$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa File: DFDEC4D007A411EFAB20A473C4F9AE02.roa (raw, json) Hash identifier: PGS5VhTr1DCXehAFd1ANgs/kmJnDFu9yzCbFFpOqU30= Subject key identifier: B0:28:FD:E3:27:AC:0F:6C:2F:2D:C4:96:E1:2D:51:A8:93:71:44:EA Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 03 Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa Signing time: Wed 01 May 2024 10:23:39 +0000 ROA not before: Wed 01 May 2024 10:23:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152710 IP address blocks: 103.49.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: May 1 10:23:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6632182a-48e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c0:92:bf:d8:5c:93:d2:7f:9c:90:36:b3:f1: dd:98:d7:ae:0b:d5:02:2d:b4:4f:07:d2:89:1e:52: 83:91:5e:0a:f6:6d:74:a2:1a:70:aa:71:28:31:71: d5:bc:f7:fb:3f:5b:e6:70:f5:03:fa:aa:77:6d:35: bc:cc:96:05:81:a0:80:f2:bf:01:de:ff:68:b1:03: 26:de:37:d8:5d:65:ab:e0:38:a2:a0:6c:84:dd:74: 61:64:31:96:3d:3f:57:39:34:b6:3d:99:ac:68:6a: 2b:d2:fc:5f:0d:2f:96:9b:49:cf:09:7d:40:ee:7b: 1f:20:5e:7f:06:f9:40:b1:b7:e9:48:42:95:5a:4d: 56:df:dc:03:bd:a7:e6:8f:f5:eb:f5:fe:f5:84:0d: 79:51:d4:21:44:93:38:ac:7d:1c:7d:c4:49:73:1c: d6:12:92:d1:97:35:e2:48:0f:75:7c:7c:36:97:aa: c8:f4:2e:ab:02:6a:8b:aa:92:c0:15:c2:73:36:46: 12:59:68:db:0d:43:61:33:07:c3:f7:8e:f7:99:76: da:32:25:ef:60:bd:c7:46:89:97:c5:2a:89:75:bf: cd:1e:8d:72:6d:e1:20:0a:45:f4:77:fe:db:da:c7: 62:7b:71:63:d3:72:5f:eb:49:e4:62:1e:07:2b:8b: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:28:FD:E3:27:AC:0F:6C:2F:2D:C4:96:E1:2D:51:A8:93:71:44:EA X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/DFDEC4D007A411EFAB20A473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.124.0/24 Signature Algorithm: sha256WithRSAEncryption 24:9e:04:89:14:2c:1e:e8:1a:e5:62:ff:f5:4b:0e:02:56:4b: 1d:1a:39:68:d4:b9:12:7b:9e:76:a2:67:3d:3d:ad:d6:c8:1c: 37:65:58:2a:c4:7e:99:20:16:c5:ea:ce:6c:39:76:d3:08:40: c0:d0:3f:e3:d2:99:db:25:3c:30:72:bd:29:7e:f1:7e:ce:46: 6f:80:bb:c4:40:49:42:33:b1:3e:07:86:cf:21:bf:f3:af:36: 6a:b8:22:29:1a:fe:b3:2b:4b:9f:12:33:cb:5e:7c:23:3e:20: fe:34:7c:69:6f:b2:2c:a0:e7:84:1e:5d:32:88:1b:d8:ed:09: 17:fa:06:ff:bd:90:1d:f5:30:f8:54:92:15:56:04:08:99:f1: 1f:cb:17:7d:3b:da:ba:22:28:a0:a0:35:87:bf:57:84:3b:9a: 8d:3c:57:4e:8b:be:da:88:fe:0e:61:eb:23:45:8e:f3:9c:3c: 26:41:d4:a3:dc:84:f6:2c:51:1a:55:c6:ec:d5:fb:35:fc:a0: 0c:7a:dd:f1:77:d8:d5:35:f6:60:e6:e8:14:ec:00:b4:bb:94: 5a:98:f4:57:62:6f:46:1a:59:86:bf:59:6b:97:6a:0a:c8:ef: bf:21:f1:75:c5:d0:01:8c:db:bf:69:37:f9:a7:03:e9:dc:8f: 00:6f:11:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDlCODExMC8GA1UEBRMoNTY3ODI2MTYyNzU0QjQ2MENCNTg2NkRBQzMxNDg4MEM3 MDM1NDYxRDAeFw0yNDA1MDExMDIzMzhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzIxODJhLTQ4ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdwJK/2FyT0n+ckDaz8d2Y164L1QIttE8H0okeUoORXgr2bXSiGnCqcSgxcdW8 9/s/W+Zw9QP6qndtNbzMlgWBoIDyvwHe/2ixAybeN9hdZavgOKKgbITddGFkMZY9 P1c5NLY9maxoaivS/F8NL5abSc8JfUDuex8gXn8G+UCxt+lIQpVaTVbf3AO9p+aP 9ev1/vWEDXlR1CFEkzisfRx9xElzHNYSktGXNeJID3V8fDaXqsj0LqsCaouqksAV wnM2RhJZaNsNQ2EzB8P3jveZdtoyJe9gvcdGiZfFKol1v80ejXJt4SAKRfR3/tva x2J7cWPTcl/rSeRiHgcriyONAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsCj94yes D2wvLcSW4S1RqJNxROowHwYDVR0jBBgwFoAUVngmFidUtGDLWGbawxSIDHA1Rh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOUI4L0M4QjFENDRFMDdB MTExRUY4NEYzRDI2QUM0RjlBRTAyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVm5nbUZpZFV0R0RMV0diYXd4U0lESEExUmgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlCOC9DOEIxRDQ0RTA3QTExMUVGODRGM0QyNkFDNEY5QUUwMi9ERkRFQzREMDA3 QTQxMUVGQUIyMEE0NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcxfDANBgkqhkiG9w0BAQsFAAOCAQEAJJ4EiRQsHuga5WL/ 9UsOAlZLHRo5aNS5EnuedqJnPT2t1sgcN2VYKsR+mSAWxerObDl20whAwNA/49KZ 2yU8MHK9KX7xfs5Gb4C7xEBJQjOxPgeGzyG/8682argiKRr+sytLnxIzy158Iz4g /jR8aW+yLKDnhB5dMogb2O0JF/oG/72QHfUw+FSSFVYECJnxH8sXfTvauiIooKA1 h79XhDuajTxXTou+2oj+DmHrI0WO85w8JkHUo9yE9ixRGlXG7NX7NfygDHrd8XfY 1TX2YOboFOwAtLuUWpj0V2JvRhpZhr9Za5dqCsjvvyHxdcXQAYzbv2k3+acD6dyP AG8RgQ== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:29 2024 by rpki-client on console-fra.rpki-client.org