$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa File: C7A523E6BF9B11EA9CDFD642C4F9AE02.roa (raw, json) Hash identifier: /9KNehkZXA610WgWCgrhBX7+tDPfjbkeRPHfwTNaPSo= Subject key identifier: 22:92:E0:9E:C9:AB:0E:4D:C3:49:83:FE:A3:26:BD:35:83:89:E5:A7 Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 087A Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:50:58 +0000 ROA not before: Mon 28 Oct 2024 20:50:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 198504 IP address blocks: 103.244.146.0/23 maxlen: 23 117.55.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2170 (0x87a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Oct 28 20:50:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff932-e9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:ac:3d:15:1c:c4:51:a7:ac:6d:6d:06:37: 38:c0:70:ab:07:92:f2:d2:cf:3b:3d:15:3f:f0:d5: 6d:0f:ef:ec:9a:fd:72:bb:0b:94:91:a0:ae:ee:37: 83:dc:c8:f9:b5:6a:d9:5c:dd:91:dd:61:3e:23:57: 18:05:92:e8:50:21:c3:51:f5:6f:0c:85:29:78:b0: c4:2d:ab:ba:76:b3:4d:70:b8:82:a1:00:d7:d9:f9: b4:2f:74:12:11:f5:79:ff:0f:22:90:55:5f:dc:6a: 69:3b:03:19:04:39:23:6f:12:b7:fb:71:b2:08:36: 8c:ee:61:7d:0f:e4:5e:46:28:ad:da:c4:00:90:61: 6f:7b:9e:31:c2:74:95:b5:ea:12:40:47:11:6c:23: e1:6d:19:9a:d0:4e:5c:2c:52:8e:6d:89:8a:e6:7a: 36:9b:d6:58:af:1a:d0:70:cb:98:5a:ae:88:65:0a: b3:c5:54:ff:41:57:5f:10:1d:4c:60:17:94:34:73: 73:2a:25:c8:33:99:fa:3a:c4:58:42:89:74:a2:34: 9a:e6:e4:df:b7:46:86:06:fe:1d:76:bc:4d:e4:de: dd:7d:03:6b:13:21:fa:cc:6e:20:9b:14:60:94:26: 38:c5:a5:d6:e0:17:6a:a9:04:a0:ee:92:01:fe:f2: 90:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:92:E0:9E:C9:AB:0E:4D:C3:49:83:FE:A3:26:BD:35:83:89:E5:A7 X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/C7A523E6BF9B11EA9CDFD642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.146.0/23 117.55.197.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c6:36:4a:1b:84:77:64:e9:5d:71:29:61:0b:51:55:38:73: 6a:1a:61:d5:92:ee:f4:5e:05:97:ff:dc:7b:68:4c:88:68:73: ad:60:cf:81:4e:14:e8:47:bc:f4:b6:cc:b0:f8:5c:0a:03:a0: b1:8a:1c:3d:34:8e:06:70:44:34:29:0c:1d:06:a6:1f:cc:6e: 7d:f1:70:5d:f7:29:26:47:fb:79:f0:34:fa:6c:1c:89:2b:8d: c8:03:99:56:b1:3e:80:56:d6:81:63:03:17:f6:c7:2b:68:d7: ba:27:aa:cf:ba:c9:21:c4:d4:34:1b:b6:ac:a5:db:26:0c:99: ae:e8:18:0f:b4:f8:cc:a1:b5:2a:45:a8:5d:a9:ae:09:5a:6c: 44:bc:f9:a5:5d:4c:e8:17:49:33:23:3d:18:ca:a8:2f:0e:10: 16:06:7e:8a:a0:4d:b7:25:9c:29:d8:a9:f6:42:71:0d:54:9e: a3:83:05:62:c9:3c:a4:19:ac:2f:10:46:ff:ba:1f:24:34:89: 79:7b:48:3d:03:ee:a5:08:df:a9:cc:d9:2c:dd:a1:e2:c5:d7: ab:1b:00:82:0e:5d:d8:c4:ab:fa:51:1a:90:24:b0:29:9a:7a: e1:d2:a9:3e:4a:4b:36:55:79:7d:29:7d:cd:bc:2c:a5:3f:da: 83:15:68:24 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjQxMDI4MjA1MDU4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjkzMi1lOWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiCsPRUcxFGnrG1tBjc4wHCrB5Ly0s87PRU/8NVtD+/smv1yuwuUkaCu7jeD 3Mj5tWrZXN2R3WE+I1cYBZLoUCHDUfVvDIUpeLDELau6drNNcLiCoQDX2fm0L3QS EfV5/w8ikFVf3GppOwMZBDkjbxK3+3GyCDaM7mF9D+ReRiit2sQAkGFve54xwnSV teoSQEcRbCPhbRma0E5cLFKObYmK5no2m9ZYrxrQcMuYWq6IZQqzxVT/QVdfEB1M YBeUNHNzKiXIM5n6OsRYQol0ojSa5uTft0aGBv4ddrxN5N7dfQNrEyH6zG4gmxRg lCY4xaXW4BdqqQSg7pIB/vKQJwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCKS4J7J qw5Nw0mD/qMmvTWDieWnMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvQzdBNTIzRTZC RjlCMTFFQTlDREZENjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFn9JIDBAB1N8UwDQYJKoZIhvcNAQELBQADggEBADrGNkob hHdk6V1xKWELUVU4c2oaYdWS7vReBZf/3HtoTIhoc61gz4FOFOhHvPS2zLD4XAoD oLGKHD00jgZwRDQpDB0Gph/Mbn3xcF33KSZH+3nwNPpsHIkrjcgDmVaxPoBW1oFj Axf2xyto17onqs+6ySHE1DQbtqyl2yYMma7oGA+0+MyhtSpFqF2prglabES8+aVd TOgXSTMjPRjKqC8OEBYGfoqgTbclnCnYqfZCcQ1UnqODBWLJPKQZrC8QRv+6HyQ0 iXl7SD0D7qUI36nM2SzdoeLF16sbAIIOXdjEq/pRGpAksCmaeuHSqT5KSzZVeX0p fc28LKU/2oMVaCQ= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:10 2024 by rpki-client on console-fra.rpki-client.org