$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa File: B824A78A941611EF9EE2A549C4F9AE02.roa (raw, json) Hash identifier: XIvvW1LPA3SnQV05OSXuGH/IF7GaAPrjWiZizPjzWRM= Subject key identifier: 5B:CE:92:A5:50:39:A9:3C:16:8A:0E:99:A0:B9:DC:7B:02:B2:C6:15 Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 07A8 Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa Signing time: Sun 27 Oct 2024 03:51:17 +0000 ROA not before: Sun 27 Oct 2024 03:51:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151106 IP address blocks: 103.72.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Validity Not Before: Oct 27 03:51:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671db8b5-5eca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:96:30:39:55:59:71:96:62:19:66:ad:d8:71: 32:b8:ff:24:bd:fd:7b:30:c0:eb:f5:a8:48:95:53: f0:11:f7:51:40:a2:2c:27:15:5b:3b:76:8e:3b:ca: f4:f0:25:4d:b7:3a:42:06:52:79:e6:b3:16:e1:f5: a9:93:05:6d:48:61:1a:27:0f:f6:b7:11:a5:56:39: 26:cd:33:47:ef:cc:bf:ee:55:53:53:28:3d:c0:d0: 41:14:14:83:17:90:3f:c1:59:35:7b:b4:7f:5b:f1: de:13:80:e6:59:bb:c9:c7:ab:fc:5a:01:f7:c0:7c: 1b:99:6a:69:83:d0:e7:db:2c:e7:80:a9:38:f1:6f: 34:bf:4e:f3:b8:2a:a5:b1:ff:25:2d:85:5a:23:53: 28:96:e1:7f:83:a0:4e:f5:22:56:3b:75:88:bb:fe: 02:68:75:f2:60:5c:ab:28:ba:1e:f7:e1:33:cf:5f: 12:e8:ed:8e:17:36:23:28:63:00:7f:b2:10:b7:e0: 9e:ef:da:90:59:21:3b:d8:b0:e1:3b:35:f4:b5:5e: 42:7f:ff:7b:42:7f:bf:e1:e9:cc:62:30:ac:e2:93: 48:cb:b7:0b:77:28:8e:22:85:30:91:ca:74:34:a5: 6f:d7:fa:70:fc:c9:22:00:68:5a:06:51:44:2f:72: 99:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CE:92:A5:50:39:A9:3C:16:8A:0E:99:A0:B9:DC:7B:02:B2:C6:15 X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.100.0/24 Signature Algorithm: sha256WithRSAEncryption c1:24:4c:11:3a:94:d3:96:1e:20:07:f8:2d:b1:d9:a8:34:40: c5:48:e0:3b:2f:49:41:8d:82:b8:74:54:8f:ca:73:79:a0:6e: ef:a5:37:2f:b2:f5:e6:90:55:d0:ce:e9:c4:7b:82:76:e3:ee: 10:ec:40:25:26:dd:6b:93:ee:b2:ea:57:12:a3:43:28:69:14: d7:e6:65:6c:b2:e5:14:27:e0:8e:1c:e1:22:cd:8a:96:88:dc: b4:64:f1:02:f8:47:26:9b:64:d8:0a:cd:39:84:7a:75:5c:28: 59:15:44:5d:e8:84:7d:f9:e1:25:62:7e:54:5d:98:e6:37:bb: c2:3e:e2:74:9e:a4:b2:c7:0d:d0:04:bd:3a:4a:4d:60:2b:8a: 81:33:14:cd:4d:08:34:5e:a6:84:21:14:b3:e4:a0:69:48:46: 88:1a:58:63:60:18:ca:43:28:b9:4c:3b:1c:f3:50:de:9c:b1: e1:01:c1:c6:84:43:dd:38:ef:4f:75:2a:32:84:b7:d9:53:e6: 45:7c:61:28:cf:69:8a:80:c4:a1:b1:af:d9:99:b7:8a:9f:51: 2b:c5:20:d2:94:24:2c:9f:ee:d4:bc:0d:af:d8:d4:14:47:db: 79:7b:06:15:5d:6a:57:1f:10:00:06:00:63:af:7e:9e:1b:c8: 22:30:92:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjQxMDI3MDM1MTE3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkYjhiNS01ZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5YwOVVZcZZiGWat2HEyuP8kvf17MMDr9ahIlVPwEfdRQKIsJxVbO3aOO8r0 8CVNtzpCBlJ55rMW4fWpkwVtSGEaJw/2txGlVjkmzTNH78y/7lVTUyg9wNBBFBSD F5A/wVk1e7R/W/HeE4DmWbvJx6v8WgH3wHwbmWppg9Dn2yzngKk48W80v07zuCql sf8lLYVaI1MoluF/g6BO9SJWO3WIu/4CaHXyYFyrKLoe9+Ezz18S6O2OFzYjKGMA f7IQt+Ce79qQWSE72LDhOzX0tV5Cf/97Qn+/4enMYjCs4pNIy7cLdyiOIoUwkcp0 NKVv1/pw/MkiAGhaBlFEL3KZTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFvOkqVQ Oak8FooOmaC53HsCssYVMB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvQjgyNEE3OEE5 NDE2MTFFRjlFRTJBNTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSGQwDQYJKoZIhvcNAQELBQADggEBAMEkTBE6lNOWHiAH +C2x2ag0QMVI4DsvSUGNgrh0VI/Kc3mgbu+lNy+y9eaQVdDO6cR7gnbj7hDsQCUm 3WuT7rLqVxKjQyhpFNfmZWyy5RQn4I4c4SLNipaI3LRk8QL4RyabZNgKzTmEenVc KFkVRF3ohH354SViflRdmOY3u8I+4nSepLLHDdAEvTpKTWArioEzFM1NCDRepoQh FLPkoGlIRogaWGNgGMpDKLlMOxzzUN6cseEBwcaEQ9047091KjKEt9lT5kV8YSjP aYqAxKGxr9mZt4qfUSvFINKUJCyf7tS8Da/Y1BRH23l7BhVdalcfEAAGAGOvfp4b yCIwkgg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:41 2024 by rpki-client on console-ams.rpki-client.org