$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa File: 907B9184973911EDB1E3C460C4F9AE02.roa (raw, json) Hash identifier: z9Loo9xXURjcwzVKOrADMwV/8bOXvzTFnxBNC3aGHUw= Subject key identifier: BA:13:03:4E:CC:3A:CB:13:40:C5:F3:E6:1F:38:0E:B3:3C:AF:B1:1C Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 2585 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa Signing time: Fri 22 Nov 2024 18:06:33 +0000 ROA not before: Fri 22 Nov 2024 18:06:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 65500 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9605 (0x2585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Nov 22 18:06:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6740c829-d074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:13:f4:c7:3b:02:6d:9d:91:68:52:cf:41: 93:de:e4:12:63:d2:b6:bb:aa:69:07:a3:1e:25:55: fe:58:55:00:70:3d:d0:14:af:64:00:46:28:70:5a: d8:c4:29:8e:7d:41:96:f5:14:ba:02:e7:87:2a:8b: df:79:62:da:5a:a3:c4:f0:a3:d3:49:ea:68:1c:46: d7:b6:db:32:f2:68:ba:27:c0:f1:08:8b:45:b6:10: 99:2f:3b:be:e9:af:af:36:f0:a8:bf:6f:15:5d:b6: 41:e4:f2:d5:5d:84:91:19:92:8b:75:8e:f0:63:5d: fd:67:09:ac:c3:46:ca:84:4c:33:43:66:4c:f8:9e: d4:a2:3c:35:5b:25:b0:e8:6b:91:4a:f1:e8:db:64: 54:8a:d0:9e:3a:77:d6:89:a2:f6:f2:3e:73:21:ba: da:13:65:82:47:7f:76:40:aa:30:4b:44:44:a2:83: dc:a1:87:87:f9:24:7f:af:77:e0:06:c5:1d:a4:aa: 89:48:ff:2f:b1:8e:d0:98:dc:ac:1a:44:15:df:0e: 7d:b1:53:50:0a:ec:6c:1f:06:14:b1:f3:80:e2:af: 20:e6:36:c7:e7:1c:f5:f9:b2:ea:6c:8a:4e:96:68: d0:7f:dc:2a:ea:71:7a:64:26:dc:33:0d:9c:2e:b5: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:13:03:4E:CC:3A:CB:13:40:C5:F3:E6:1F:38:0E:B3:3C:AF:B1:1C X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/907B9184973911EDB1E3C460C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption a2:6d:c1:27:9b:f7:96:fd:cb:9c:ec:93:1b:7f:86:b1:c7:e7: ca:93:83:d1:c0:95:ee:ba:02:5a:90:91:3a:df:c3:1a:33:c2: 64:4f:4d:90:78:10:42:f4:8f:c3:e1:d8:73:30:46:91:ef:04: 27:93:7d:26:4a:53:06:f7:d6:72:cf:76:eb:43:81:55:c7:c7: 97:ad:7d:b3:e3:d7:f8:36:98:92:93:08:ca:7e:27:61:53:13: 74:a3:0f:80:1b:b3:07:50:79:f6:65:05:19:81:af:c4:e4:dd: 24:4b:91:7d:9b:6c:b5:6c:1c:fd:99:d5:11:1c:57:dc:65:a9: 1d:de:6a:7e:3f:9d:df:a5:b8:5e:bd:2d:04:76:74:71:d4:ee: 34:c2:2f:37:5e:50:90:e9:57:52:64:c7:ac:7e:dc:e1:a8:82: 24:77:be:7b:2b:bb:4f:b8:d5:6b:97:03:57:f9:5a:88:a2:7c: 46:a2:43:6c:7d:80:c7:05:1a:fa:c5:ee:9f:60:1a:f3:33:26: f6:86:5e:4a:0f:d9:60:c3:27:20:95:0b:c8:4b:62:38:37:e7: d3:5b:9c:e1:70:1e:f9:4f:43:e1:57:08:d0:83:4e:0e:e2:64: be:e3:cd:89:21:70:56:f2:c1:aa:e9:82:30:91:10:5b:1c:0c: e1:72:e5:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjQxMTIyMTgwNjMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQwYzgyOS1kMDc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlAT9Mc7Am2dkWhSz0GT3uQSY9K2u6ppB6MeJVX+WFUAcD3QFK9kAEYocFrY xCmOfUGW9RS6AueHKovfeWLaWqPE8KPTSepoHEbXttsy8mi6J8DxCItFthCZLzu+ 6a+vNvCov28VXbZB5PLVXYSRGZKLdY7wY139Zwmsw0bKhEwzQ2ZM+J7Uojw1WyWw 6GuRSvHo22RUitCeOnfWiaL28j5zIbraE2WCR392QKowS0REooPcoYeH+SR/r3fg BsUdpKqJSP8vsY7QmNysGkQV3w59sVNQCuxsHwYUsfOA4q8g5jbH5xz1+bLqbIpO lmjQf9wq6nF6ZCbcMw2cLrULNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLoTA07M OssTQMXz5h84DrM8r7EcMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvOTA3QjkxODQ5 NzM5MTFFREIxRTNDNDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBAKJtwSeb95b9y5zs kxt/hrHH58qTg9HAle66AlqQkTrfwxozwmRPTZB4EEL0j8Ph2HMwRpHvBCeTfSZK Uwb31nLPdutDgVXHx5etfbPj1/g2mJKTCMp+J2FTE3SjD4AbswdQefZlBRmBr8Tk 3SRLkX2bbLVsHP2Z1REcV9xlqR3ean4/nd+luF69LQR2dHHU7jTCLzdeUJDpV1Jk x6x+3OGogiR3vnsru0+41WuXA1f5WoiifEaiQ2x9gMcFGvrF7p9gGvMzJvaGXkoP 2WDDJyCVC8hLYjg359NbnOFwHvlPQ+FXCNCDTg7iZL7jzYkhcFbywarpgjCREFsc DOFy5UI= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:19 2024 by rpki-client on console-fra.rpki-client.org