$ rpki-client -vvf rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa File: F7B3707C806911EF8C30A03DC4F9AE02.roa (raw, json) Hash identifier: nK9pND6bfkJdBYtCR5Gg4Ku+sSlEG2ZFptBEx7OGivU= Subject key identifier: A8:40:15:B2:93:AF:07:A5:9C:6D:27:76:38:BB:F3:76:F1:EA:6C:5D Certificate issuer: /CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Certificate serial: 04 Authority key identifier: 1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa Signing time: Wed 02 Oct 2024 02:58:45 +0000 ROA not before: Wed 02 Oct 2024 02:58:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138987 IP address blocks: 103.185.219.0/24 maxlen: 24 2001:df0:9ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D9C3/serialNumber=1E5C107EFD03CF13D214A39A6A2CE8DDAD30470E Validity Not Before: Oct 2 02:58:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66fcb6e4-80f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:02:79:e0:0a:96:0c:06:c2:67:b2:f6:25:66: fb:0e:07:42:bb:42:89:eb:5c:c4:09:7b:0f:4b:46: cd:5a:7d:18:9e:69:a4:52:31:c2:6d:51:27:c2:5f: d7:fe:f9:67:23:c6:04:d9:26:c5:af:2a:7e:26:01: c9:f0:9f:3f:7b:c4:8c:28:7e:f3:36:6c:fd:a7:a9: 0b:88:fd:2e:5b:27:fb:ae:1c:99:3e:dc:b6:c5:e4: fc:9b:14:49:31:db:f5:c3:b0:f2:13:74:54:45:8b: 7e:cf:e9:aa:01:69:0f:7d:8f:25:cd:63:f1:49:61: 22:51:b1:76:cc:69:36:0e:c6:e0:f1:11:42:8f:88: 51:a5:78:22:39:c7:cb:00:b6:90:24:ca:74:a7:f3: 04:ab:47:2f:c8:e9:2f:aa:04:32:05:d3:b8:cc:87: bb:ff:5d:6a:52:eb:bc:d5:ef:5c:c2:f6:bc:d6:bc: 68:70:b0:6d:4c:17:ed:4b:cd:34:88:e2:76:04:d1: 04:63:fd:9a:a3:44:ce:48:04:86:1d:7b:80:eb:4c: 26:08:d9:3c:14:c3:39:46:5b:69:0d:ee:c4:ce:9f: 24:c7:d9:be:40:74:90:b0:00:f4:b4:60:0d:b6:71: 9c:ce:26:a2:12:ee:81:62:e7:ff:f9:a8:49:55:cd: 26:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:40:15:B2:93:AF:07:A5:9C:6D:27:76:38:BB:F3:76:F1:EA:6C:5D X509v3 Authority Key Identifier: keyid:1E:5C:10:7E:FD:03:CF:13:D2:14:A3:9A:6A:2C:E8:DD:AD:30:47:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/HlwQfv0DzxPSFKOaaizo3a0wRw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HlwQfv0DzxPSFKOaaizo3a0wRw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D9C3/45CC82CC806911EF82C9773CC4F9AE02/F7B3707C806911EF8C30A03DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.219.0/24 IPv6: 2001:df0:9ac0::/48 Signature Algorithm: sha256WithRSAEncryption 69:1c:6d:0d:80:f9:27:a7:69:7f:c9:3a:61:95:0b:8d:2c:ba: 6c:18:4f:cc:67:e5:25:2a:88:51:36:72:19:16:27:64:95:97: f5:54:6b:c9:86:d8:ff:be:74:97:f4:ec:6b:09:df:70:53:cd: a5:7a:3b:67:d0:40:b0:b5:56:00:d0:82:e7:5e:3c:05:6c:cc: 5a:de:02:40:d0:49:58:9a:7a:65:b7:f7:f9:e7:04:19:7b:ed: 4c:bf:85:48:20:08:4d:f8:37:df:b2:af:b0:90:51:c0:92:fd: ea:28:2a:41:45:35:aa:cb:ce:a4:de:20:73:53:93:29:83:a8: 35:78:05:a8:21:b8:1f:da:67:2c:44:33:f1:de:37:c3:00:80: 5f:b7:bd:f5:34:8d:b9:7c:49:8b:a9:22:bf:fb:c8:eb:7a:33: 8c:09:c8:fa:e2:af:3d:04:5d:d0:fc:84:0f:02:41:52:85:d7: 82:83:e0:ff:bf:d9:21:2b:6a:33:ec:2c:99:f8:46:45:f9:b7: 1b:1f:74:d9:6e:13:ff:59:4d:74:8f:16:be:6d:68:f4:86:33: c8:b0:b7:0f:c4:3f:b3:92:3f:88:2e:f2:82:44:7b:3c:f2:82: e8:35:21:6f:64:9c:f7:8b:de:82:9c:70:1f:ac:92:97:42:ac: 62:00:91:ef -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDlDMzExMC8GA1UEBRMoMUU1QzEwN0VGRDAzQ0YxM0QyMTRBMzlBNkEyQ0U4RERB RDMwNDcwRTAeFw0yNDEwMDIwMjU4NDVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmNiNmU0LTgwZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnAnngCpYMBsJnsvYlZvsOB0K7QonrXMQJew9LRs1afRieaaRSMcJtUSfCX9f+ +WcjxgTZJsWvKn4mAcnwnz97xIwofvM2bP2nqQuI/S5bJ/uuHJk+3LbF5PybFEkx 2/XDsPITdFRFi37P6aoBaQ99jyXNY/FJYSJRsXbMaTYOxuDxEUKPiFGleCI5x8sA tpAkynSn8wSrRy/I6S+qBDIF07jMh7v/XWpS67zV71zC9rzWvGhwsG1MF+1LzTSI 4nYE0QRj/ZqjRM5IBIYde4DrTCYI2TwUwzlGW2kN7sTOnyTH2b5AdJCwAPS0YA22 cZzOJqIS7oFi5//5qElVzSaZAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUqEAVspOv B6WcbSd2OLvzdvHqbF0wHwYDVR0jBBgwFoAUHlwQfv0DzxPSFKOaaizo3a0wRw4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREOUMzLzQ1Q0M4MkNDODA2 OTExRUY4MkM5NzczQ0M0RjlBRTAyL0hsd1FmdjBEenhQU0ZLT2FhaXpvM2Ewd1J3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGx3UWZ2MER6eFBTRktPYWFpem8zYTB3Unc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDlDMy80NUNDODJDQzgwNjkxMUVGODJDOTc3M0NDNEY5QUUwMi9GN0IzNzA3Qzgw NjkxMUVGOEMzMEEwM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGe52zAPBAIAAjAJAwcAIAEN8JrAMA0GCSqGSIb3DQEBCwUA A4IBAQBpHG0NgPknp2l/yTphlQuNLLpsGE/MZ+UlKohRNnIZFidklZf1VGvJhtj/ vnSX9OxrCd9wU82lejtn0ECwtVYA0ILnXjwFbMxa3gJA0ElYmnplt/f55wQZe+1M v4VIIAhN+Dffsq+wkFHAkv3qKCpBRTWqy86k3iBzU5Mpg6g1eAWoIbgf2mcsRDPx 3jfDAIBft731NI25fEmLqSK/+8jrejOMCcj64q89BF3Q/IQPAkFShdeCg+D/v9kh K2oz7CyZ+EZF+bcbH3TZbhP/WU10jxa+bWj0hjPIsLcPxD+zkj+ILvKCRHs88oLo NSFvZJz3i96CnHAfrJKXQqxiAJHv -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org