$ rpki-client -vvf rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa File: 002F950CFF6611EABE77DA4FC4F9AE02.roa (raw, json) Hash identifier: i6cG/zwGHDxZhgko6olaCJkVcCmriXcczI+8bQ1+3KU= Subject key identifier: 17:87:45:18:9C:C0:95:17:55:FF:B8:92:E6:D8:81:63:34:F1:BD:89 Certificate issuer: /CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Certificate serial: 0718 Authority key identifier: 4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa Signing time: Wed 26 Jun 2024 19:51:23 +0000 ROA not before: Wed 26 Jun 2024 19:51:23 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135353 IP address blocks: 103.214.216.0/24 maxlen: 24 103.214.217.0/24 maxlen: 24 103.214.218.0/24 maxlen: 24 103.214.219.0/24 maxlen: 24 144.48.160.0/24 maxlen: 24 144.48.161.0/24 maxlen: 24 144.48.162.0/24 maxlen: 24 144.48.163.0/24 maxlen: 24 2404:ba40::/32 maxlen: 32 2404:ba40::/48 maxlen: 48 2404:ba40:1::/48 maxlen: 48 2404:ba40:2::/48 maxlen: 48 2404:ba40:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CDDF/serialNumber=4FFA528C6E467ED458F535FC5C6DD9DBED0CE737 Validity Not Before: Jun 26 19:51:23 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667c713b-740c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f7:c4:88:9c:4f:85:4e:87:90:13:c4:69:4a: 18:cf:6b:80:9e:b4:57:6e:4e:f2:e9:af:e5:44:89: 59:43:da:72:cd:16:4b:3a:33:5d:d1:5d:e7:30:48: f5:c7:6a:76:5e:35:ee:39:71:4d:a5:43:75:47:b6: de:80:41:63:1b:dd:a4:99:90:cc:c8:ae:67:74:30: 2a:77:0a:0f:f2:c4:5f:46:45:02:b2:3c:4e:da:20: ed:89:42:8d:57:0b:bf:a2:49:58:07:63:8a:c9:d2: 6c:1e:e5:31:fb:be:56:e6:9f:d8:ee:bd:d3:f6:63: bb:44:63:03:07:73:bd:d1:30:f6:56:d5:cc:3e:b0: 36:9b:80:34:c5:aa:d6:2c:3d:6c:9d:0e:b4:c8:28: 3e:76:15:5e:cd:fb:28:d0:fa:9f:40:51:83:2f:da: 01:fc:2e:ab:aa:96:ca:57:89:f2:29:17:71:06:b6: c4:f3:af:7d:26:ce:66:49:f9:f8:f8:7f:2f:b7:71: 23:aa:32:76:94:d3:af:2b:df:19:ff:38:87:6e:d5: 5d:67:20:08:f9:1f:f7:71:07:8b:fc:b5:87:15:d7: 8b:62:76:12:ef:ec:9e:2d:51:a6:19:77:14:25:b6: cd:c9:7e:e6:61:33:c2:99:af:47:97:b1:d0:3b:f4: ea:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:87:45:18:9C:C0:95:17:55:FF:B8:92:E6:D8:81:63:34:F1:BD:89 X509v3 Authority Key Identifier: keyid:4F:FA:52:8C:6E:46:7E:D4:58:F5:35:FC:5C:6D:D9:DB:ED:0C:E7:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/T_pSjG5GftRY9TX8XG3Z2-0M5zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T_pSjG5GftRY9TX8XG3Z2-0M5zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CDDF/26608D46107211EAAC06B079C4F9AE02/002F950CFF6611EABE77DA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.216.0/22 144.48.160.0/22 IPv6: 2404:ba40::/32 Signature Algorithm: sha256WithRSAEncryption 59:1f:36:f1:49:36:c2:c3:19:cb:17:47:25:be:b5:ca:2d:23: 8c:3a:b1:99:4b:70:b5:88:26:b0:e7:39:e8:a8:79:9c:05:d5: 66:d8:1f:6e:4e:ec:fb:c0:27:07:ff:09:66:16:24:6b:89:57: 8c:49:da:8a:2d:d8:3a:8b:98:c0:72:d3:ce:7d:13:da:67:49: f9:d1:71:60:08:d2:be:e6:2e:c6:63:0c:00:1c:b2:b5:f9:66: 47:7f:76:60:9a:78:7f:d7:9d:b3:6e:ae:53:dd:49:c7:5e:f0: c8:26:57:38:01:8d:55:b3:0f:f3:33:22:bd:2d:57:63:cd:a2: 82:52:82:5e:e5:97:c7:a4:c2:a8:fa:de:c6:73:40:9a:14:c0: 5e:db:44:8a:22:ad:c6:e5:49:ea:2c:c1:46:3b:28:34:bd:e0: f9:64:13:2b:e7:f6:d7:e8:28:c0:d6:85:65:45:a9:e3:56:8a: 3b:66:20:2c:7c:54:f5:23:70:9a:21:75:74:43:33:3d:e3:d1: 6c:26:ae:95:19:1e:4c:86:34:86:9c:27:b0:22:49:d3:88:43: cc:39:b2:a8:bb:33:f6:b1:ef:00:59:ac:d3:88:a9:60:27:eb: fe:ae:1b:d8:9a:21:c4:98:06:b3:6b:d1:7a:9e:da:5b:da:e6: e0:20:d9:f2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNEREYxMTAvBgNVBAUTKDRGRkE1MjhDNkU0NjdFRDQ1OEY1MzVGQzVDNkREOURC RUQwQ0U3MzcwHhcNMjQwNjI2MTk1MTIzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjNzEzYi03NDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/fEiJxPhU6HkBPEaUoYz2uAnrRXbk7y6a/lRIlZQ9pyzRZLOjNd0V3nMEj1 x2p2XjXuOXFNpUN1R7begEFjG92kmZDMyK5ndDAqdwoP8sRfRkUCsjxO2iDtiUKN Vwu/oklYB2OKydJsHuUx+75W5p/Y7r3T9mO7RGMDB3O90TD2VtXMPrA2m4A0xarW LD1snQ60yCg+dhVezfso0PqfQFGDL9oB/C6rqpbKV4nyKRdxBrbE8699Js5mSfn4 +H8vt3EjqjJ2lNOvK98Z/ziHbtVdZyAI+R/3cQeL/LWHFdeLYnYS7+yeLVGmGXcU JbbNyX7mYTPCma9Hl7HQO/Tq1QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBeHRRic wJUXVf+4kubYgWM08b2JMB8GA1UdIwQYMBaAFE/6UoxuRn7UWPU1/Fxt2dvtDOc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0RERi8yNjYwOEQ0NjEw NzIxMUVBQUMwNkIwNzlDNEY5QUUwMi9UX3BTakc1R2Z0Ulk5VFg4WEczWjItME01 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RfcFNqRzVHZnRSWTlUWDhYRzNaMi0wTTV6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNEREYvMjY2MDhENDYxMDcyMTFFQUFDMDZCMDc5QzRGOUFFMDIvMDAyRjk1MENG RjY2MTFFQUJFNzdEQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1tgDBAKQMKAwDQQCAAIwBwMFACQEukAwDQYJKoZIhvcN AQELBQADggEBAFkfNvFJNsLDGcsXRyW+tcotI4w6sZlLcLWIJrDnOeioeZwF1WbY H25O7PvAJwf/CWYWJGuJV4xJ2oot2DqLmMBy0859E9pnSfnRcWAI0r7mLsZjDAAc srX5Zkd/dmCaeH/XnbNurlPdScde8MgmVzgBjVWzD/MzIr0tV2PNooJSgl7ll8ek wqj63sZzQJoUwF7bRIoircblSeoswUY7KDS94PlkEyvn9tfoKMDWhWVFqeNWijtm ICx8VPUjcJohdXRDMz3j0WwmrpUZHkyGNIacJ7AiSdOIQ8w5sqi7M/ax7wBZrNOI qWAn6/6uG9iaIcSYBrNr0Xqe2lva5uAg2fI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org