$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa File: DFBF502035C111ED8FD8923EC4F9AE02.roa (raw, json) Hash identifier: a5HspkXg0ti25eS6xvTrVJwL67J9Z7ttYryzELXOKF4= Subject key identifier: 92:80:12:F0:C3:C2:AC:AA:12:72:08:1B:00:2C:82:92:86:1F:B3:E2 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0E38 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa Signing time: Tue 24 Sep 2024 17:56:07 +0000 ROA not before: Tue 24 Sep 2024 17:56:07 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134715 IP address blocks: 103.197.176.0/22 maxlen: 23 220.158.236.0/22 maxlen: 24 2403:580::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3640 (0xe38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Sep 24 17:56:07 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2fd37-c02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a8:02:0b:90:02:91:c6:45:6a:01:69:a6:c1: cf:49:48:15:c1:2e:44:5e:36:2a:ff:0a:8e:a9:97: c0:84:9c:9d:5b:14:67:ee:ba:20:fd:4c:ff:2e:c2: 75:5d:ea:13:4c:f9:dc:04:8f:4d:12:6f:92:b8:eb: 27:0e:56:8b:19:fa:7b:41:bb:5c:3f:9e:49:0b:07: 55:f2:75:81:10:84:09:00:86:1d:49:12:2b:59:a1: f0:05:4b:9e:df:ee:c3:8b:d6:ff:b5:77:34:87:28: d3:2f:b4:55:4d:34:00:f3:35:4e:8a:e8:5a:b8:d9: a3:65:b1:99:53:ea:59:7b:91:ec:15:61:ad:d3:fc: a1:aa:25:56:12:15:70:64:8e:02:02:f6:97:3c:e8: ae:1f:56:b5:80:4a:1a:4c:b3:2b:c6:b3:b2:06:65: 82:ce:48:65:5d:80:1c:06:eb:44:d0:08:2c:5a:d0: f5:36:4e:6d:7e:7e:c1:ac:f2:5f:b3:33:0d:d0:46: aa:51:7a:df:b6:66:4d:4a:e1:c4:e9:8d:11:4f:51: 70:c4:ba:57:a1:80:bb:45:8d:8e:d0:16:83:03:08: dd:a7:f8:49:36:c2:54:99:4a:55:59:36:fc:51:66: f9:3c:6e:66:7d:e0:ad:6b:29:f7:f4:e9:ca:e5:fa: 17:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:80:12:F0:C3:C2:AC:AA:12:72:08:1B:00:2C:82:92:86:1F:B3:E2 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DFBF502035C111ED8FD8923EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.176.0/22 220.158.236.0/22 IPv6: 2403:580::/32 Signature Algorithm: sha256WithRSAEncryption 89:46:70:13:31:49:25:e7:33:ca:bc:36:5d:6d:de:67:d0:82: 32:56:e3:03:8c:3b:b6:3e:d5:08:39:17:cb:98:76:6f:69:fb: cf:64:50:d2:ac:20:4a:0e:40:ac:b2:4a:dc:22:8f:1d:d3:d3: 7b:5f:e4:ee:41:3a:f9:a0:5c:24:ca:13:1e:c9:71:f4:fc:78: e8:86:3b:bb:0a:cf:12:b2:1c:04:59:fc:12:00:8a:9a:9e:8b: b3:4b:1d:84:96:4e:0a:24:8f:f7:3f:89:01:b0:5c:05:eb:18: 68:d6:dd:55:0b:0e:5e:97:f7:42:00:bb:2c:12:d2:83:08:89: 7e:de:d9:1d:28:f3:ff:67:d3:1c:ec:36:62:30:16:1b:a9:82: 5d:8c:09:e6:45:e8:fc:74:0a:81:d1:43:d0:cb:54:67:5c:9a: de:1b:21:63:be:aa:72:c7:65:4e:ba:82:d5:94:3d:e8:38:d2: 17:84:85:d5:da:ee:4a:d5:2b:a0:de:f2:61:2d:65:3b:55:a6: bc:4a:ea:22:ba:1c:1e:8b:f0:cd:61:87:76:69:5b:8c:15:e0: 26:1e:ae:64:63:4a:70:9b:02:db:0d:d7:d7:16:20:3e:ca:34: 59:e2:9f:2f:1e:56:46:8b:9a:c8:32:83:46:2a:15:76:5c:69: 29:f1:4e:ef -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjQwOTI0MTc1NjA3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZmQzNy1jMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtagCC5ACkcZFagFppsHPSUgVwS5EXjYq/wqOqZfAhJydWxRn7rog/Uz/LsJ1 XeoTTPncBI9NEm+SuOsnDlaLGfp7QbtcP55JCwdV8nWBEIQJAIYdSRIrWaHwBUue 3+7Di9b/tXc0hyjTL7RVTTQA8zVOiuhauNmjZbGZU+pZe5HsFWGt0/yhqiVWEhVw ZI4CAvaXPOiuH1a1gEoaTLMrxrOyBmWCzkhlXYAcButE0AgsWtD1Nk5tfn7BrPJf szMN0EaqUXrftmZNSuHE6Y0RT1FwxLpXoYC7RY2O0BaDAwjdp/hJNsJUmUpVWTb8 UWb5PG5mfeCtayn39OnK5foXIQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJKAEvDD wqyqEnIIGwAsgpKGH7PiMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYzMUMvQTlDMzE3MDQ4QzIzMTFFOTlGODQ1RDcyQzRGOUFFMDIvREZCRjUwMjAz NUMxMTFFRDhGRDg5MjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnxbADBALcnuwwDQQCAAIwBwMFACQDBYAwDQYJKoZIhvcN AQELBQADggEBAIlGcBMxSSXnM8q8Nl1t3mfQgjJW4wOMO7Y+1Qg5F8uYdm9p+89k UNKsIEoOQKyyStwijx3T03tf5O5BOvmgXCTKEx7JcfT8eOiGO7sKzxKyHARZ/BIA ipqei7NLHYSWTgokj/c/iQGwXAXrGGjW3VULDl6X90IAuywS0oMIiX7e2R0o8/9n 0xzsNmIwFhupgl2MCeZF6Px0CoHRQ9DLVGdcmt4bIWO+qnLHZU66gtWUPeg40heE hdXa7krVK6De8mEtZTtVprxK6iK6HB6L8M1hh3ZpW4wV4CYermRjSnCbAtsN19cW ID7KNFniny8eVkaLmsgyg0YqFXZcaSnxTu8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org