$ rpki-client -vvf rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/A7493DA6145611ECAA3B5769C4F9AE02.roa File: A7493DA6145611ECAA3B5769C4F9AE02.roa (raw, json) Hash identifier: ECduF6HgxTLoDLFAm0PdDIfSdNYqt9EVcY+nm8e4XyU= Subject key identifier: 9D:99:F8:AE:00:DB:80:59:79:47:E4:6B:0F:0B:ED:D8:CD:83:52:A6 Certificate issuer: /CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Certificate serial: 047B Authority key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/A7493DA6145611ECAA3B5769C4F9AE02.roa Signing time: Mon 07 Oct 2024 00:13:44 +0000 ROA not before: Mon 07 Oct 2024 00:13:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147022 IP address blocks: 103.173.30.0/23 maxlen: 24 2001:df7:8b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Validity Not Before: Oct 7 00:13:44 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670327b8-6970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:fb:a6:cc:6b:7e:6c:9f:7a:01:d4:a1:ba: 27:69:eb:2e:84:38:e6:97:90:b1:b0:fd:2e:3d:12: db:d3:e4:17:23:94:6a:fd:a5:fc:1c:56:70:fd:8f: f6:44:9e:50:6c:dd:0c:90:9e:02:f7:51:b3:a8:f5: a5:00:6f:76:22:49:70:66:54:e1:4d:dc:41:06:ea: 5c:56:6d:81:ed:54:8f:11:77:fa:d7:3a:4c:83:0d: 30:a3:5b:ed:4d:cc:ed:6f:c0:63:20:63:f3:5b:de: dd:0d:42:72:da:22:a9:51:f3:13:eb:7c:89:69:fd: 0d:ce:ee:52:57:3f:b5:dd:58:cc:96:b3:2b:53:93: 46:32:ea:1c:c8:ed:73:3b:ec:03:62:9c:60:83:40: 11:44:09:52:dc:9b:b8:4a:e3:29:1d:75:4e:20:92: 68:d4:94:c2:71:4e:92:a9:ad:06:7d:54:30:dc:62: ef:29:61:22:b3:ec:81:f9:fb:fc:26:39:53:a8:5e: 39:a8:69:f7:a9:f6:1f:55:2a:5a:c1:e9:96:21:ac: 3d:6a:f2:1d:c8:85:3d:38:fa:ae:3e:12:c1:6b:72: 0e:b9:ba:34:5c:a5:45:d8:3e:6f:05:75:a0:21:6a: f4:3f:3c:99:eb:ea:6c:58:40:7e:80:92:c6:58:0c: 19:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:99:F8:AE:00:DB:80:59:79:47:E4:6B:0F:0B:ED:D8:CD:83:52:A6 X509v3 Authority Key Identifier: keyid:3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/A7493DA6145611ECAA3B5769C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.30.0/23 IPv6: 2001:df7:8b80::/48 Signature Algorithm: sha256WithRSAEncryption c5:8e:8e:8b:d9:5d:49:b7:39:27:20:b6:b8:8d:5a:2d:29:23: 95:0d:08:4e:a2:58:e5:c2:11:78:cc:87:4c:c6:77:21:2a:04: cc:bb:52:f1:62:46:27:a2:67:aa:1f:7f:78:d0:94:ad:94:07: c6:af:5c:41:3b:ea:2d:e1:16:ee:4f:90:02:2d:22:8c:e9:6a: ff:0d:ea:42:46:01:5f:d9:53:cf:01:10:50:a4:7e:d1:b3:a5: f4:cf:43:53:e7:c3:c8:4b:2c:6d:58:53:a4:37:01:68:d2:c2: 0d:53:69:19:7f:34:88:69:74:c4:b7:60:04:72:0b:26:10:43: f3:35:e8:9f:b5:f7:7c:3c:13:84:15:46:b3:63:41:47:08:91: b4:ec:5e:9b:c0:cd:7f:03:4a:2e:82:32:bf:8e:0e:a8:57:d2: 8e:c3:46:5c:b8:c2:79:aa:69:45:13:fc:07:55:3f:0f:02:b8: d0:eb:00:b7:c3:fc:c2:b6:2d:c5:0b:8a:28:8f:e7:b2:bb:ca: 2b:73:1a:34:28:57:3e:34:41:a6:2f:72:67:54:63:36:6a:f4: 90:1c:24:84:0f:64:de:9d:19:c0:1e:31:65:8f:80:16:2b:6c: 58:54:c2:ca:a0:ce:a3:12:c0:0b:18:cd:c1:68:11:ce:9d:fc: 4e:f7:d5:3e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ1MUMxMTAvBgNVBAUTKDNGRDUzMTYwMjU3REIwMUIyRUUwRUYwMTNDMUUyRDQy RUIxQTI4OEQwHhcNMjQxMDA3MDAxMzQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzMjdiOC02OTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCX7psxrfmyfegHUobonaesuhDjml5CxsP0uPRLb0+QXI5Rq/aX8HFZw/Y/2 RJ5QbN0MkJ4C91GzqPWlAG92IklwZlThTdxBBupcVm2B7VSPEXf61zpMgw0wo1vt Tcztb8BjIGPzW97dDUJy2iKpUfMT63yJaf0Nzu5SVz+13VjMlrMrU5NGMuocyO1z O+wDYpxgg0ARRAlS3Ju4SuMpHXVOIJJo1JTCcU6Sqa0GfVQw3GLvKWEis+yB+fv8 JjlTqF45qGn3qfYfVSpawemWIaw9avIdyIU9OPquPhLBa3IOubo0XKVF2D5vBXWg IWr0PzyZ6+psWEB+gJLGWAwZzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJ2Z+K4A 24BZeUfkaw8L7djNg1KmMB8GA1UdIwQYMBaAFD/VMWAlfbAbLuDvATweLULrGiiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDUxQy9CRDMxMjcxNjE0 NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNCc3U0TzhCUEI0dFF1c2FL STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5VXhZQ1Y5c0JzdTRPOEJQQjR0UXVzYUtJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ1MUMvQkQzMTI3MTYxNDU0MTFFQ0E0Njg3MjY4QzRGOUFFMDIvQTc0OTNEQTYx NDU2MTFFQ0FBM0I1NzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrR4wDwQCAAIwCQMHACABDfeLgDANBgkqhkiG9w0BAQsF AAOCAQEAxY6Oi9ldSbc5JyC2uI1aLSkjlQ0ITqJY5cIReMyHTMZ3ISoEzLtS8WJG J6Jnqh9/eNCUrZQHxq9cQTvqLeEW7k+QAi0ijOlq/w3qQkYBX9lTzwEQUKR+0bOl 9M9DU+fDyEssbVhTpDcBaNLCDVNpGX80iGl0xLdgBHILJhBD8zXon7X3fDwThBVG s2NBRwiRtOxem8DNfwNKLoIyv44OqFfSjsNGXLjCeappRRP8B1U/DwK40OsAt8P8 wrYtxQuKKI/nsrvKK3MaNChXPjRBpi9yZ1RjNmr0kBwkhA9k3p0ZwB4xZY+AFits WFTCyqDOoxLACxjNwWgRzp38TvfVPg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org