$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa File: 354FE56C6C5111EC9FF8F481C4F9AE02.roa (raw, json) Hash identifier: yLsbLNfO8+GYafdqIv83Nfi6PSWJ/614Kmn3tZCnkTY= Subject key identifier: 15:E8:DE:71:2B:71:C4:00:0A:4F:85:F1:4C:B9:22:36:00:8C:32:32 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 12E6 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa Signing time: Mon 14 Oct 2024 17:25:22 +0000 ROA not before: Mon 14 Oct 2024 17:25:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139074 IP address blocks: 103.130.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4838 (0x12e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Oct 14 17:25:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670d5402-db75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:52:c0:4e:46:90:3c:d1:8d:cb:65:fc:35:00: 1d:91:e0:8b:1f:aa:51:f5:eb:cb:4b:95:c3:d7:35: fb:39:c7:da:40:34:cf:87:d7:ae:e6:ac:40:b2:80: 54:89:be:53:22:4b:62:01:d1:cf:c1:45:d2:cb:93: 92:71:5e:77:dd:d5:b7:aa:21:27:a4:c7:89:6a:26: 76:15:64:65:56:a1:56:f2:67:4c:bf:90:31:03:18: 15:fe:42:17:23:00:49:24:eb:ed:2f:f2:11:93:3e: a1:cd:ef:9c:a6:90:cb:16:b0:04:2e:af:13:b1:80: cd:a3:1f:0c:f2:65:d9:75:f5:86:59:29:3b:40:fc: a0:21:68:81:bb:b7:2f:e4:e4:5c:7a:44:49:0d:de: 5b:5d:6c:74:57:76:69:c0:90:1b:98:c2:6d:57:73: 8f:6e:19:ab:39:b2:39:cd:40:2b:0f:5a:02:ca:f8: a6:b8:22:23:8a:fe:af:3c:49:5b:f9:6f:23:c5:62: da:8f:87:be:30:67:f6:d5:ba:3b:71:b4:42:34:b6: 89:4c:cf:56:cc:a7:f8:07:68:5a:44:aa:5b:63:18: 0f:8e:8e:99:c2:0f:2b:5a:56:85:2e:75:a6:c7:83: 21:ec:2e:bc:06:9d:53:0e:d5:cb:8f:19:09:b2:e0: ff:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:E8:DE:71:2B:71:C4:00:0A:4F:85:F1:4C:B9:22:36:00:8C:32:32 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/354FE56C6C5111EC9FF8F481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.68.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:51:9e:d1:60:b6:0c:34:19:47:9d:b9:30:54:fc:21:99:26: a9:8a:c4:c5:41:1f:71:a8:64:ab:46:91:5a:49:06:f3:87:c5: a7:80:4c:cc:62:59:cb:b4:8b:b4:1b:fb:ca:f3:f2:cc:8c:d7: 39:ef:b7:5b:b7:67:b3:8f:34:e9:a3:0d:7e:1c:4a:51:b0:d4: 7b:71:d8:09:38:d4:8f:e3:2f:b9:ff:48:31:c6:09:b6:6e:6a: 76:2e:9b:85:b6:14:9f:46:18:02:57:26:e4:71:95:b6:da:21: 1c:d5:7f:39:36:84:b1:42:2d:d0:14:d4:b0:99:fa:82:db:a2: 4a:22:3f:b8:4c:55:bc:a2:5e:bc:c7:56:12:8f:96:b2:3a:c8: bf:57:6c:24:67:50:10:99:8f:85:e4:d0:e3:5f:21:45:19:39: d2:33:77:00:a1:48:b6:e7:37:16:3f:9f:79:fe:84:e6:12:03: 50:7f:ce:68:28:bf:61:49:25:6b:b3:e6:7d:3f:5e:1d:4c:27: 01:f9:7d:e7:a8:89:15:96:da:20:81:8d:bc:e4:55:ec:d3:69: 6f:da:e5:c5:7c:44:65:55:7a:c5:0d:d1:d9:7d:29:7d:70:93: 90:6b:cc:18:14:65:fd:1a:68:2a:49:43:6d:4f:c0:97:71:70: 3d:8b:38:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjQxMDE0MTcyNTIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkNTQwMi1kYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFLATkaQPNGNy2X8NQAdkeCLH6pR9evLS5XD1zX7OcfaQDTPh9eu5qxAsoBU ib5TIktiAdHPwUXSy5OScV533dW3qiEnpMeJaiZ2FWRlVqFW8mdMv5AxAxgV/kIX IwBJJOvtL/IRkz6hze+cppDLFrAELq8TsYDNox8M8mXZdfWGWSk7QPygIWiBu7cv 5ORcekRJDd5bXWx0V3ZpwJAbmMJtV3OPbhmrObI5zUArD1oCyvimuCIjiv6vPElb +W8jxWLaj4e+MGf21bo7cbRCNLaJTM9WzKf4B2haRKpbYxgPjo6Zwg8rWlaFLnWm x4Mh7C68Bp1TDtXLjxkJsuD/EwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBXo3nEr ccQACk+F8Uy5IjYAjDIyMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM0N0UvQkNFREY0NDJCMEJGMTFFODg2MzkyMjM3QzRGOUFFMDIvMzU0RkU1NkM2 QzUxMTFFQzlGRjhGNDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngkQwDQYJKoZIhvcNAQELBQADggEBAApRntFgtgw0GUed uTBU/CGZJqmKxMVBH3GoZKtGkVpJBvOHxaeATMxiWcu0i7Qb+8rz8syM1znvt1u3 Z7OPNOmjDX4cSlGw1Htx2Ak41I/jL7n/SDHGCbZuanYum4W2FJ9GGAJXJuRxlbba IRzVfzk2hLFCLdAU1LCZ+oLbokoiP7hMVbyiXrzHVhKPlrI6yL9XbCRnUBCZj4Xk 0ONfIUUZOdIzdwChSLbnNxY/n3n+hOYSA1B/zmgov2FJJWuz5n0/Xh1MJwH5feeo iRWW2iCBjbzkVezTaW/a5cV8RGVVesUN0dl9KX1wk5BrzBgUZf0aaCpJQ21PwJdx cD2LOOc= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org