$ rpki-client -vvf rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa File: 7F424CC0350711E9955C524EC4F9AE02.roa (raw, json) Hash identifier: mWJcvoB56xtTVL8jsG+OSQ9sF5v7r1+9ESUNzFxge8k= Subject key identifier: C7:A0:1E:01:BF:3A:DA:77:88:FC:0E:1B:24:DB:3A:E3:AC:9B:D0:08 Certificate issuer: /CN=A914E08F/serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7 Certificate serial: 129B Authority key identifier: BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa Signing time: Mon 28 Oct 2024 17:15:46 +0000 ROA not before: Mon 28 Oct 2024 17:15:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138209 IP address blocks: 103.129.224.0/24 maxlen: 24 103.129.225.0/24 maxlen: 24 103.129.226.0/24 maxlen: 24 2403:8ac0:ef60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.crl rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4763 (0x129b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E08F/serialNumber=BF55A5B0062A4E6A3DC879E3C9FCB2667C6892B7 Validity Not Before: Oct 28 17:15:46 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671fc6c1-ad4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:00:00:85:38:a9:5b:3d:59:ea:6c:dd:08: 5f:30:e0:e4:44:02:2f:d2:a4:c7:38:ce:11:25:56: f6:5b:e7:58:9e:c3:59:1e:be:b0:55:ad:e0:45:61: 63:cd:7b:1e:4b:bf:a0:ce:ac:52:e3:5c:8b:0d:a6: 8b:5e:3c:78:1e:dc:9e:b2:aa:c5:6e:b4:8e:a9:11: 1e:90:fc:3b:0d:94:79:a2:2c:06:a8:e1:3b:f9:93: a8:15:1e:88:9e:05:00:fa:a6:2e:94:c6:54:da:2a: 52:84:2f:d1:32:d7:fd:0f:c4:e8:74:d7:83:2b:9a: 0e:1b:51:ec:6f:97:6d:ee:10:7f:85:6a:ae:2b:b5: 19:6e:c0:2c:51:73:03:b6:1f:17:d0:37:28:40:a8: eb:88:5b:02:97:36:27:01:ab:4a:7e:e6:1c:f9:30: 72:9e:5f:ea:47:8e:7a:14:5c:a9:1d:bc:1c:e1:e8: 40:cd:b7:43:b5:b9:53:d7:e0:77:14:b7:28:2f:3b: 16:f2:34:cd:e6:db:cd:0d:b3:2f:4d:e9:ab:66:52: d6:b7:7e:8d:5b:f9:95:4a:9e:b6:8a:a1:4e:bb:9b: 33:8e:fd:1c:2d:58:ca:12:3a:13:9f:36:26:af:dc: 8b:0e:94:67:d1:88:20:c7:24:fb:0d:1e:d4:85:a7: 95:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A0:1E:01:BF:3A:DA:77:88:FC:0E:1B:24:DB:3A:E3:AC:9B:D0:08 X509v3 Authority Key Identifier: keyid:BF:55:A5:B0:06:2A:4E:6A:3D:C8:79:E3:C9:FC:B2:66:7C:68:92:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/v1WlsAYqTmo9yHnjyfyyZnxokrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1WlsAYqTmo9yHnjyfyyZnxokrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E08F/A8F20308B5B911E88AD9A20DC4F9AE02/7F424CC0350711E9955C524EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.224.0-103.129.226.255 IPv6: 2403:8ac0:ef60::/48 Signature Algorithm: sha256WithRSAEncryption 63:45:e9:4d:03:fc:17:d3:68:30:87:4a:ef:3e:b4:35:30:ec: e5:d9:f2:a0:38:43:78:f9:c3:12:ac:f2:67:ad:6f:05:9e:7f: 0b:4c:9a:da:4e:95:8a:22:bd:e1:46:17:ce:ba:67:73:3c:e3: bd:a1:6a:3e:8e:93:43:04:f1:f5:87:68:66:04:2a:96:c8:92: 9a:09:10:61:9d:ad:48:a4:60:2b:50:0b:c5:62:04:fb:93:78: e8:a5:83:a6:d1:f4:73:71:32:57:2b:4d:b1:44:fe:d0:2a:5c: 90:b1:fe:a2:d6:3a:16:68:8c:47:47:e6:92:0b:9c:eb:1d:cf: ee:58:57:52:36:8c:a4:2c:48:52:ea:de:be:cb:0a:62:5f:4f: d6:a9:11:46:5f:8b:61:9b:96:f6:4d:1b:da:08:64:5d:89:ee: 61:22:e9:1f:a6:0c:52:7c:fe:b4:c4:70:17:ee:c9:14:8c:25: 5d:a1:64:ff:f6:d7:24:4f:9d:63:e1:67:e2:c9:dd:7f:62:f1: ba:97:30:e2:1d:c9:42:9f:05:fe:8b:fe:d7:d1:aa:9f:23:cd: 04:ee:89:8f:cd:94:68:f4:4c:c2:7a:11:53:74:6d:d9:7c:c1: 11:82:eb:86:fd:97:24:ae:76:50:93:6c:44:db:65:1f:5f:b4: 5f:00:a4:1f -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICEpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwOEYxMTAvBgNVBAUTKEJGNTVBNUIwMDYyQTRFNkEzREM4NzlFM0M5RkNCMjY2 N0M2ODkyQjcwHhcNMjQxMDI4MTcxNTQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmYzZjMS1hZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd4AAIU4qVs9Weps3QhfMODkRAIv0qTHOM4RJVb2W+dYnsNZHr6wVa3gRWFj zXseS7+gzqxS41yLDaaLXjx4HtyesqrFbrSOqREekPw7DZR5oiwGqOE7+ZOoFR6I ngUA+qYulMZU2ipShC/RMtf9D8TodNeDK5oOG1Hsb5dt7hB/hWquK7UZbsAsUXMD th8X0DcoQKjriFsClzYnAatKfuYc+TBynl/qR456FFypHbwc4ehAzbdDtblT1+B3 FLcoLzsW8jTN5tvNDbMvTemrZlLWt36NW/mVSp62iqFOu5szjv0cLVjKEjoTnzYm r9yLDpRn0YggxyT7DR7UhaeVgwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFMegHgG/ Otp3iPwOGyTbOuOsm9AIMB8GA1UdIwQYMBaAFL9VpbAGKk5qPch548n8smZ8aJK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA4Ri9BOEYyMDMwOEI1 QjkxMUU4OEFEOUEyMERDNEY5QUUwMi92MVdsc0FZcVRtbzl5SG5qeWZ5eVpueG9r cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxV2xzQVlxVG1vOXlIbmp5Znl5Wm54b2tyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUwOEYvQThGMjAzMDhCNUI5MTFFODhBRDlBMjBEQzRGOUFFMDIvN0Y0MjRDQzAz NTA3MTFFOTk1NUM1MjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEBWeB4AMEAGeB4jAPBAIAAjAJAwcAJAOKwO9gMA0GCSqG SIb3DQEBCwUAA4IBAQBjRelNA/wX02gwh0rvPrQ1MOzl2fKgOEN4+cMSrPJnrW8F nn8LTJraTpWKIr3hRhfOumdzPOO9oWo+jpNDBPH1h2hmBCqWyJKaCRBhna1IpGAr UAvFYgT7k3jopYOm0fRzcTJXK02xRP7QKlyQsf6i1joWaIxHR+aSC5zrHc/uWFdS NoykLEhS6t6+ywpiX0/WqRFGX4thm5b2TRvaCGRdie5hIukfpgxSfP60xHAX7skU jCVdoWT/9tckT51j4Wfiyd1/YvG6lzDiHclCnwX+i/7X0aqfI80E7omPzZRo9EzC ehFTdG3ZfMERguuG/ZckrnZQk2xE22UfX7RfAKQf -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org