$ rpki-client -vvf rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa File: 0E01F66437F511EEA737AD17C4F9AE02.roa (raw, json) Hash identifier: 4h9/gedAkyFkLOFX95sZ0gtcQY54jVFNaMdtuEQXK5M= Subject key identifier: ED:CB:28:70:F4:9D:19:C0:93:EE:E7:8A:3F:DD:7A:AD:90:B6:0E:06 Certificate issuer: /CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Certificate serial: 18E4 Authority key identifier: C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa Signing time: Fri 04 Oct 2024 16:54:22 +0000 ROA not before: Fri 04 Oct 2024 16:54:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136902 IP address blocks: 103.98.85.0/24 maxlen: 24 103.119.208.0/24 maxlen: 24 103.119.209.0/24 maxlen: 24 2401:24a0::/34 maxlen: 34 2401:24a0:4000::/34 maxlen: 34 2401:24a0:8000::/34 maxlen: 34 2401:24a0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6372 (0x18e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Validity Not Before: Oct 4 16:54:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67001dbd-627d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:12:73:18:02:fe:aa:58:8a:a2:7d:4a:f8: aa:7b:5f:69:0d:c3:10:a9:54:8d:a4:e3:bb:43:e2: 40:13:76:46:db:f1:30:f6:7f:29:f0:12:24:ec:9a: bb:db:8d:3f:8e:3e:b3:15:4e:45:dc:43:3d:b5:5f: e5:49:d1:79:b8:a6:a3:2c:7b:28:a4:65:36:91:a3: 79:f0:5f:20:53:aa:62:6a:51:2f:48:e8:f7:a7:56: 25:9d:a9:3a:c5:f1:62:a3:e7:72:e4:06:25:ac:25: 8a:6c:bb:2c:41:9b:66:c3:6c:df:66:e7:6b:44:7e: 86:6c:3e:0d:a6:00:14:be:7b:f6:eb:ee:25:a4:b7: 80:d4:c8:6b:22:99:95:2e:d9:e6:5d:96:a8:c2:db: 4a:68:2e:a7:b4:be:65:50:31:db:36:ec:ea:a9:cb: c9:a0:bb:ba:a6:ee:44:48:71:0a:13:11:a6:2f:11: 80:e7:5e:ca:f4:f2:c4:f2:69:d7:9e:09:f8:eb:51: 34:57:3a:e0:bd:b7:9e:ca:29:47:5c:30:20:38:12: 6d:7d:38:5a:ff:b4:92:c2:5a:48:9d:da:7e:17:22: 1d:7b:bc:1b:9c:78:92:34:22:3a:6a:d4:bd:48:c5: 18:2c:bf:ca:66:35:64:d5:d4:19:ae:c7:cc:aa:6d: 0e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:CB:28:70:F4:9D:19:C0:93:EE:E7:8A:3F:DD:7A:AD:90:B6:0E:06 X509v3 Authority Key Identifier: keyid:C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.85.0/24 103.119.208.0/23 IPv6: 2401:24a0::/32 Signature Algorithm: sha256WithRSAEncryption dc:1e:86:2c:e3:a3:a6:e1:ab:1d:b5:f9:f2:be:6c:c1:71:ff: 4c:91:85:9c:0a:dc:1a:7d:d2:12:ca:53:2e:03:cb:0b:4e:55: 11:e4:6b:60:6e:53:bc:d7:2e:83:99:65:ee:4b:41:b9:a2:d3: 02:9d:72:fb:d8:ee:c6:3a:88:d8:41:a8:be:ce:00:fb:7c:e6: e4:ea:43:68:3d:73:27:f5:1f:3a:8c:1a:52:91:0a:70:d9:f7: af:95:c4:36:84:51:93:1c:05:05:44:83:75:fe:1d:10:33:8e: 91:c7:37:61:d3:04:3d:3e:ee:de:cf:1a:a0:52:a0:19:b5:4c: b2:f0:bb:50:e3:be:ac:2b:3d:01:6e:ca:a3:0c:a7:1b:bf:95: a6:ae:04:c9:25:39:b5:7a:4f:f3:d2:c4:ef:2e:60:20:31:b6: b3:46:30:1c:83:b4:78:96:ec:ef:ee:7d:a2:d0:8d:1c:32:b6: 29:a3:be:24:63:1e:fd:0d:59:92:91:49:1b:76:2c:ab:12:f1: 00:86:34:84:76:05:d7:bd:e2:a1:30:3f:95:99:7d:f1:14:19: 8f:e7:1f:9d:14:a4:4e:70:a8:93:7b:6c:44:59:78:ef:6c:a8: 43:63:37:72:bb:ac:16:3b:24:5d:80:2d:64:a4:c4:7a:6e:d5: f7:09:fd:8a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDQzMxMTAvBgNVBAUTKEMxQUE1Q0U1MkUxMTUzM0I2NDFFM0I2ODVBQjMyM0M0 Njk3NkE0MDEwHhcNMjQxMDA0MTY1NDIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMWRiZC02MjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorAScxgC/qpYiqJ9Sviqe19pDcMQqVSNpOO7Q+JAE3ZG2/Ew9n8p8BIk7Jq7 240/jj6zFU5F3EM9tV/lSdF5uKajLHsopGU2kaN58F8gU6pialEvSOj3p1Ylnak6 xfFio+dy5AYlrCWKbLssQZtmw2zfZudrRH6GbD4NpgAUvnv26+4lpLeA1MhrIpmV LtnmXZaowttKaC6ntL5lUDHbNuzqqcvJoLu6pu5ESHEKExGmLxGA517K9PLE8mnX ngn461E0VzrgvbeeyilHXDAgOBJtfTha/7SSwlpIndp+FyIde7wbnHiSNCI6atS9 SMUYLL/KZjVk1dQZrsfMqm0O/QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFO3LKHD0 nRnAk+7nij/deq2Qtg4GMB8GA1UdIwQYMBaAFMGqXOUuEVM7ZB47aFqzI8RpdqQB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUNDMy9ENEY0QjQ4ODc3 RjcxMUU3QjJEMzMyNjRDNEY5QUUwMi93YXBjNVM0UlV6dGtIanRvV3JNanhHbDJw QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dhcGM1UzRSVXp0a0hqdG9Xck1qeEdsMnBBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDQzMvRDRGNEI0ODg3N0Y3MTFFN0IyRDMzMjY0QzRGOUFFMDIvMEUwMUY2NjQz N0Y1MTFFRUE3MzdBRDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnYlUDBAFnd9AwDQQCAAIwBwMFACQBJKAwDQYJKoZIhvcN AQELBQADggEBANwehizjo6bhqx21+fK+bMFx/0yRhZwK3Bp90hLKUy4DywtOVRHk a2BuU7zXLoOZZe5LQbmi0wKdcvvY7sY6iNhBqL7OAPt85uTqQ2g9cyf1HzqMGlKR CnDZ96+VxDaEUZMcBQVEg3X+HRAzjpHHN2HTBD0+7t7PGqBSoBm1TLLwu1Djvqwr PQFuyqMMpxu/laauBMklObV6T/PSxO8uYCAxtrNGMByDtHiW7O/ufaLQjRwytimj viRjHv0NWZKRSRt2LKsS8QCGNIR2Bde94qEwP5WZffEUGY/nH50UpE5wqJN7bERZ eO9sqENjN3K7rBY7JF2ALWSkxHpu1fcJ/Yo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org