$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa File: B62B9156280611ED8BEBC536C4F9AE02.roa (raw, json) Hash identifier: G9R6UKF81vPpeZEj71HVNBUREkX7yk3WJ1Q6tTRHYYM= Subject key identifier: 24:2C:AB:ED:CB:43:B1:53:E2:EB:F6:41:E6:1A:C7:66:30:A4:71:99 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 1561 Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa Signing time: Fri 12 Jul 2024 17:54:54 +0000 ROA not before: Fri 12 Jul 2024 17:54:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149167 IP address blocks: 103.239.74.0/24 maxlen: 24 103.239.75.0/24 maxlen: 24 203.167.23.0/24 maxlen: 24 2405:f080:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5473 (0x1561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Jul 12 17:54:54 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66916dee-9a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:62:29:59:82:90:34:16:1f:b5:5a:58:ac:39: eb:c5:13:44:4e:10:45:c5:14:a8:d2:b5:7f:5d:10: 33:f1:92:17:a6:c6:86:46:9d:f7:47:b9:4a:26:26: 2b:f2:e6:8e:56:16:ee:10:04:1e:76:94:24:09:9f: 52:fb:f6:93:04:61:9c:66:dd:cf:93:17:4e:28:dd: 33:db:15:d7:b0:f9:df:c4:c6:93:f4:9b:b1:ef:b9: 1e:4c:8d:b9:79:28:3b:0f:9c:d0:26:50:60:22:72: 8e:92:03:cc:e8:af:ac:c2:26:52:a9:e1:a8:a0:48: f2:ca:a6:ac:1f:f8:90:dd:6a:69:00:53:03:33:4c: ea:50:48:0a:85:8b:4f:49:5a:97:92:11:d3:5b:55: 04:88:5d:a5:61:2c:30:db:ab:dc:0d:be:4e:91:6e: 35:c4:ae:d9:85:83:82:e2:07:41:1e:3c:f3:0e:83: c7:05:c9:da:59:6f:7f:ac:16:74:2f:62:52:63:5c: ec:cc:b3:ab:f0:76:c4:38:c5:5f:ee:23:e5:da:04: 9a:df:ff:f2:38:b1:81:e5:bc:36:f1:7f:f4:47:d9: cf:84:1c:12:b7:bc:0a:31:d1:f6:8e:b9:5b:6e:24: 91:bf:c3:e4:cc:4d:3f:a3:d2:0a:5a:d6:5e:29:66: 16:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2C:AB:ED:CB:43:B1:53:E2:EB:F6:41:E6:1A:C7:66:30:A4:71:99 X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/B62B9156280611ED8BEBC536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.74.0/23 203.167.23.0/24 IPv6: 2405:f080:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 29:d8:33:2a:aa:a8:c9:17:f0:70:54:d2:83:08:8a:d2:43:53: e0:fd:61:b3:9c:7b:cc:e5:40:3b:50:61:a6:98:65:61:42:bc: 5e:45:2a:2d:3b:ae:70:69:65:7c:8b:6c:90:24:b8:71:36:5c: 86:8a:89:a7:72:66:6f:fc:76:cf:49:a7:f1:d5:24:5d:51:a9: de:e8:17:36:5c:cc:53:7a:c5:6d:21:2a:bf:f5:01:6e:c6:65: ae:9b:e1:ac:2f:2a:52:cc:5a:c5:f4:52:79:ec:20:2f:e3:c0: b6:f3:aa:71:1c:3d:28:16:b5:38:90:33:7b:b8:05:5f:e5:c9: f5:61:fa:af:63:15:31:7c:50:4a:92:7f:48:ba:df:8b:80:81: 62:e9:78:8d:59:5f:47:ef:60:47:99:9b:54:21:4c:cf:04:e6: ef:4d:bd:53:a0:d9:dd:68:3a:dd:63:9b:03:af:ba:27:17:c3: 9e:d7:b9:c3:1d:e4:5e:3a:83:53:51:09:b8:a4:17:00:f2:e9: 35:06:38:d3:fa:20:52:27:c6:52:73:93:c2:c7:6e:f5:b0:4c: 4b:b3:94:09:e1:83:e2:6a:98:83:2b:71:05:48:50:15:94:4f: 29:2b:df:47:8e:01:54:cc:2c:b9:37:61:26:4e:02:0e:f1:34: 66:e3:b0:ef -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICFWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjQwNzEyMTc1NDU0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxNmRlZS05YTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGIpWYKQNBYftVpYrDnrxRNEThBFxRSo0rV/XRAz8ZIXpsaGRp33R7lKJiYr 8uaOVhbuEAQedpQkCZ9S+/aTBGGcZt3PkxdOKN0z2xXXsPnfxMaT9Jux77keTI25 eSg7D5zQJlBgInKOkgPM6K+swiZSqeGooEjyyqasH/iQ3WppAFMDM0zqUEgKhYtP SVqXkhHTW1UEiF2lYSww26vcDb5OkW41xK7ZhYOC4gdBHjzzDoPHBcnaWW9/rBZ0 L2JSY1zszLOr8HbEOMVf7iPl2gSa3//yOLGB5bw28X/0R9nPhBwSt7wKMdH2jrlb biSRv8PkzE0/o9IKWtZeKWYWiwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCQsq+3L Q7FT4uv2QeYax2YwpHGZMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U2NzgvNzI1ODNBRkE2OTU3MTFFOEE0MkJFNjgwQzRGOUFFMDIvQjYyQjkxNTYy ODA2MTFFRDhCRUJDNTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAFn70oDBADLpxcwDgQCAAIwCAMGACQF8ID/MA0GCSqGSIb3 DQEBCwUAA4IBAQAp2DMqqqjJF/BwVNKDCIrSQ1Pg/WGznHvM5UA7UGGmmGVhQrxe RSotO65waWV8i2yQJLhxNlyGiomncmZv/HbPSafx1SRdUane6Bc2XMxTesVtISq/ 9QFuxmWum+GsLypSzFrF9FJ57CAv48C286pxHD0oFrU4kDN7uAVf5cn1YfqvYxUx fFBKkn9Iut+LgIFi6XiNWV9H72BHmZtUIUzPBObvTb1ToNndaDrdY5sDr7onF8Oe 17nDHeReOoNTUQm4pBcA8uk1BjjT+iBSJ8ZSc5PCx271sExLs5QJ4YPiapiDK3EF SFAVlE8pK99HjgFUzCy5N2EmTgIO8TRm47Dv -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:00 2024 by rpki-client on console-fra.rpki-client.org