$ rpki-client -vvf rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa File: B0B722BEFA4A11EDA47C091DC4F9AE02.roa (raw, json) Hash identifier: lRMtWT21HxefR8cIAkbesXguaIjwdfIuBa6XccIOgBM= Subject key identifier: 3C:4C:FE:58:47:10:5E:84:16:60:F2:95:A2:88:54:15:98:BB:CA:C4 Certificate issuer: /CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Certificate serial: 0C4D Authority key identifier: 39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa Signing time: Wed 20 Nov 2024 18:26:50 +0000 ROA not before: Wed 20 Nov 2024 18:26:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134146 IP address blocks: 103.73.224.0/22 maxlen: 22 103.73.224.0/23 maxlen: 23 103.73.224.0/24 maxlen: 24 103.73.225.0/24 maxlen: 24 103.73.226.0/24 maxlen: 24 103.73.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D46F/serialNumber=3971F7E21D08C9243ABB403F803064BF78B2D880 Validity Not Before: Nov 20 18:26:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=673e29ea-2fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:31:34:99:ae:6b:92:8b:e0:d7:64:a1:fc:37: fd:b4:c5:f2:d1:6f:e4:28:2a:ae:97:fd:7b:99:ff: 4d:9e:94:26:e1:c7:cd:90:50:11:a2:d8:09:71:2c: 73:cd:71:ed:81:3c:2b:7d:f4:86:bb:8e:d9:b0:fc: 5a:79:c6:50:13:92:8b:48:72:4b:11:e0:60:9a:79: f3:da:64:77:35:e7:67:fa:24:87:3b:2e:a2:af:06: ae:6e:2d:33:b5:62:cf:7c:04:85:dc:48:fd:8c:57: 6d:94:1e:88:c7:63:0e:c3:5f:f5:7f:fa:a5:be:19: d6:c6:9b:3d:cb:f1:c5:d3:c7:76:00:d4:66:75:d2: ea:1d:05:f1:cd:3f:a4:a6:f9:99:dc:7a:c2:7f:a6: 3d:b7:c4:51:e3:99:ad:16:6b:b0:79:7e:7f:9c:42: 0d:07:4d:57:cb:2f:91:a8:da:1a:d6:4b:a4:01:e3: fe:07:70:51:7e:06:e3:77:0e:56:aa:1f:cc:ac:de: bb:7c:eb:c5:a9:82:0a:4b:56:39:a2:b0:3e:0a:d0: 74:0c:3f:b9:e9:ab:4a:79:0c:4f:30:c3:b5:aa:17: d8:6e:d5:a4:41:73:3e:90:b2:35:d0:5f:99:e1:ba: 63:57:b4:db:d8:72:ea:d6:57:a7:f7:47:99:a3:84: 12:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:4C:FE:58:47:10:5E:84:16:60:F2:95:A2:88:54:15:98:BB:CA:C4 X509v3 Authority Key Identifier: keyid:39:71:F7:E2:1D:08:C9:24:3A:BB:40:3F:80:30:64:BF:78:B2:D8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/OXH34h0IySQ6u0A_gDBkv3iy2IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OXH34h0IySQ6u0A_gDBkv3iy2IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D46F/7DA24C7A006911EA8FDB285DC4F9AE02/B0B722BEFA4A11EDA47C091DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.224.0/22 Signature Algorithm: sha256WithRSAEncryption 23:8c:c9:21:03:98:52:c5:06:1c:41:ac:a1:9e:7b:51:8c:e6: 5b:fd:c5:09:4f:3f:bf:04:32:db:d4:21:35:e8:a6:97:72:6f: f9:14:74:33:32:92:fd:b5:ff:11:92:1c:f3:b9:4f:82:68:ca: dd:ee:b0:88:a6:51:3e:b5:2a:3b:ff:81:74:10:a9:99:24:8c: 9f:2f:74:df:dd:bd:c3:ed:1b:53:87:1e:87:25:8a:81:6f:bc: 3c:26:00:73:25:9a:b3:49:6b:0e:9b:51:f3:97:3d:b2:4a:1e: 54:5c:f2:a5:a0:92:bb:45:d6:b5:dc:7c:f0:8d:3d:70:9a:fd: 94:1a:e0:07:71:43:68:d2:d6:b0:30:6c:db:af:b8:ac:25:1c: c6:24:31:53:ae:e3:13:c8:f3:a1:1b:66:1f:4f:f1:e0:f8:23: 83:86:2f:2f:f6:a2:a0:0a:32:78:95:ff:38:c2:32:bc:fd:bd: a3:f4:f2:1e:93:32:75:1a:52:2a:f4:3d:17:26:ff:66:44:9e: eb:be:80:64:6a:32:e9:e9:d4:15:72:a2:3b:72:1b:fd:ca:90: 95:82:dc:39:9c:01:fb:42:06:a2:82:c9:84:22:7b:ef:7c:fb: 8c:fd:28:9a:a0:b9:a5:36:0a:31:f9:8e:f8:93:d7:2a:71:26: fc:eb:e7:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0NkYxMTAvBgNVBAUTKDM5NzFGN0UyMUQwOEM5MjQzQUJCNDAzRjgwMzA2NEJG NzhCMkQ4ODAwHhcNMjQxMTIwMTgyNjUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlMjllYS0yZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTE0ma5rkovg12Sh/Df9tMXy0W/kKCqul/17mf9NnpQm4cfNkFARotgJcSxz zXHtgTwrffSGu47ZsPxaecZQE5KLSHJLEeBgmnnz2mR3Nedn+iSHOy6irwaubi0z tWLPfASF3Ej9jFdtlB6Ix2MOw1/1f/qlvhnWxps9y/HF08d2ANRmddLqHQXxzT+k pvmZ3HrCf6Y9t8RR45mtFmuweX5/nEINB01Xyy+RqNoa1kukAeP+B3BRfgbjdw5W qh/MrN67fOvFqYIKS1Y5orA+CtB0DD+56atKeQxPMMO1qhfYbtWkQXM+kLI10F+Z 4bpjV7Tb2HLq1len90eZo4QSbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDxM/lhH EF6EFmDylaKIVBWYu8rEMB8GA1UdIwQYMBaAFDlx9+IdCMkkOrtAP4AwZL94stiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDQ2Ri83REEyNEM3QTAw NjkxMUVBOEZEQjI4NURDNEY5QUUwMi9PWEgzNGgwSXlTUTZ1MEFfZ0RCa3YzaXky SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09YSDM0aDBJeVNRNnUwQV9nREJrdjNpeTJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q0NkYvN0RBMjRDN0EwMDY5MTFFQThGREIyODVEQzRGOUFFMDIvQjBCNzIyQkVG QTRBMTFFREE0N0MwOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSeAwDQYJKoZIhvcNAQELBQADggEBACOMySEDmFLFBhxB rKGee1GM5lv9xQlPP78EMtvUITXoppdyb/kUdDMykv21/xGSHPO5T4Joyt3usIim UT61Kjv/gXQQqZkkjJ8vdN/dvcPtG1OHHoclioFvvDwmAHMlmrNJaw6bUfOXPbJK HlRc8qWgkrtF1rXcfPCNPXCa/ZQa4AdxQ2jS1rAwbNuvuKwlHMYkMVOu4xPI86Eb Zh9P8eD4I4OGLy/2oqAKMniV/zjCMrz9vaP08h6TMnUaUir0PRcm/2ZEnuu+gGRq Munp1BVyojtyG/3KkJWC3DmcAftCBqKCyYQie+98+4z9KJqguaU2CjH5jviT1ypx Jvzr594= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org