: 34:ef:9c:d0:fa:bc:1d:f0:7c:71:7a:99:0d:64:e9: 9b:c6:75:de:81:c1:5e:3e:9a:14:fb:b3:2e:a1:dc: cf:6d:5b:24:ec:2d:68:ec:a8:c8:5f:07:18:ac:dc: 56:22:be:2c:1f:76:45:14:39:b8:12:b4:06:96:96: 17:e0:5a:b6:53:60:20:9c:55:65:90:dc:f5:c9:23: 3d:2e:d2:b2:e4:26:1b:e1:73:66:fd:f1:9b:0e:06: 91:1f:5b:e1:40:60:37:be:01:45:0f:76:76:64:de: 59:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:4B:6F:0F:F8:68:EE:52:07:F9:5D:31:AF:FD:C2:18:72:89:6B:0A X509v3 Authority Key Identifier: keyid:BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.60.0/23 Signature Algorithm: sha256WithRSAEncryption 59:be:a5:d3:8f:34:43:08:cc:05:ed:58:66:ce:9f:aa:19:dd: 30:31:4a:d3:2f:9e:f6:98:46:fe:62:6a:58:cd:01:07:f4:e0: 52:71:34:52:ab:75:dd:e6:c4:b7:54:ec:a6:af:7d:46:75:7f: f0:a1:15:86:e3:8a:94:c8:de:51:9f:d0:cc:a2:5e:8c:1f:21: 59:09:73:c9:7c:7b:0d:53:15:9f:02:55:7f:e4:91:f6:26:6f: e6:19:c5:f9:a2:aa:f5:ef:77:dc:a5:8d:b2:c7:f4:84:8d:2d: 42:40:63:ba:5c:56:83:7a:b2:9e:45:7a:20:50:5c:ef:90:9d: 08:73:f9:49:9f:3c:6e:35:65:26:4b:e5:da:29:97:da:2f:e6: 6f:ed:09:68:9a:b1:ac:34:ba:e4:33:c0:aa:ef:fd:23:77:ec: 3d:ff:0d:7a:2e:45:ea:71:99:6e:38:07:01:37:e6:a6:fe:a7: 21:89:4e:01:cf:df:4f:f7:59:36:56:a2:a9:e4:f0:f8:8b:02: 11:50:0c:4b:7e:fe:63:e7:f4:d7:d3:72:6f:2e:de:75:76:18: 81:c4:c7:93:1b:b9:81:d7:fc:5d:ee:26:a4:ac:7b:12:be:ed: 46:d8:eb:39:99:fa:ce:67:f8:48:a6:aa:ee:60:7e:71:f4:92: 38:e5:1b:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4NUIxMTAvBgNVBAUTKEJEQTc2MjFFMUFDNkUwNUIwQkEwQzJFRjE1NDE3NEM4 QkU1QzEzQjkwHhcNMjQxMTIzMDIyNTMxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxM2QxYi1kZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6q3SjgRiywGFreQJtRJytwSpnQGenPkdCikGq4dXKM5230Zt1bFYYXgjrzVJ iavrWP9fL2B9m2JTzQ2PmUllAApDCIlIva7RwPT9R9IDbMpd6cRQAYB5v+KQdJz2 czKAzeskUhcc6dGusJDGVjDu3pr/aaLIGUI+mDqbn0o4ZPabh7JBJtVWlHCcafgy n8obn8UgTC4075zQ+rwd8HxxepkNZOmbxnXegcFePpoU+7MuodzPbVsk7C1o7KjI XwcYrNxWIr4sH3ZFFDm4ErQGlpYX4Fq2U2AgnFVlkNz1ySM9LtKy5CYb4XNm/fGb DgaRH1vhQGA3vgFFD3Z2ZN5Z8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZLbw/4 aO5SB/ldMa/9whhyiWsKMB8GA1UdIwQYMBaAFL2nYh4axuBbC6DC7xVBdMi+XBO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODg1Qi9BOTlDMTg5MDZD NzkxMUVEOENCNkJDNkJDNEY5QUUwMi92YWRpSGhyRzRGc0xvTUx2RlVGMHlMNWNF N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZhZGlIaHJHNEZzTG9NTHZGVUYweUw1Y0U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4NUIvQTk5QzE4OTA2Qzc5MTFFRDhDQjZCQzZCQzRGOUFFMDIvNjczRjREQzY4 OTQ5MTFFRUIwMzI0MjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnHTwwDQYJKoZIhvcNAQELBQADggEBAFm+pdOPNEMIzAXt WGbOn6oZ3TAxStMvnvaYRv5ialjNAQf04FJxNFKrdd3mxLdU7KavfUZ1f/ChFYbj ipTI3lGf0MyiXowfIVkJc8l8ew1TFZ8CVX/kkfYmb+YZxfmiqvXvd9yljbLH9ISN LUJAY7pcVoN6sp5FeiBQXO+QnQhz+UmfPG41ZSZL5dopl9ov5m/tCWiasaw0uuQz wKrv/SN37D3/DXouRepxmW44BwE35qb+pyGJTgHP30/3WTZWoqnk8PiLAhFQDEt+ /mPn9NfTcm8u3nV2GIHEx5MbuYHX/F3uJqSsexK+7UbY6zmZ+s5n+Eimqu5gfnH0 kjjlGz0= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org