$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa File: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (raw, json) Hash identifier: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw= Subject key identifier: 47:21:BD:31:8E:99:81:D4:5F:53:95:73:0C:C0:16:E8:E7:59:5D:CE Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 01BD Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa Signing time: Wed 23 Oct 2024 02:36:33 +0000 ROA not before: Wed 23 Oct 2024 02:36:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150299 IP address blocks: 103.214.178.0/23 maxlen: 23 103.214.178.0/24 maxlen: 24 103.214.179.0/24 maxlen: 24 2001:df1:3b40::/48 maxlen: 48 2001:df1:3b40::/51 maxlen: 51 2001:df1:3b40:2000::/51 maxlen: 51 2001:df1:3b40:4000::/51 maxlen: 51 2001:df1:3b40:6000::/51 maxlen: 51 2001:df1:3b40:8000::/51 maxlen: 51 2001:df1:3b40:a000::/51 maxlen: 51 2001:df1:3b40:c000::/51 maxlen: 51 2001:df1:3b40:e000::/51 maxlen: 51 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Oct 23 02:36:33 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67186131-3966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ca:b4:dd:11:dd:d4:a5:81:ee:44:7d:dd:c9: cb:f9:36:b3:a2:a5:1b:03:3a:2e:a7:e6:de:1c:bc: 7e:ef:31:1b:91:c5:88:78:90:09:90:13:8f:63:ba: ed:21:a0:43:08:e8:ab:c7:9b:db:39:c4:38:ee:cb: f8:6d:95:b7:4d:eb:5b:76:43:37:9f:06:90:bd:55: 6d:d0:28:3f:81:de:18:b9:c4:94:58:ce:ed:5f:dc: 33:39:3e:7e:d2:ff:8f:fe:73:2c:98:98:25:d2:27: ef:06:ee:2b:cb:bc:9c:45:90:ef:48:e4:84:07:28: b1:a0:d5:14:e1:15:03:10:97:ab:29:74:e2:9c:05: 1e:22:14:80:66:e6:27:c3:cb:0f:df:b0:ab:ab:ca: 43:38:fa:99:f4:60:cf:b8:3f:9c:fe:3a:80:d8:46: db:0e:21:91:e2:72:d9:ce:be:d3:b0:54:a9:d5:c4: 9e:60:25:d6:1e:ee:61:a5:f2:08:c2:fb:19:77:5f: ec:ba:e5:a6:99:48:94:f4:60:df:ca:31:24:25:09: 1a:9f:d7:61:a0:12:e5:fb:84:07:bf:d0:41:2c:81: d8:43:de:f3:bb:68:46:1d:53:8a:19:f1:76:0e:ff: 08:fd:fd:e9:07:78:a3:6a:39:1d:12:ec:11:99:7a: fe:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:21:BD:31:8E:99:81:D4:5F:53:95:73:0C:C0:16:E8:E7:59:5D:CE X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.178.0/23 IPv6: 2001:df1:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 4f:31:10:e2:e7:1e:24:85:3c:78:bf:b0:19:13:04:36:9f:79: 1c:7e:54:65:29:4a:f2:11:a7:55:dc:b0:da:71:66:d5:1a:99: 66:ab:6e:2b:b3:27:4c:0d:85:4f:51:50:15:73:5c:be:d7:62: a6:86:a7:a8:d3:be:87:0d:67:1a:02:65:bf:41:9e:a9:8f:cf: 52:de:26:e3:b6:31:aa:f4:54:b5:9d:3b:77:d7:99:de:7c:9e: 86:92:5b:f5:f3:1e:65:47:b8:b7:c8:0e:e6:56:94:43:24:0b: 92:ac:e3:f3:06:08:42:e1:e5:7f:dd:03:1a:55:be:68:f0:8c: 7f:93:d2:d4:76:52:51:48:1a:3d:ca:ca:5a:b2:e8:0f:8b:0b: c7:2a:cd:8c:ad:61:48:04:30:bd:5c:48:5e:5b:d4:c2:84:90: 28:8a:40:5e:75:19:53:e0:8b:af:42:d1:30:38:0f:1c:68:0b: 45:85:c9:01:a0:94:6f:25:1c:86:84:84:e7:a5:23:c6:8f:a4: 58:5c:a3:3b:3a:85:36:2d:40:bd:0e:1d:46:15:49:e9:f7:3e: f6:b7:65:cb:04:47:b9:eb:5a:3c:7c:34:34:f6:47:ee:76:11: 1b:0e:85:5f:72:ae:23:bf:6b:a5:69:f2:3b:7f:06:c1:67:dc: 9c:56:b2:19 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjQxMDIzMDIzNjMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NjEzMS0zOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMq03RHd1KWB7kR93cnL+TazoqUbAzoup+beHLx+7zEbkcWIeJAJkBOPY7rt IaBDCOirx5vbOcQ47sv4bZW3TetbdkM3nwaQvVVt0Cg/gd4YucSUWM7tX9wzOT5+ 0v+P/nMsmJgl0ifvBu4ry7ycRZDvSOSEByixoNUU4RUDEJerKXTinAUeIhSAZuYn w8sP37Crq8pDOPqZ9GDPuD+c/jqA2EbbDiGR4nLZzr7TsFSp1cSeYCXWHu5hpfII wvsZd1/suuWmmUiU9GDfyjEkJQkan9dhoBLl+4QHv9BBLIHYQ97zu2hGHVOKGfF2 Dv8I/f3pB3ijajkdEuwRmXr+qwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEchvTGO mYHUX1OVcwzAFujnWV3OMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU3NTgvNzFFQkU3QzIyQ0Q3MTFFREIwMkIxRDE5QzRGOUFFMDIvMTE3MzAwQjYy Q0RCMTFFREIyRTFERDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn1rIwDwQCAAIwCQMHACABDfE7QDANBgkqhkiG9w0BAQsF AAOCAQEATzEQ4uceJIU8eL+wGRMENp95HH5UZSlK8hGnVdyw2nFm1RqZZqtuK7Mn TA2FT1FQFXNcvtdipoanqNO+hw1nGgJlv0GeqY/PUt4m47YxqvRUtZ07d9eZ3nye hpJb9fMeZUe4t8gO5laUQyQLkqzj8wYIQuHlf90DGlW+aPCMf5PS1HZSUUgaPcrK WrLoD4sLxyrNjK1hSAQwvVxIXlvUwoSQKIpAXnUZU+CLr0LRMDgPHGgLRYXJAaCU byUchoSE56Ujxo+kWFyjOzqFNi1AvQ4dRhVJ6fc+9rdlywRHuetaPHw0NPZH7nYR Gw6FX3KuI79rpWnyO38GwWfcnFayGQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org