$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa File: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (raw, json) Hash identifier: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc= Subject key identifier: 74:C1:80:4B:DA:DE:C6:B5:3A:4B:77:A0:F7:46:58:63:35:73:A3:35 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0F17 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa Signing time: Mon 30 Sep 2024 17:55:49 +0000 ROA not before: Mon 30 Sep 2024 17:55:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.123.75.0/24 maxlen: 24 103.138.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3863 (0xf17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Sep 30 17:55:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66fae625-3a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:06:08:70:76:72:96:0a:2d:a1:e4:b5:b2:33: bd:25:29:aa:f2:e5:9a:49:38:82:16:3d:be:58:82: 82:77:52:bf:e7:da:04:77:3d:ac:9f:42:a3:12:50: 2c:10:c3:06:cb:5f:3c:0f:17:22:80:54:47:88:c1: 49:f6:08:cb:94:95:62:69:4b:16:8a:9c:48:fc:a4: ec:f9:d1:52:d3:6e:6f:78:aa:47:d2:25:cb:43:e7: d4:19:3c:2f:e0:de:9f:b5:2e:42:e7:f6:22:bc:b0: 3e:b6:f9:bd:de:9b:5a:55:47:8a:ae:9d:3b:a8:f9: 39:d9:92:5f:1d:3b:ad:b8:16:a0:9b:c9:da:28:46: 6c:01:eb:1d:41:50:45:3d:25:67:31:d2:3b:17:47: 2d:1f:aa:e0:04:be:83:4a:f4:85:42:bc:9d:81:d4: dc:2d:1a:3f:57:c8:d6:2d:26:f5:e5:3f:13:c0:e3: ce:b0:fd:a8:e9:4b:ce:2e:9e:74:ae:cf:43:cd:45: 43:1a:c6:4d:fe:ff:06:94:a4:72:1e:27:4f:72:b7: da:2c:f9:e2:bf:65:d2:0b:cd:12:ff:c6:c8:29:b0: 47:56:e4:da:a8:5a:ed:f9:8e:8c:62:01:6e:e3:00: aa:7d:23:f0:24:71:04:33:fc:8d:3f:03:f9:6f:2e: c2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C1:80:4B:DA:DE:C6:B5:3A:4B:77:A0:F7:46:58:63:35:73:A3:35 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/0DC698EAAEF011E99D5EFB71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.75.0/24 103.138.11.0/24 Signature Algorithm: sha256WithRSAEncryption 69:23:91:4c:79:f9:d6:95:66:3a:73:fb:9a:88:91:fb:d8:a3: a3:b5:56:25:9e:d3:fd:dd:2c:ce:c9:27:b1:27:8c:81:00:25: bd:85:5b:13:75:91:28:89:49:fc:71:9d:94:74:88:f9:f7:74: 68:8f:0f:a2:dc:58:ee:b3:ab:b8:2a:c0:04:ee:6e:a0:9c:41: fb:63:d5:86:c4:b2:f5:74:58:0a:8a:31:3c:5f:42:c3:42:3b: 3c:95:b6:86:ae:c2:cc:08:34:04:99:ba:92:af:7d:f6:71:be: 1f:6b:4e:78:de:0d:8a:a6:fb:ec:55:26:e8:1c:15:48:96:95: ef:d1:7e:65:14:ab:38:ab:4d:10:66:0a:e7:47:82:9d:6d:16: 2f:f1:c2:2f:6e:dd:2e:d7:78:03:11:f3:1f:bf:31:e0:f4:a7: 02:52:c3:c8:2e:99:e1:94:c6:4b:93:2d:6a:e6:89:21:88:29: 91:f9:45:83:d6:1b:83:e4:81:a2:c2:0b:03:8c:32:14:46:55: ae:52:13:dd:24:81:3e:59:ee:06:da:52:f2:c4:da:72:12:a7: de:02:25:3b:67:ac:66:08:84:9d:6c:53:4e:92:49:77:7c:c6: e3:1b:ce:6b:89:79:bd:e8:c2:20:bc:37:05:77:b5:a5:25:e2: c2:2a:50:94 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjQwOTMwMTc1NTQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhZTYyNS0zYTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogYIcHZylgotoeS1sjO9JSmq8uWaSTiCFj2+WIKCd1K/59oEdz2sn0KjElAs EMMGy188DxcigFRHiMFJ9gjLlJViaUsWipxI/KTs+dFS025veKpH0iXLQ+fUGTwv 4N6ftS5C5/YivLA+tvm93ptaVUeKrp07qPk52ZJfHTutuBagm8naKEZsAesdQVBF PSVnMdI7F0ctH6rgBL6DSvSFQrydgdTcLRo/V8jWLSb15T8TwOPOsP2o6UvOLp50 rs9DzUVDGsZN/v8GlKRyHidPcrfaLPniv2XSC80S/8bIKbBHVuTaqFrt+Y6MYgFu 4wCqfSPwJHEEM/yNPwP5by7CFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHTBgEva 3sa1Okt3oPdGWGM1c6M1MB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE4QkUvOTAxOUQxMjA2NDAxMTFFOThFRjZEQzZGQzRGOUFFMDIvMERDNjk4RUFB RUYwMTFFOTlENUVGQjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABne0sDBABnigswDQYJKoZIhvcNAQELBQADggEBAGkjkUx5 +daVZjpz+5qIkfvYo6O1ViWe0/3dLM7JJ7EnjIEAJb2FWxN1kSiJSfxxnZR0iPn3 dGiPD6LcWO6zq7gqwATubqCcQftj1YbEsvV0WAqKMTxfQsNCOzyVtoauwswINASZ upKvffZxvh9rTnjeDYqm++xVJugcFUiWle/RfmUUqzirTRBmCudHgp1tFi/xwi9u 3S7XeAMR8x+/MeD0pwJSw8gumeGUxkuTLWrmiSGIKZH5RYPWG4PkgaLCCwOMMhRG Va5SE90kgT5Z7gbaUvLE2nISp94CJTtnrGYIhJ1sU06SSXd8xuMbzmuJeb3owiC8 NwV3taUl4sIqUJQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org