$ rpki-client -vvf rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa File: FD4E307AFEA711EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: ruhvVtwlk8kbV4oOEQopPiJGF/BFKv1vwIgeGiPCbWc= Subject key identifier: 49:2E:ED:51:0F:B8:8D:DD:A0:26:5F:BE:16:6A:29:16:59:28:2B:6E Certificate issuer: /CN=A912B983/serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85 Certificate serial: E6 Authority key identifier: 9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa Signing time: Mon 29 Jul 2024 03:39:47 +0000 ROA not before: Mon 29 Jul 2024 03:39:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140869 IP address blocks: 103.42.6.0/24 maxlen: 24 103.42.7.0/24 maxlen: 24 103.141.0.0/24 maxlen: 24 103.141.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:04:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B983/serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85 Validity Not Before: Jul 29 03:39:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a70f02-7fb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:dc:d6:ad:c2:70:c5:6b:3d:39:9e:6b:a9:f6: f3:48:88:54:bc:70:df:f1:91:e3:f1:c0:6b:df:14: b5:e4:95:c2:29:35:e0:ca:89:8b:25:4d:b5:01:a0: 7a:5f:48:14:b2:80:70:2c:88:d9:38:6e:5d:9f:5c: 25:f1:ef:c5:36:18:aa:9a:ce:14:7a:9e:57:a0:11: af:cb:ac:21:5c:b6:95:9b:24:0c:03:26:de:44:9b: 5a:66:9f:65:dd:b0:13:f3:e8:95:ea:3e:7f:0c:7e: c6:82:e7:7a:cc:68:47:05:34:e9:38:a1:47:e3:5b: 77:cd:61:f4:03:5e:c2:c4:71:0e:c0:f1:05:12:eb: a6:90:39:fa:d3:b2:d1:36:76:1c:94:64:5e:ca:cd: 0d:08:5b:22:96:8c:b5:c3:0e:d0:b4:85:b3:cc:f1: 0b:06:23:34:7f:30:3c:72:73:59:7d:80:ac:66:a2: e2:e3:40:3b:11:3c:7b:e0:2a:ec:6d:b5:68:bf:e1: 98:c8:4d:05:71:13:79:35:02:f1:61:54:34:8e:e8: 60:f7:a0:fd:b0:49:18:4b:d3:20:d0:39:85:10:ab: 47:58:c9:7a:c3:47:15:bd:31:64:61:f5:d2:e3:52: d2:57:22:c7:18:68:38:e2:d8:94:fa:46:98:1f:78: ab:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2E:ED:51:0F:B8:8D:DD:A0:26:5F:BE:16:6A:29:16:59:28:2B:6E X509v3 Authority Key Identifier: keyid:9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.6.0/23 103.141.0.0/23 Signature Algorithm: sha256WithRSAEncryption 92:58:22:22:c2:f6:70:62:97:46:c9:58:b5:b5:17:0d:d9:84: 07:8f:76:db:2c:c0:d1:ca:53:25:1a:90:ff:07:54:25:f8:b8: 33:db:fb:9d:fd:2a:7e:37:cf:a7:62:16:26:ca:1c:7d:8e:a9: 6a:44:dc:fd:e7:33:8e:1c:2b:0c:af:94:9a:ec:8b:ec:e4:e5: 1f:a6:69:89:e4:fa:b3:c7:5d:e3:b2:0e:c0:e7:72:d4:db:94: 63:c2:94:18:68:f2:ff:60:6b:b8:f0:8e:61:eb:35:23:dc:d7: ff:a9:87:92:87:52:b3:83:ec:71:7c:7d:42:64:74:29:46:3f: 0c:0f:a2:ff:67:c4:18:af:a7:2e:bf:2d:ff:66:18:9b:89:56: c0:a9:bf:e4:ec:0d:8f:62:cf:c2:b0:13:71:b0:25:a8:6d:bc: 9d:c2:19:50:d4:24:69:df:c7:be:fe:21:81:43:a6:50:2d:29: 88:9e:92:d8:8a:61:24:95:52:b9:fb:02:cf:9a:f4:65:12:7e: 93:6c:0c:37:2d:15:02:6d:cd:bf:58:47:68:2b:5e:6f:04:23: 4b:8f:b0:35:f5:88:ce:76:e8:df:77:53:4f:e7:3f:25:e6:f7: 46:80:cd:be:ba:ef:53:30:f8:a8:af:18:e4:93:42:5e:17:27: 30:5b:91:33 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI5ODMxMTAvBgNVBAUTKDlGOEVEMUM1M0VFOTBEM0NBQzg0QTY0NzBDNEI3NTk0 QzU1NzVEODUwHhcNMjQwNzI5MDMzOTQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE3MGYwMi03ZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4NzWrcJwxWs9OZ5rqfbzSIhUvHDf8ZHj8cBr3xS15JXCKTXgyomLJU21AaB6 X0gUsoBwLIjZOG5dn1wl8e/FNhiqms4Uep5XoBGvy6whXLaVmyQMAybeRJtaZp9l 3bAT8+iV6j5/DH7Ggud6zGhHBTTpOKFH41t3zWH0A17CxHEOwPEFEuumkDn607LR NnYclGReys0NCFsiloy1ww7QtIWzzPELBiM0fzA8cnNZfYCsZqLi40A7ETx74Crs bbVov+GYyE0FcRN5NQLxYVQ0juhg96D9sEkYS9Mg0DmFEKtHWMl6w0cVvTFkYfXS 41LSVyLHGGg44tiU+kaYH3irWwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEku7VEP uI3doCZfvhZqKRZZKCtuMB8GA1UdIwQYMBaAFJ+O0cU+6Q08rISmRwxLdZTFV12F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjk4My9FNkE4QUNFQ0ZF QTIxMUVEQUVGMjkwNDdDNEY5QUUwMi9uNDdSeFQ3cERUeXNoS1pIREV0MWxNVlhY WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240N1J4VDdwRFR5c2hLWkhERXQxbE1WWFhZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI5ODMvRTZBOEFDRUNGRUEyMTFFREFFRjI5MDQ3QzRGOUFFMDIvRkQ0RTMwN0FG RUE3MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnKgYDBAFnjQAwDQYJKoZIhvcNAQELBQADggEBAJJYIiLC 9nBil0bJWLW1Fw3ZhAePdtsswNHKUyUakP8HVCX4uDPb+539Kn43z6diFibKHH2O qWpE3P3nM44cKwyvlJrsi+zk5R+maYnk+rPHXeOyDsDnctTblGPClBho8v9ga7jw jmHrNSPc1/+ph5KHUrOD7HF8fUJkdClGPwwPov9nxBivpy6/Lf9mGJuJVsCpv+Ts DY9iz8KwE3GwJahtvJ3CGVDUJGnfx77+IYFDplAtKYiektiKYSSVUrn7As+a9GUS fpNsDDctFQJtzb9YR2grXm8EI0uPsDX1iM526N93U0/nPyXm90aAzb6671Mw+Kiv GOSTQl4XJzBbkTM= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org