$ rpki-client -vvf rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa File: 8FA6DAE02C5B11E99B8B114EC4F9AE02.roa (raw, json) Hash identifier: qxrPSY85HQzoS5SwzTHbqWN+Z7CNWTWllsLf46VBiDQ= Subject key identifier: 6A:57:8F:FF:0C:24:BE:05:58:E3:D6:C8:82:EB:EA:4F:39:4D:8D:3B Certificate issuer: /CN=A913E05B/serialNumber=5758A413556582F8598E1F45FC633799A7B1D107 Certificate serial: 1029 Authority key identifier: 57:58:A4:13:55:65:82:F8:59:8E:1F:45:FC:63:37:99:A7:B1:D1:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa Signing time: Tue 08 Oct 2024 17:35:42 +0000 ROA not before: Tue 08 Oct 2024 17:35:42 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136996 IP address blocks: 103.101.192.0/24 maxlen: 24 2001:df2:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.crl rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E05B/serialNumber=5758A413556582F8598E1F45FC633799A7B1D107 Validity Not Before: Oct 8 17:35:42 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67056d6e-88b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fc:9f:24:6e:06:b1:dc:98:56:18:fa:47:9e: f7:45:52:51:84:0e:da:e0:30:89:20:5c:b7:8c:88: dd:2f:8d:36:42:9a:81:79:25:43:24:10:26:ad:45: 1c:49:c3:0d:8c:88:d0:fa:fe:1c:58:16:17:11:c5: ea:76:10:8c:0c:92:47:0b:27:e9:ac:66:9e:4b:d1: df:95:f0:b2:d0:5d:30:47:00:c1:b5:9f:6e:a1:0e: 50:bd:a1:d4:0f:df:fe:68:1d:5d:f8:8a:0f:1f:9f: d4:63:ab:5f:c3:35:7e:3e:ca:e9:67:52:81:d3:9c: 33:18:fe:a3:44:5b:4c:2e:9d:ee:c8:5a:1b:fc:23: e8:32:2a:e3:50:d3:b4:c8:02:49:b7:44:5b:82:41: 64:2f:a5:0a:2f:09:2a:fe:e1:ac:55:9e:94:3b:13: 76:bb:fe:f6:4e:5a:2b:b0:dc:62:48:5e:c1:3f:f0: d4:5a:7a:98:62:89:d9:ad:38:da:6e:e2:13:b6:7c: 5a:ba:1b:26:ff:b2:4f:85:34:29:d0:f9:c1:6a:cc: d3:9f:97:9b:73:0a:c5:47:67:7b:96:3e:f9:83:30: 14:0b:d6:96:96:52:ee:96:4c:4c:26:64:62:ff:b3: af:fc:dd:c3:55:6a:57:70:09:83:92:72:51:b5:5f: 28:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:57:8F:FF:0C:24:BE:05:58:E3:D6:C8:82:EB:EA:4F:39:4D:8D:3B X509v3 Authority Key Identifier: keyid:57:58:A4:13:55:65:82:F8:59:8E:1F:45:FC:63:37:99:A7:B1:D1:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/V1ikE1VlgvhZjh9F_GM3maex0Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V1ikE1VlgvhZjh9F_GM3maex0Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E05B/B31966C42C5A11E9943E9D4CC4F9AE02/8FA6DAE02C5B11E99B8B114EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.192.0/24 IPv6: 2001:df2:a700::/48 Signature Algorithm: sha256WithRSAEncryption a7:d9:2d:af:f0:8a:8a:2f:d6:53:c4:c8:00:71:50:0c:c2:eb: e2:ea:f9:fe:60:92:dc:bc:ad:0e:eb:e3:ab:67:07:ba:09:1c: 83:96:f7:7b:08:ff:f8:5a:98:a5:ed:55:da:5f:d6:3f:34:a8: 89:4c:e6:c1:64:c2:01:05:dd:a3:af:46:6b:b5:a0:91:40:53: 81:fd:8c:f1:79:b5:33:6b:96:39:74:f1:8f:b9:ec:d6:f1:16: e9:22:05:27:87:e9:37:66:43:63:47:3f:0a:33:d7:82:b4:43: c6:a3:85:59:bc:87:b0:6c:26:f9:39:9a:b0:94:75:de:c8:90: f8:e0:c9:96:1c:b5:33:5f:9a:22:ca:29:b6:59:10:0b:57:06: aa:55:76:35:bc:ea:c6:d2:c3:95:e3:5a:d4:29:a3:45:55:5f: f4:12:0d:4c:c3:fd:9b:19:e9:34:b0:2d:11:5b:6c:8a:56:23: 80:8e:41:6c:d0:7d:29:90:3d:ac:7c:59:3e:5e:52:be:80:81: 70:f9:4e:8d:f8:60:fc:b7:fc:9a:6b:25:21:5a:8c:27:be:85: db:12:50:2f:4c:f6:c3:8a:48:a8:29:e2:a6:e7:00:8e:93:6b: 73:df:dc:e6:fe:55:93:e4:3c:e6:f0:05:e9:94:12:d2:e9:f6: 8f:3e:3e:a5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwNUIxMTAvBgNVBAUTKDU3NThBNDEzNTU2NTgyRjg1OThFMUY0NUZDNjMzNzk5 QTdCMUQxMDcwHhcNMjQxMDA4MTczNTQyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1NmQ2ZS04OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/yfJG4GsdyYVhj6R573RVJRhA7a4DCJIFy3jIjdL402QpqBeSVDJBAmrUUc ScMNjIjQ+v4cWBYXEcXqdhCMDJJHCyfprGaeS9HflfCy0F0wRwDBtZ9uoQ5QvaHU D9/+aB1d+IoPH5/UY6tfwzV+PsrpZ1KB05wzGP6jRFtMLp3uyFob/CPoMirjUNO0 yAJJt0RbgkFkL6UKLwkq/uGsVZ6UOxN2u/72TlorsNxiSF7BP/DUWnqYYonZrTja buITtnxauhsm/7JPhTQp0PnBaszTn5ebcwrFR2d7lj75gzAUC9aWllLulkxMJmRi /7Ov/N3DVWpXcAmDknJRtV8oGwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGpXj/8M JL4FWOPWyILr6k85TY07MB8GA1UdIwQYMBaAFFdYpBNVZYL4WY4fRfxjN5mnsdEH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTA1Qi9CMzE5NjZDNDJD NUExMUU5OTQzRTlENENDNEY5QUUwMi9WMWlrRTFWbGd2aFpqaDlGX0dNM21hZXgw UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1YxaWtFMVZsZ3ZoWmpoOUZfR00zbWFleDBRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UwNUIvQjMxOTY2QzQyQzVBMTFFOTk0M0U5RDRDQzRGOUFFMDIvOEZBNkRBRTAy QzVCMTFFOTlCOEIxMTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnZcAwDwQCAAIwCQMHACABDfKnADANBgkqhkiG9w0BAQsF AAOCAQEAp9ktr/CKii/WU8TIAHFQDMLr4ur5/mCS3LytDuvjq2cHugkcg5b3ewj/ +FqYpe1V2l/WPzSoiUzmwWTCAQXdo69Ga7WgkUBTgf2M8Xm1M2uWOXTxj7ns1vEW 6SIFJ4fpN2ZDY0c/CjPXgrRDxqOFWbyHsGwm+TmasJR13siQ+ODJlhy1M1+aIsop tlkQC1cGqlV2NbzqxtLDleNa1CmjRVVf9BINTMP9mxnpNLAtEVtsilYjgI5BbNB9 KZA9rHxZPl5SvoCBcPlOjfhg/Lf8mmslIVqMJ76F2xJQL0z2w4pIqCnipucAjpNr c9/c5v5Vk+Q85vAF6ZQS0un2jz4+pQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org