$ rpki-client -vvf rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa File: 673F4DC6894911EEB032426EC4F9AE02.roa (raw, json) Hash identifier: TmtzZb9Ahn1mD8EfJHV6WD2K5Zur9oNLfrRAGYvQ+Pg= Subject key identifier: 24:BB:5F:4D:E0:EF:1D:96:B1:4E:7A:C4:51:AF:E1:48:C7:25:6E:E8 Certificate issuer: /CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Certificate serial: BF Authority key identifier: BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa Signing time: Wed 22 Nov 2023 15:11:26 +0000 ROA not before: Wed 22 Nov 2023 15:11:26 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150394 IP address blocks: 103.29.60.0/23 maxlen: 23 103.29.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:25:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912885B/serialNumber=BDA7621E1AC6E05B0BA0C2EF154174C8BE5C13B9 Validity Not Before: Nov 22 15:11:26 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655e1a1d-7103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:90:4f:93:c1:73:21:88:a3:84:85:c7:5e:38: 35:f1:63:da:ab:db:68:a3:84:64:30:65:87:fa:52: 6d:8d:4d:98:c5:1b:c0:55:57:17:b2:06:fd:97:6a: 1f:05:61:3c:aa:4d:84:a7:66:62:79:b7:40:e9:13: 8f:88:ff:f9:02:8e:c0:5b:1f:d7:ea:f3:83:cd:e8: 43:20:e3:de:ad:d4:38:d4:92:eb:44:b7:d0:d9:59: d6:97:ed:91:47:2e:fa:48:35:c2:a5:7e:d9:7a:06: 80:fe:e0:95:90:8a:46:5e:eb:09:af:61:0e:80:cc: 4a:f4:d9:37:1b:5a:7b:7d:11:4a:39:b9:27:ba:b7: 0e:74:38:fd:c3:1a:ae:2a:d6:3b:2a:f5:2e:d8:0f: 84:87:e2:75:3e:d7:1b:e3:ad:bc:68:5f:f6:61:27: 50:43:aa:ce:2c:e0:eb:76:d7:6d:68:ec:38:34:26: dc:41:50:a3:d0:88:51:43:63:9d:48:96:4a:3e:a7: a6:7c:85:3e:07:05:fb:0a:54:eb:06:6f:c3:ac:93: ed:22:34:88:2e:a0:bb:66:be:d5:58:48:5b:f5:63: d9:b6:74:58:d9:62:f4:83:88:87:d5:61:ea:a2:e1: 26:3b:f7:a9:25:dc:7e:7e:81:f2:30:cf:fd:1a:c9: f2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BB:5F:4D:E0:EF:1D:96:B1:4E:7A:C4:51:AF:E1:48:C7:25:6E:E8 X509v3 Authority Key Identifier: keyid:BD:A7:62:1E:1A:C6:E0:5B:0B:A0:C2:EF:15:41:74:C8:BE:5C:13:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/vadiHhrG4FsLoMLvFUF0yL5cE7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vadiHhrG4FsLoMLvFUF0yL5cE7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912885B/A99C18906C7911ED8CB6BC6BC4F9AE02/673F4DC6894911EEB032426EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.60.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:f9:26:62:bb:95:7c:fe:30:e1:a4:45:26:3e:74:09:f7:e8: 24:0f:33:31:4e:ca:70:58:c1:6c:47:77:27:d2:29:41:cc:ca: 44:d7:63:e7:b2:03:dc:60:55:72:61:f3:63:ef:84:de:b3:9e: 30:39:5a:50:f4:ed:2b:54:0b:c9:e8:2b:2e:f0:46:17:29:0f: 0d:f0:f0:ef:f9:ef:02:2a:e7:29:5c:76:3b:8f:15:c9:8b:33: fa:1a:4d:7e:fe:f5:e0:75:e4:ad:b4:0e:7d:e4:8a:5c:dd:62: 5d:1f:bb:92:2d:b4:66:48:5a:a6:1b:1b:20:31:01:d3:1d:60: 6d:5d:50:81:4d:47:7c:dc:bf:8e:4c:33:3d:0c:a2:4e:7d:14: 53:a5:34:9c:ae:f5:32:90:d7:0f:67:13:a7:d8:4b:ae:64:ad: 84:21:b0:3b:66:47:f2:99:2b:9d:cc:b0:8a:ac:85:16:ef:9a: 2f:95:5d:45:bc:f5:0d:2e:dd:1d:28:82:ee:39:c1:4d:ad:5a: 26:82:b1:ab:e8:b3:7f:4a:db:75:fe:7e:fd:a9:1b:43:fd:ac: de:51:d0:90:31:6b:f4:71:4f:bb:27:97:62:83:f5:8b:2b:93: b1:bb:aa:72:a9:9d:f6:ee:10:78:05:6b:c8:a5:60:41:7d:98: 03:c1:b3:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4NUIxMTAvBgNVBAUTKEJEQTc2MjFFMUFDNkUwNUIwQkEwQzJFRjE1NDE3NEM4 QkU1QzEzQjkwHhcNMjMxMTIyMTUxMTI2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlMWExZC03MTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJBPk8FzIYijhIXHXjg18WPaq9too4RkMGWH+lJtjU2YxRvAVVcXsgb9l2of BWE8qk2Ep2ZiebdA6ROPiP/5Ao7AWx/X6vODzehDIOPerdQ41JLrRLfQ2VnWl+2R Ry76SDXCpX7ZegaA/uCVkIpGXusJr2EOgMxK9Nk3G1p7fRFKObknurcOdDj9wxqu KtY7KvUu2A+Eh+J1Ptcb4628aF/2YSdQQ6rOLODrdtdtaOw4NCbcQVCj0IhRQ2Od SJZKPqemfIU+BwX7ClTrBm/DrJPtIjSILqC7Zr7VWEhb9WPZtnRY2WL0g4iH1WHq ouEmO/epJdx+foHyMM/9Gsny2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCS7X03g 7x2WsU56xFGv4UjHJW7oMB8GA1UdIwQYMBaAFL2nYh4axuBbC6DC7xVBdMi+XBO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODg1Qi9BOTlDMTg5MDZD NzkxMUVEOENCNkJDNkJDNEY5QUUwMi92YWRpSGhyRzRGc0xvTUx2RlVGMHlMNWNF N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZhZGlIaHJHNEZzTG9NTHZGVUYweUw1Y0U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg4NUIvQTk5QzE4OTA2Qzc5MTFFRDhDQjZCQzZCQzRGOUFFMDIvNjczRjREQzY4 OTQ5MTFFRUIwMzI0MjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnHTwwDQYJKoZIhvcNAQELBQADggEBAD35JmK7lXz+MOGk RSY+dAn36CQPMzFOynBYwWxHdyfSKUHMykTXY+eyA9xgVXJh82PvhN6znjA5WlD0 7StUC8noKy7wRhcpDw3w8O/57wIq5ylcdjuPFcmLM/oaTX7+9eB15K20Dn3kilzd Yl0fu5IttGZIWqYbGyAxAdMdYG1dUIFNR3zcv45MMz0Mok59FFOlNJyu9TKQ1w9n E6fYS65krYQhsDtmR/KZK53MsIqshRbvmi+VXUW89Q0u3R0ogu45wU2tWiaCsavo s39K23X+fv2pG0P9rN5R0JAxa/RxT7snl2KD9Ysrk7G7qnKpnfbuEHgFa8ilYEF9 mAPBsz4= -----END CERTIFICATE-----Generated at Fri May 17 06:18:04 2024 by rpki-client on console-fra.rpki-client.org