$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa File: 7EFD7D08A10211EFBF75467FC4F9AE02.roa (raw, json) Hash identifier: qYV17AXikuAeSaxzOZCrVgywXIZlnGlFYy0FKcc5TD0= Subject key identifier: F6:68:A9:D5:0E:06:D6:06:47:2A:01:21:4F:4B:80:BA:F2:BB:D7:56 Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: 43 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa Signing time: Wed 13 Nov 2024 10:50:48 +0000 ROA not before: Wed 13 Nov 2024 10:50:48 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152475 IP address blocks: 103.129.52.0/24 maxlen: 24 103.129.53.0/24 maxlen: 24 103.129.54.0/24 maxlen: 24 2401:bbe0::/32 maxlen: 32 2401:bbe0::/36 maxlen: 36 2401:bbe0::/40 maxlen: 40 2401:bbe0:100::/40 maxlen: 40 2401:bbe0:200::/40 maxlen: 40 2401:bbe0:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Validity Not Before: Nov 13 10:50:48 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67348488-be49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:15:75:6a:8a:77:28:ab:3c:3d:2e:d0:d3:09: 5e:68:1f:6c:44:c0:d3:fd:3c:fe:e6:f1:60:22:c1: 3b:8c:4a:45:7d:2c:90:7b:fd:2c:5c:45:fe:73:a8: 1b:a7:9c:d1:79:80:25:22:c1:08:af:ea:55:28:4e: 70:47:ec:c0:0f:15:34:eb:3a:20:cf:9d:1c:e2:66: f1:07:dd:d9:6a:1e:3b:05:d7:b8:88:71:38:88:cb: 5c:5c:f6:1a:39:d6:34:7e:0d:ab:81:29:45:2d:21: 1c:87:f6:37:8b:fb:05:57:0a:03:82:31:c9:42:cf: ba:02:b4:c4:dc:44:fa:17:2a:84:31:be:90:df:3a: 32:f0:12:3c:ad:21:b4:bb:ce:4b:50:20:28:82:37: 14:25:99:a9:e0:36:cd:40:c4:7f:56:5f:7e:3b:3e: 44:bb:47:a0:da:ec:aa:82:73:3c:c4:91:c6:51:a4: f3:49:13:58:9c:d1:f3:c8:e5:1d:37:9f:7b:b4:34: 52:33:97:8e:7a:4a:6a:d1:b3:96:d8:cf:d3:f8:1a: 97:c6:24:e1:2b:86:a2:a7:1e:20:63:a2:e3:57:8e: 81:38:b9:a6:5e:18:e0:52:5d:62:88:b5:86:cf:85: f7:ad:a7:3b:d1:1c:be:b7:e9:12:d5:23:7a:67:6c: d8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:68:A9:D5:0E:06:D6:06:47:2A:01:21:4F:4B:80:BA:F2:BB:D7:56 X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.52.0-103.129.54.255 IPv6: 2401:bbe0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:72:12:04:a5:be:ff:a0:7f:fc:9a:78:12:fb:e0:89:5d:e2: 44:3f:f0:48:dd:31:ed:0b:90:1e:12:f1:b8:e4:a9:11:cf:92: 79:02:76:31:e9:fd:87:e1:08:a4:da:22:65:24:eb:45:e9:eb: 9a:e1:e1:73:46:77:8d:92:71:72:b9:e0:1d:a7:2f:25:13:d5: 40:15:51:4e:7e:8c:66:b8:55:84:84:92:5c:06:68:39:97:e7: 9c:9c:4e:47:ef:a1:8d:56:cd:87:d7:51:80:d6:a2:5d:d1:31: 1b:13:1d:16:b5:31:af:a9:b6:ea:29:ac:36:85:40:33:87:88: aa:ce:88:a2:5a:26:90:c8:9c:b8:7e:03:73:57:6d:f6:e4:e7: c7:3a:b3:6b:1d:72:a7:13:0b:cd:c1:6c:e8:81:b7:1d:5a:50: 82:40:f6:6b:ab:6f:0a:b2:b7:29:a4:9d:18:5e:24:33:3b:83: 3a:c8:cb:3a:1d:cd:45:8f:6c:f8:d9:80:a3:4b:27:52:f1:5a: 9a:92:96:e4:48:9b:c9:d5:47:0b:ad:32:1e:58:e4:3c:3e:23: 60:4f:79:8c:74:26:b3:b3:1b:0e:17:43:5d:14:ea:9e:34:61: fd:09:b2:e4:1c:32:2e:86:b4:32:6a:07:35:71:56:ed:37:5f: d1:25:32:c7 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkM4RjExMC8GA1UEBRMoMDU3Mzk1QjQ4NzhGQjFBNjdGQ0JBRDU4MjYxN0I3QkFB RjJDMzFGRjAeFw0yNDExMTMxMDUwNDhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzQ4NDg4LWJlNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtFXVqincoqzw9LtDTCV5oH2xEwNP9PP7m8WAiwTuMSkV9LJB7/SxcRf5zqBun nNF5gCUiwQiv6lUoTnBH7MAPFTTrOiDPnRziZvEH3dlqHjsF17iIcTiIy1xc9ho5 1jR+DauBKUUtIRyH9jeL+wVXCgOCMclCz7oCtMTcRPoXKoQxvpDfOjLwEjytIbS7 zktQICiCNxQlmangNs1AxH9WX347PkS7R6Da7KqCczzEkcZRpPNJE1ic0fPI5R03 n3u0NFIzl456SmrRs5bYz9P4GpfGJOErhqKnHiBjouNXjoE4uaZeGOBSXWKItYbP hfetpzvRHL636RLVI3pnbNjvAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQU9mip1Q4G 1gZHKgEhT0uAuvK711YwHwYDVR0jBBgwFoAUBXOVtIePsaZ/y61YJhe3uq8sMf8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2QzhGL0ZBMEUwNUE0NkI1 QTExRUZCQzk5OTI1Q0M0RjlBRTAyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01m OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlhPVnRJZVBzYVpfeTYxWUpoZTN1cThzTWY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GQTBFMDVBNDZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi83RUZEN0QwOEEx MDIxMUVGQkY3NTQ2N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwFAQCAAEwDjAMAwQCZ4E0AwQAZ4E2MA0EAgACMAcDBQAkAbvgMA0GCSqGSIb3 DQEBCwUAA4IBAQCMchIEpb7/oH/8mngS++CJXeJEP/BI3THtC5AeEvG45KkRz5J5 AnYx6f2H4Qik2iJlJOtF6eua4eFzRneNknFyueAdpy8lE9VAFVFOfoxmuFWEhJJc Bmg5l+ecnE5H76GNVs2H11GA1qJd0TEbEx0WtTGvqbbqKaw2hUAzh4iqzoiiWiaQ yJy4fgNzV2325OfHOrNrHXKnEwvNwWzogbcdWlCCQPZrq28KsrcppJ0YXiQzO4M6 yMs6Hc1Fj2z42YCjSydS8VqakpbkSJvJ1UcLrTIeWOQ8PiNgT3mMdCazsxsOF0Nd FOqeNGH9CbLkHDIuhrQyagc1cVbtN1/RJTLH -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org