$ rpki-client -vvf rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa File: F71189FC0C3211EF98143258C4F9AE02.roa (raw, json) Hash identifier: 1AY7vatzUpFHp5X1pZedPLvi7H/JL85AC54mCkIIjVQ= Subject key identifier: 53:4A:CE:42:E2:C1:A6:F3:62:B5:12:57:20:E1:EE:51:DB:88:36:6E Certificate issuer: /CN=A91846F6/serialNumber=8DE82EFF6234D79B7A65FA60A053007DA8281FCC Certificate serial: 7A Authority key identifier: 8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa Signing time: Fri 01 Nov 2024 05:48:36 +0000 ROA not before: Fri 01 Nov 2024 05:48:36 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 55649 IP address blocks: 103.215.40.0/22 maxlen: 24 144.48.216.0/22 maxlen: 24 223.255.240.0/22 maxlen: 24 2001:df0:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91846F6 Validity Not Before: Nov 1 05:48:36 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67246bb4-f47b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:35:1c:ff:4b:de:e8:14:ce:73:d6:b9:ab:56: 03:3e:ac:4b:1e:b4:78:e6:15:61:6c:12:c3:2f:6c: 38:4b:7c:34:e4:43:e1:8c:bf:d6:d2:d7:6a:2f:21: c8:41:01:7d:7b:a7:4a:13:e1:b6:ce:b6:09:6e:74: 6d:2e:b1:5a:4c:55:e5:3e:5c:46:a0:fb:1c:49:93: 79:94:ab:43:7a:c3:1f:5c:fb:bf:c7:e8:2d:1d:2e: ba:44:69:d9:ce:28:39:f2:f1:de:04:98:bd:ea:29: da:f8:b2:e9:6d:36:8f:85:b2:d1:54:bb:77:e7:c7: 0d:a7:cf:de:9f:25:44:cb:0c:70:a1:d5:5a:f9:a4: da:0a:0a:6b:f5:f8:e4:d4:5d:85:54:58:69:13:73: 36:ba:33:ed:09:d8:6c:01:e4:85:9e:5e:dd:72:c1: f1:dd:b2:e7:f7:f7:bb:33:bb:8e:97:bb:33:4a:a7: db:c0:1e:93:71:af:ae:a6:3f:2e:09:ac:32:93:57: bb:a3:a3:3a:a8:75:14:fe:03:56:01:1b:22:02:d3: 69:dd:98:de:a1:f9:ae:05:fd:05:ad:2f:b4:9f:ca: 01:0e:e9:b0:63:c5:7e:6a:27:48:d1:5e:17:82:b0: 87:05:db:aa:f6:c4:39:27:d2:8f:2e:9a:96:9b:a1: 56:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4A:CE:42:E2:C1:A6:F3:62:B5:12:57:20:E1:EE:51:DB:88:36:6E X509v3 Authority Key Identifier: keyid:8D:E8:2E:FF:62:34:D7:9B:7A:65:FA:60:A0:53:00:7D:A8:28:1F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/jegu_2I015t6ZfpgoFMAfagoH8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jegu_2I015t6ZfpgoFMAfagoH8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91846F6/F4A1B2D80C1811EF9FF70141C4F9AE02/F71189FC0C3211EF98143258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.40.0/22 144.48.216.0/22 223.255.240.0/22 IPv6: 2001:df0:a300::/48 Signature Algorithm: sha256WithRSAEncryption 16:39:df:7a:41:e1:38:c8:ae:56:26:8a:92:21:e0:dd:3e:dd: ed:d9:b8:6b:68:bf:8f:17:97:dd:e3:00:69:47:dd:ae:20:1c: cc:68:c1:b4:c9:45:a4:67:ed:60:eb:0d:a6:cd:c1:70:a2:e8: fa:e7:21:7b:38:4d:a9:9c:5a:93:a6:c2:16:6f:31:58:f9:04: 71:28:37:d0:97:6d:bc:ab:f7:06:4d:c8:6b:b7:e5:b6:72:0f: 20:9b:e3:af:a6:6e:85:50:54:15:eb:51:9b:71:cc:27:04:ee: d7:2f:ab:3c:77:91:db:53:f1:87:2c:61:77:05:93:c6:ed:ec: f7:3c:5c:a5:23:b5:58:d9:82:5c:0e:1e:76:f9:ee:10:ec:e9: 8f:1e:3f:5f:dd:59:81:bb:d7:23:19:a1:cd:e9:74:e0:89:8e: 04:63:db:71:32:83:36:28:8c:fa:19:01:df:0e:a3:bf:78:18: be:84:bb:50:34:1d:9c:2c:10:85:c7:e0:54:b7:8b:ee:d2:76: 8e:52:e4:ce:47:2a:65:95:bc:eb:77:12:d6:fb:10:4d:e0:da: 4c:8e:aa:4b:91:51:4e:04:74:01:16:8d:30:14:a0:3c:4c:fe: dd:aa:c7:5d:76:fe:ed:8e:d7:f2:5b:92:68:bf:43:12:79:f0: a3:f3:cb:09 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDZGNjExMC8GA1UEBRMoOERFODJFRkY2MjM0RDc5QjdBNjVGQTYwQTA1MzAwN0RB ODI4MUZDQzAeFw0yNDExMDEwNTQ4MzZaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjQ2YmI0LWY0N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfNRz/S97oFM5z1rmrVgM+rEsetHjmFWFsEsMvbDhLfDTkQ+GMv9bS12ovIchB AX17p0oT4bbOtgludG0usVpMVeU+XEag+xxJk3mUq0N6wx9c+7/H6C0dLrpEadnO KDny8d4EmL3qKdr4sultNo+FstFUu3fnxw2nz96fJUTLDHCh1Vr5pNoKCmv1+OTU XYVUWGkTcza6M+0J2GwB5IWeXt1ywfHdsuf397szu46XuzNKp9vAHpNxr66mPy4J rDKTV7ujozqodRT+A1YBGyIC02ndmN6h+a4F/QWtL7SfygEO6bBjxX5qJ0jRXheC sIcF26r2xDkn0o8umpaboVabAgMBAAGjggKyMIICrjAdBgNVHQ4EFgQUU0rOQuLB pvNitRJXIOHuUduINm4wHwYDVR0jBBgwFoAUjegu/2I015t6ZfpgoFMAfagoH8ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0NkY2L0Y0QTFCMkQ4MEMx ODExRUY5RkY3MDE0MUM0RjlBRTAyL2plZ3VfMkkwMTV0NlpmcGdvRk1BZmFnb0g4 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVndV8ySTAxNXQ2WmZwZ29GTUFmYWdvSDh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDZGNi9GNEExQjJEODBDMTgxMUVGOUZGNzAxNDFDNEY5QUUwMi9GNzExODlGQzBD MzIxMUVGOTgxNDMyNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA8BggrBgEFBQcBBwEB/wQt MCswGAQCAAEwEgMEAmfXKAMEApAw2AMEAt//8DAPBAIAAjAJAwcAIAEN8KMAMA0G CSqGSIb3DQEBCwUAA4IBAQAWOd96QeE4yK5WJoqSIeDdPt3t2bhraL+PF5fd4wBp R92uIBzMaMG0yUWkZ+1g6w2mzcFwouj65yF7OE2pnFqTpsIWbzFY+QRxKDfQl228 q/cGTchrt+W2cg8gm+Ovpm6FUFQV61GbccwnBO7XL6s8d5HbU/GHLGF3BZPG7ez3 PFylI7VY2YJcDh52+e4Q7OmPHj9f3VmBu9cjGaHN6XTgiY4EY9txMoM2KIz6GQHf DqO/eBi+hLtQNB2cLBCFx+BUt4vu0naOUuTORypllbzrdxLW+xBN4NpMjqpLkVFO BHQBFo0wFKA8TP7dqsdddv7tjtfyW5Jov0MSefCj88sJ -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:14 2025 by rpki-client