$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa File: 1071470CF41311EA9FD4EE0FC4F9AE02.roa (raw, json) Hash identifier: F+guhKQnHonINY5No9ekNOvuCLnRSRwRrMDOqrxx2fg= Subject key identifier: 74:8C:4E:42:44:B3:5E:FF:C6:C0:84:24:93:E3:B1:07:F1:AF:D3:5D Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1915 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa Signing time: Tue 01 Oct 2024 14:12:37 +0000 ROA not before: Tue 01 Oct 2024 14:12:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 213120 IP address blocks: 103.41.68.0/22 maxlen: 22 103.41.68.0/24 maxlen: 24 103.41.69.0/24 maxlen: 24 103.41.70.0/24 maxlen: 24 103.41.71.0/24 maxlen: 24 114.141.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6421 (0x1915) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Oct 1 14:12:37 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66fc0355-bebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4c:6f:40:28:89:d0:14:a5:7d:bb:c1:19:49: d6:83:c6:7f:20:ed:e7:35:0a:58:b2:13:de:03:60: 7b:29:ee:4e:f3:3c:5b:c1:4f:fa:af:90:b1:8b:b1: 50:70:d8:32:ca:8f:be:97:9e:7c:5a:0f:a4:3f:be: 5d:76:b6:73:52:11:7a:e3:99:93:da:58:7c:3c:2f: 79:7f:3c:77:42:c8:c8:64:ff:17:e4:d6:c6:da:0a: 3d:b5:86:46:fc:aa:bd:e1:1e:cb:18:f3:77:99:e3: e4:86:48:44:f1:07:71:de:12:67:8d:79:2a:68:7e: 34:c7:0d:d8:35:77:24:dc:9a:37:c7:93:5d:d0:7e: 01:8b:e5:6a:56:1b:32:89:52:b3:f8:4f:a3:5f:ba: 01:56:0e:bf:5f:23:7b:d4:3e:ff:fc:fc:dc:dc:ea: 61:37:16:70:be:b0:1f:76:a9:29:50:f3:0b:4b:61: 55:22:7f:10:04:2d:e2:02:01:0f:16:bf:2e:88:a4: 28:53:a7:a9:3e:7a:cc:e2:c8:3d:d5:b8:7d:fb:09: bb:70:93:9e:cf:0c:a7:25:27:fa:dd:f4:ac:3d:8f: 2b:2d:b4:b0:c6:76:9f:92:db:cf:18:6d:ef:f7:31: 12:d1:9e:96:e5:35:8b:ea:ba:09:be:c0:f4:93:a8: 7f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8C:4E:42:44:B3:5E:FF:C6:C0:84:24:93:E3:B1:07:F1:AF:D3:5D X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/1071470CF41311EA9FD4EE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.68.0/22 114.141.72.0/24 Signature Algorithm: sha256WithRSAEncryption bf:20:81:74:2f:1b:a3:5d:a0:9a:ae:68:d6:9c:3c:d5:21:d6: d1:3d:5e:8a:11:15:48:06:6c:ba:dc:b2:26:76:04:9e:10:14: f3:26:53:8c:56:81:ed:ce:19:3d:3c:89:4b:91:a6:3d:0d:92: 63:05:85:3b:56:9d:9b:8e:88:fd:b8:3f:2d:3c:e0:64:45:39: 84:3d:97:85:c3:77:d6:12:40:d1:be:d3:96:bc:b4:e6:2d:b1: 52:33:5d:26:5e:ed:fe:0c:06:02:20:73:a0:5c:9e:8e:d8:b2: 09:ea:c8:af:82:e5:a1:c9:1b:94:ea:45:c4:79:ee:77:08:9d: e2:33:81:9c:9c:9f:c0:4a:90:c2:0f:df:7b:ae:85:dc:88:a7: 61:80:b3:72:8f:05:81:18:a3:df:c6:25:56:d5:f3:76:64:bc: 01:32:37:e3:bf:00:78:5b:2e:7e:b4:74:d9:c1:fa:70:d9:71: ee:b8:49:d3:15:ea:0c:61:d6:b8:4c:c0:77:fd:68:f2:70:96: 39:05:14:73:46:64:07:86:89:e8:7d:56:bc:e9:8c:91:d6:8c: 77:01:90:43:80:45:51:7a:e9:60:55:f1:b7:fd:20:87:d1:f7: fe:47:30:4a:1c:8f:c8:89:32:fa:4d:86:6e:13:08:cd:a1:2f: a0:00:68:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjQxMDAxMTQxMjM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZjMDM1NS1iZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzExvQCiJ0BSlfbvBGUnWg8Z/IO3nNQpYshPeA2B7Ke5O8zxbwU/6r5Cxi7FQ cNgyyo++l558Wg+kP75ddrZzUhF645mT2lh8PC95fzx3QsjIZP8X5NbG2go9tYZG /Kq94R7LGPN3mePkhkhE8Qdx3hJnjXkqaH40xw3YNXck3Jo3x5Nd0H4Bi+VqVhsy iVKz+E+jX7oBVg6/XyN71D7//Pzc3OphNxZwvrAfdqkpUPMLS2FVIn8QBC3iAgEP Fr8uiKQoU6epPnrM4sg91bh9+wm7cJOezwynJSf63fSsPY8rLbSwxnafktvPGG3v 9zES0Z6W5TWL6roJvsD0k6h/1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHSMTkJE s17/xsCEJJPjsQfxr9NdMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvMTA3MTQ3MENG NDEzMTFFQTlGRDRFRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnKUQDBAByjUgwDQYJKoZIhvcNAQELBQADggEBAL8ggXQv G6NdoJquaNacPNUh1tE9XooRFUgGbLrcsiZ2BJ4QFPMmU4xWge3OGT08iUuRpj0N kmMFhTtWnZuOiP24Py084GRFOYQ9l4XDd9YSQNG+05a8tOYtsVIzXSZe7f4MBgIg c6Bcno7YsgnqyK+C5aHJG5TqRcR57ncIneIzgZycn8BKkMIP33uuhdyIp2GAs3KP BYEYo9/GJVbV83ZkvAEyN+O/AHhbLn60dNnB+nDZce64SdMV6gxh1rhMwHf9aPJw ljkFFHNGZAeGieh9VrzpjJHWjHcBkEOARVF66WBV8bf9IIfR9/5HMEocj8iJMvpN hm4TCM2hL6AAaN4= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org