$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa File: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (raw, json) Hash identifier: lwH3/LI1XgonY5xgqpT7sakTv0eerZuuX+aDEUruDuA= Subject key identifier: A2:E4:28:C8:16:00:5F:90:E5:03:0C:3D:04:89:93:A2:3C:4C:F4:00 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 04A8 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa Signing time: Thu 26 Sep 2024 23:53:26 +0000 ROA not before: Thu 26 Sep 2024 23:53:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136428 IP address blocks: 103.172.14.0/23 maxlen: 23 103.172.14.0/24 maxlen: 24 103.172.15.0/24 maxlen: 24 2001:df7:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Sep 26 23:53:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f5f3f6-a3dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:99:4c:49:82:3e:99:3c:63:5f:de:8a:70:4e: ba:16:c7:d3:fc:d5:35:8f:49:8a:c5:c2:36:ff:a7: 27:8d:37:cc:e6:1d:27:0c:64:81:ae:4d:8f:65:ff: 36:2f:33:ec:c2:99:ce:78:fd:d1:5e:9a:a5:76:f5: 65:ff:46:19:0f:2f:14:d9:01:46:f5:ac:aa:cf:fa: 66:7e:31:03:44:9b:ac:e2:90:77:91:63:17:a2:20: 35:a9:5e:70:94:f9:f6:0c:76:12:d1:33:f3:d6:1e: 6b:07:0b:b7:54:61:47:65:af:a3:2b:9e:9e:5c:aa: 89:36:59:43:03:53:03:9e:91:0b:97:cf:b9:ab:a2: e2:02:a6:77:ae:59:d4:fc:52:3d:ba:cf:88:cd:a3: d3:a3:e8:a0:84:52:bc:39:c9:50:b8:1e:10:ee:ea: 9a:06:6a:b1:45:49:ef:ce:1c:a5:e3:95:69:04:72: e4:47:07:56:0e:f9:b2:1f:c0:db:ef:77:9a:6c:bc: 18:18:b4:af:a5:47:f6:40:a0:09:4d:db:30:68:ce: 56:75:5b:d8:ac:0d:6f:49:f9:9a:6e:f6:a0:a5:a1: c6:d8:61:37:1f:57:28:a4:ec:08:6b:c7:d1:a3:31: 42:87:30:18:78:01:bb:4d:0b:6e:89:9e:2b:5c:9c: 2d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:E4:28:C8:16:00:5F:90:E5:03:0C:3D:04:89:93:A2:3C:4C:F4:00 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.14.0/23 IPv6: 2001:df7:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 47:39:af:39:d4:04:6c:30:e6:44:02:fd:e0:12:1f:3b:ad:e7: 57:d3:1b:91:8e:27:f3:41:10:56:90:b9:2e:a1:63:25:d0:31: c1:96:dd:2a:ca:11:e7:f9:a1:d3:35:86:4d:5c:3d:bd:4d:34: fc:94:e9:8d:56:9b:3a:47:33:9a:94:6b:aa:ab:b8:d2:e9:ce: 57:b3:2c:ad:0c:a9:88:54:72:03:71:8b:2a:2e:1a:ea:f2:3e: 46:36:17:e5:a3:fd:32:31:b5:1e:14:a2:2d:0e:32:d4:ce:42: 98:03:bd:d7:f0:57:50:a0:b6:3c:d5:e5:d1:67:37:7b:a5:18: 00:68:b5:d9:f4:d3:be:36:db:21:e7:57:04:13:84:da:30:db: b7:23:6f:13:93:e8:3a:2f:c9:25:cd:6d:9f:b8:e6:49:df:b7: cd:0f:df:a0:31:07:6d:75:e8:90:de:46:db:f5:1a:0c:85:cd: 4f:68:54:3b:66:b7:b6:0b:31:0f:53:5c:bb:f7:c9:3d:71:5f: 49:da:67:83:72:fb:3c:fa:0f:4e:7f:31:4d:7c:25:f0:ca:f3: 38:6b:5e:2b:ea:a6:59:e8:23:97:99:07:2b:69:fc:78:5c:71: 36:c7:e3:4b:c6:56:e9:96:20:4b:41:0e:46:78:d0:ea:22:ce: 88:9e:77:4f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjQwOTI2MjM1MzI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1ZjNmNi1hM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35lMSYI+mTxjX96KcE66FsfT/NU1j0mKxcI2/6cnjTfM5h0nDGSBrk2PZf82 LzPswpnOeP3RXpqldvVl/0YZDy8U2QFG9ayqz/pmfjEDRJus4pB3kWMXoiA1qV5w lPn2DHYS0TPz1h5rBwu3VGFHZa+jK56eXKqJNllDA1MDnpELl8+5q6LiAqZ3rlnU /FI9us+IzaPTo+ighFK8OclQuB4Q7uqaBmqxRUnvzhyl45VpBHLkRwdWDvmyH8Db 73eabLwYGLSvpUf2QKAJTdswaM5WdVvYrA1vSfmabvagpaHG2GE3H1copOwIa8fR ozFChzAYeAG7TQtuiZ4rXJwt9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKLkKMgW AF+Q5QMMPQSJk6I8TPQAMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkExRTcvMTBGQUJFRDIwMjU1MTFFQzhFRDI0MDg1QzRGOUFFMDIvQzNCRjBFRjgw QTVGMTFFQzhFREIwMjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrA4wDwQCAAIwCQMHACABDfdbgDANBgkqhkiG9w0BAQsF AAOCAQEARzmvOdQEbDDmRAL94BIfO63nV9MbkY4n80EQVpC5LqFjJdAxwZbdKsoR 5/mh0zWGTVw9vU00/JTpjVabOkczmpRrqqu40unOV7MsrQypiFRyA3GLKi4a6vI+ RjYX5aP9MjG1HhSiLQ4y1M5CmAO91/BXUKC2PNXl0Wc3e6UYAGi12fTTvjbbIedX BBOE2jDbtyNvE5PoOi/JJc1tn7jmSd+3zQ/foDEHbXXokN5G2/UaDIXNT2hUO2a3 tgsxD1Ncu/fJPXFfSdpng3L7PPoPTn8xTXwl8MrzOGteK+qmWegjl5kHK2n8eFxx NsfjS8ZW6ZYgS0EORnjQ6iLOiJ53Tw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org