$ rpki-client -vvf rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/071BCFF849D011EF9F8A8969C4F9AE02.roa File: 071BCFF849D011EF9F8A8969C4F9AE02.roa (raw, json) Hash identifier: cgKCscFwaw/2U5+hTiR/tOv2oFJWqQfbOoEz10tjRiw= Subject key identifier: 8B:6D:0E:34:EC:03:C7:A8:38:AB:C3:06:57:DD:D4:E3:78:2C:E9:DD Certificate issuer: /CN=A914B79F/serialNumber=78E4290BCCC9991580B276DC0C2C97BFB08620D8 Certificate serial: AC Authority key identifier: 78:E4:29:0B:CC:C9:99:15:80:B2:76:DC:0C:2C:97:BF:B0:86:20:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOQpC8zJmRWAsnbcDCyXv7CGINg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/071BCFF849D011EF9F8A8969C4F9AE02.roa Signing time: Wed 24 Jul 2024 15:20:48 +0000 ROA not before: Wed 24 Jul 2024 15:20:47 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139900 IP address blocks: 103.146.206.0/24 maxlen: 24 103.146.207.0/24 maxlen: 24 2400:b020::/33 maxlen: 33 2400:b020:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/eOQpC8zJmRWAsnbcDCyXv7CGINg.crl rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/eOQpC8zJmRWAsnbcDCyXv7CGINg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOQpC8zJmRWAsnbcDCyXv7CGINg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B79F/serialNumber=78E4290BCCC9991580B276DC0C2C97BFB08620D8 Validity Not Before: Jul 24 15:20:47 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66a11bcf-5302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:67:48:a7:21:95:7d:20:8f:b0:69:61:3c:00: c5:b8:a6:62:4a:41:d0:58:8d:89:8e:c3:6a:fc:cb: bf:4a:95:01:8f:16:f7:07:19:6e:6c:f5:9c:d7:8d: 33:7c:3b:79:f8:4a:c6:a6:8f:a1:42:98:d2:8e:7f: 5b:8e:31:d5:17:9a:c7:df:43:3f:34:6e:aa:e8:cc: ba:42:d8:e0:63:79:3f:92:bf:b9:63:36:e5:78:81: 10:59:d8:ee:43:34:c1:5d:d6:c0:21:5e:7e:5b:9a: 8a:59:4d:a1:9f:e3:54:05:7a:1f:42:53:a3:13:76: 83:0d:52:d2:dd:d0:d0:7c:ca:a9:49:d3:10:24:8c: 4c:d0:51:ae:43:b9:98:0f:10:5e:f6:ce:88:be:8b: 9e:5a:06:f2:b3:34:00:98:25:56:51:2f:f9:24:7b: 7a:67:2a:73:e0:b6:de:4d:9b:c3:40:23:82:8a:57: fa:79:e7:1f:bc:0c:28:b6:a2:23:74:cd:f2:d6:0e: 44:5d:c8:c7:8a:08:ca:85:db:b1:d1:c9:55:64:cb: c9:99:0a:c3:2b:9a:42:05:c1:af:e1:45:7e:b4:0b: bf:16:7c:92:73:cc:20:61:db:77:4d:ab:4b:b1:df: 53:9a:5b:41:19:b8:de:72:1e:89:cd:d1:a9:26:68: cb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6D:0E:34:EC:03:C7:A8:38:AB:C3:06:57:DD:D4:E3:78:2C:E9:DD X509v3 Authority Key Identifier: keyid:78:E4:29:0B:CC:C9:99:15:80:B2:76:DC:0C:2C:97:BF:B0:86:20:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/eOQpC8zJmRWAsnbcDCyXv7CGINg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOQpC8zJmRWAsnbcDCyXv7CGINg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B79F/DA6837F04E2911EE945C394FC4F9AE02/071BCFF849D011EF9F8A8969C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.206.0/23 IPv6: 2400:b020::/32 Signature Algorithm: sha256WithRSAEncryption 92:63:b7:66:d3:e4:3f:fa:7f:18:0f:74:4a:b5:d0:c6:32:ba: d9:4c:82:91:a9:b1:ce:9b:78:e2:18:53:d5:7e:e7:22:a1:38: 24:76:84:f4:8e:3f:bd:bc:7a:1e:eb:53:c9:ff:23:97:39:10: 39:b9:e5:b9:8e:1b:7f:f3:d9:5a:91:5a:1e:21:87:03:29:86: 17:88:61:58:40:d7:aa:2b:2a:00:56:09:26:1b:fa:db:ea:6b: 0d:0e:21:58:de:2f:06:26:55:85:97:1f:57:11:a7:cf:c4:b7: 79:68:4a:17:0d:b6:09:5f:68:8b:06:bf:61:af:09:af:12:8a: f0:21:3b:4f:72:58:a4:20:21:16:62:59:f4:17:31:20:dd:27: 5b:36:18:f3:c2:85:f8:b2:e0:19:f5:72:a8:b6:5d:d6:5f:37: 5c:b5:b1:8c:6f:74:b2:28:2d:e8:09:a9:8a:bf:d6:ac:b2:8e: 7f:9a:3c:11:d6:10:62:69:9e:e9:01:8a:48:1e:30:65:37:21: 2a:b0:d6:a3:b5:3c:af:8a:09:cc:30:30:8d:26:5d:af:7f:7b: d8:9f:91:df:3b:37:d4:59:b8:63:41:ee:2c:36:63:b7:7f:35: f6:9f:35:78:34:45:60:78:8d:90:01:cb:1f:f2:7f:12:4c:d7: c8:6d:4c:bc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI3OUYxMTAvBgNVBAUTKDc4RTQyOTBCQ0NDOTk5MTU4MEIyNzZEQzBDMkM5N0JG QjA4NjIwRDgwHhcNMjQwNzI0MTUyMDQ3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExMWJjZi01MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42dIpyGVfSCPsGlhPADFuKZiSkHQWI2JjsNq/Mu/SpUBjxb3BxlubPWc140z fDt5+ErGpo+hQpjSjn9bjjHVF5rH30M/NG6q6My6QtjgY3k/kr+5YzbleIEQWdju QzTBXdbAIV5+W5qKWU2hn+NUBXofQlOjE3aDDVLS3dDQfMqpSdMQJIxM0FGuQ7mY DxBe9s6IvoueWgbyszQAmCVWUS/5JHt6Zypz4LbeTZvDQCOCilf6eecfvAwotqIj dM3y1g5EXcjHigjKhdux0clVZMvJmQrDK5pCBcGv4UV+tAu/FnySc8wgYdt3TatL sd9TmltBGbjech6JzdGpJmjLKwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIttDjTs A8eoOKvDBlfd1ON4LOndMB8GA1UdIwQYMBaAFHjkKQvMyZkVgLJ23Awsl7+whiDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Qjc5Ri9EQTY4MzdGMDRF MjkxMUVFOTQ1QzM5NEZDNEY5QUUwMi9lT1FwQzh6Sm1SV0FzbmJjREN5WHY3Q0dJ TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VPUXBDOHpKbVJXQXNuYmNEQ3lYdjdDR0lOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI3OUYvREE2ODM3RjA0RTI5MTFFRTk0NUMzOTRGQzRGOUFFMDIvMDcxQkNGRjg0 OUQwMTFFRjlGOEE4OTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnks4wDQQCAAIwBwMFACQAsCAwDQYJKoZIhvcNAQELBQAD ggEBAJJjt2bT5D/6fxgPdEq10MYyutlMgpGpsc6beOIYU9V+5yKhOCR2hPSOP728 eh7rU8n/I5c5EDm55bmOG3/z2VqRWh4hhwMphheIYVhA16orKgBWCSYb+tvqaw0O IVjeLwYmVYWXH1cRp8/Et3loShcNtglfaIsGv2GvCa8SivAhO09yWKQgIRZiWfQX MSDdJ1s2GPPChfiy4Bn1cqi2XdZfN1y1sYxvdLIoLegJqYq/1qyyjn+aPBHWEGJp nukBikgeMGU3ISqw1qO1PK+KCcwwMI0mXa9/e9ifkd87N9RZuGNB7iw2Y7d/Nfaf NXg0RWB4jZAByx/yfxJM18htTLw= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org