$ rpki-client -vvf rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/A8A932CC894911EE8CA8D26EC4F9AE02.roa File: A8A932CC894911EE8CA8D26EC4F9AE02.roa (raw, json) Hash identifier: eI5qe3WuZ3ca7j939pJeQIuLSMWClo4MltkC7KKSMl0= Subject key identifier: 70:FA:08:A8:71:ED:D5:4C:42:CA:A3:A1:15:9D:45:85:B1:C9:6F:B9 Certificate issuer: /CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Certificate serial: 017F Authority key identifier: BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/A8A932CC894911EE8CA8D26EC4F9AE02.roa Signing time: Sat 23 Nov 2024 02:25:32 +0000 ROA not before: Sat 23 Nov 2024 02:25:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152099 IP address blocks: 103.29.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Validity Not Before: Nov 23 02:25:32 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67413d1c-b38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:d3:ec:eb:3c:bf:bf:71:5a:b7:4c:86:11: d1:f8:6b:b3:dd:45:9a:11:d0:e4:65:31:cb:c3:49: 2f:0b:bf:3a:21:ab:f5:db:2b:aa:a5:fe:95:39:83: 51:38:fe:79:b0:2e:53:19:f4:6c:b1:3c:36:85:08: 16:56:23:f1:92:a4:f9:40:07:43:ad:39:37:46:3e: a4:11:d4:77:46:1f:78:6f:ad:40:91:b8:7a:12:f9: 76:64:47:25:c4:6c:df:39:d0:5c:d8:4d:93:d1:5a: 5a:1e:ae:23:f1:05:82:12:47:1f:e1:cb:0e:61:1a: 84:23:dc:e1:4b:2c:03:2f:fb:40:e9:31:2d:67:61: 47:0d:13:90:47:b1:67:43:82:95:fa:48:35:ce:73: c6:8b:7d:36:6a:5e:08:ad:b4:b7:8b:8b:6b:33:d6: 3d:7b:a7:e7:02:f5:64:fa:1c:3c:c2:fc:be:57:62: f1:ff:b0:47:5a:c7:5e:95:b4:87:29:c7:86:f9:1d: 07:85:7d:f5:c1:57:e6:5c:76:38:15:7c:15:a3:ed: c5:ec:d0:04:51:52:1f:82:a7:3b:59:5f:52:5e:64: 59:d7:6e:09:e7:e2:9d:51:52:65:cf:81:c2:f3:e0: 72:c5:f6:d6:db:cd:9c:2d:cb:ab:09:37:86:b1:dd: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:FA:08:A8:71:ED:D5:4C:42:CA:A3:A1:15:9D:45:85:B1:C9:6F:B9 X509v3 Authority Key Identifier: keyid:BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/A8A932CC894911EE8CA8D26EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.61.0/24 Signature Algorithm: sha256WithRSAEncryption 04:c4:18:57:73:e7:92:f0:79:40:22:48:de:37:c1:72:ce:cb: 18:99:ee:e6:8e:54:c3:20:7e:e1:50:ea:66:09:5c:71:32:39: 05:fb:23:d2:ea:8a:77:3f:3d:0a:c0:6b:5f:86:0b:67:42:00: ef:81:56:e9:2f:aa:63:55:66:cb:b5:1e:32:df:b7:85:6c:44: fb:b3:74:33:c6:bc:2b:cf:13:07:a3:d1:d1:1c:33:63:6b:e6: cb:82:dc:4f:19:ce:04:4f:3e:85:88:57:37:84:b7:22:b2:78: bd:e0:0d:5a:10:3b:f7:a2:19:92:7a:93:c2:d6:7f:41:f5:57: e5:19:da:55:be:ed:5f:22:55:c1:da:20:30:c2:36:43:c8:eb: 5b:7d:69:f5:57:94:a1:22:de:ed:92:04:d7:a7:e7:67:da:28: 2e:31:64:96:2d:49:e5:e0:95:8b:33:89:f8:89:a7:c4:d9:49: 11:9d:7e:d9:c8:ab:d6:1e:93:95:8f:34:f3:20:69:f8:a1:c3: 8e:45:83:9e:34:a2:fe:d7:60:fa:9b:f4:b0:02:f4:a5:0d:92: 31:d6:60:01:94:e1:c3:0b:84:da:c0:3a:f7:6c:38:29:75:46: 91:e5:59:91:73:5f:56:bb:33:52:e6:f5:db:d0:cf:21:f5:5d: dd:89:ce:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4NUIxMTAvBgNVBAUTKEJEQTc2MjFFMUFDNkUwNUIwQkEwQzJFRjE1NDE3NEM4 QkU1QzEzQjkwHhcNMjQxMTIzMDIyNTMyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxM2QxYy1iMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrjT7Os8v79xWrdMhhHR+Guz3UWaEdDkZTHLw0kvC786Iav12yuqpf6VOYNR OP55sC5TGfRssTw2hQgWViPxkqT5QAdDrTk3Rj6kEdR3Rh94b61Akbh6Evl2ZEcl xGzfOdBc2E2T0VpaHq4j8QWCEkcf4csOYRqEI9zhSywDL/tA6TEtZ2FHDROQR7Fn Q4KV+kg1znPGi302al4IrbS3i4trM9Y9e6fnAvVk+hw8wvy+V2Lx/7BHWsdelbSH KceG+R0HhX31wVfmXHY4FXwVo+3F7NAEUVIfgqc7WV9SXmRZ124J5+KdUVJlz4HC 8+ByxfbW282cLcurCTeGsd0MQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHD6CKhx 7dVMQsqjoRWdRYWxyW+5MB8GA1UdIwQYMBaAFL2nYh4axuBbC6DC7xVBdMi+XBO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODg1Qi9BOTlDMTg5MDZD NzkxMUVEOENCNkJDNkJDNEY5QUUwMi92YWRpSGhyRzRGc0xvTUx2RlVGMHlMNWNF N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZhZGlIaHJHNEZzTG9NTHZGVUYweUw1Y0U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4NUIvQTk5QzE4OTA2Qzc5MTFFRDhDQjZCQzZCQzRGOUFFMDIvQThBOTMyQ0M4 OTQ5MTFFRThDQThEMjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHT0wDQYJKoZIhvcNAQELBQADggEBAATEGFdz55LweUAi SN43wXLOyxiZ7uaOVMMgfuFQ6mYJXHEyOQX7I9Lqinc/PQrAa1+GC2dCAO+BVukv qmNVZsu1HjLft4VsRPuzdDPGvCvPEwej0dEcM2Nr5suC3E8ZzgRPPoWIVzeEtyKy eL3gDVoQO/eiGZJ6k8LWf0H1V+UZ2lW+7V8iVcHaIDDCNkPI61t9afVXlKEi3u2S BNen52faKC4xZJYtSeXglYszifiJp8TZSRGdftnIq9Yek5WPNPMgafihw45Fg540 ov7XYPqb9LAC9KUNkjHWYAGU4cMLhNrAOvdsOCl1RpHlWZFzX1a7M1Lm9dvQzyH1 Xd2Jzjc= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org