$ rpki-client -vvf rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa File: F13A6FB883D011E7948A8052C4F9AE02.roa (raw, json) Hash identifier: KRFZzM4SPO0Z6Xuj16SXgk1zk+EQm7SSBUKiotdyK0M= Subject key identifier: 4A:E9:F6:42:90:F4:23:3B:5C:78:92:94:9F:DB:91:EF:3B:78:93:F3 Certificate issuer: /CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Certificate serial: 1855 Authority key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa Signing time: Wed 12 Jun 2024 17:47:43 +0000 ROA not before: Wed 12 Jun 2024 17:47:43 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17882 IP address blocks: 43.242.240.0/24 maxlen: 24 43.242.241.0/24 maxlen: 24 43.242.242.0/24 maxlen: 24 43.242.243.0/24 maxlen: 24 103.26.192.0/24 maxlen: 24 103.26.193.0/24 maxlen: 24 103.26.194.0/24 maxlen: 24 103.26.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6229 (0x1855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C Validity Not Before: Jun 12 17:47:43 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6669df3f-7cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:47:54:5d:e7:d2:05:c4:9f:01:c7:c3:e1:5b: c8:f2:7a:a4:37:57:e8:f8:05:cf:d9:ed:ae:65:a0: 1f:f6:89:cf:20:70:84:8e:ce:4d:12:87:4a:b3:da: 56:b4:b8:02:89:fd:25:a0:dd:a7:9a:f3:76:80:ed: f1:33:f9:d5:24:04:65:ea:1c:b2:3a:f7:ed:fa:8d: 42:c5:b7:2e:ff:82:dc:f7:eb:2c:df:70:37:a5:f9: 72:a9:b8:2d:fd:48:9d:43:d0:77:a9:5d:14:13:84: 87:f9:bc:01:13:1b:c3:60:47:b6:70:7e:ab:21:77: fb:af:89:54:f8:38:71:7a:4b:47:0a:80:a8:a1:84: 00:64:07:33:db:3e:57:cd:62:69:fb:b0:5f:d8:de: 20:0c:36:73:7d:44:df:e4:12:11:33:3c:25:9c:91: 36:c9:80:bf:f4:ac:ef:ea:fc:3e:59:33:82:e1:15: 49:94:79:1f:df:88:ad:90:08:94:41:1c:55:8a:b2: 52:52:41:f4:26:03:1e:68:72:d4:23:21:ea:b3:44: 45:04:24:5a:64:39:16:09:90:5a:fc:28:df:16:83: 55:17:93:e8:ad:b4:a1:9f:83:24:9f:8a:fc:17:a5: 79:5c:1b:ed:c5:5a:10:75:0e:3e:fb:5f:be:68:55: 25:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E9:F6:42:90:F4:23:3B:5C:78:92:94:9F:DB:91:EF:3B:78:93:F3 X509v3 Authority Key Identifier: keyid:8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/F13A6FB883D011E7948A8052C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.240.0/22 103.26.192.0/22 Signature Algorithm: sha256WithRSAEncryption 66:58:4a:45:60:dd:6a:9f:ee:23:0e:22:18:da:00:4e:58:53: 86:12:1d:25:b5:3d:77:99:e1:b0:1b:54:91:3f:c1:c5:c1:9c: dd:ad:e2:45:64:0a:f5:d3:c4:70:d4:bc:05:15:ec:ee:01:ac: af:4f:16:aa:cd:2e:79:76:ab:ce:79:8d:9d:eb:ce:65:31:84: 53:f0:fb:54:c7:82:81:6b:5f:5c:49:6f:0f:39:8d:66:f0:72: 12:bb:19:d9:d2:54:c8:56:cc:ff:1e:57:58:54:fb:61:52:7a: 01:ce:9a:be:8c:60:f7:c5:55:80:0f:3e:a3:69:8d:7c:04:0c: 16:2d:d8:62:44:5c:df:29:0a:d1:1f:0f:9b:bf:5a:6b:a6:e0: 1a:5a:f4:95:4f:65:c8:9e:df:26:8d:98:3a:21:55:8a:f7:89: 97:a3:71:60:0a:17:59:f7:71:5f:7f:d5:b8:02:8f:11:c1:4d: c1:dd:7a:51:a0:e3:84:40:ee:c9:6c:37:ea:fb:b8:69:cb:9d: 71:77:c9:f3:2a:5f:cd:f2:af:72:a7:c8:a4:d7:d9:aa:15:57: 43:fa:16:71:fb:1d:ee:97:08:7c:c2:52:80:09:01:63:ee:e5: ce:42:f1:aa:4d:bf:a2:a8:77:40:bc:19:29:f6:7e:ad:9e:7a: c0:bd:02:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk1MTAxMTAvBgNVBAUTKDhCREY1MTE4OUExREJERjk2ODQzNEI1RTczNkFBOUFC RkQ0NTU2MUMwHhcNMjQwNjEyMTc0NzQzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY5ZGYzZi03Y2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEdUXefSBcSfAcfD4VvI8nqkN1fo+AXP2e2uZaAf9onPIHCEjs5NEodKs9pW tLgCif0loN2nmvN2gO3xM/nVJARl6hyyOvft+o1Cxbcu/4Lc9+ss33A3pflyqbgt /UidQ9B3qV0UE4SH+bwBExvDYEe2cH6rIXf7r4lU+DhxektHCoCooYQAZAcz2z5X zWJp+7Bf2N4gDDZzfUTf5BIRMzwlnJE2yYC/9Kzv6vw+WTOC4RVJlHkf34itkAiU QRxVirJSUkH0JgMeaHLUIyHqs0RFBCRaZDkWCZBa/CjfFoNVF5PorbShn4Mkn4r8 F6V5XBvtxVoQdQ4++1++aFUl8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFErp9kKQ 9CM7XHiSlJ/bke87eJPzMB8GA1UdIwQYMBaAFIvfURiaHb35aENLXnNqqav9RVYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTUxMC8wRERGNUIwODgz Q0YxMUU3ODM4RUE4NEVDNEY5QUUwMi9pOTlSR0pvZHZmbG9RMHRlYzJxcHFfMUZW aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5OVJHSm9kdmZsb1EwdGVjMnFwcV8xRlZody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk1MTAvMERERjVCMDg4M0NGMTFFNzgzOEVBODRFQzRGOUFFMDIvRjEzQTZGQjg4 M0QwMTFFNzk0OEE4MDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8vADBAJnGsAwDQYJKoZIhvcNAQELBQADggEBAGZYSkVg 3Wqf7iMOIhjaAE5YU4YSHSW1PXeZ4bAbVJE/wcXBnN2t4kVkCvXTxHDUvAUV7O4B rK9PFqrNLnl2q855jZ3rzmUxhFPw+1THgoFrX1xJbw85jWbwchK7GdnSVMhWzP8e V1hU+2FSegHOmr6MYPfFVYAPPqNpjXwEDBYt2GJEXN8pCtEfD5u/Wmum4Bpa9JVP Zcie3yaNmDohVYr3iZejcWAKF1n3cV9/1bgCjxHBTcHdelGg44RA7slsN+r7uGnL nXF3yfMqX83yr3KnyKTX2aoVV0P6FnH7He6XCHzCUoAJAWPu5c5C8apNv6Kod0C8 GSn2fq2eesC9Aj8= -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:57 2024 by rpki-client on console-fra.rpki-client.org