$ rpki-client -vvf rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa File: 73F5DB88BC9C11EB9AC8E073C4F9AE02.roa (raw, json) Hash identifier: fabeHirzSfMRjgTkSzBs+NINgYgVd5ARAuZRjwIHiWk= Subject key identifier: 4B:0B:84:19:EA:DD:01:5E:EA:DB:92:EB:52:C3:F0:7E:DC:62:71:07 Certificate issuer: /CN=A912EFA6/serialNumber=3958C78EDB2CBDA46B66A67EB934AA7BD3C3865E Certificate serial: 0527 Authority key identifier: 39:58:C7:8E:DB:2C:BD:A4:6B:66:A6:7E:B9:34:AA:7B:D3:C3:86:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa Signing time: Thu 27 Jun 2024 00:21:13 +0000 ROA not before: Thu 27 Jun 2024 00:21:13 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132220 IP address blocks: 103.219.148.0/22 maxlen: 22 103.219.148.0/24 maxlen: 24 103.219.149.0/24 maxlen: 24 103.219.150.0/24 maxlen: 24 103.219.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.crl rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EFA6/serialNumber=3958C78EDB2CBDA46B66A67EB934AA7BD3C3865E Validity Not Before: Jun 27 00:21:13 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667cb079-5c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d4:ad:49:d5:2c:9d:39:ba:f1:a1:bb:20:f9: d4:0f:3f:2d:8d:bc:4c:68:39:87:fa:38:6a:af:fa: 35:7c:83:fb:ad:1f:7d:0f:b2:f4:2f:ae:57:e2:2f: 23:1b:68:c6:ca:79:16:5a:57:c3:e1:1d:1a:68:de: fd:07:34:d8:8a:62:e0:d4:10:0f:87:86:75:38:88: 3c:bd:da:5a:b1:9f:0d:c2:1a:48:91:a2:8d:5a:9a: 0b:91:0f:10:1b:c7:fa:f1:68:39:6a:d5:20:95:dd: 88:50:12:ac:85:04:76:1c:a7:8b:a9:0a:c3:60:73: 21:b8:36:3f:75:5e:8f:f0:4d:01:18:86:77:c4:64: 96:25:7d:8c:f7:10:92:e7:1f:d9:8a:69:03:f9:f9: af:18:34:75:62:16:22:d3:07:d3:c3:a2:4f:7e:eb: c1:c3:ce:29:54:f5:77:6c:52:f8:79:e0:0c:73:be: fd:f7:74:81:76:e6:5d:97:69:0e:79:5e:a3:3e:08: d2:56:5c:6a:cb:3b:70:f4:4e:52:4c:4d:5b:16:27: d5:08:88:98:22:ef:c5:31:aa:40:7f:d7:d3:31:e3: 69:2b:24:53:f8:35:93:69:c3:c7:78:b4:aa:99:3d: 10:b4:fe:3a:8e:f6:b7:3f:b6:e9:0c:ef:c5:c0:2d: 72:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0B:84:19:EA:DD:01:5E:EA:DB:92:EB:52:C3:F0:7E:DC:62:71:07 X509v3 Authority Key Identifier: keyid:39:58:C7:8E:DB:2C:BD:A4:6B:66:A6:7E:B9:34:AA:7B:D3:C3:86:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/OVjHjtssvaRrZqZ-uTSqe9PDhl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OVjHjtssvaRrZqZ-uTSqe9PDhl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EFA6/0616E842BC9B11EB96F35F6BC4F9AE02/73F5DB88BC9C11EB9AC8E073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.148.0/22 Signature Algorithm: sha256WithRSAEncryption 28:1e:a5:cb:42:41:a1:11:e6:ca:eb:07:59:c1:41:26:46:6c: af:2d:4d:e8:9a:bc:0f:d6:97:64:81:36:9e:d4:32:b8:0c:05: e5:05:ad:a1:22:bf:5c:ff:56:e7:d5:e5:9a:cb:9c:22:78:81: b6:66:61:76:1a:2c:c3:f5:0b:0f:e0:81:50:51:a0:ed:c4:08: e5:95:f7:04:78:b8:85:fa:3f:20:13:cc:93:ae:e6:42:dd:cb: 4a:4d:b9:e5:59:5c:b0:51:e1:f7:b4:1e:c5:00:81:1f:a3:c8: 02:7f:04:2e:4f:64:4c:39:b8:25:12:01:0f:e6:4c:70:71:ec: 7a:4e:ef:2f:11:2c:2f:eb:da:e6:8b:37:ef:07:48:5e:c4:c6: 28:49:2e:d5:56:d5:6b:98:ed:e2:d7:33:17:42:a4:fb:cf:9e: 7c:45:09:8c:a0:c0:6e:ec:49:f8:e9:bb:77:40:a3:d5:4f:94: 9f:21:33:7b:d7:72:2f:1f:c4:2d:bb:71:69:18:20:8f:ca:98: ce:55:ab:b8:29:31:2f:39:d4:0e:c1:b3:f0:e6:ec:ed:2a:99: 7b:35:b5:9d:7e:4b:7d:d2:b2:bb:84:e5:f1:2f:58:70:6d:4e: ab:8f:c1:aa:00:bf:c8:df:ec:ee:26:13:17:dd:8d:b3:81:08: d6:10:14:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVGQTYxMTAvBgNVBAUTKDM5NThDNzhFREIyQ0JEQTQ2QjY2QTY3RUI5MzRBQTdC RDNDMzg2NUUwHhcNMjQwNjI3MDAyMTEzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjYjA3OS01YzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAndStSdUsnTm68aG7IPnUDz8tjbxMaDmH+jhqr/o1fIP7rR99D7L0L65X4i8j G2jGynkWWlfD4R0aaN79BzTYimLg1BAPh4Z1OIg8vdpasZ8NwhpIkaKNWpoLkQ8Q G8f68Wg5atUgld2IUBKshQR2HKeLqQrDYHMhuDY/dV6P8E0BGIZ3xGSWJX2M9xCS 5x/ZimkD+fmvGDR1YhYi0wfTw6JPfuvBw84pVPV3bFL4eeAMc77993SBduZdl2kO eV6jPgjSVlxqyztw9E5STE1bFifVCIiYIu/FMapAf9fTMeNpKyRT+DWTacPHeLSq mT0QtP46jva3P7bpDO/FwC1y7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsLhBnq 3QFe6tuS61LD8H7cYnEHMB8GA1UdIwQYMBaAFDlYx47bLL2ka2amfrk0qnvTw4Ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRUZBNi8wNjE2RTg0MkJD OUIxMUVCOTZGMzVGNkJDNEY5QUUwMi9PVmpIanRzc3ZhUnJacVotdVRTcWU5UERo bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09WakhqdHNzdmFSclpxWi11VFNxZTlQRGhsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkVGQTYvMDYxNkU4NDJCQzlCMTFFQjk2RjM1RjZCQzRGOUFFMDIvNzNGNURCODhC QzlDMTFFQjlBQzhFMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn25QwDQYJKoZIhvcNAQELBQADggEBACgepctCQaER5srr B1nBQSZGbK8tTeiavA/Wl2SBNp7UMrgMBeUFraEiv1z/VufV5ZrLnCJ4gbZmYXYa LMP1Cw/ggVBRoO3ECOWV9wR4uIX6PyATzJOu5kLdy0pNueVZXLBR4fe0HsUAgR+j yAJ/BC5PZEw5uCUSAQ/mTHBx7HpO7y8RLC/r2uaLN+8HSF7ExihJLtVW1WuY7eLX MxdCpPvPnnxFCYygwG7sSfjpu3dAo9VPlJ8hM3vXci8fxC27cWkYII/KmM5Vq7gp MS851A7Bs/Dm7O0qmXs1tZ1+S33SsruE5fEvWHBtTquPwaoAv8jf7O4mExfdjbOB CNYQFMw= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org