$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa File: 968DFDCE973311EDBFD0B43CC4F9AE02.roa (raw, json) Hash identifier: 5dqrD2W5jYwk09DtySbCQGetw26Enx2hSuRhs2+F8yk= Subject key identifier: 8E:D9:A9:CE:88:92:06:22:D0:8F:08:85:98:93:43:B7:56:D8:FA:6A Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 2542 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa Signing time: Fri 16 Aug 2024 18:16:07 +0000 ROA not before: Fri 16 Aug 2024 18:16:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 65533 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9538 (0x2542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Aug 16 18:16:07 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66bf9767-4244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:7d:a3:0d:8e:ea:b8:6e:48:79:95:d5:6f: b3:d1:90:e8:2c:a5:e2:f8:76:7d:c3:d6:58:8e:d7: d5:cd:ca:31:80:f7:6e:69:a1:4f:fe:e3:b4:71:9b: 4d:c1:2b:0d:d4:18:e9:5a:4e:af:b3:49:6e:88:2e: d1:c4:46:3f:60:7d:6c:fc:31:e9:3f:25:4e:4a:ba: df:77:a3:51:b2:38:7b:ad:12:e8:e5:98:03:d4:ea: d0:5d:c9:cf:e8:ae:e9:3c:6a:e6:6a:a0:b1:c5:98: 99:a9:93:8b:42:21:6f:89:20:82:f4:9b:43:e8:f7: 13:57:aa:0c:69:43:fe:0c:39:e7:32:4a:95:f7:13: 5f:06:90:30:13:d1:6c:15:c1:07:b7:e5:80:88:ed: 1e:c0:af:56:eb:c2:5d:0e:68:45:e2:c7:49:8e:2a: 7f:e6:d3:1a:76:ca:7e:ab:80:93:37:9c:07:cb:33: 2a:60:f1:86:a9:8f:6c:66:0a:0c:09:89:6d:97:f2: 6c:34:17:1e:83:46:de:57:93:0b:06:be:f6:cf:06: f2:05:8b:14:24:b7:b7:04:2a:1c:28:57:9b:4f:d8: 88:57:16:88:30:48:cb:7e:77:a2:e2:86:ad:10:eb: c7:7d:68:41:b6:4d:b8:5f:5f:47:69:de:49:f8:11: 40:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D9:A9:CE:88:92:06:22:D0:8F:08:85:98:93:43:B7:56:D8:FA:6A X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/968DFDCE973311EDBFD0B43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:e8:e4:3d:eb:de:2b:76:04:95:60:85:ca:ef:aa:57:69:c4: df:1d:8b:da:f4:62:a2:15:17:dc:ad:a2:e3:39:5e:d0:46:a4: 24:c0:d7:f1:fe:aa:c2:03:01:56:00:e0:4c:64:75:3f:5c:40: 10:f3:f3:00:27:cf:ca:61:95:56:c3:4b:12:3a:ef:19:a5:a5: b4:06:24:88:1e:b4:60:0d:85:34:b7:81:eb:c9:a7:fa:02:a5: 2d:40:fb:1a:f1:ef:f2:29:4e:db:32:53:b8:02:c7:e1:f9:a9: 78:75:96:75:d8:6d:e5:44:65:8b:cb:e9:9d:83:e5:5f:11:16: 39:ae:0d:b3:0a:c1:35:44:05:1b:71:df:e8:51:6a:00:13:0d: 80:fc:e5:4c:5c:f8:6d:e4:88:11:c7:69:79:96:0f:86:37:bc: 77:d5:ac:ec:7b:ab:7e:91:23:c4:d0:ed:7e:c7:b8:41:ed:0f: 94:99:e5:ca:a9:50:68:d4:69:6e:97:f1:b2:a6:b2:a0:9f:ca: 7f:48:a9:83:5e:2f:72:f1:68:dd:82:99:4f:4a:41:e3:6f:9b: 44:ac:46:b6:f6:96:cb:7e:f3:8e:70:07:4a:b8:88:db:cc:1b: a3:44:2c:09:a8:60:2b:64:5f:25:fb:cb:00:27:00:1c:50:48: 9e:0a:bc:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjQwODE2MTgxNjA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmOTc2Ny00MjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCh9ow2O6rhuSHmV1W+z0ZDoLKXi+HZ9w9ZYjtfVzcoxgPduaaFP/uO0cZtN wSsN1BjpWk6vs0luiC7RxEY/YH1s/DHpPyVOSrrfd6NRsjh7rRLo5ZgD1OrQXcnP 6K7pPGrmaqCxxZiZqZOLQiFviSCC9JtD6PcTV6oMaUP+DDnnMkqV9xNfBpAwE9Fs FcEHt+WAiO0ewK9W68JdDmhF4sdJjip/5tMadsp+q4CTN5wHyzMqYPGGqY9sZgoM CYltl/JsNBceg0beV5MLBr72zwbyBYsUJLe3BCocKFebT9iIVxaIMEjLfnei4oat EOvHfWhBtk24X19Had5J+BFAXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI7Zqc6I kgYi0I8IhZiTQ7dW2PpqMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvOTY4REZEQ0U5 NzMzMTFFREJGRDBCNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBAE3o5D3r3it2BJVg hcrvqldpxN8di9r0YqIVF9ytouM5XtBGpCTA1/H+qsIDAVYA4ExkdT9cQBDz8wAn z8phlVbDSxI67xmlpbQGJIgetGANhTS3gevJp/oCpS1A+xrx7/IpTtsyU7gCx+H5 qXh1lnXYbeVEZYvL6Z2D5V8RFjmuDbMKwTVEBRtx3+hRagATDYD85Uxc+G3kiBHH aXmWD4Y3vHfVrOx7q36RI8TQ7X7HuEHtD5SZ5cqpUGjUaW6X8bKmsqCfyn9IqYNe L3LxaN2CmU9KQeNvm0SsRrb2lst+845wB0q4iNvMG6NELAmoYCtkXyX7ywAnABxQ SJ4KvGc= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:15 2024 by rpki-client on console-ams.rpki-client.org