$ rpki-client -vvf rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa File: EF3517E8099311ECAD398842C4F9AE02.roa (raw, json) Hash identifier: 70nUVsPI/eDiHF1rN+y5OKRTGHTL9/bXu36vYcff6Yo= Subject key identifier: AA:BE:84:3A:8D:96:B5:85:D5:80:09:B2:94:34:FA:C3:1A:BE:51:57 Certificate issuer: /CN=A918A341/serialNumber=4722165A290C0FADB038E8CD2C63AEC71E8F83EC Certificate serial: 0497 Authority key identifier: 47:22:16:5A:29:0C:0F:AD:B0:38:E8:CD:2C:63:AE:C7:1E:8F:83:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RyIWWikMD62wOOjNLGOuxx6Pg-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa Signing time: Tue 08 Oct 2024 23:53:07 +0000 ROA not before: Tue 08 Oct 2024 23:53:07 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142644 IP address blocks: 103.171.212.0/24 maxlen: 24 103.171.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/RyIWWikMD62wOOjNLGOuxx6Pg-w.crl rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/RyIWWikMD62wOOjNLGOuxx6Pg-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RyIWWikMD62wOOjNLGOuxx6Pg-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1175 (0x497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A341/serialNumber=4722165A290C0FADB038E8CD2C63AEC71E8F83EC Validity Not Before: Oct 8 23:53:07 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6705c5e3-7fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f6:21:7c:b5:fb:35:2f:e6:7f:45:7b:61:c1: 84:cd:b3:b2:67:2b:2e:ca:5a:c3:37:7e:ba:44:94: 47:88:02:c3:01:35:5d:03:cb:dd:de:cf:f0:06:cc: 9d:08:7c:91:78:23:d2:76:31:ff:e6:ae:f2:d1:c1: a3:cf:3e:a7:f5:0a:d5:2d:a0:61:5d:36:06:b2:e2: 06:26:2d:59:f9:16:0a:02:62:ce:57:16:8b:1d:ef: f5:f2:ed:f6:76:54:6a:71:73:f1:fa:24:23:2f:45: 53:5e:df:af:03:a4:5a:64:18:42:39:4b:df:e8:29: 93:6e:d3:0e:7f:bc:48:84:f2:86:6f:cd:fb:71:80: 62:37:8e:2b:be:84:9f:50:59:43:3b:63:f7:74:bf: 69:84:58:90:05:3c:0f:64:6d:70:d1:51:a9:5a:8b: 3d:c6:1e:66:37:1b:24:f2:a9:95:1d:1e:fa:27:4e: 55:61:50:8e:af:1a:ba:f5:9c:5f:c6:4e:cb:f2:47: 7c:51:50:ab:f6:cb:ac:65:6d:eb:55:d0:aa:f9:da: b6:9d:d0:c8:a5:0d:31:65:3f:09:4d:da:a5:e9:8a: 1a:23:4b:0f:77:91:18:76:bf:5f:02:db:43:2f:73: b7:c5:c3:32:eb:43:ea:35:74:f1:f4:25:b6:d4:d2: f0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BE:84:3A:8D:96:B5:85:D5:80:09:B2:94:34:FA:C3:1A:BE:51:57 X509v3 Authority Key Identifier: keyid:47:22:16:5A:29:0C:0F:AD:B0:38:E8:CD:2C:63:AE:C7:1E:8F:83:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/RyIWWikMD62wOOjNLGOuxx6Pg-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RyIWWikMD62wOOjNLGOuxx6Pg-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A341/9A7EAC4A098F11ECA633E13BC4F9AE02/EF3517E8099311ECAD398842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.212.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:c9:ea:be:41:f6:44:63:69:13:60:fb:70:89:ac:82:63:04: 94:39:cd:cb:ee:20:a1:b1:5b:36:70:91:fa:42:d9:c2:0e:93: d1:88:a0:b9:a9:3d:14:ce:72:7d:76:dc:aa:f8:e2:e3:50:1d: f3:c6:de:b5:de:c9:a4:33:1a:60:85:d2:06:ad:31:5f:85:56: 05:9d:f5:4f:7e:00:3e:b1:12:d8:41:53:df:b3:d0:7d:05:ce: bc:fe:44:cb:eb:30:b2:bd:64:34:29:ee:8b:3d:c1:cc:05:18: 90:e7:85:b6:2e:26:6a:56:71:f5:16:00:2b:94:34:64:9b:f0: 29:30:8d:4d:32:9e:dc:1a:2d:4f:fd:96:39:f8:43:8a:ae:bb: d8:72:3b:a1:46:ba:48:ae:9c:f6:96:d5:72:48:87:b4:28:9d: 77:a6:4b:33:1a:d4:88:3e:65:0c:2f:a1:2f:42:cd:57:b8:3f: 19:9d:2d:13:bf:bf:c4:ab:4e:02:7b:bc:b2:9e:c6:bc:4c:a2: 13:fb:73:e1:fe:84:63:cc:66:4d:25:77:20:45:a7:0e:08:6b: 1f:8f:9c:88:5e:8a:38:a2:bf:fe:49:0b:b8:9a:2a:80:f1:8f: e7:9c:d9:f1:92:bc:79:45:0d:e8:ed:8d:17:2e:7b:31:ac:17: d1:6b:42:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNDExMTAvBgNVBAUTKDQ3MjIxNjVBMjkwQzBGQURCMDM4RThDRDJDNjNBRUM3 MUU4RjgzRUMwHhcNMjQxMDA4MjM1MzA3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1YzVlMy03ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/YhfLX7NS/mf0V7YcGEzbOyZysuylrDN366RJRHiALDATVdA8vd3s/wBsyd CHyReCPSdjH/5q7y0cGjzz6n9QrVLaBhXTYGsuIGJi1Z+RYKAmLOVxaLHe/18u32 dlRqcXPx+iQjL0VTXt+vA6RaZBhCOUvf6CmTbtMOf7xIhPKGb837cYBiN44rvoSf UFlDO2P3dL9phFiQBTwPZG1w0VGpWos9xh5mNxsk8qmVHR76J05VYVCOrxq69Zxf xk7L8kd8UVCr9susZW3rVdCq+dq2ndDIpQ0xZT8JTdql6YoaI0sPd5EYdr9fAttD L3O3xcMy60PqNXTx9CW21NLwPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKq+hDqN lrWF1YAJspQ0+sMavlFXMB8GA1UdIwQYMBaAFEciFlopDA+tsDjozSxjrscej4Ps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM0MS85QTdFQUM0QTA5 OEYxMUVDQTYzM0UxM0JDNEY5QUUwMi9SeUlXV2lrTUQ2MndPT2pOTEdPdXh4NlBn LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J5SVdXaWtNRDYyd09Pak5MR091eHg2UGctdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEzNDEvOUE3RUFDNEEwOThGMTFFQ0E2MzNFMTNCQzRGOUFFMDIvRUYzNTE3RTgw OTkzMTFFQ0FEMzk4ODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnq9QwDQYJKoZIhvcNAQELBQADggEBAH3J6r5B9kRjaRNg +3CJrIJjBJQ5zcvuIKGxWzZwkfpC2cIOk9GIoLmpPRTOcn123Kr44uNQHfPG3rXe yaQzGmCF0gatMV+FVgWd9U9+AD6xEthBU9+z0H0Fzrz+RMvrMLK9ZDQp7os9wcwF GJDnhbYuJmpWcfUWACuUNGSb8CkwjU0yntwaLU/9ljn4Q4quu9hyO6FGukiunPaW 1XJIh7QonXemSzMa1Ig+ZQwvoS9CzVe4PxmdLRO/v8SrTgJ7vLKexrxMohP7c+H+ hGPMZk0ldyBFpw4Iax+PnIheijiiv/5JC7iaKoDxj+ec2fGSvHlFDejtjRcuezGs F9FrQog= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org