$ rpki-client -vvf rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa File: FAFC712C485611EDB713C522C4F9AE02.roa (raw, json) Hash identifier: BxFPmfPTwgp2tJjAzM/9EFLesG9jRjNr4vYZabIjAUw= Subject key identifier: 6F:75:DC:D9:27:6A:C1:A7:11:AD:F0:E5:D1:15:DF:C7:3B:04:61:7B Certificate issuer: /CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897 Certificate serial: 06A9 Authority key identifier: 7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa Signing time: Fri 05 Apr 2024 00:02:02 +0000 ROA not before: Fri 05 Apr 2024 00:02:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132337 IP address blocks: 103.69.212.0/22 maxlen: 24 103.148.238.0/23 maxlen: 23 103.148.238.0/24 maxlen: 24 103.148.239.0/24 maxlen: 24 103.196.48.0/22 maxlen: 24 113.30.156.0/22 maxlen: 24 113.30.228.0/22 maxlen: 24 121.50.216.0/21 maxlen: 24 2406:c140::/32 maxlen: 32 2406:c140:31::/48 maxlen: 48 2406:c140:33::/48 maxlen: 48 2406:c140:65::/48 maxlen: 48 2406:c140:86::/48 maxlen: 48 2406:c140:238::/48 maxlen: 48 2406:c140:239::/48 maxlen: 48 2406:c140:852::/48 maxlen: 48 2406:c140:886::/48 maxlen: 48 2406:c140:1200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115964/serialNumber=7B721388FD13E8AE43C97F0301981D2292C88897 Validity Not Before: Apr 5 00:02:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f3f7a-d921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:9a:ac:c0:07:fc:61:7a:d1:87:30:21:0a: 95:ad:ef:bb:ea:16:26:7e:8d:48:60:cc:14:46:a1: 61:b8:9e:fa:33:79:4f:61:72:80:68:70:60:7a:df: 14:41:40:e7:81:b8:98:17:61:af:f6:17:62:69:83: 0f:40:a2:34:00:93:85:b8:5f:c8:b6:a3:0d:d6:76: 5e:c8:18:37:25:ab:b0:90:49:a0:11:28:47:35:cb: 1e:3b:ac:b8:5a:f5:0a:76:b6:43:2e:b0:e6:8d:60: 5a:35:2c:18:1a:a7:48:dc:3c:5d:b7:d7:1a:28:9d: bd:a4:0b:a4:40:59:1a:4b:21:28:26:e8:00:ac:46: 64:f7:f6:6a:2c:ba:f5:96:73:73:bd:8f:9b:25:bd: c4:77:b6:17:b2:91:73:52:54:91:28:a3:52:bf:86: df:48:e9:b9:53:e3:3a:9a:92:b5:4a:c1:1c:e8:08: b2:84:ab:94:c0:39:d7:d2:06:e5:df:35:ac:8b:fa: e6:1a:81:a2:cb:1a:9f:9b:3b:06:95:30:8c:0e:ad: 2a:df:bc:9d:e7:d8:8c:04:fe:40:0a:46:75:97:3a: 8e:65:cf:d2:4b:a6:f3:50:d0:63:30:0f:05:02:21: c3:8e:f5:16:f5:9a:93:6a:56:1c:a2:16:3d:54:96: d2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:75:DC:D9:27:6A:C1:A7:11:AD:F0:E5:D1:15:DF:C7:3B:04:61:7B X509v3 Authority Key Identifier: keyid:7B:72:13:88:FD:13:E8:AE:43:C9:7F:03:01:98:1D:22:92:C8:88:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/e3ITiP0T6K5DyX8DAZgdIpLIiJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3ITiP0T6K5DyX8DAZgdIpLIiJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115964/EFC2CCBC270F11EBADE6C019C4F9AE02/FAFC712C485611EDB713C522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.212.0/22 103.148.238.0/23 103.196.48.0/22 113.30.156.0/22 113.30.228.0/22 121.50.216.0/21 IPv6: 2406:c140::/32 Signature Algorithm: sha256WithRSAEncryption 69:39:de:dc:83:9f:bd:f7:12:58:25:56:5a:25:5e:29:11:10: b5:8b:7a:dd:88:d5:6e:91:f0:f0:f1:32:e8:44:9b:58:4f:08: 88:36:5b:d2:6d:37:16:07:8d:d9:ac:b4:ef:ed:b8:77:84:84: 2f:e5:e1:ab:01:2f:c4:ee:31:b9:18:4e:34:19:23:82:1e:fd: 4c:0a:08:e2:6b:fd:22:92:d3:b1:ad:74:c8:c1:14:27:76:ad: 1d:f6:56:5f:5a:0a:3b:ab:11:5c:46:d8:d6:fa:30:fa:bc:3d: 70:0b:64:04:c1:90:6a:58:a0:73:af:99:5c:1e:9f:94:37:b8: b9:f0:47:0e:77:14:4e:cf:35:56:a5:18:3d:fb:23:1d:39:63: 98:56:07:34:06:4a:90:8e:ce:ee:39:64:b7:36:8d:4e:07:8a: 19:f3:3c:f5:68:33:a1:64:70:00:77:82:e7:cc:45:54:ee:21: a3:ff:ae:81:4a:99:fa:4f:04:79:e5:85:d5:02:eb:ef:5f:16: 77:07:84:63:73:bc:86:6a:3a:e6:71:1d:8a:11:a8:0f:bd:ed: 64:c1:c4:ea:fa:05:66:84:5c:b4:d5:64:5e:1f:6c:5f:de:aa: 62:4d:ea:eb:df:bf:f4:ce:9a:8d:d3:a2:6a:25:c2:33:81:ea: ab:62:7f:ae -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTU5NjQxMTAvBgNVBAUTKDdCNzIxMzg4RkQxM0U4QUU0M0M5N0YwMzAxOTgxRDIy OTJDODg4OTcwHhcNMjQwNDA1MDAwMjAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmM2Y3YS1kOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnliarMAH/GF60YcwIQqVre+76hYmfo1IYMwURqFhuJ76M3lPYXKAaHBget8U QUDngbiYF2Gv9hdiaYMPQKI0AJOFuF/ItqMN1nZeyBg3JauwkEmgEShHNcseO6y4 WvUKdrZDLrDmjWBaNSwYGqdI3Dxdt9caKJ29pAukQFkaSyEoJugArEZk9/ZqLLr1 lnNzvY+bJb3Ed7YXspFzUlSRKKNSv4bfSOm5U+M6mpK1SsEc6AiyhKuUwDnX0gbl 3zWsi/rmGoGiyxqfmzsGlTCMDq0q37yd59iMBP5ACkZ1lzqOZc/SS6bzUNBjMA8F AiHDjvUW9ZqTalYcohY9VJbSDQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFG913Nkn asGnEa3w5dEV38c7BGF7MB8GA1UdIwQYMBaAFHtyE4j9E+iuQ8l/AwGYHSKSyIiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTk2NC9FRkMyQ0NCQzI3 MEYxMUVCQURFNkMwMTlDNEY5QUUwMi9lM0lUaVAwVDZLNUR5WDhEQVpnZElwTElp SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzSVRpUDBUNks1RHlYOERBWmdkSXBMSWlKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTU5NjQvRUZDMkNDQkMyNzBGMTFFQkFERTZDMDE5QzRGOUFFMDIvRkFGQzcxMkM0 ODU2MTFFREI3MTNDNTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnRdQDBAFnlO4DBAJnxDADBAJxHpwDBAJxHuQDBAN5Mtgw DQQCAAIwBwMFACQGwUAwDQYJKoZIhvcNAQELBQADggEBAGk53tyDn733ElglVlol XikRELWLet2I1W6R8PDxMuhEm1hPCIg2W9JtNxYHjdmstO/tuHeEhC/l4asBL8Tu MbkYTjQZI4Ie/UwKCOJr/SKS07GtdMjBFCd2rR32Vl9aCjurEVxG2Nb6MPq8PXAL ZATBkGpYoHOvmVwen5Q3uLnwRw53FE7PNValGD37Ix05Y5hWBzQGSpCOzu45ZLc2 jU4HihnzPPVoM6FkcAB3gufMRVTuIaP/roFKmfpPBHnlhdUC6+9fFncHhGNzvIZq OuZxHYoRqA+97WTBxOr6BWaEXLTVZF4fbF/eqmJN6uvfv/TOmo3TomolwjOB6qti f64= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org