$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa File: 1801797EB79211E986129837C4F9AE02.roa (raw, json) Hash identifier: gxatBMJxzJVFhi2OhDZcobAamssK44JADN8sTBmFx6w= Subject key identifier: F7:F4:80:74:E7:86:F0:98:75:09:CC:88:6C:19:60:46:BD:9E:AC:51 Certificate issuer: /CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Certificate serial: 0CE6 Authority key identifier: E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa Signing time: Thu 22 Feb 2024 18:56:46 +0000 ROA not before: Thu 22 Feb 2024 18:56:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133936 IP address blocks: 103.49.24.0/24 maxlen: 24 103.49.25.0/24 maxlen: 24 103.49.26.0/24 maxlen: 24 103.49.27.0/24 maxlen: 24 2401:f880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Validity Not Before: Feb 22 18:56:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65d798ee-d42a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9f:cd:59:22:0d:4d:b5:27:e8:72:d5:4d:41: 9b:fb:79:af:ff:aa:29:f4:c9:e5:ea:1f:23:7b:bb: 62:10:d9:d3:45:54:c4:9b:21:8a:8b:82:69:82:b5: 9c:46:83:20:18:66:55:47:2a:34:6c:e8:23:f4:7b: 24:79:1a:fb:c9:4e:97:5f:81:2c:36:29:58:72:26: 83:5d:2f:53:fc:98:db:58:1c:79:ba:0a:0e:a4:12: 57:3e:70:a4:af:08:a8:d8:4d:3b:51:c7:8f:12:c6: 8a:64:bc:f1:12:64:9b:b9:fd:4a:c7:51:d8:8d:44: 58:7d:b0:fb:0d:99:a7:f8:87:70:da:bc:82:fa:f2: 6a:47:b8:6a:8a:69:45:a7:87:70:5e:85:41:07:24: b2:15:ab:38:a3:43:6b:fd:cb:61:95:a6:43:0b:44: 0d:f7:b6:29:48:5f:27:be:1a:22:ec:8c:20:2f:5a: 02:ba:4c:66:03:72:ca:2f:a7:0a:4a:25:71:14:b9: e2:36:28:a3:3d:b2:5a:63:18:bc:a6:f3:b8:53:e4: 7b:50:06:11:11:b3:cb:81:6b:25:31:ad:8a:29:09: 15:bc:54:e4:c3:36:be:24:59:1d:0e:16:59:ef:fa: 44:69:1f:4c:03:42:c4:d7:87:05:50:a1:a6:a3:82: d3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F4:80:74:E7:86:F0:98:75:09:CC:88:6C:19:60:46:BD:9E:AC:51 X509v3 Authority Key Identifier: keyid:E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.24.0/22 IPv6: 2401:f880::/32 Signature Algorithm: sha256WithRSAEncryption bd:6f:40:f5:ef:dc:73:a4:26:c3:ad:9d:ef:c1:ca:4a:a2:dd: eb:43:c3:09:b7:88:bb:56:ac:bd:91:03:a8:c4:ed:06:89:82: d4:35:ba:2f:11:6e:08:74:e1:99:8c:72:c2:ae:24:e1:6c:8c: 24:79:47:a3:75:e7:9a:e7:d7:c9:10:6a:fa:aa:ba:71:d9:e6: e8:b5:32:d2:af:05:47:0a:59:dc:41:0f:04:ab:a5:0d:a4:6d: b2:6d:21:e0:7f:74:44:ed:1e:33:5f:bc:4a:c0:54:c5:7f:d9: b5:50:97:01:c3:dd:bb:22:e8:a2:07:26:cb:b9:6e:94:b4:95: d4:05:13:23:e2:8f:e9:3a:c7:53:c7:0c:d1:ce:4b:00:7c:2f: 9c:44:22:45:ae:ec:85:4f:04:e0:c2:31:ba:3e:7b:f9:64:8b: b5:c7:50:14:59:0b:bc:e5:37:1d:e4:5c:5a:0d:22:c0:01:a7: 63:f7:30:33:c0:4d:d9:ca:4e:80:a9:c8:11:a5:15:4b:0b:13: 43:45:72:64:f2:53:85:5c:78:0e:97:e6:7f:b9:48:56:c7:1a: 10:00:74:57:90:08:8a:92:41:8d:b1:ea:ef:29:32:24:11:77: 69:1c:20:10:78:b3:3d:5a:28:2b:7d:40:a5:9e:20:5f:57:01: 17:b8:64:87 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RDcxMTAvBgNVBAUTKEU2Rjg4NUI4QzFFNjM0QUUzOTlFQ0FCODE3M0EwM0RC OEU0QzEyOTQwHhcNMjQwMjIyMTg1NjQ2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3OThlZS1kNDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZ/NWSINTbUn6HLVTUGb+3mv/6op9Mnl6h8je7tiENnTRVTEmyGKi4JpgrWc RoMgGGZVRyo0bOgj9HskeRr7yU6XX4EsNilYciaDXS9T/JjbWBx5ugoOpBJXPnCk rwio2E07UcePEsaKZLzxEmSbuf1Kx1HYjURYfbD7DZmn+Idw2ryC+vJqR7hqimlF p4dwXoVBBySyFas4o0Nr/cthlaZDC0QN97YpSF8nvhoi7IwgL1oCukxmA3LKL6cK SiVxFLniNiijPbJaYxi8pvO4U+R7UAYREbPLgWslMa2KKQkVvFTkwza+JFkdDhZZ 7/pEaR9MA0LE14cFUKGmo4LTnwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPf0gHTn hvCYdQnMiGwZYEa9nqxRMB8GA1UdIwQYMBaAFOb4hbjB5jSuOZ7KuBc6A9uOTBKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRENy85OUQ5MTUzQUI3 OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5LNDVuc3E0RnpvRDI0NU1F cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2aUZ1TUhtTks0NW5zcTRGem9EMjQ1TUVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RDcvOTlEOTE1M0FCNzkwMTFFOUJFRThERDM0QzRGOUFFMDIvMTgwMTc5N0VC NzkyMTFFOTg2MTI5ODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnMRgwDQQCAAIwBwMFACQB+IAwDQYJKoZIhvcNAQELBQAD ggEBAL1vQPXv3HOkJsOtne/Bykqi3etDwwm3iLtWrL2RA6jE7QaJgtQ1ui8Rbgh0 4ZmMcsKuJOFsjCR5R6N155rn18kQavqqunHZ5ui1MtKvBUcKWdxBDwSrpQ2kbbJt IeB/dETtHjNfvErAVMV/2bVQlwHD3bsi6KIHJsu5bpS0ldQFEyPij+k6x1PHDNHO SwB8L5xEIkWu7IVPBODCMbo+e/lki7XHUBRZC7zlNx3kXFoNIsABp2P3MDPATdnK ToCpyBGlFUsLE0NFcmTyU4VceA6X5n+5SFbHGhAAdFeQCIqSQY2x6u8pMiQRd2kc IBB4sz1aKCt9QKWeIF9XARe4ZIc= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org