$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/73438FF06DED11E9A21D1341C4F9AE02.roa File: 73438FF06DED11E9A21D1341C4F9AE02.roa (raw, json) Hash identifier: C4bWHi41cN0y8JVNPFitYHiPYUVvz8I3upa7uMSFTP0= Subject key identifier: 4B:97:F4:15:E9:B5:FE:EA:02:66:52:63:A8:6B:04:BF:1B:AA:C4:65 Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 3429 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/73438FF06DED11E9A21D1341C4F9AE02.roa Signing time: Wed 04 Sep 2024 14:50:54 +0000 ROA not before: Wed 04 Sep 2024 14:50:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134376 IP address blocks: 103.63.27.0/24 maxlen: 24 2001:de8:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Sep 4 14:50:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d873cd-2c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c5:2a:4e:08:08:96:c4:6b:6d:7d:a2:25:6f: 2b:51:5f:59:18:0a:0e:12:85:97:ee:6b:2d:b5:b5: 0a:b1:2d:3c:e9:8c:cf:4f:65:a0:16:67:f9:f1:9b: 9a:45:bf:c8:e4:bd:4c:fc:a3:8b:ad:ac:62:0c:c3: 2d:15:f7:96:8c:40:3f:5f:c8:ee:cc:f7:79:fc:e0: 39:ff:8b:31:27:5f:11:18:a2:e0:66:16:20:91:3e: e3:79:fe:75:a8:22:5a:49:41:a3:c6:ea:19:a7:93: 1e:63:b2:7c:25:ca:39:04:f0:1d:44:5f:94:13:b7: 5f:06:f4:78:00:e4:47:88:ae:19:79:23:c6:ae:74: ed:e3:24:8c:37:91:83:36:93:49:6b:e7:d7:d7:2c: da:5f:94:96:90:ec:eb:2c:5c:9f:12:9b:9b:fd:db: 59:c3:98:75:fa:5f:6d:8c:37:f7:30:30:0f:f1:aa: e8:9f:81:21:7f:46:9d:c1:b8:54:97:45:c7:8c:d6: 66:58:c7:d7:72:be:53:bc:0b:01:df:4c:91:a0:80: 9c:c9:bb:8a:2f:5a:4e:a9:1c:bc:53:2c:d8:6b:ed: a6:cb:3c:90:47:3b:2b:6d:53:c0:4a:8c:40:ca:7f: ab:db:45:06:2f:5b:75:fb:5a:3b:9f:f5:49:bd:85: fb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:97:F4:15:E9:B5:FE:EA:02:66:52:63:A8:6B:04:BF:1B:AA:C4:65 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/73438FF06DED11E9A21D1341C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.27.0/24 IPv6: 2001:de8:8000::/48 Signature Algorithm: sha256WithRSAEncryption cc:d5:a6:ba:c3:a4:a3:35:50:f4:93:d6:64:5a:8b:49:29:7f: 96:89:e3:84:dc:97:6b:02:86:fa:bc:63:ac:a3:c0:51:30:76: d1:7d:5d:6c:37:c9:e4:6e:27:93:68:f8:1c:e6:a8:99:6a:12: db:3e:6c:22:69:c0:40:7e:32:72:c7:30:ff:37:ff:c3:17:26: 1e:2b:c6:19:26:ef:9f:ac:7e:f9:b9:77:a3:0c:15:71:16:e5: a5:40:1d:88:ce:52:fe:a7:f7:a5:9e:9c:26:9d:81:3c:79:15: 84:2e:6c:79:02:7e:07:3c:57:39:c4:cb:6a:2a:d5:00:ff:6d: 18:11:24:58:c1:94:d7:d7:52:d1:26:ce:b5:53:a8:12:4e:d4: 8a:ea:8b:d4:c7:84:63:59:53:ff:5e:de:c4:70:e9:62:bf:0f: 66:5a:d0:d1:b7:01:0c:83:6d:40:14:bc:5f:66:99:d8:96:e4: 5c:af:04:a1:f5:c3:e2:a1:b5:60:d0:b0:f4:18:2b:a2:34:93: 9e:a0:08:1c:4d:8d:d0:3c:ab:6c:fa:5c:e8:68:48:19:6c:e8: dc:d9:7f:b1:60:ca:52:c7:44:ac:64:9b:1b:b2:8b:e3:8a:72: bb:7e:8e:03:58:64:11:7f:db:2a:00:38:26:88:a9:32:77:4b: 7f:6b:0b:fe -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjQwOTA0MTQ1MDU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4NzNjZC0yYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8UqTggIlsRrbX2iJW8rUV9ZGAoOEoWX7msttbUKsS086YzPT2WgFmf58Zua Rb/I5L1M/KOLraxiDMMtFfeWjEA/X8juzPd5/OA5/4sxJ18RGKLgZhYgkT7jef51 qCJaSUGjxuoZp5MeY7J8Jco5BPAdRF+UE7dfBvR4AORHiK4ZeSPGrnTt4ySMN5GD NpNJa+fX1yzaX5SWkOzrLFyfEpub/dtZw5h1+l9tjDf3MDAP8aron4Ehf0adwbhU l0XHjNZmWMfXcr5TvAsB30yRoICcybuKL1pOqRy8UyzYa+2myzyQRzsrbVPASoxA yn+r20UGL1t1+1o7n/VJvYX7wwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEuX9BXp tf7qAmZSY6hrBL8bqsRlMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzIwMUQvQ0QxRTI5NDgxRDkyMTFFMkEzQjFGNEY1MDhCMDJDRDIvNzM0MzhGRjA2 REVEMTFFOUEyMUQxMzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnPxswDwQCAAIwCQMHACABDeiAADANBgkqhkiG9w0BAQsF AAOCAQEAzNWmusOkozVQ9JPWZFqLSSl/lonjhNyXawKG+rxjrKPAUTB20X1dbDfJ 5G4nk2j4HOaomWoS2z5sImnAQH4ycscw/zf/wxcmHivGGSbvn6x++bl3owwVcRbl pUAdiM5S/qf3pZ6cJp2BPHkVhC5seQJ+BzxXOcTLairVAP9tGBEkWMGU19dS0SbO tVOoEk7UiuqL1MeEY1lT/17exHDpYr8PZlrQ0bcBDINtQBS8X2aZ2JbkXK8EofXD 4qG1YNCw9BgrojSTnqAIHE2N0DyrbPpc6GhIGWzo3Nl/sWDKUsdErGSbG7KL44py u36OA1hkEX/bKgA4JoipMndLf2sL/g== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:49 2024 by rpki-client on console-fra.rpki-client.org