$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa File: F7968CA6C01411EA912AC365C4F9AE02.roa (raw, json) Hash identifier: cq2+wmybE1qpMjYmMXJ1sPoAauOtHlCzziVm+2eI9Iw= Subject key identifier: 42:A2:4F:7D:E5:D5:11:D0:68:45:0C:E2:44:00:BD:AA:6D:78:7C:E1 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 07FC Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa Signing time: Sat 06 Jul 2024 21:48:57 +0000 ROA not before: Sat 06 Jul 2024 21:48:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.16.56.0/24 maxlen: 24 103.16.59.0/24 maxlen: 24 103.16.101.0/24 maxlen: 24 150.242.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F Validity Not Before: Jul 6 21:48:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6689bbc9-0460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:88:bf:2d:64:42:13:05:c9:b7:d5:ef:56:b4: 8e:93:f4:29:00:4c:84:7a:a0:14:b7:02:66:39:78: 3f:c1:3d:16:be:45:38:95:c0:d9:cf:e1:89:fa:f4: 0c:f9:44:4d:18:f7:73:06:b9:d6:c8:d9:3a:6d:be: 4a:3a:b5:7a:ec:dd:d1:c1:1e:cd:b7:e6:cf:59:05: ba:ae:71:70:f7:f3:f5:98:48:5c:0f:b1:2b:d9:c0: 02:0b:dd:52:b0:cb:47:61:3d:8e:7d:a1:bd:5d:74: ff:0a:e4:2f:9a:33:90:ea:13:81:6f:dd:d9:4b:b9: 24:27:8e:09:c8:6a:e9:12:ee:fa:34:58:6c:50:63: 1d:b0:74:b4:ab:66:3b:db:07:b5:58:d2:cd:83:50: a0:74:b4:aa:7a:66:3c:c3:b5:cb:02:62:bf:2a:c0: f4:2e:2d:1a:a1:a3:66:e3:b1:79:0b:df:4f:bd:b6: ec:46:8f:57:a8:3e:b7:33:a7:0d:a9:39:95:b5:a5: b8:cd:c8:de:87:0c:32:00:4d:f8:01:be:64:a0:32: 44:db:b4:83:2a:82:af:82:9d:17:f3:82:56:ab:41: 96:ef:4c:5b:4d:70:d6:cb:1e:74:20:ad:c9:47:68: 81:32:54:43:38:4e:3f:cd:f9:7c:69:13:77:af:d1: f2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A2:4F:7D:E5:D5:11:D0:68:45:0C:E2:44:00:BD:AA:6D:78:7C:E1 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/F7968CA6C01411EA912AC365C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.56.0/24 103.16.59.0/24 103.16.101.0/24 150.242.68.0/24 Signature Algorithm: sha256WithRSAEncryption d0:2c:f1:f8:63:72:c0:62:16:19:9a:27:b2:bc:02:25:f1:00: 01:00:35:5e:d2:97:30:ba:fb:6d:bb:0f:b4:95:99:d9:98:47: 93:12:d1:e1:02:d8:e1:8f:cc:8b:39:d7:e4:1e:09:44:1e:b6: 66:83:af:48:21:43:40:3f:20:2f:95:be:79:4a:e7:91:9a:df: ea:03:1c:ec:78:a8:cd:e1:54:8f:dd:90:cf:d6:b8:3e:53:1d: ad:c8:98:ca:e8:60:88:c2:da:9f:55:fb:e3:1f:97:aa:01:da: 47:ff:f7:11:4f:29:48:39:91:fa:86:4c:0c:0a:b9:f0:05:34: 58:08:52:9a:50:e1:58:87:99:17:8d:07:e8:ad:2b:59:fc:9f: 1a:0d:6f:1f:6f:27:10:e6:e2:35:71:9b:e6:5c:bf:c8:f8:37: 7d:72:66:a4:3d:2b:7f:22:f5:2d:39:70:0c:bd:62:b6:f8:cc: 27:d0:d3:02:c0:01:d6:d0:cf:00:94:9f:8c:c0:b2:67:58:c6: c5:83:b8:bd:6f:ea:b3:1c:87:01:69:fc:ee:02:5d:ca:73:e1: f7:eb:25:b8:00:b3:96:00:69:f5:e4:27:ba:28:e4:67:7b:68: 5f:cb:5e:f1:c4:45:d2:47:6d:03:a8:95:c4:dd:49:aa:42:ce: 2b:bc:c8:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjQwNzA2MjE0ODU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5YmJjOS0wNDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oi/LWRCEwXJt9XvVrSOk/QpAEyEeqAUtwJmOXg/wT0WvkU4lcDZz+GJ+vQM +URNGPdzBrnWyNk6bb5KOrV67N3RwR7Nt+bPWQW6rnFw9/P1mEhcD7Er2cACC91S sMtHYT2OfaG9XXT/CuQvmjOQ6hOBb93ZS7kkJ44JyGrpEu76NFhsUGMdsHS0q2Y7 2we1WNLNg1CgdLSqemY8w7XLAmK/KsD0Li0aoaNm47F5C99PvbbsRo9XqD63M6cN qTmVtaW4zcjehwwyAE34Ab5koDJE27SDKoKvgp0X84JWq0GW70xbTXDWyx50IK3J R2iBMlRDOE4/zfl8aRN3r9HymwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEKiT33l 1RHQaEUM4kQAvapteHzhMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE2NEYvM0M5RTJCNUNDMDE0MTFFQTgxNjg5MDY1QzRGOUFFMDIvRjc5NjhDQTZD MDE0MTFFQTkxMkFDMzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABnEDgDBABnEDsDBABnEGUDBACW8kQwDQYJKoZIhvcNAQEL BQADggEBANAs8fhjcsBiFhmaJ7K8AiXxAAEANV7SlzC6+227D7SVmdmYR5MS0eEC 2OGPzIs51+QeCUQetmaDr0ghQ0A/IC+VvnlK55Ga3+oDHOx4qM3hVI/dkM/WuD5T Ha3ImMroYIjC2p9V++Mfl6oB2kf/9xFPKUg5kfqGTAwKufAFNFgIUppQ4ViHmReN B+itK1n8nxoNbx9vJxDm4jVxm+Zcv8j4N31yZqQ9K38i9S05cAy9Yrb4zCfQ0wLA AdbQzwCUn4zAsmdYxsWDuL1v6rMchwFp/O4CXcpz4ffrJbgAs5YAafXkJ7oo5Gd7 aF/LXvHERdJHbQOolcTdSapCziu8yAw= -----END CERTIFICATE-----Generated at Sun Feb 16 15:35:10 2025 by rpki-client