$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa File: F593443851B011ECB5188E24C4F9AE02.roa (raw, json) Hash identifier: wMMQ5Gg9qCouXIcWbLn86vQgUXd3BSP9FGBHooJe2V4= Subject key identifier: 16:00:87:78:E6:48:28:A7:1B:7B:6B:82:E4:EA:82:95:09:B9:B8:E0 Certificate issuer: /CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Certificate serial: 034D Authority key identifier: 4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa Signing time: Sat 23 Dec 2023 02:14:28 +0000 ROA not before: Sat 23 Dec 2023 02:14:28 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149028 IP address blocks: 103.176.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 845 (0x34d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4BC/serialNumber=4DFEC3437C90BF414D05188B482C7848E6F3161B Validity Not Before: Dec 23 02:14:28 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65864284-e250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f0:38:74:52:d9:ba:78:eb:2b:b8:1c:ee:8a: 54:12:db:7e:d0:fb:c3:0c:3d:ff:d5:04:4d:70:db: 1b:fa:e5:fc:e6:6f:36:b9:39:b8:4b:bd:25:74:c4: 7d:0f:e7:f0:74:f9:42:77:e8:a9:e1:7a:39:24:40: ff:ce:72:36:dc:7a:55:b6:70:31:23:2e:29:0d:03: a9:28:c1:66:cc:82:32:ad:da:96:a1:c7:98:05:a5: b6:6a:a7:86:60:b1:91:5f:62:9b:c3:2a:8d:90:70: 77:3d:68:b4:af:02:05:69:2e:a6:6e:42:ed:9a:bd: 3b:f0:41:92:f7:b8:ef:79:c7:64:9c:2e:d5:b8:88: d4:d5:1b:23:d4:0a:be:bb:d6:eb:09:04:60:62:68: ee:45:91:4e:42:aa:39:b3:87:b4:94:89:76:03:5f: 63:db:5c:d9:9b:6e:e7:1f:08:99:14:9d:52:fd:e9: 27:72:ce:16:1c:cd:c9:eb:b8:38:1e:35:2f:c3:5c: 3c:08:4e:8b:e4:63:e0:c5:dc:96:fc:35:d7:83:60: 2a:c4:25:af:bf:11:5b:ad:9c:5e:77:3e:90:81:3a: c5:2f:e7:56:bf:f1:7c:39:71:7d:cd:b4:71:cb:1c: a5:ec:9e:47:88:c3:78:b1:b3:53:d4:1d:b4:38:8d: 7a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:00:87:78:E6:48:28:A7:1B:7B:6B:82:E4:EA:82:95:09:B9:B8:E0 X509v3 Authority Key Identifier: keyid:4D:FE:C3:43:7C:90:BF:41:4D:05:18:8B:48:2C:78:48:E6:F3:16:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tf7DQ3yQv0FNBRiLSCx4SObzFhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4BC/A970B2EC51AC11EC9ED9041BC4F9AE02/F593443851B011ECB5188E24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.248.0/23 Signature Algorithm: sha256WithRSAEncryption b2:db:e5:c3:c8:63:6e:14:d3:a4:8b:73:e6:4f:32:0e:85:e4: 58:d5:ea:a0:6a:60:52:90:ac:5c:9d:07:84:93:8a:ca:1b:ae: 76:1b:f2:32:f2:cf:0a:7b:0d:cb:71:d4:0a:6d:0a:48:63:b6: dc:b8:57:12:32:84:b4:54:a6:8d:ae:32:c9:e0:0d:e7:6e:03: 96:f7:0d:c8:50:85:71:87:c1:74:57:7a:04:3b:24:c4:0b:2b: d1:e6:76:5a:91:ab:ca:fe:e2:b9:cd:26:6f:d6:81:c9:be:af: 59:71:3a:4d:aa:e5:46:54:7f:55:2d:5c:8a:f5:cc:81:32:3e: 75:76:16:a4:39:c8:a4:78:e5:c7:27:27:ef:d8:cb:15:04:29: 82:2b:bb:ce:8e:f7:3a:cb:c1:db:36:1e:a5:5f:1b:c4:9b:c4: 18:95:7f:50:24:dd:2b:85:a9:c1:82:91:9c:eb:87:52:85:72: ef:ae:d5:1c:b0:2a:98:e7:3f:d2:8c:2d:24:ff:68:04:98:49: d9:0e:ac:f7:e0:8c:08:66:a0:d6:ff:b3:6b:97:6b:d9:53:3b: 53:3f:b9:bf:d4:f5:fe:63:73:40:4c:5a:9a:b5:58:5f:86:67: 9b:6e:b0:3d:e1:1b:47:97:41:14:52:44:17:2e:6d:ed:5d:bc: f1:54:7e:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0QkMxMTAvBgNVBAUTKDRERkVDMzQzN0M5MEJGNDE0RDA1MTg4QjQ4MkM3ODQ4 RTZGMzE2MUIwHhcNMjMxMjIzMDIxNDI4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg2NDI4NC1lMjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfA4dFLZunjrK7gc7opUEtt+0PvDDD3/1QRNcNsb+uX85m82uTm4S70ldMR9 D+fwdPlCd+ip4Xo5JED/znI23HpVtnAxIy4pDQOpKMFmzIIyrdqWoceYBaW2aqeG YLGRX2KbwyqNkHB3PWi0rwIFaS6mbkLtmr078EGS97jvecdknC7VuIjU1Rsj1Aq+ u9brCQRgYmjuRZFOQqo5s4e0lIl2A19j21zZm27nHwiZFJ1S/ekncs4WHM3J67g4 HjUvw1w8CE6L5GPgxdyW/DXXg2AqxCWvvxFbrZxedz6QgTrFL+dWv/F8OXF9zbRx yxyl7J5HiMN4sbNT1B20OI16rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBYAh3jm SCinG3trguTqgpUJubjgMB8GA1UdIwQYMBaAFE3+w0N8kL9BTQUYi0gseEjm8xYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRCQy9BOTcwQjJFQzUx QUMxMUVDOUVEOTA0MUJDNEY5QUUwMi9UZjdEUTN5UXYwRk5CUmlMU0N4NFNPYnpG aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RmN0RRM3lRdjBGTkJSaUxTQ3g0U09iekZocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM0QkMvQTk3MEIyRUM1MUFDMTFFQzlFRDkwNDFCQzRGOUFFMDIvRjU5MzQ0Mzg1 MUIwMTFFQ0I1MTg4RTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsPgwDQYJKoZIhvcNAQELBQADggEBALLb5cPIY24U06SL c+ZPMg6F5FjV6qBqYFKQrFydB4STisobrnYb8jLyzwp7Dctx1AptCkhjtty4VxIy hLRUpo2uMsngDeduA5b3DchQhXGHwXRXegQ7JMQLK9HmdlqRq8r+4rnNJm/Wgcm+ r1lxOk2q5UZUf1UtXIr1zIEyPnV2FqQ5yKR45ccnJ+/YyxUEKYIru86O9zrLwds2 HqVfG8SbxBiVf1Ak3SuFqcGCkZzrh1KFcu+u1RywKpjnP9KMLST/aASYSdkOrPfg jAhmoNb/s2uXa9lTO1M/ub/U9f5jc0BMWpq1WF+GZ5tusD3hG0eXQRRSRBcube1d vPFUfkQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org