$ rpki-client -vvf rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5E7E296A93D211EBAABA8D6AC4F9AE02.roa File: 5E7E296A93D211EBAABA8D6AC4F9AE02.roa (raw, json) Hash identifier: lJkROrcXoycDxKm+uQRdcrVpjD6GFAa8gixXd9pc32E= Subject key identifier: 4A:41:57:D4:FF:C4:23:24:4A:30:AF:57:83:06:E3:AB:BF:29:30:77 Certificate issuer: /CN=A917C373/serialNumber=DC474D6B25D5E1A1CD1D29000CCC14EAF93341D2 Certificate serial: 1E10 Authority key identifier: DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5E7E296A93D211EBAABA8D6AC4F9AE02.roa Signing time: Fri 30 Aug 2024 16:53:38 +0000 ROA not before: Fri 30 Aug 2024 16:53:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 10112 IP address blocks: 103.70.136.0/24 maxlen: 24 2001:df3:b200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.crl rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7696 (0x1e10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C373/serialNumber=DC474D6B25D5E1A1CD1D29000CCC14EAF93341D2 Validity Not Before: Aug 30 16:53:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d1f912-04f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6b:7d:7e:4d:93:1b:4c:d9:37:54:1d:3e:5a: d8:a9:fb:89:2e:f2:e0:dd:5c:f7:d1:db:3b:a5:5b: c7:4d:f7:a0:2c:f1:6b:44:01:0e:60:b4:55:42:33: 97:16:17:2c:05:38:6b:e1:40:b2:77:eb:af:52:0f: 6f:34:43:ef:cf:11:20:ca:fd:bc:6d:6a:44:1a:9b: e8:30:64:b6:75:84:d5:f9:c9:b0:4c:d0:47:cf:fd: 9d:bb:3e:b0:96:7b:c1:0e:50:b2:9c:b0:78:d6:23: a8:9c:70:f0:ae:a5:c7:2b:f1:87:ef:e1:11:44:d5: 69:a5:e4:a4:cd:df:d0:79:cb:bb:13:25:f3:49:3b: e0:0a:3c:3c:6e:8e:1e:2b:b0:90:9b:a9:34:8a:44: b3:21:92:c5:17:9d:46:7a:19:3c:25:0d:ee:e9:35: fe:e3:c7:82:c6:1c:0d:5f:ca:7c:e5:59:9c:c5:62: 23:30:47:84:25:24:ac:55:10:60:b0:6b:99:0c:8b: 43:a6:fe:0f:24:18:3e:dd:c5:51:74:49:3d:fc:79: 61:fa:58:3f:db:32:73:3d:a9:80:06:02:94:a8:62: 28:d2:4c:a3:f1:2f:16:6f:d8:fa:0a:3a:97:df:0b: 83:89:f8:ed:13:65:fc:72:ea:6a:e6:e8:fe:cb:af: 7c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:41:57:D4:FF:C4:23:24:4A:30:AF:57:83:06:E3:AB:BF:29:30:77 X509v3 Authority Key Identifier: keyid:DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5E7E296A93D211EBAABA8D6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.136.0/24 IPv6: 2001:df3:b200::/48 Signature Algorithm: sha256WithRSAEncryption 35:2a:18:75:65:5b:63:f0:61:a8:8e:53:06:65:eb:9a:35:93: 7e:c1:72:53:94:4d:43:88:37:6c:f8:69:78:65:ae:73:d8:3e: 66:1f:77:7a:3e:0a:e7:3a:39:26:5e:a0:a0:76:71:91:de:ff: 64:05:a9:ef:7c:d0:e0:eb:75:05:20:87:ac:0b:79:63:82:31: 04:6c:7a:84:76:e3:86:7b:6e:6a:50:fb:d7:89:53:92:28:a2: a7:e0:94:a4:ba:0d:af:36:02:94:24:0b:7e:3b:e6:6d:37:01: 92:ba:9c:cc:c1:8a:35:d8:ea:ab:b0:9f:fd:62:0b:68:b7:f8: 24:28:5e:67:d1:ef:f2:79:de:5a:80:48:86:44:95:6a:90:6c: 62:4e:3e:3f:57:24:a1:fe:02:73:4a:98:da:72:26:3d:08:6a: 90:92:77:5d:d9:69:f4:7b:63:87:3b:c5:8c:70:42:88:23:48: da:0e:f1:b6:71:2a:e2:b0:ee:43:a5:a1:e1:fb:d8:91:8d:1c: 8d:95:0f:90:64:57:86:9e:66:80:c4:56:a1:d2:2c:6f:9c:36: 53:46:61:92:82:91:b2:21:45:54:47:3c:a0:6a:a8:60:9e:1f: ad:78:cd:d6:71:59:8f:33:52:4e:5f:11:be:fe:75:09:6d:ec: 38:49:55:1e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICHhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNzMxMTAvBgNVBAUTKERDNDc0RDZCMjVENUUxQTFDRDFEMjkwMDBDQ0MxNEVB RjkzMzQxRDIwHhcNMjQwODMwMTY1MzM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZjkxMi0wNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2t9fk2TG0zZN1QdPlrYqfuJLvLg3Vz30ds7pVvHTfegLPFrRAEOYLRVQjOX FhcsBThr4UCyd+uvUg9vNEPvzxEgyv28bWpEGpvoMGS2dYTV+cmwTNBHz/2duz6w lnvBDlCynLB41iOonHDwrqXHK/GH7+ERRNVppeSkzd/Qecu7EyXzSTvgCjw8bo4e K7CQm6k0ikSzIZLFF51Gehk8JQ3u6TX+48eCxhwNX8p85VmcxWIjMEeEJSSsVRBg sGuZDItDpv4PJBg+3cVRdEk9/Hlh+lg/2zJzPamABgKUqGIo0kyj8S8Wb9j6CjqX 3wuDifjtE2X8cupq5uj+y698kwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEpBV9T/ xCMkSjCvV4MG46u/KTB3MB8GA1UdIwQYMBaAFNxHTWsl1eGhzR0pAAzMFOr5M0HS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM3My9DRkNBQzYxMDZG RjUxMUU2OUYyQjEwMjNDNEY5QUUwMi8zRWROYXlYVjRhSE5IU2tBRE13VTZ2a3pR ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFZE5heVhWNGFITkhTa0FETXdVNnZrelFkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MzNzMvQ0ZDQUM2MTA2RkY1MTFFNjlGMkIxMDIzQzRGOUFFMDIvNUU3RTI5NkE5 M0QyMTFFQkFBQkE4RDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnRogwDwQCAAIwCQMHACABDfOyADANBgkqhkiG9w0BAQsF AAOCAQEANSoYdWVbY/BhqI5TBmXrmjWTfsFyU5RNQ4g3bPhpeGWuc9g+Zh93ej4K 5zo5Jl6goHZxkd7/ZAWp73zQ4Ot1BSCHrAt5Y4IxBGx6hHbjhntualD714lTkiii p+CUpLoNrzYClCQLfjvmbTcBkrqczMGKNdjqq7Cf/WILaLf4JCheZ9Hv8nneWoBI hkSVapBsYk4+P1ckof4Cc0qY2nImPQhqkJJ3Xdlp9HtjhzvFjHBCiCNI2g7xtnEq 4rDuQ6Wh4fvYkY0cjZUPkGRXhp5mgMRWodIsb5w2U0ZhkoKRsiFFVEc8oGqoYJ4f rXjN1nFZjzNSTl8Rvv51CW3sOElVHg== -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:08 2024 by rpki-client on console-fra.rpki-client.org