$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DECCD5252E911ED8BAAA80AC4F9AE02.roa File: 1DECCD5252E911ED8BAAA80AC4F9AE02.roa (raw, json) Hash identifier: IrJp7iMCwaqaCQTisyHX9ot6P3+bjwvrOPWL8AEixrI= Subject key identifier: 8E:FC:72:FE:FC:9F:81:5B:1F:C9:D6:ED:A9:BD:17:03:78:72:32:F4 Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 3469 Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DECCD5252E911ED8BAAA80AC4F9AE02.roa Signing time: Thu 14 Nov 2024 15:31:12 +0000 ROA not before: Thu 14 Nov 2024 15:31:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.21.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13417 (0x3469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Validity Not Before: Nov 14 15:31:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=673617c0-6e6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:51:3a:7d:a1:8f:10:6d:b9:18:59:8a:39:70: ee:d5:1a:8f:3c:9c:02:18:13:0a:6b:79:00:62:d8: fe:b6:67:b6:b8:af:e9:ae:cb:ca:8a:d6:f6:84:b0: 66:e7:df:98:19:fa:cf:56:2b:85:5d:0f:90:66:a7: ec:3d:2c:ea:7f:20:1d:c5:49:45:94:f3:fb:e9:0c: b2:cb:47:f5:3c:45:1a:a6:cd:9c:6f:82:22:36:e2: 2d:90:10:3d:66:24:b2:1f:b9:26:ed:d6:4e:63:a6: 9a:ca:1a:ea:58:dd:05:cf:be:71:17:f4:30:e1:d2: 9a:5d:88:ba:61:fb:1c:ff:c1:68:81:c0:d7:d6:14: 56:eb:6a:44:cf:a7:a9:81:0d:d3:8e:34:e4:5a:80: 59:9b:00:3d:c9:56:a9:85:67:1e:db:a3:eb:0e:13: 1b:6b:89:35:c6:4a:c2:a4:69:c7:02:f4:f2:19:2e: 58:e3:55:18:b9:e0:81:d0:0b:c6:50:ea:05:3e:6d: c3:6d:c6:91:6b:11:33:ac:13:40:db:9f:d0:f6:ee: 65:84:5c:e5:4a:ea:40:7c:ca:10:8c:c4:33:62:57: 31:b0:26:cf:7a:72:64:f2:52:da:18:d5:73:2d:7d: 86:2a:71:80:b1:6b:ed:f1:7b:11:df:eb:d4:be:fb: 28:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FC:72:FE:FC:9F:81:5B:1F:C9:D6:ED:A9:BD:17:03:78:72:32:F4 X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DECCD5252E911ED8BAAA80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.136.0/24 Signature Algorithm: sha256WithRSAEncryption 42:8f:8e:e8:c7:34:7f:bf:2c:67:cd:bc:97:5a:a8:39:b4:f5: 7a:2a:9d:82:06:aa:b9:b4:2f:2b:af:53:8b:3d:d7:33:c9:ab: b8:01:15:04:35:6b:67:bc:46:f0:be:38:51:3d:38:10:d7:ab: f3:de:97:cc:31:01:dc:58:d4:bb:d0:c4:90:d2:5b:65:0c:bf: da:de:96:9c:28:76:ac:a8:fd:2d:13:1e:d2:71:51:78:17:bd: ab:73:11:19:1c:8d:fd:1f:47:7e:c0:7d:fd:a8:6e:ac:b2:79: 05:68:ee:f6:f2:19:34:a2:45:a3:4d:2f:d1:de:0d:61:19:e6: 91:ad:9d:6b:e3:a8:db:83:fb:95:ba:06:fc:08:19:82:34:2f: 46:56:cc:f5:6b:a4:f6:4c:ce:8c:17:4b:9d:e4:85:0d:a5:2d: f2:4d:9f:f6:5d:a0:d6:fa:38:6e:b7:9a:ba:00:6e:91:7f:be: 11:d1:8e:27:e0:fd:2d:83:a5:89:2d:93:e5:b3:9e:80:a3:7a: e4:e9:9a:4c:54:73:f0:9e:36:5f:39:71:ee:e5:28:e9:39:f6: d3:9d:d9:56:bc:20:ea:d9:53:ba:c7:93:fb:c0:37:bf:75:62: d9:38:f1:82:53:c8:3e:2c:dc:b4:5a:0c:82:99:fe:71:fe:8f: 61:8b:2f:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjQxMTE0MTUzMTEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2MTdjMC02ZTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FE6faGPEG25GFmKOXDu1RqPPJwCGBMKa3kAYtj+tme2uK/prsvKitb2hLBm 59+YGfrPViuFXQ+QZqfsPSzqfyAdxUlFlPP76Qyyy0f1PEUaps2cb4IiNuItkBA9 ZiSyH7km7dZOY6aayhrqWN0Fz75xF/Qw4dKaXYi6Yfsc/8FogcDX1hRW62pEz6ep gQ3TjjTkWoBZmwA9yVaphWce26PrDhMba4k1xkrCpGnHAvTyGS5Y41UYueCB0AvG UOoFPm3DbcaRaxEzrBNA25/Q9u5lhFzlSupAfMoQjMQzYlcxsCbPenJk8lLaGNVz LX2GKnGAsWvt8XsR3+vUvvsoZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI78cv78 n4FbH8nW7am9FwN4cjL0MB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGNzYvOTQ0RTM4OTIxREFCMTFFMkJCMzBDQUE5MDhCMDJDRDIvMURFQ0NENTI1 MkU5MTFFRDhCQUFBODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFYgwDQYJKoZIhvcNAQELBQADggEBAEKPjujHNH+/LGfN vJdaqDm09XoqnYIGqrm0LyuvU4s91zPJq7gBFQQ1a2e8RvC+OFE9OBDXq/Pel8wx AdxY1LvQxJDSW2UMv9relpwodqyo/S0THtJxUXgXvatzERkcjf0fR37Aff2obqyy eQVo7vbyGTSiRaNNL9HeDWEZ5pGtnWvjqNuD+5W6BvwIGYI0L0ZWzPVrpPZMzowX S53khQ2lLfJNn/ZdoNb6OG63mroAbpF/vhHRjifg/S2DpYktk+WznoCjeuTpmkxU c/CeNl85ce7lKOk59tOd2Va8IOrZU7rHk/vAN791Ytk48YJTyD4s3LRaDIKZ/nH+ j2GLLwk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org