$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa File: F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa (raw, json) Hash identifier: XWjLFsGDfe+yx8HJSv7/TrbqDPkINeE4w88NW6FVyf4= Subject key identifier: B7:08:FC:1F:24:AE:18:D6:49:2D:73:EC:69:3A:BB:C2:B4:39:1C:E5 Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: C9 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa Signing time: Wed 21 Feb 2024 05:17:27 +0000 ROA not before: Wed 21 Feb 2024 05:17:27 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141393 IP address blocks: 103.84.58.0/24 maxlen: 24 2001:df1:f040::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Feb 21 05:17:27 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d58767-7fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:3f:65:97:ff:cd:c4:f8:6f:1d:8b:f2:88: 08:13:2b:2a:20:0d:1b:88:c2:30:fa:8b:d7:49:81: 00:e6:e1:2a:ef:9b:35:60:73:80:1f:bd:72:9c:32: 29:43:3f:a4:d2:fb:4c:e3:78:05:09:65:70:55:12: cc:e1:c3:c8:de:2b:ef:55:af:3f:83:1b:d2:01:02: 8a:04:e3:f3:6c:28:56:a9:b2:fe:04:56:99:05:04: cc:5e:c0:ed:98:5b:92:c3:2a:9f:96:f7:4f:f3:01: b1:f2:e5:80:fc:a8:ec:0e:57:54:3a:39:ed:91:0f: 90:a3:00:72:59:61:97:41:dc:c6:c2:11:87:ec:cb: 7e:7b:38:85:81:62:b0:86:69:88:ae:17:28:aa:2d: d0:89:09:7f:2d:9f:fd:35:b0:fb:80:8c:c6:4f:ac: 45:f0:c5:f2:2b:80:ba:fa:00:e3:21:1f:18:9c:29: 13:0e:c5:34:b1:cf:83:04:32:f7:19:a7:6d:d3:b8: ea:31:80:c1:8f:91:19:87:de:ce:41:20:ed:87:88: 1c:3e:aa:45:4c:0c:8f:ca:a2:3d:75:af:c4:b0:2e: 8a:40:ee:2e:85:f9:38:c0:79:18:ac:3d:5c:d6:fd: 07:fb:79:63:78:5b:ce:46:d3:c4:b4:62:ca:d1:74: 04:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:08:FC:1F:24:AE:18:D6:49:2D:73:EC:69:3A:BB:C2:B4:39:1C:E5 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/F2A9D4BAC36211ED9D79ED6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.58.0/24 IPv6: 2001:df1:f040::/48 Signature Algorithm: sha256WithRSAEncryption 83:54:c3:ae:4f:48:8f:30:f7:29:fe:8f:88:1a:1d:da:84:16: 59:f1:58:a3:8f:ab:91:70:5e:fb:e7:16:b2:e7:86:95:91:72: e7:94:08:45:94:65:d7:c4:be:83:a4:2c:7c:11:d1:75:de:1d: 48:45:62:70:ab:6b:4e:f3:57:67:6b:02:ab:b3:bc:c5:03:45: 53:cc:a2:05:10:75:3e:fa:0e:8f:3d:a4:66:6c:d0:b2:0b:07: 6d:45:cd:05:9b:ce:21:7a:81:24:e0:a7:7f:97:d0:07:56:c8: c2:3d:fc:2b:e1:db:bf:e8:36:05:74:b4:51:12:91:c9:3e:33: 4a:9e:67:fa:91:57:19:1d:06:1f:a9:3d:ab:81:93:ec:06:0d: b9:34:00:7b:78:1d:71:e9:fa:aa:00:74:4a:b2:18:2f:91:de: 5f:6d:bb:df:85:74:53:4a:02:31:4f:e9:3c:2a:3b:b1:3b:ab: 58:a7:93:19:44:a3:23:6c:64:7a:dc:4f:d9:ca:cd:3b:fc:4c: 0d:1c:e2:93:d8:57:26:08:99:63:79:dc:ff:e4:1f:72:15:40: 68:d8:f0:61:ef:cf:7d:40:64:5b:80:1a:f8:6d:00:ef:84:f0: dc:ac:21:a7:41:8b:1b:64:f1:e4:e1:b6:14:ed:38:73:bd:9c: cc:51:fb:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjQwMjIxMDUxNzI3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ1ODc2Ny03ZmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbM/ZZf/zcT4bx2L8ogIEysqIA0biMIw+ovXSYEA5uEq75s1YHOAH71ynDIp Qz+k0vtM43gFCWVwVRLM4cPI3ivvVa8/gxvSAQKKBOPzbChWqbL+BFaZBQTMXsDt mFuSwyqflvdP8wGx8uWA/KjsDldUOjntkQ+QowByWWGXQdzGwhGH7Mt+eziFgWKw hmmIrhcoqi3QiQl/LZ/9NbD7gIzGT6xF8MXyK4C6+gDjIR8YnCkTDsU0sc+DBDL3 Gadt07jqMYDBj5EZh97OQSDth4gcPqpFTAyPyqI9da/EsC6KQO4uhfk4wHkYrD1c 1v0H+3ljeFvORtPEtGLK0XQEvwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLcI/B8k rhjWSS1z7Gk6u8K0ORzlMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIzMTAvM0VCRDE3QzJBRDEwMTFFRDg1NEEzRTFEQzRGOUFFMDIvRjJBOUQ0QkFD MzYyMTFFRDlENzlFRDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnVDowDwQCAAIwCQMHACABDfHwQDANBgkqhkiG9w0BAQsF AAOCAQEAg1TDrk9IjzD3Kf6PiBod2oQWWfFYo4+rkXBe++cWsueGlZFy55QIRZRl 18S+g6QsfBHRdd4dSEVicKtrTvNXZ2sCq7O8xQNFU8yiBRB1PvoOjz2kZmzQsgsH bUXNBZvOIXqBJOCnf5fQB1bIwj38K+Hbv+g2BXS0URKRyT4zSp5n+pFXGR0GH6k9 q4GT7AYNuTQAe3gdcen6qgB0SrIYL5HeX22734V0U0oCMU/pPCo7sTurWKeTGUSj I2xketxP2crNO/xMDRzik9hXJgiZY3nc/+QfchVAaNjwYe/PfUBkW4Aa+G0A74Tw 3Kwhp0GLG2Tx5OG2FO04c72czFH7DA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org