$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa File: 101150200BF211ECB242D930C4F9AE02.roa (raw, json) Hash identifier: Za8+PUGR68jxs9Nmg2MCsdR8AdTWP/IWaW3QjpYveqc= Subject key identifier: 74:FA:4C:96:55:B9:86:C5:49:4D:15:F9:A0:85:96:5F:EC:23:F2:68 Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 0588 Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa Signing time: Thu 28 Nov 2024 23:13:31 +0000 ROA not before: Thu 28 Nov 2024 23:13:31 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 59210 IP address blocks: 103.243.172.0/22 maxlen: 22 103.243.173.0/24 maxlen: 24 103.243.174.0/24 maxlen: 24 103.243.175.0/24 maxlen: 24 2401:bc40:6100::/40 maxlen: 40 2401:bc40:a100::/40 maxlen: 40 2401:bc40:e301::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 22:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C Validity Not Before: Nov 28 23:13:31 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748f91b-4933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bc:60:0b:e2:6f:d0:d0:fb:a3:85:c7:c1:e4: 83:4e:b6:aa:7e:7c:b6:35:42:ee:4f:a7:53:5d:54: 68:0d:9e:4b:4f:f6:3d:5b:9d:a0:c9:25:01:99:a9: 90:93:9c:c5:24:bf:d1:29:fc:7b:d2:c7:74:ba:2f: 30:e3:2c:8e:02:e9:0a:fa:04:bb:1e:bd:2f:d4:7e: 27:90:07:66:a8:34:5b:07:92:05:05:04:b3:24:4d: 03:92:81:6e:05:9f:a8:51:ef:37:f7:54:ca:4d:71: 92:67:a8:c1:20:27:0d:df:d2:05:cb:be:19:65:21: 43:cf:a1:9a:fe:71:b3:91:ef:1b:20:3c:bd:d7:2c: 8a:2b:9f:41:c6:5f:04:50:f4:60:6a:2a:56:0d:0a: e2:50:b2:44:8e:18:5d:11:c0:36:06:38:a4:8f:6d: 5e:17:c6:5c:4f:d0:64:32:eb:b5:84:52:c4:63:57: 89:4e:8e:6c:0a:87:78:d5:e3:7c:35:a3:bb:76:e8: b2:7b:d8:2c:69:ba:ce:d4:e6:50:40:f2:99:3c:eb: b9:ac:42:a8:34:45:74:c3:e8:52:a1:c8:78:e3:8e: 35:a9:73:1f:c9:1b:8e:3b:61:f1:08:2f:63:93:c2: ae:29:17:7b:c1:d2:62:60:91:88:bf:e7:2c:64:10: 49:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:FA:4C:96:55:B9:86:C5:49:4D:15:F9:A0:85:96:5F:EC:23:F2:68 X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.172.0/22 IPv6: 2401:bc40:6100::/40 2401:bc40:a100::/40 2401:bc40:e301::/48 Signature Algorithm: sha256WithRSAEncryption 32:08:7f:06:22:3a:77:d7:f2:b3:0b:0e:dc:65:c2:2d:58:d2: 19:72:a9:e2:73:fe:50:f5:03:07:e8:73:98:6b:2d:4a:54:aa: 10:69:28:26:5d:0d:b3:03:8d:f5:22:73:48:de:96:6b:48:e8: f3:40:3d:97:53:7d:b6:4b:71:b4:b5:87:d2:88:82:af:f3:02: 74:f4:97:57:9a:10:d7:d7:18:1a:32:eb:3d:86:fc:d0:60:83: a2:41:d6:14:d1:57:cc:74:0f:9c:d2:e1:08:3d:74:3b:c9:7d: ba:29:54:2b:c2:e1:41:1e:78:88:ef:18:59:0a:ee:9b:59:7f: 70:65:da:58:82:79:d0:26:1f:61:11:a6:54:9a:83:da:99:71: b4:00:0b:fa:b7:92:7b:87:17:bf:fb:76:8c:ca:21:96:bb:54: d9:dd:ab:47:50:b9:8a:16:3e:7f:57:39:20:5d:8d:d9:43:9f: 99:65:e5:9d:54:b9:7b:16:0d:80:e7:1f:5f:0c:0d:d9:df:a0: 31:f5:d8:79:ae:c7:01:b9:91:7d:d8:4b:0a:7f:f4:bf:fb:f0: 19:58:c4:6e:85:c9:46:3e:f2:2f:74:fa:f0:56:0b:b3:e2:3d: 34:ef:f9:61:d9:7c:9f:89:bd:75:82:e2:8c:d9:46:31:d4:fa: bb:40:86:6e -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjQxMTI4MjMxMzMxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZjkxYi00OTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurxgC+Jv0ND7o4XHweSDTraqfny2NULuT6dTXVRoDZ5LT/Y9W52gySUBmamQ k5zFJL/RKfx70sd0ui8w4yyOAukK+gS7Hr0v1H4nkAdmqDRbB5IFBQSzJE0DkoFu BZ+oUe8391TKTXGSZ6jBICcN39IFy74ZZSFDz6Ga/nGzke8bIDy91yyKK59Bxl8E UPRgaipWDQriULJEjhhdEcA2Bjikj21eF8ZcT9BkMuu1hFLEY1eJTo5sCod41eN8 NaO7duiye9gsabrO1OZQQPKZPOu5rEKoNEV0w+hSoch44441qXMfyRuOO2HxCC9j k8KuKRd7wdJiYJGIv+csZBBJfQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHT6TJZV uYbFSU0V+aCFll/sI/JoMB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvMTAxMTUwMjAw QkYyMTFFQ0IyNDJEOTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMAwEAgABMAYDBAJn86wwHwQCAAIwGQMGACQBvEBhAwYAJAG8QKEDBwAkAbxA 4wEwDQYJKoZIhvcNAQELBQADggEBADIIfwYiOnfX8rMLDtxlwi1Y0hlyqeJz/lD1 Awfoc5hrLUpUqhBpKCZdDbMDjfUic0jelmtI6PNAPZdTfbZLcbS1h9KIgq/zAnT0 l1eaENfXGBoy6z2G/NBgg6JB1hTRV8x0D5zS4Qg9dDvJfbopVCvC4UEeeIjvGFkK 7ptZf3Bl2liCedAmH2ERplSag9qZcbQAC/q3knuHF7/7dozKIZa7VNndq0dQuYoW Pn9XOSBdjdlDn5ll5Z1UuXsWDYDnH18MDdnfoDH12HmuxwG5kX3YSwp/9L/78BlY xG6FyUY+8i90+vBWC7PiPTTv+WHZfJ+JvXWC4ozZRjHU+rtAhm4= -----END CERTIFICATE-----Generated at Mon Apr 7 23:15:14 2025 by rpki-client