$ rpki-client -vvf rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa File: 4FD4AF70C39511ED99703D2AC4F9AE02.roa (raw, json) Hash identifier: +f458BpYNQXJWNiE1S64iQtoNN+WOZY8faBLRWwapzs= Subject key identifier: 58:1F:76:CE:9F:52:F9:EB:DB:A2:29:69:03:BB:70:08:70:89:DE:1D Certificate issuer: /CN=A915568B/serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Certificate serial: 012D Authority key identifier: B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa Signing time: Sat 05 Oct 2024 03:37:06 +0000 ROA not before: Sat 05 Oct 2024 03:37:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150287 IP address blocks: 103.41.168.0/24 maxlen: 24 103.74.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915568B/serialNumber=B5E9DDC6BF09F89458556087442D948C44034530 Validity Not Before: Oct 5 03:37:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700b462-ed88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:68:e8:e9:0e:e9:97:98:d6:8d:50:53:9d: de:e9:fc:1c:2d:f3:14:76:a1:9a:8b:96:84:a5:30: 54:eb:75:56:f6:18:1c:ad:af:fa:ff:7d:79:64:19: c2:5a:46:18:8d:70:55:13:59:88:fd:5d:52:ef:8d: 9d:dd:2b:00:a8:56:a8:96:3f:e1:d6:8a:7c:80:72: 37:23:fe:ad:08:2b:00:60:db:b1:60:c9:b7:b1:65: 9a:5b:dc:74:54:8b:8c:60:f2:96:97:2f:e1:5c:06: 5d:4d:d7:5c:4e:23:aa:a4:3c:80:ec:2b:05:24:d6: 90:b0:e6:50:5d:54:e6:0e:18:0c:29:7f:10:43:00: 03:2f:22:d3:3a:90:88:9a:68:3c:f8:43:98:9c:ca: 48:3f:e9:bf:ed:cb:47:63:77:1c:b0:69:f3:52:87: 09:43:13:14:c9:89:4c:08:61:f2:66:82:96:d2:8c: 52:92:ed:cd:08:9e:61:6a:3b:92:15:69:d0:61:db: a0:4d:7f:b1:c5:bd:30:ca:37:76:ad:a6:bd:9e:b0: 26:3e:99:56:ae:d9:7b:8d:ae:52:42:19:42:d1:b3: 8f:f7:7e:15:9a:30:f7:21:94:af:91:c5:2f:13:c7: 6a:46:b4:89:13:6a:b6:db:2c:18:1f:43:a2:3b:22: af:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1F:76:CE:9F:52:F9:EB:DB:A2:29:69:03:BB:70:08:70:89:DE:1D X509v3 Authority Key Identifier: keyid:B5:E9:DD:C6:BF:09:F8:94:58:55:60:87:44:2D:94:8C:44:03:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/tendxr8J-JRYVWCHRC2UjEQDRTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tendxr8J-JRYVWCHRC2UjEQDRTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915568B/1F7B1D08C38D11EDA7E1CA64C4F9AE02/4FD4AF70C39511ED99703D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.168.0/24 103.74.225.0/24 Signature Algorithm: sha256WithRSAEncryption 24:9e:5f:9f:5c:1e:59:f6:b0:82:e1:dc:a9:f6:26:d2:01:4c: 41:11:f3:32:03:25:da:1f:79:34:a1:1d:aa:37:80:7e:49:2e: c1:66:14:47:ef:e1:b2:98:ae:1b:f5:44:15:09:29:7b:83:20: eb:20:30:6e:d9:7f:19:23:85:5c:5c:5d:01:aa:de:ac:c4:26: ab:47:47:28:10:07:a4:f9:12:8d:ea:58:ae:92:c6:9e:87:7b: af:43:47:fa:58:c8:fb:4a:4a:53:d3:1b:55:55:b5:20:a7:d1: 31:fb:29:4a:04:c4:b4:67:49:ee:c7:8c:a4:05:ef:54:04:01: 33:ec:e7:6b:25:aa:a3:4c:2e:a4:b2:a7:26:30:70:35:cb:90: 8b:6e:c6:fb:84:7b:2d:c7:70:a4:ba:c3:74:b5:3f:93:31:5a: b2:36:65:14:11:a8:c4:55:fe:90:45:00:da:47:b6:0d:1a:4a: 4c:d7:02:6b:33:f7:68:6a:15:0b:6f:1a:dd:95:1a:20:e4:05: 45:c8:62:4a:ee:50:cb:eb:90:93:f3:34:81:2c:b5:46:64:f1: c7:3b:39:e3:b2:da:84:0f:fc:6e:e6:9d:c1:5f:9f:0e:b3:62: d1:08:c1:f1:df:0d:fc:63:2c:9d:4a:26:40:9c:ab:08:ae:15: 86:e8:31:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2OEIxMTAvBgNVBAUTKEI1RTlEREM2QkYwOUY4OTQ1ODU1NjA4NzQ0MkQ5NDhD NDQwMzQ1MzAwHhcNMjQxMDA1MDMzNzA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYjQ2Mi1lZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya5o6OkO6ZeY1o1QU53e6fwcLfMUdqGai5aEpTBU63VW9hgcra/6/315ZBnC WkYYjXBVE1mI/V1S742d3SsAqFaolj/h1op8gHI3I/6tCCsAYNuxYMm3sWWaW9x0 VIuMYPKWly/hXAZdTddcTiOqpDyA7CsFJNaQsOZQXVTmDhgMKX8QQwADLyLTOpCI mmg8+EOYnMpIP+m/7ctHY3ccsGnzUocJQxMUyYlMCGHyZoKW0oxSku3NCJ5hajuS FWnQYdugTX+xxb0wyjd2raa9nrAmPplWrtl7ja5SQhlC0bOP934VmjD3IZSvkcUv E8dqRrSJE2q22ywYH0OiOyKvQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFgfds6f Uvnr26IpaQO7cAhwid4dMB8GA1UdIwQYMBaAFLXp3ca/CfiUWFVgh0QtlIxEA0Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4Qi8xRjdCMUQwOEMz OEQxMUVEQTdFMUNBNjRDNEY5QUUwMi90ZW5keHI4Si1KUllWV0NIUkMyVWpFUURS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RlbmR4cjhKLUpSWVZXQ0hSQzJVakVRRFJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2OEIvMUY3QjFEMDhDMzhEMTFFREE3RTFDQTY0QzRGOUFFMDIvNEZENEFGNzBD Mzk1MTFFRDk5NzAzRDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnKagDBABnSuEwDQYJKoZIhvcNAQELBQADggEBACSeX59c Hln2sILh3Kn2JtIBTEER8zIDJdofeTShHao3gH5JLsFmFEfv4bKYrhv1RBUJKXuD IOsgMG7ZfxkjhVxcXQGq3qzEJqtHRygQB6T5Eo3qWK6Sxp6He69DR/pYyPtKSlPT G1VVtSCn0TH7KUoExLRnSe7HjKQF71QEATPs52slqqNMLqSypyYwcDXLkItuxvuE ey3HcKS6w3S1P5MxWrI2ZRQRqMRV/pBFANpHtg0aSkzXAmsz92hqFQtvGt2VGiDk BUXIYkruUMvrkJPzNIEstUZk8cc7OeOy2oQP/G7mncFfnw6zYtEIwfHfDfxjLJ1K JkCcqwiuFYboMfs= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org