$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa File: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (raw, json) Hash identifier: 0kvZ3EdSky7ksqvtASBmr2Ki7hEXQRI9ENpHrPAoPC8= Subject key identifier: 65:9A:DA:EB:99:33:17:A3:64:C1:B2:04:30:74:7F:18:51:B4:E0:44 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0667 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa Signing time: Fri 04 Oct 2024 22:33:09 +0000 ROA not before: Fri 04 Oct 2024 22:33:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133044 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Oct 4 22:33:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67006d25-9077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:60:4a:e2:72:30:b1:87:b5:ac:02:ad:f8:62: dd:12:60:05:6e:0d:ce:d0:b5:3c:63:64:16:0e:53: 15:5f:7a:3b:85:8a:f2:70:3e:01:42:f3:a3:d4:5b: f1:62:bc:8e:1a:c9:48:c1:4d:2b:bf:cd:ac:ea:55: e9:6b:a2:aa:b8:6e:56:7b:43:11:10:9f:cd:30:7b: 05:71:e1:c2:7f:02:52:09:17:89:80:34:ad:2d:19: ef:bc:7a:d8:58:76:32:e0:01:56:b9:77:71:3e:d6: 18:6f:49:91:b1:27:07:d0:55:8e:7c:eb:7a:97:a1: 63:5e:94:cd:68:18:fe:34:83:85:e7:ce:20:a7:74: c4:43:47:66:6a:11:6b:43:e6:42:25:b5:66:02:26: 1a:a7:4d:34:54:52:ab:17:c9:b4:7b:08:b3:e9:16: b7:e4:17:7a:5f:bd:92:fc:8e:4b:b9:98:22:78:15: 6e:dc:c0:25:e4:4b:4c:e3:62:b0:95:df:27:b2:ef: a1:b6:f9:18:90:d4:21:f5:6e:7c:1d:d2:01:cb:37: 93:22:80:98:7d:42:d3:2c:2b:e7:05:17:56:62:3c: cd:57:3a:d5:e5:62:d8:61:17:86:8f:f1:e4:e7:48: a9:4d:7d:ec:49:ea:2b:b8:bd:17:cf:35:0f:60:c8: b4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9A:DA:EB:99:33:17:A3:64:C1:B2:04:30:74:7F:18:51:B4:E0:44 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/0F206AEA776F11ED8E7B8775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption a6:0c:69:c1:69:c3:8b:5c:31:9c:69:ad:29:1a:01:ca:cb:6a: 68:bb:a7:b4:4e:11:6e:d9:e1:6f:35:0d:ce:4b:eb:aa:aa:65: 16:a8:ba:3f:bb:7e:44:6f:9f:c4:56:9e:4a:1a:0e:97:3c:9e: e3:5f:3a:49:f4:c9:b4:bb:6c:be:fa:14:33:47:66:9e:10:53: 5a:b2:a1:03:38:b1:fa:46:03:4b:9a:ed:02:e6:38:bb:0f:91: 23:6e:2e:f9:d9:b2:84:21:68:9a:88:40:c5:3d:ba:e2:e2:ff: 23:1b:c8:63:bc:f1:51:6d:10:cb:f9:af:82:6b:9f:9a:51:1e: 52:f1:67:8f:a9:55:d8:f2:36:c5:34:5e:b1:ad:50:64:6b:b7: f5:d4:8b:d7:41:44:c1:22:2c:df:0e:85:12:a6:cb:30:b2:6f: 18:e6:54:e3:50:c5:7a:54:dd:e5:7e:f0:ee:a8:47:89:62:e3: a8:3b:20:35:cf:c7:53:4d:59:bf:4c:86:a9:1f:c8:51:db:30: 0a:27:66:14:6d:99:b5:7e:fa:77:00:c7:d2:c4:af:85:8d:ef: e5:9d:33:e6:3a:93:ea:02:60:63:69:e9:f0:50:88:c1:69:e7: 8f:25:39:20:1f:a4:e2:35:ca:a2:7a:fa:88:71:55:80:81:9d: 2f:cf:64:8e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjQxMDA0MjIzMzA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNmQyNS05MDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWBK4nIwsYe1rAKt+GLdEmAFbg3O0LU8Y2QWDlMVX3o7hYrycD4BQvOj1Fvx YryOGslIwU0rv82s6lXpa6KquG5We0MREJ/NMHsFceHCfwJSCReJgDStLRnvvHrY WHYy4AFWuXdxPtYYb0mRsScH0FWOfOt6l6FjXpTNaBj+NIOF584gp3TEQ0dmahFr Q+ZCJbVmAiYap000VFKrF8m0ewiz6Ra35Bd6X72S/I5LuZgieBVu3MAl5EtM42Kw ld8nsu+htvkYkNQh9W58HdIByzeTIoCYfULTLCvnBRdWYjzNVzrV5WLYYReGj/Hk 50ipTX3sSeoruL0XzzUPYMi0LwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFGWa2uuZ MxejZMGyBDB0fxhRtOBEMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvMEYyMDZBRUE3 NzZGMTFFRDhFN0I4Nzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnY2UDBABn8jEwDwQCAAIwCQMHACABDfPQADANBgkqhkiG 9w0BAQsFAAOCAQEApgxpwWnDi1wxnGmtKRoBystqaLuntE4RbtnhbzUNzkvrqqpl Fqi6P7t+RG+fxFaeShoOlzye4186SfTJtLtsvvoUM0dmnhBTWrKhAzix+kYDS5rt AuY4uw+RI24u+dmyhCFomohAxT264uL/IxvIY7zxUW0Qy/mvgmufmlEeUvFnj6lV 2PI2xTResa1QZGu39dSL10FEwSIs3w6FEqbLMLJvGOZU41DFelTd5X7w7qhHiWLj qDsgNc/HU01Zv0yGqR/IUdswCidmFG2ZtX76dwDH0sSvhY3v5Z0z5jqT6gJgY2np 8FCIwWnnjyU5IB+k4jXKonr6iHFVgIGdL89kjg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:41 2024 by rpki-client on console-ams.rpki-client.org