$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa File: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (raw, json) Hash identifier: U4O6uXSOF+3gB8WDqXNclHvwBePMcUEtPgGRnogD3Pk= Subject key identifier: 45:AD:E4:EF:51:06:C9:C0:F1:B9:BF:94:93:16:FD:36:40:9E:7B:BB Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0711 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa Signing time: Mon 18 Nov 2024 21:31:04 +0000 ROA not before: Mon 18 Nov 2024 21:31:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.29.84.0/23 maxlen: 24 103.42.224.0/23 maxlen: 24 114.142.160.0/22 maxlen: 24 2406:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Nov 18 21:31:04 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673bb217-a616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:2f:a2:32:e0:cd:b2:31:cf:7c:b8:eb:6c: 5c:f8:27:ed:df:79:fb:f1:be:30:19:cb:e3:bd:38: 4c:cb:ce:54:05:35:9c:4d:fd:01:12:f9:a1:d8:56: 19:6f:33:b4:7d:c4:bd:a5:22:de:6b:21:3c:1e:74: ec:e8:8b:c9:b0:a8:b0:05:31:a8:1c:01:5e:3b:74: 07:ac:c5:08:45:ab:07:5f:cb:07:ce:3a:a8:63:ea: ba:ab:ea:f1:bc:cc:5b:ca:df:7f:f9:13:85:b1:4b: af:36:59:85:45:5c:11:2f:26:16:c6:e6:0b:3c:cc: 34:c0:b0:ac:f3:3d:dc:05:64:e1:5d:51:a1:41:46: 05:de:3f:97:dd:8e:37:4a:71:8d:d6:08:30:a0:4d: a9:18:3e:93:5b:a0:dc:48:51:9d:b9:d1:6d:ce:13: de:6f:60:07:38:79:11:7f:34:a9:d6:32:1f:94:69: 31:6e:b9:c1:b3:a1:be:5a:c1:99:d7:b0:fd:d8:5b: 58:c3:eb:1a:e3:6b:08:7a:7c:c1:0e:09:f6:b1:09: ae:2c:7c:ad:19:40:db:15:45:9f:cc:8f:98:4f:d6: 43:91:61:57:0c:77:50:e3:ba:4c:1f:c6:ca:80:e8: 02:94:8f:3a:4f:54:2d:50:b1:ee:7a:8f:c2:41:7a: 59:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AD:E4:EF:51:06:C9:C0:F1:B9:BF:94:93:16:FD:36:40:9E:7B:BB X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 103.42.224.0/23 114.142.160.0/22 IPv6: 2406:adc0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:71:3f:5d:8f:1b:f2:81:9d:03:c0:d1:5f:c6:c4:4a:c3:30: f4:d0:85:7f:88:1a:47:3d:93:69:fa:f3:36:6b:d6:4e:4e:f9: 08:ba:1c:0b:85:c9:a5:71:e0:ec:1b:f5:30:25:4e:52:1d:2e: 3d:93:ea:e7:fb:27:82:b0:2e:e4:ca:f9:a8:47:be:66:52:cb: 86:02:b8:22:50:c6:2f:3c:0a:34:20:20:62:23:bc:49:6c:12: 9b:0b:8f:22:2b:e2:17:d9:56:3e:cc:cd:7e:2a:1b:d1:cc:3d: 70:87:93:e1:d4:f6:c5:ca:93:1b:3d:02:5b:60:5a:46:1a:c1: a6:55:8e:40:b4:11:71:37:8d:07:ac:5d:30:e2:ec:b9:0d:cd: d7:bd:a4:fc:1e:6e:8e:18:ff:63:5f:c5:72:ad:af:d7:d8:61: 77:c2:27:69:7a:4b:fe:76:e6:53:1e:10:55:c8:cf:e6:dc:e6: f1:24:c0:fe:3e:e3:3c:a9:40:31:f2:37:93:0a:63:de:7e:59: 13:c3:ff:ec:b6:96:24:61:7f:c8:69:a5:40:5e:f6:23:e0:2a: 36:c4:d9:25:cd:2b:0e:90:7a:a8:9c:21:8d:ce:e0:f4:80:9f: 56:0d:fc:ee:52:eb:fc:77:97:12:2d:11:9e:92:0e:3c:10:de: 2c:05:96:39 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjQxMTE4MjEzMTA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiYjIxNy1hNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqgvojLgzbIxz3y462xc+Cft33n78b4wGcvjvThMy85UBTWcTf0BEvmh2FYZ bzO0fcS9pSLeayE8HnTs6IvJsKiwBTGoHAFeO3QHrMUIRasHX8sHzjqoY+q6q+rx vMxbyt9/+ROFsUuvNlmFRVwRLyYWxuYLPMw0wLCs8z3cBWThXVGhQUYF3j+X3Y43 SnGN1ggwoE2pGD6TW6DcSFGdudFtzhPeb2AHOHkRfzSp1jIflGkxbrnBs6G+WsGZ 17D92FtYw+sa42sIenzBDgn2sQmuLHytGUDbFUWfzI+YT9ZDkWFXDHdQ47pMH8bK gOgClI86T1QtULHueo/CQXpZ9QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFEWt5O9R BsnA8bm/lJMW/TZAnnu7MB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvQzRFRUU4RUUy NEUwMTFFQkE0Qzg3RjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnHVQDBAFnKuADBAJyjqAwDQQCAAIwBwMFACQGrcAwDQYJ KoZIhvcNAQELBQADggEBAHxxP12PG/KBnQPA0V/GxErDMPTQhX+IGkc9k2n68zZr 1k5O+Qi6HAuFyaVx4Owb9TAlTlIdLj2T6uf7J4KwLuTK+ahHvmZSy4YCuCJQxi88 CjQgIGIjvElsEpsLjyIr4hfZVj7MzX4qG9HMPXCHk+HU9sXKkxs9AltgWkYawaZV jkC0EXE3jQesXTDi7LkNzde9pPwebo4Y/2NfxXKtr9fYYXfCJ2l6S/525lMeEFXI z+bc5vEkwP4+4zypQDHyN5MKY95+WRPD/+y2liRhf8hppUBe9iPgKjbE2SXNKw6Q eqicIY3O4PSAn1YN/O5S6/x3lxItEZ6SDjwQ3iwFljk= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org