$ rpki-client -vvf rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/04EFECDA6F3411EF833F4C23C4F9AE02.roa File: 04EFECDA6F3411EF833F4C23C4F9AE02.roa (raw, json) Hash identifier: m4m6GQSMRy4MQoGkNVYPRI/N4+53Wjd6ulyG+SySVqM= Subject key identifier: 3A:8C:6D:EE:99:32:DE:D2:63:8A:1E:5D:C2:B2:84:97:8E:55:CE:62 Certificate issuer: /CN=A916A8E2/serialNumber=0C05243B7EF55611E40A4DBBF7FE7E912092A652 Certificate serial: 03 Authority key identifier: 0C:05:24:3B:7E:F5:56:11:E4:0A:4D:BB:F7:FE:7E:91:20:92:A6:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAUkO371VhHkCk279_5-kSCSplI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/04EFECDA6F3411EF833F4C23C4F9AE02.roa Signing time: Tue 10 Sep 2024 05:17:48 +0000 ROA not before: Tue 10 Sep 2024 05:17:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 17477 IP address blocks: 103.135.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/DAUkO371VhHkCk279_5-kSCSplI.crl rsync://rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/DAUkO371VhHkCk279_5-kSCSplI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAUkO371VhHkCk279_5-kSCSplI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A8E2/serialNumber=0C05243B7EF55611E40A4DBBF7FE7E912092A652 Validity Not Before: Sep 10 05:17:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66dfd67c-d74e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:33:da:f9:6d:dc:82:70:21:33:aa:a8:15:62: ac:13:45:50:af:62:cd:c0:b5:cf:fe:a2:34:3b:2c: 61:12:2f:0a:d8:10:40:cc:61:79:1e:c5:26:da:ef: 0c:09:4d:c9:9e:d0:af:5e:91:cb:d2:4b:4e:0a:c3: 86:a0:24:2e:08:75:9e:4a:53:bc:45:5c:b1:d7:f3: 2c:9c:5f:0b:27:2d:9a:dc:85:91:df:b3:da:14:2a: 77:45:02:95:aa:bc:3b:7e:32:f4:6d:8e:77:1e:2e: ed:cf:8c:a0:fb:32:44:8b:85:67:a9:45:a5:cd:9c: 3d:c5:01:18:61:b9:e3:9d:20:75:d8:16:fa:85:c7: 41:e2:55:b5:0d:96:2b:f0:a9:02:ee:30:5a:f9:a9: 3e:19:66:41:9b:65:61:23:bd:50:dc:7d:e3:66:dd: ab:10:a6:61:60:bd:50:21:fe:85:e7:c7:4a:4d:6b: d3:89:e8:8e:b2:ef:3e:81:9c:30:97:6a:cf:a8:42: 07:05:7e:ad:6a:9d:6d:0e:32:6c:c6:27:d4:c5:3b: a5:92:74:ed:4f:93:d0:b3:ae:b8:48:66:8d:2a:5c: 5a:b4:33:6a:69:a2:df:da:7d:49:ae:49:4a:52:fa: cf:30:09:13:4c:9d:e1:58:63:32:2b:ad:7d:4b:7f: cb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8C:6D:EE:99:32:DE:D2:63:8A:1E:5D:C2:B2:84:97:8E:55:CE:62 X509v3 Authority Key Identifier: keyid:0C:05:24:3B:7E:F5:56:11:E4:0A:4D:BB:F7:FE:7E:91:20:92:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/DAUkO371VhHkCk279_5-kSCSplI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAUkO371VhHkCk279_5-kSCSplI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A8E2/A451D9846F2D11EFB8F39280C4F9AE02/04EFECDA6F3411EF833F4C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.247.0/24 Signature Algorithm: sha256WithRSAEncryption 21:bb:ba:32:f6:85:42:43:a3:2c:4a:83:23:d4:54:45:85:f0: 70:4d:0d:e9:bf:c2:b9:af:77:45:9d:32:ab:53:5c:ea:05:a5: 65:2f:70:15:da:85:e0:6e:6d:88:af:d4:55:d3:68:56:97:ec: 98:30:1f:d2:be:9a:ee:ef:be:4f:6c:89:1a:a9:9f:3e:50:a1: 5e:80:e9:9e:ed:62:84:d2:52:2e:33:69:d8:d9:29:97:f8:1c: 04:1c:a5:90:a4:2c:39:95:69:5f:9f:05:81:29:e7:18:f7:24: d3:45:79:b0:49:5d:21:24:0e:1a:f5:fb:22:83:d8:a5:55:e9: 4e:32:1a:fd:22:db:dc:58:da:96:3b:1a:b5:53:29:28:20:bf: f6:cc:a1:27:f7:48:db:46:65:14:0a:6a:ba:37:7b:c6:cc:4f: fa:6a:b9:a4:0c:8b:5b:7b:16:5e:af:60:d3:7e:38:ae:11:63: 13:ef:e7:6d:50:39:6b:5a:1a:e1:3d:c5:c2:ce:70:9a:a2:3c: b3:73:ac:97:21:b1:0a:05:20:72:93:1f:5d:f2:85:18:d3:89: e4:79:ee:15:32:db:b9:a4:16:fc:06:a5:84:ed:fe:87:f4:f8: c5:82:0f:b2:29:60:e7:48:d8:3b:d5:8c:ed:5b:cd:13:fb:36: 07:6b:b5:99 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QThFMjExMC8GA1UEBRMoMEMwNTI0M0I3RUY1NTYxMUU0MEE0REJCRjdGRTdFOTEy MDkyQTY1MjAeFw0yNDA5MTAwNTE3NDhaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGZkNjdjLWQ3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8M9r5bdyCcCEzqqgVYqwTRVCvYs3Atc/+ojQ7LGESLwrYEEDMYXkexSba7wwJ Tcme0K9ekcvSS04Kw4agJC4IdZ5KU7xFXLHX8yycXwsnLZrchZHfs9oUKndFApWq vDt+MvRtjnceLu3PjKD7MkSLhWepRaXNnD3FARhhueOdIHXYFvqFx0HiVbUNlivw qQLuMFr5qT4ZZkGbZWEjvVDcfeNm3asQpmFgvVAh/oXnx0pNa9OJ6I6y7z6BnDCX as+oQgcFfq1qnW0OMmzGJ9TFO6WSdO1Pk9CzrrhIZo0qXFq0M2ppot/afUmuSUpS +s8wCRNMneFYYzIrrX1Lf8u1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOoxt7pky 3tJjih5dwrKEl45VzmIwHwYDVR0jBBgwFoAUDAUkO371VhHkCk279/5+kSCSplIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBOEUyL0E0NTFEOTg0NkYy RDExRUZCOEYzOTI4MEM0RjlBRTAyL0RBVWtPMzcxVmhIa0NrMjc5XzUta1NDU3Bs SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREFVa08zNzFWaEhrQ2syNzlfNS1rU0NTcGxJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QThFMi9BNDUxRDk4NDZGMkQxMUVGQjhGMzkyODBDNEY5QUUwMi8wNEVGRUNEQTZG MzQxMUVGODMzRjRDMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeH9zANBgkqhkiG9w0BAQsFAAOCAQEAIbu6MvaFQkOjLEqD I9RURYXwcE0N6b/Cua93RZ0yq1Nc6gWlZS9wFdqF4G5tiK/UVdNoVpfsmDAf0r6a 7u++T2yJGqmfPlChXoDpnu1ihNJSLjNp2Nkpl/gcBBylkKQsOZVpX58FgSnnGPck 00V5sEldISQOGvX7IoPYpVXpTjIa/SLb3FjaljsatVMpKCC/9syhJ/dI20ZlFApq ujd7xsxP+mq5pAyLW3sWXq9g0344rhFjE+/nbVA5a1oa4T3Fws5wmqI8s3OslyGx CgUgcpMfXfKFGNOJ5HnuFTLbuaQW/AalhO3+h/T4xYIPsilg50jYO9WM7VvNE/s2 B2u1mQ== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org