$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa File: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (raw, json) Hash identifier: rMVk1ga9cfh7Qo/jkI958sU0c+kJJEruOUO08Z/4CDQ= Subject key identifier: B9:67:BD:27:07:76:11:29:1D:DD:8C:EB:A0:72:92:9B:77:EC:02:B6 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0668 Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa Signing time: Fri 04 Oct 2024 22:33:10 +0000 ROA not before: Fri 04 Oct 2024 22:33:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7545 IP address blocks: 103.99.101.0/24 maxlen: 24 103.242.49.0/24 maxlen: 24 2001:df3:d000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Oct 4 22:33:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67006d26-951b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:18:fd:31:22:8a:f9:e7:8e:e3:27:27:5f: e2:7c:8c:5a:92:3c:ee:82:26:2c:2c:ef:57:32:74: 61:ba:1f:5e:46:81:67:7a:57:a5:bd:71:c1:e1:aa: 4c:22:ec:54:5a:1b:63:83:08:b3:ae:5f:33:5a:47: 29:1a:24:e7:fe:d0:6f:d5:d4:3f:22:33:58:72:61: b0:60:93:2d:b0:2d:a5:5a:3d:b2:57:29:12:00:08: 9e:d8:49:0a:34:66:09:4c:11:d4:ab:f3:08:c7:0b: 35:fd:1b:58:4f:92:16:2a:9e:dd:65:c5:92:6e:36: e9:1c:53:d6:1c:1c:eb:3b:0d:76:92:36:10:71:7d: 67:5e:67:1f:af:66:b4:ca:0d:c0:af:f0:ba:1f:17: 6f:6d:01:56:93:d7:1e:fc:e4:83:75:54:2c:36:18: 72:92:13:d8:db:d7:39:ba:5f:ea:d9:db:98:54:74: d5:5f:69:72:2b:88:4b:c7:55:8c:3f:80:db:2d:95: 68:c5:1f:52:d7:92:df:7b:29:01:e0:5c:94:70:89: 9d:91:fd:af:fe:d6:f6:c1:8b:5c:09:17:df:de:fb: bf:52:6c:be:3d:dd:26:84:97:b2:0d:95:74:c1:a0: c7:0e:36:77:36:8c:08:74:64:db:30:90:4b:22:37: 14:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:67:BD:27:07:76:11:29:1D:DD:8C:EB:A0:72:92:9B:77:EC:02:B6 X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/ED7C5416CD3711EDB6A0F37BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.101.0/24 103.242.49.0/24 IPv6: 2001:df3:d000::/48 Signature Algorithm: sha256WithRSAEncryption 92:13:33:08:1e:08:7a:50:1a:64:a9:30:7e:9e:7a:4f:8d:88: 95:c5:b6:d5:4d:00:0a:08:59:33:f7:d1:d0:bc:c2:90:04:3b: 74:f5:4e:16:8b:0d:28:ac:d8:53:60:31:0a:d9:a7:3b:34:9b: 8c:c0:8a:bf:0d:02:88:24:61:d3:60:5c:4b:9c:c1:96:24:8b: ed:63:c6:b6:26:a1:4b:0c:0b:8e:28:2e:f6:8a:42:46:90:3c: fc:f4:f0:76:88:d7:28:b8:08:f6:80:1d:44:cd:0a:69:b0:3b: 70:66:8e:f9:17:fd:7f:28:a7:f2:98:9e:72:02:5d:f0:73:74: 0e:a1:d6:a7:51:7f:16:19:81:cb:5c:1e:52:a2:d2:2d:16:bb: 60:29:ce:02:ab:b0:85:e9:01:11:7b:f3:cd:c8:1e:1e:5e:64: f0:56:27:4b:e1:4a:10:e9:36:73:42:85:f2:3d:e7:c0:0f:60: 5c:9c:72:47:90:e0:77:be:ce:3e:8b:e3:5e:aa:34:da:9d:ad: ef:13:04:52:0f:13:6f:89:77:6b:9c:81:7f:ff:20:b5:ca:42: 66:13:14:0e:85:e1:cf:59:dc:29:8e:13:e9:e1:4a:5d:17:49: fc:29:ba:c9:39:26:23:85:7b:ee:a0:18:c1:73:aa:34:fe:18: 38:06:a9:aa -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjQxMDA0MjIzMzEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNmQyNi05NTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx34Y/TEiivnnjuMnJ1/ifIxakjzugiYsLO9XMnRhuh9eRoFnelelvXHB4apM IuxUWhtjgwizrl8zWkcpGiTn/tBv1dQ/IjNYcmGwYJMtsC2lWj2yVykSAAie2EkK NGYJTBHUq/MIxws1/RtYT5IWKp7dZcWSbjbpHFPWHBzrOw12kjYQcX1nXmcfr2a0 yg3Ar/C6HxdvbQFWk9ce/OSDdVQsNhhykhPY29c5ul/q2duYVHTVX2lyK4hLx1WM P4DbLZVoxR9S15LfeykB4FyUcImdkf2v/tb2wYtcCRff3vu/Umy+Pd0mhJeyDZV0 waDHDjZ3NowIdGTbMJBLIjcUiwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLlnvScH dhEpHd2M66Bykpt37AK2MB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzMTQvNzBEM0IzNkE1OTUyMTFFQkE2RDc4MDQ4QzRGOUFFMDIvRUQ3QzU0MTZD RDM3MTFFREI2QTBGMzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnY2UDBABn8jEwDwQCAAIwCQMHACABDfPQADANBgkqhkiG 9w0BAQsFAAOCAQEAkhMzCB4IelAaZKkwfp56T42IlcW21U0ACghZM/fR0LzCkAQ7 dPVOFosNKKzYU2AxCtmnOzSbjMCKvw0CiCRh02BcS5zBliSL7WPGtiahSwwLjigu 9opCRpA8/PTwdojXKLgI9oAdRM0KabA7cGaO+Rf9fyin8piecgJd8HN0DqHWp1F/ FhmBy1weUqLSLRa7YCnOAquwhekBEXvzzcgeHl5k8FYnS+FKEOk2c0KF8j3nwA9g XJxyR5Dgd77OPovjXqo02p2t7xMEUg8Tb4l3a5yBf/8gtcpCZhMUDoXhz1ncKY4T 6eFKXRdJ/Cm6yTkmI4V77qAYwXOqNP4YOAapqg== -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:42 2024 by rpki-client on console-ams.rpki-client.org