$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa File: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (raw, json) Hash identifier: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4= Subject key identifier: 3B:C2:1B:F3:C0:D8:4E:E5:F0:BF:D4:39:3B:09:68:59:3C:1B:BE:96 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 06B8 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa Signing time: Thu 14 Nov 2024 21:41:31 +0000 ROA not before: Thu 14 Nov 2024 21:41:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141420 IP address blocks: 103.158.226.0/23 maxlen: 23 103.158.226.0/24 maxlen: 24 103.158.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Nov 14 21:41:31 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67366e8b-505c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:93:1f:11:7d:da:cc:f9:36:33:c7:3a:79: 8d:6a:7e:cc:50:96:10:73:9c:81:45:70:27:f3:d8: 73:06:e2:cb:3f:03:d0:21:31:c6:15:59:aa:ce:f0: 6f:61:6b:f3:df:54:79:53:8f:d9:59:85:52:5c:d4: 86:dc:5a:6c:be:4d:f3:04:36:4a:77:7d:bb:20:7e: 0c:60:d6:e2:31:ef:d5:c1:20:49:03:68:ea:5b:fe: 97:f8:0c:a5:64:dd:b4:9f:c0:d4:5e:86:c6:ce:fa: 86:3d:61:1e:14:4b:a7:d1:9b:c1:95:a1:ca:b2:5d: aa:2e:b9:8e:c7:fe:9c:84:db:63:92:c1:f2:eb:e2: 53:01:fe:a4:1f:fc:fc:a5:24:6d:79:5e:90:da:24: 80:1e:31:d4:90:f5:6b:7c:aa:a6:30:9a:1c:d7:90: 04:8c:5d:a6:9d:3e:a7:e2:37:d5:1f:dd:fd:f1:93: 41:7a:a3:97:9a:74:9c:c5:f1:88:a2:1d:37:4b:09: e1:e9:38:e7:2a:d0:54:46:e0:e1:f2:40:e4:6f:8e: 38:d7:b6:3b:4e:8c:9a:80:f9:92:e1:52:1e:8c:76: 00:c3:a4:c5:40:65:da:6e:b5:8d:3c:00:2f:ed:9b: 32:90:e4:66:6a:0d:30:47:a9:86:38:7a:d9:1f:54: 9a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:C2:1B:F3:C0:D8:4E:E5:F0:BF:D4:39:3B:09:68:59:3C:1B:BE:96 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/FC07CE5C3A7C11EBB38FF025C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.226.0/23 Signature Algorithm: sha256WithRSAEncryption 35:92:db:a8:26:52:a7:f6:c5:01:60:db:e6:f5:55:9d:06:23: 75:df:26:57:14:25:7e:b3:cd:ae:28:40:3e:cc:27:32:dd:d5: a1:24:68:c8:84:53:c3:91:59:38:4e:bf:c0:f5:0a:9d:03:78: d6:32:fe:ad:fc:30:e8:f5:93:e0:a3:2b:e9:17:0f:4d:01:be: f2:de:90:82:96:94:f9:c4:f7:bd:d7:86:f0:4a:e3:4c:ec:55: c1:dc:49:4b:56:9a:9f:c2:98:52:df:71:34:94:2e:fb:95:8b: d4:89:3a:bd:73:8d:d3:6d:7f:b0:04:39:47:54:91:41:55:25: 75:ea:12:c8:ad:47:d3:b0:f9:46:8a:bc:ab:1c:cc:df:4d:31: 9b:1d:be:9e:bd:c1:90:e5:38:ff:8b:a8:e0:dc:de:b8:d0:30: e5:6b:b8:0d:53:4f:26:f6:90:fe:22:6d:28:60:e2:77:79:c1: ba:81:01:68:7a:86:c7:15:21:d6:47:b6:92:d3:08:bd:1d:8c: c6:b4:cc:39:9e:86:b0:dd:0f:9f:47:ba:38:ed:41:58:0b:19: dd:eb:2c:84:ca:a9:2a:8d:91:da:fb:d8:18:1b:41:ed:8a:f5: d7:49:19:98:e6:27:a9:61:cb:8a:16:0d:42:ae:c5:0c:d0:95: 22:33:fa:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjQxMTE0MjE0MTMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NmU4Yi01MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtu2THxF92sz5NjPHOnmNan7MUJYQc5yBRXAn89hzBuLLPwPQITHGFVmqzvBv YWvz31R5U4/ZWYVSXNSG3Fpsvk3zBDZKd327IH4MYNbiMe/VwSBJA2jqW/6X+Ayl ZN20n8DUXobGzvqGPWEeFEun0ZvBlaHKsl2qLrmOx/6chNtjksHy6+JTAf6kH/z8 pSRteV6Q2iSAHjHUkPVrfKqmMJoc15AEjF2mnT6n4jfVH9398ZNBeqOXmnScxfGI oh03Swnh6TjnKtBURuDh8kDkb44417Y7ToyagPmS4VIejHYAw6TFQGXabrWNPAAv 7ZsykORmag0wR6mGOHrZH1SaHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDvCG/PA 2E7l8L/UOTsJaFk8G76WMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVDQTQvN0FFOUZFRDYzQTdCMTFFQkI3ODY5QzI0QzRGOUFFMDIvRkMwN0NFNUMz QTdDMTFFQkIzOEZGMDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnuIwDQYJKoZIhvcNAQELBQADggEBADWS26gmUqf2xQFg 2+b1VZ0GI3XfJlcUJX6zza4oQD7MJzLd1aEkaMiEU8ORWThOv8D1Cp0DeNYy/q38 MOj1k+CjK+kXD00BvvLekIKWlPnE973XhvBK40zsVcHcSUtWmp/CmFLfcTSULvuV i9SJOr1zjdNtf7AEOUdUkUFVJXXqEsitR9Ow+UaKvKsczN9NMZsdvp69wZDlOP+L qODc3rjQMOVruA1TTyb2kP4ibShg4nd5wbqBAWh6hscVIdZHtpLTCL0djMa0zDme hrDdD59HujjtQVgLGd3rLITKqSqNkdr72BgbQe2K9ddJGZjmJ6lhy4oWDUKuxQzQ lSIz+nY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org