$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/30CB037EC18E11EA8BF4FB68C4F9AE02.roa File: 30CB037EC18E11EA8BF4FB68C4F9AE02.roa (raw, json) Hash identifier: d1mOeGTfFGoxO3FpLGtyELB1KUYkFiEXG3WDXupnmMc= Subject key identifier: 70:76:19:1D:33:0A:48:93:13:FA:1D:22:EB:4C:2E:48:46:08:5E:0A Certificate issuer: /CN=A912D1D1/serialNumber=3B68E603D18F56EB665EF72E926405F0C10BE3E7 Certificate serial: 07E6 Authority key identifier: 3B:68:E6:03:D1:8F:56:EB:66:5E:F7:2E:92:64:05:F0:C1:0B:E3:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2jmA9GPVutmXvcukmQF8MEL4-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/30CB037EC18E11EA8BF4FB68C4F9AE02.roa Signing time: Fri 02 Aug 2024 21:59:36 +0000 ROA not before: Fri 02 Aug 2024 21:59:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9919 IP address blocks: 103.12.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/O2jmA9GPVutmXvcukmQF8MEL4-c.crl rsync://rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/O2jmA9GPVutmXvcukmQF8MEL4-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2jmA9GPVutmXvcukmQF8MEL4-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D1 Validity Not Before: Aug 2 21:59:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad56c8-ce97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:01:3e:59:9a:28:e2:ba:86:52:72:25:b5: d8:dd:b6:fa:23:ad:81:a9:b7:47:1a:53:58:3a:f4: de:82:c2:4e:d7:1f:74:4a:af:6b:18:31:e0:2b:64: 24:99:53:8f:e1:03:3a:80:f4:85:bc:60:3b:ad:3c: 8a:cb:73:90:5b:ef:c6:84:0c:11:ec:5b:ec:ef:7e: 73:f8:2c:0a:9e:df:ed:0d:67:cf:41:de:fe:6e:52: 55:df:bb:a5:58:ab:dd:0d:2b:31:de:89:10:7a:5f: cc:52:56:81:93:e5:2b:1a:b6:31:30:73:f0:90:c9: 31:dc:f7:37:60:ea:c5:4c:8c:8b:02:a7:19:4a:d0: 79:49:e3:89:6e:3d:2e:e5:e5:d3:ee:11:5e:5b:77: d7:2c:ed:9f:00:b5:1b:16:ba:71:58:e6:c3:6c:4b: c1:98:fc:22:42:25:5a:b0:c2:eb:8e:23:fa:18:72: 6d:2d:4c:d0:e8:42:f3:d5:84:62:d6:9c:87:65:aa: 6b:27:b6:b0:30:46:d7:c6:91:75:9f:e9:43:02:e9: 4d:13:26:3d:14:31:0f:1f:e2:11:89:86:e1:ed:e2: d0:11:3b:f6:d5:80:ce:d3:74:4c:fb:e0:f9:55:37: cd:82:de:79:3f:86:3d:64:11:e3:3a:1d:eb:f2:f6: a1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:76:19:1D:33:0A:48:93:13:FA:1D:22:EB:4C:2E:48:46:08:5E:0A X509v3 Authority Key Identifier: keyid:3B:68:E6:03:D1:8F:56:EB:66:5E:F7:2E:92:64:05:F0:C1:0B:E3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/O2jmA9GPVutmXvcukmQF8MEL4-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2jmA9GPVutmXvcukmQF8MEL4-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D1/C16006FCC18C11EA8F364166C4F9AE02/30CB037EC18E11EA8BF4FB68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.216.0/22 Signature Algorithm: sha256WithRSAEncryption 43:d2:65:41:6a:95:f0:ef:f0:04:f0:c4:df:ab:e9:2e:26:61: 14:d8:1b:8b:fa:21:5e:cc:aa:66:39:7f:7e:ba:d1:44:53:8e: ea:2e:f6:78:54:03:ea:ea:fb:86:44:5e:bb:a1:ff:c2:e7:d5: 67:37:6f:ba:01:ef:12:ea:a3:c1:d5:09:88:3f:30:1e:92:a5: 76:cc:87:7d:4a:4a:35:67:56:55:a5:1f:a0:c9:f3:0f:95:65: f1:9f:64:a9:fa:58:88:73:52:f4:05:60:43:d3:77:c3:7b:3e: e4:68:79:ab:b0:c3:3b:a6:57:5e:d7:ce:a6:f6:f6:33:c2:66: 39:2f:b8:27:e9:24:a0:c3:19:ec:14:16:5b:80:d5:fe:37:bb: 7f:04:94:94:a0:7a:60:75:b6:bb:2c:76:7b:b7:a1:4b:ee:1e: bb:d3:56:71:ab:9e:9d:df:17:89:a9:68:25:b3:57:1b:a7:32: f7:ab:32:35:8b:4e:ee:d0:bc:83:cb:af:19:c7:98:a9:16:7b: 8d:32:50:0c:5a:61:23:3a:16:cd:19:b4:a6:78:22:bb:20:bd: 6e:b4:b2:eb:39:4f:6c:35:eb:fb:5d:3a:54:5b:d8:48:0e:a8: 59:cd:01:f8:09:25:e8:b8:e8:f2:3e:0b:57:f4:a3:7e:65:8d: 15:75:02:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDExMTAvBgNVBAUTKDNCNjhFNjAzRDE4RjU2RUI2NjVFRjcyRTkyNjQwNUYw QzEwQkUzRTcwHhcNMjQwODAyMjE1OTM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNTZjOC1jZTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeMBPlmaKOK6hlJyJbXY3bb6I62BqbdHGlNYOvTegsJO1x90Sq9rGDHgK2Qk mVOP4QM6gPSFvGA7rTyKy3OQW+/GhAwR7Fvs735z+CwKnt/tDWfPQd7+blJV37ul WKvdDSsx3okQel/MUlaBk+UrGrYxMHPwkMkx3Pc3YOrFTIyLAqcZStB5SeOJbj0u 5eXT7hFeW3fXLO2fALUbFrpxWObDbEvBmPwiQiVasMLrjiP6GHJtLUzQ6ELz1YRi 1pyHZaprJ7awMEbXxpF1n+lDAulNEyY9FDEPH+IRiYbh7eLQETv21YDO03RM++D5 VTfNgt55P4Y9ZBHjOh3r8vahzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHB2GR0z CkiTE/odIutMLkhGCF4KMB8GA1UdIwQYMBaAFDto5gPRj1brZl73LpJkBfDBC+Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFEMS9DMTYwMDZGQ0Mx OEMxMUVBOEYzNjQxNjZDNEY5QUUwMi9PMmptQTlHUFZ1dG1YdmN1a21RRjhNRUw0 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08yam1BOUdQVnV0bVh2Y3VrbVFGOE1FTDQtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQxRDEvQzE2MDA2RkNDMThDMTFFQThGMzY0MTY2QzRGOUFFMDIvMzBDQjAzN0VD MThFMTFFQThCRjRGQjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDNgwDQYJKoZIhvcNAQELBQADggEBAEPSZUFqlfDv8ATw xN+r6S4mYRTYG4v6IV7MqmY5f3660URTjuou9nhUA+rq+4ZEXruh/8Ln1Wc3b7oB 7xLqo8HVCYg/MB6SpXbMh31KSjVnVlWlH6DJ8w+VZfGfZKn6WIhzUvQFYEPTd8N7 PuRoeauwwzumV17Xzqb29jPCZjkvuCfpJKDDGewUFluA1f43u38ElJSgemB1trss dnu3oUvuHrvTVnGrnp3fF4mpaCWzVxunMverMjWLTu7QvIPLrxnHmKkWe40yUAxa YSM6Fs0ZtKZ4IrsgvW60sus5T2w16/tdOlRb2EgOqFnNAfgJJei46PI+C1f0o35l jRV1AjI= -----END CERTIFICATE-----Generated at Sun Feb 16 20:55:50 2025 by rpki-client