$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/F1C686AA1D5811EFA8D26E3EC4F9AE02.roa File: F1C686AA1D5811EFA8D26E3EC4F9AE02.roa (raw, json) Hash identifier: BpRU5vtlWu8GxUpnxUXfCoGbkigqKOaTyGe8e4bcbw8= Subject key identifier: D5:BE:21:FC:A0:47:8A:5A:9E:C6:BD:94:A0:47:60:6C:6C:CC:38:60 Certificate issuer: /CN=A917AF13/serialNumber=3DF69CA98CB131E965B5BC4A33FCE71B9D35E7A8 Certificate serial: 069A Authority key identifier: 3D:F6:9C:A9:8C:B1:31:E9:65:B5:BC:4A:33:FC:E7:1B:9D:35:E7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PfacqYyxMelltbxKM_znG50156g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/F1C686AA1D5811EFA8D26E3EC4F9AE02.roa Signing time: Wed 29 May 2024 01:15:32 +0000 ROA not before: Wed 29 May 2024 01:15:32 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58507 IP address blocks: 103.81.124.0/22 maxlen: 24 2400:70c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/PfacqYyxMelltbxKM_znG50156g.crl rsync://rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/PfacqYyxMelltbxKM_znG50156g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PfacqYyxMelltbxKM_znG50156g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF13/serialNumber=3DF69CA98CB131E965B5BC4A33FCE71B9D35E7A8 Validity Not Before: May 29 01:15:32 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=665681b4-8933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:56:e4:54:25:9b:f1:32:9b:e2:f3:05:d9:ac: 26:2c:a1:cd:30:99:2b:22:fe:81:08:f1:32:7d:d1: 11:0e:2e:47:4c:e2:54:1f:7c:7a:a9:a5:16:87:b5: 30:61:1d:a3:7a:b4:d6:24:7d:c7:b8:97:01:24:a3: f7:24:88:59:b6:79:a6:28:0d:8e:74:1d:ba:b6:b3: 14:ff:6d:d3:ef:0a:3f:e4:b8:e1:f3:0c:c7:a0:7e: 69:d2:0d:b7:10:4f:34:89:8f:3f:03:02:9d:2b:12: 19:2a:f6:3f:d9:12:4a:5c:3c:31:d8:93:d6:94:94: 78:f6:ef:df:86:b5:e9:d0:49:a4:9a:ca:ac:5c:f6: c0:c7:98:35:3c:ee:e2:5a:dc:c5:0b:15:ff:57:46: c0:39:d6:be:99:71:18:23:b7:d3:13:4d:d7:24:04: 9c:6d:6a:a2:41:1d:69:f8:c5:d9:9a:55:78:6a:33: ef:91:69:26:fa:92:e1:49:e5:aa:a0:49:bf:9c:25: 79:db:c7:0b:1f:74:6d:23:e9:ae:d3:fa:ba:8d:3b: 37:09:8c:3f:60:d0:a2:ee:9f:c8:39:4b:8a:51:e3: d7:4c:75:12:0a:88:80:b6:09:70:9f:9a:02:30:f7: ce:f9:6e:5a:4d:c2:f2:eb:50:ff:3b:df:84:05:b9: ab:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BE:21:FC:A0:47:8A:5A:9E:C6:BD:94:A0:47:60:6C:6C:CC:38:60 X509v3 Authority Key Identifier: keyid:3D:F6:9C:A9:8C:B1:31:E9:65:B5:BC:4A:33:FC:E7:1B:9D:35:E7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/PfacqYyxMelltbxKM_znG50156g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PfacqYyxMelltbxKM_znG50156g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF13/538732FE294C11EBA6BF6D31C4F9AE02/F1C686AA1D5811EFA8D26E3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.124.0/22 IPv6: 2400:70c0::/32 Signature Algorithm: sha256WithRSAEncryption c2:8e:ff:52:d0:3c:4d:74:29:40:d9:d7:d0:c8:ea:20:75:5e: b8:1e:dd:15:20:81:c7:0a:c9:57:2b:8b:70:93:f4:2d:79:84: 7f:a2:7d:82:e5:fc:f8:89:59:1c:f5:d9:5d:87:5f:2a:ee:43: 83:0f:ba:cf:ed:72:ea:0f:8d:9e:f6:98:e3:b2:43:42:53:b1: d3:66:96:74:4e:1c:39:8a:01:d7:36:c4:fd:c5:08:06:7a:04: 12:95:a3:50:a4:9f:10:4c:36:1e:ec:7b:b6:e0:91:f9:4e:3d: 40:3f:2d:19:25:63:e7:62:f5:19:29:b4:4e:72:97:e7:5d:8e: ac:ae:24:d9:8d:22:ed:11:bf:af:a6:c4:93:50:33:09:aa:ee: 5d:91:1a:c9:39:6d:07:66:54:8f:3c:de:41:b8:06:ac:82:b8: a0:a4:e9:0c:82:eb:2c:18:df:59:07:f9:2b:b3:ad:6c:00:72: b4:5f:68:23:c4:e8:97:4b:be:24:14:57:30:7a:1a:6a:78:59: fc:d4:65:38:c7:9c:1c:8e:0e:54:a6:3a:bb:38:1e:fe:ee:44: d5:97:9a:60:89:c0:5d:c9:42:ca:68:c8:5b:3c:93:df:6e:1b: 1a:cb:0c:b2:d7:97:33:10:2c:01:71:68:1c:9e:48:6a:1c:9e: e7:95:a0:13 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMTMxMTAvBgNVBAUTKDNERjY5Q0E5OENCMTMxRTk2NUI1QkM0QTMzRkNFNzFC OUQzNUU3QTgwHhcNMjQwNTI5MDExNTMyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2ODFiNC04OTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FbkVCWb8TKb4vMF2awmLKHNMJkrIv6BCPEyfdERDi5HTOJUH3x6qaUWh7Uw YR2jerTWJH3HuJcBJKP3JIhZtnmmKA2OdB26trMU/23T7wo/5Ljh8wzHoH5p0g23 EE80iY8/AwKdKxIZKvY/2RJKXDwx2JPWlJR49u/fhrXp0EmkmsqsXPbAx5g1PO7i WtzFCxX/V0bAOda+mXEYI7fTE03XJAScbWqiQR1p+MXZmlV4ajPvkWkm+pLhSeWq oEm/nCV528cLH3RtI+mu0/q6jTs3CYw/YNCi7p/IOUuKUePXTHUSCoiAtglwn5oC MPfO+W5aTcLy61D/O9+EBbmrtwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNW+Ifyg R4pansa9lKBHYGxszDhgMB8GA1UdIwQYMBaAFD32nKmMsTHpZbW8SjP85xudNeeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYxMy81Mzg3MzJGRTI5 NEMxMUVCQTZCRjZEMzFDNEY5QUUwMi9QZmFjcVl5eE1lbGx0YnhLTV96bkc1MDE1 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BmYWNxWXl4TWVsbHRieEtNX3puRzUwMTU2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGMTMvNTM4NzMyRkUyOTRDMTFFQkE2QkY2RDMxQzRGOUFFMDIvRjFDNjg2QUEx RDU4MTFFRkE4RDI2RTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnUXwwDQQCAAIwBwMFACQAcMAwDQYJKoZIhvcNAQELBQAD ggEBAMKO/1LQPE10KUDZ19DI6iB1Xrge3RUggccKyVcri3CT9C15hH+ifYLl/PiJ WRz12V2HXyruQ4MPus/tcuoPjZ72mOOyQ0JTsdNmlnROHDmKAdc2xP3FCAZ6BBKV o1CknxBMNh7se7bgkflOPUA/LRklY+di9RkptE5yl+ddjqyuJNmNIu0Rv6+mxJNQ Mwmq7l2RGsk5bQdmVI883kG4BqyCuKCk6QyC6ywY31kH+SuzrWwAcrRfaCPE6JdL viQUVzB6Gmp4WfzUZTjHnByODlSmOrs4Hv7uRNWXmmCJwF3JQspoyFs8k99uGxrL DLLXlzMQLAFxaByeSGocnueVoBM= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org