$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa File: 498B6EFE942411EA816FC855C4F9AE02.roa (raw, json) Hash identifier: YPiU3wlpM31h+KzYfsNIDINjvGb3OqjaNT5uao3X1+M= Subject key identifier: B7:D9:B0:61:8C:65:45:16:06:39:09:FA:E2:78:47:E9:C5:54:9A:3D Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 09C7 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa Signing time: Wed 24 Jan 2024 20:38:29 +0000 ROA not before: Wed 24 Jan 2024 20:38:29 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136217 IP address blocks: 103.83.240.0/24 maxlen: 24 103.83.241.0/24 maxlen: 24 103.83.242.0/24 maxlen: 24 103.83.243.0/24 maxlen: 24 2400:9840::/32 maxlen: 32 2400:9840::/48 maxlen: 48 2400:9840:1::/48 maxlen: 48 2400:9840:2::/48 maxlen: 48 2400:9840:3::/48 maxlen: 48 2400:9840:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2503 (0x9c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Jan 24 20:38:29 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b17545-3320 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:45:3a:7e:54:f1:68:99:d6:f4:4a:b0:4a: 0f:83:85:5f:22:c5:c0:cb:ef:1f:14:08:65:4a:a3: a2:00:33:af:ab:fa:39:a2:57:c3:ac:d7:35:e4:45: f4:d0:11:87:08:cc:6d:ef:89:dd:6b:4d:98:75:f4: cb:b2:a6:c8:83:0a:68:df:6b:27:24:1e:c0:e6:0f: bf:50:b1:9d:89:91:89:f3:3c:f7:d8:3e:81:99:cc: b4:fd:03:6b:f3:7a:96:8e:94:64:68:94:99:c6:92: 1c:68:39:93:02:f8:98:61:05:aa:b2:44:ca:a9:d5: 2b:12:cf:2f:61:81:ab:24:18:90:87:37:c7:05:ed: 65:77:d5:8f:77:5d:6f:7b:a9:7e:42:3d:1d:a2:d3: b1:1b:15:7c:5b:50:61:69:30:ea:b7:23:35:22:0c: 25:49:e8:33:a4:ed:2f:63:2d:f2:6e:5d:a8:ba:92: 23:bd:c1:6c:d8:d8:c8:5c:b1:1d:1e:d4:68:a7:a9: d1:2d:17:a3:54:dc:71:8e:8e:c8:13:42:8a:49:b3: 09:a6:f9:a9:ae:99:99:b1:05:f9:4e:0c:5e:cc:8c: 0c:79:ef:47:0f:39:8f:87:a1:8b:7f:e1:d8:40:39: 30:98:24:29:18:f1:ab:76:32:46:8b:d4:ff:3a:e5: 98:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D9:B0:61:8C:65:45:16:06:39:09:FA:E2:78:47:E9:C5:54:9A:3D X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.240.0/22 IPv6: 2400:9840::/32 Signature Algorithm: sha256WithRSAEncryption 49:89:e6:9a:5c:d4:23:5a:91:17:97:d9:a8:41:50:41:8e:56: bd:e6:b0:d3:e7:0a:5d:58:b4:67:1e:b4:de:14:3d:7c:57:92: 45:5d:9e:90:8c:07:f4:8b:18:8c:ff:27:d5:47:60:eb:f6:45: f4:e7:2c:e8:1f:66:0a:0f:0a:80:8d:6c:c3:f1:57:5c:30:a0: d5:34:ac:95:3a:a9:07:31:3f:66:33:cd:05:3b:29:a3:a2:bf: d8:c5:3b:5e:e3:3b:12:87:d3:b9:ad:60:d4:ca:31:e3:55:d4: e8:ed:50:31:f8:ab:60:90:95:37:13:80:23:74:cf:22:7c:eb: 51:45:85:30:3c:7d:94:d5:c7:cb:d0:24:10:f8:b2:53:46:e6: a9:5e:b3:a0:0e:c9:8a:38:ed:45:71:d7:90:09:b4:e0:50:79: 26:be:4b:8a:16:45:fc:87:b6:61:54:06:1c:63:1e:12:d7:a6: 02:a0:5e:1e:31:fe:d2:ef:af:c4:fe:97:39:c6:2e:ef:24:5b: 37:ce:cb:bf:63:ef:98:c7:e2:87:97:39:e8:4e:b1:f1:a9:8b: 9f:e4:0f:a9:7f:71:ad:35:c3:e6:35:5a:7a:0b:21:c9:b6:06: e3:68:2a:1b:7c:59:9f:ef:4a:56:be:89:d9:3d:ce:42:2a:f2: cb:55:36:76 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjQwMTI0MjAzODI5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxNzU0NS0zMzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyetFOn5U8WiZ1vRKsEoPg4VfIsXAy+8fFAhlSqOiADOvq/o5olfDrNc15EX0 0BGHCMxt74nda02YdfTLsqbIgwpo32snJB7A5g+/ULGdiZGJ8zz32D6Bmcy0/QNr 83qWjpRkaJSZxpIcaDmTAviYYQWqskTKqdUrEs8vYYGrJBiQhzfHBe1ld9WPd11v e6l+Qj0dotOxGxV8W1BhaTDqtyM1IgwlSegzpO0vYy3ybl2oupIjvcFs2NjIXLEd HtRop6nRLRejVNxxjo7IE0KKSbMJpvmprpmZsQX5TgxezIwMee9HDzmPh6GLf+HY QDkwmCQpGPGrdjJGi9T/OuWYwQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLfZsGGM ZUUWBjkJ+uJ4R+nFVJo9MB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0MTMvQjhGQ0E3QkE1MTZFMTFFQTk4MEEyODdFQzRGOUFFMDIvNDk4QjZFRkU5 NDI0MTFFQTgxNkZDODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnU/AwDQQCAAIwBwMFACQAmEAwDQYJKoZIhvcNAQELBQAD ggEBAEmJ5ppc1CNakReX2ahBUEGOVr3msNPnCl1YtGcetN4UPXxXkkVdnpCMB/SL GIz/J9VHYOv2RfTnLOgfZgoPCoCNbMPxV1wwoNU0rJU6qQcxP2YzzQU7KaOiv9jF O17jOxKH07mtYNTKMeNV1OjtUDH4q2CQlTcTgCN0zyJ861FFhTA8fZTVx8vQJBD4 slNG5qles6AOyYo47UVx15AJtOBQeSa+S4oWRfyHtmFUBhxjHhLXpgKgXh4x/tLv r8T+lznGLu8kWzfOy79j75jH4oeXOehOsfGpi5/kD6l/ca01w+Y1WnoLIcm2BuNo Kht8WZ/vSla+idk9zkIq8stVNnY= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org