$ rpki-client -vvf rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa File: 5F57D01A5EA511EFB0E1B468C4F9AE02.roa (raw, json) Hash identifier: dNtSLmbPQl6n7qJUeH+z2I4vNRh8gF+hIvNTsqOdqPk= Subject key identifier: 7E:07:6D:51:B7:70:EE:02:22:DD:8A:A7:DC:EB:36:1B:6E:18:61:C8 Certificate issuer: /CN=A912C0DE/serialNumber=EAE2BCE835E42B115F18B3FE0E8F27F84A474996 Certificate serial: 8F Authority key identifier: EA:E2:BC:E8:35:E4:2B:11:5F:18:B3:FE:0E:8F:27:F8:4A:47:49:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa Signing time: Tue 20 Aug 2024 03:44:57 +0000 ROA not before: Tue 20 Aug 2024 03:44:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151552 IP address blocks: 103.68.106.0/24 maxlen: 24 2001:df2:9440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.crl rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C0DE/serialNumber=EAE2BCE835E42B115F18B3FE0E8F27F84A474996 Validity Not Before: Aug 20 03:44:57 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c41138-418f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:82:32:57:af:c0:51:75:c4:e1:df:6d:56:0e: 56:21:f8:22:d7:8e:5a:44:9e:fa:ec:a1:c2:52:16: bb:9f:ee:91:f7:23:4d:cd:90:87:5a:94:86:40:b3: 00:11:a9:1a:c8:bf:bc:18:ed:46:29:d7:35:f6:ad: ca:00:06:0b:7f:62:4a:e8:4a:7b:f0:a6:97:cc:63: 14:f9:e6:c7:a4:f5:3d:a4:26:a1:65:66:fc:b0:13: ef:ca:89:98:62:35:b6:c4:04:df:66:df:b9:bb:56: 44:e1:43:3c:61:de:2f:0a:19:2f:6b:65:15:c7:29: ce:f1:ed:57:15:45:a6:87:14:7b:6d:7d:b7:1f:aa: 91:6b:12:88:06:9c:39:60:30:38:d2:46:00:06:c2: 37:8e:ac:f7:77:42:93:e0:09:23:f5:b2:e7:4c:31: 99:74:26:1d:14:cf:c0:7f:61:60:8e:2e:6d:ff:23: 6b:e0:f2:15:36:b5:d3:21:7a:1f:ae:4a:fa:e9:30: 20:7c:f8:33:b9:df:2f:1a:d4:e9:e6:81:df:5f:fc: 1f:0f:d0:1a:e5:a6:0e:80:86:15:e9:41:72:28:fa: cd:41:33:99:de:b6:0e:a3:e7:05:dd:c2:ed:09:eb: 4f:66:03:9e:03:a8:fe:11:25:33:cc:f8:f8:10:3f: 26:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:07:6D:51:B7:70:EE:02:22:DD:8A:A7:DC:EB:36:1B:6E:18:61:C8 X509v3 Authority Key Identifier: keyid:EA:E2:BC:E8:35:E4:2B:11:5F:18:B3:FE:0E:8F:27:F8:4A:47:49:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/6uK86DXkKxFfGLP-Do8n-EpHSZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6uK86DXkKxFfGLP-Do8n-EpHSZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C0DE/E47443D68FEE11EE90389E1CC4F9AE02/5F57D01A5EA511EFB0E1B468C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.106.0/24 IPv6: 2001:df2:9440::/48 Signature Algorithm: sha256WithRSAEncryption 7d:c1:cd:33:04:67:27:a6:4f:4a:4a:6e:62:d6:29:43:92:87: d7:14:4d:27:5b:6e:6b:37:1d:e0:a8:1f:e2:43:26:a2:1f:e9: 4b:d6:10:72:ed:30:d0:55:e7:02:e2:44:77:06:16:9c:61:53: 2b:ca:ed:48:25:99:82:8c:29:3d:e7:4d:b8:54:e2:de:eb:3c: 7f:bc:17:d4:1a:0e:5f:e5:23:68:2c:f9:0b:f7:d8:d0:92:34: b7:83:34:89:bb:0d:90:b9:00:ed:36:69:1a:2f:8d:be:77:75: b2:7c:38:62:8e:30:ef:70:c0:2c:ca:31:0b:9e:b3:d6:7c:68: a2:9a:7c:13:3d:c1:16:f5:c0:97:71:54:42:6e:50:e4:54:0e: 67:fb:bd:b2:5b:c4:5f:b1:ea:37:f7:9d:09:ab:2f:2f:46:52: ba:c6:90:02:08:de:9a:1c:cc:83:4b:bf:ae:ac:99:fb:6c:83: 2c:0b:92:ae:9f:dc:a8:9b:93:c5:5d:96:62:8f:9e:af:4a:48: 5d:cc:7f:c4:57:73:82:e4:3d:e8:ba:02:ce:5b:ee:8a:3f:a6: 57:3e:2e:18:fc:02:fc:78:bf:8b:1a:7b:8b:77:c8:c6:fa:c1: e6:a1:52:bf:0c:41:fd:0b:71:9d:13:6e:54:b2:db:e7:a6:8b: 46:6a:d4:fb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMwREUxMTAvBgNVBAUTKEVBRTJCQ0U4MzVFNDJCMTE1RjE4QjNGRTBFOEYyN0Y4 NEE0NzQ5OTYwHhcNMjQwODIwMDM0NDU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0MTEzOC00MThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIIyV6/AUXXE4d9tVg5WIfgi145aRJ767KHCUha7n+6R9yNNzZCHWpSGQLMA EakayL+8GO1GKdc19q3KAAYLf2JK6Ep78KaXzGMU+ebHpPU9pCahZWb8sBPvyomY YjW2xATfZt+5u1ZE4UM8Yd4vChkva2UVxynO8e1XFUWmhxR7bX23H6qRaxKIBpw5 YDA40kYABsI3jqz3d0KT4Akj9bLnTDGZdCYdFM/Af2Fgji5t/yNr4PIVNrXTIXof rkr66TAgfPgzud8vGtTp5oHfX/wfD9Aa5aYOgIYV6UFyKPrNQTOZ3rYOo+cF3cLt CetPZgOeA6j+ESUzzPj4ED8mdwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH4HbVG3 cO4CIt2Kp9zrNhtuGGHIMB8GA1UdIwQYMBaAFOrivOg15CsRXxiz/g6PJ/hKR0mW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzBERS9FNDc0NDNENjhG RUUxMUVFOTAzODlFMUNDNEY5QUUwMi82dUs4NkRYa0t4RmZHTFAtRG84bi1FcEhT WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ1Szg2RFhrS3hGZkdMUC1EbzhuLUVwSFNaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkMwREUvRTQ3NDQzRDY4RkVFMTFFRTkwMzg5RTFDQzRGOUFFMDIvNUY1N0QwMUE1 RUE1MTFFRkIwRTFCNDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnRGowDwQCAAIwCQMHACABDfKUQDANBgkqhkiG9w0BAQsF AAOCAQEAfcHNMwRnJ6ZPSkpuYtYpQ5KH1xRNJ1tuazcd4Kgf4kMmoh/pS9YQcu0w 0FXnAuJEdwYWnGFTK8rtSCWZgowpPedNuFTi3us8f7wX1BoOX+UjaCz5C/fY0JI0 t4M0ibsNkLkA7TZpGi+Nvnd1snw4Yo4w73DALMoxC56z1nxoopp8Ez3BFvXAl3FU Qm5Q5FQOZ/u9slvEX7HqN/edCasvL0ZSusaQAgjemhzMg0u/rqyZ+2yDLAuSrp/c qJuTxV2WYo+er0pIXcx/xFdzguQ96LoCzlvuij+mVz4uGPwC/Hi/ixp7i3fIxvrB 5qFSvwxB/QtxnRNuVLLb56aLRmrU+w== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org