$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa File: 65C8C388EAFB11ED9F4DC557C4F9AE02.roa (raw, json) Hash identifier: Kp7JQHpvsFVUlwVn2Rd475yiWHy2VFRWMrKOyE7B2hQ= Subject key identifier: CA:08:DC:66:AC:96:E7:B9:D3:87:4B:C3:C6:49:22:AF:D0:A1:3A:03 Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 1445 Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa Signing time: Wed 20 Mar 2024 17:25:10 +0000 ROA not before: Wed 20 Mar 2024 17:25:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150388 IP address blocks: 103.100.140.0/24 maxlen: 24 2402:b740:15:388::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5189 (0x1445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Mar 20 17:25:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65fb1bf6-fac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ab:6f:98:bc:a0:15:49:3f:7d:8e:d2:0d:77: 23:cd:df:0f:f0:a0:ec:26:bd:54:29:4b:53:5c:8e: 90:a4:2d:6a:23:ec:93:f4:c6:3a:3b:b5:39:b0:3b: 11:5c:87:f7:15:93:28:7a:72:9e:91:4d:85:cb:4f: 29:72:b6:98:cb:e0:dc:d4:08:1f:c4:fa:08:70:61: 26:17:3f:54:1f:56:c5:02:e2:cd:33:a4:ba:ea:d0: 3c:19:df:03:46:3e:66:ad:0b:02:3a:d9:d8:f0:56: 7e:c3:c5:a6:36:34:80:e7:43:2a:a7:92:ee:5e:0b: 2a:92:eb:da:a5:80:aa:3c:31:5a:8d:3b:db:93:b0: fd:63:b5:e0:1c:33:fe:bc:43:98:79:60:c7:eb:e2: a5:8a:a7:a2:30:63:cf:ec:bd:f5:52:31:67:0e:7c: 53:35:89:a4:9c:05:b2:43:78:49:2a:87:44:60:6b: c5:03:f0:b1:15:da:52:ac:ed:05:17:2d:c4:33:24: 81:55:1f:1d:d8:a1:28:89:97:42:99:b8:c3:ea:4a: 73:03:7e:99:85:4d:fd:09:a9:3d:99:b4:8e:97:26: 01:ce:e4:6c:22:eb:cb:94:af:84:88:1e:fe:4a:eb: 73:b1:fa:bc:7f:54:da:b5:3d:db:22:b1:d9:5e:19: 70:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:08:DC:66:AC:96:E7:B9:D3:87:4B:C3:C6:49:22:AF:D0:A1:3A:03 X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.140.0/24 IPv6: 2402:b740:15:388::/64 Signature Algorithm: sha256WithRSAEncryption 15:50:38:b8:6d:b1:b4:b0:2b:2d:d8:11:ee:f8:dc:cb:03:b3: 91:f8:00:c4:55:55:5e:92:b7:d9:57:80:4f:08:24:36:ff:4f: 8e:6e:ca:e6:f3:d2:96:63:ff:55:39:bc:c1:20:0c:94:f9:f9: 40:fb:68:48:44:b8:56:16:d2:7d:2f:be:93:60:0c:4d:61:54: 03:38:54:75:e1:25:cd:d4:cf:f4:01:9d:f1:f1:80:aa:78:35: d0:fc:f0:6c:c9:9a:98:91:84:ed:4d:1c:ca:70:9a:77:10:4b: 6a:65:02:ef:96:ff:68:9f:8e:7e:8d:40:6a:ae:90:55:05:d2: 2f:73:24:36:d3:41:1d:e2:eb:01:68:45:61:f1:24:57:49:3c: b6:22:89:15:eb:a6:d3:27:d2:fd:65:8b:ec:49:bd:de:b1:a0: 91:5b:d0:96:80:19:75:36:37:8c:7c:44:2a:f7:1b:6b:58:2f: ce:b9:19:04:fe:d1:1d:98:1a:58:53:eb:3f:6c:30:26:d5:ca: bf:0d:0a:0a:cb:7f:66:bd:c7:9f:b1:f3:ed:32:97:16:15:7d: 82:b2:63:4b:ce:c9:db:1f:2f:fd:7b:18:62:54:26:aa:38:5b: 48:b5:9d:fa:8d:e9:66:07:28:8b:66:12:88:ac:e4:1b:c6:4d: e1:2f:e5:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjQwMzIwMTcyNTEwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiMWJmNi1mYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qtvmLygFUk/fY7SDXcjzd8P8KDsJr1UKUtTXI6QpC1qI+yT9MY6O7U5sDsR XIf3FZMoenKekU2Fy08pcraYy+Dc1AgfxPoIcGEmFz9UH1bFAuLNM6S66tA8Gd8D Rj5mrQsCOtnY8FZ+w8WmNjSA50Mqp5LuXgsqkuvapYCqPDFajTvbk7D9Y7XgHDP+ vEOYeWDH6+KliqeiMGPP7L31UjFnDnxTNYmknAWyQ3hJKodEYGvFA/CxFdpSrO0F Fy3EMySBVR8d2KEoiZdCmbjD6kpzA36ZhU39Cak9mbSOlyYBzuRsIuvLlK+EiB7+ Sutzsfq8f1TatT3bIrHZXhlwnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoI3Gas lue504dLw8ZJIq/QoToDMB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvNjVDOEMzODhF QUZCMTFFRDlGNERDNTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBABnZIwwEQQCAAIwCwMJACQCt0AAFQOIMA0GCSqGSIb3DQEB CwUAA4IBAQAVUDi4bbG0sCst2BHu+NzLA7OR+ADEVVVekrfZV4BPCCQ2/0+Obsrm 89KWY/9VObzBIAyU+flA+2hIRLhWFtJ9L76TYAxNYVQDOFR14SXN1M/0AZ3x8YCq eDXQ/PBsyZqYkYTtTRzKcJp3EEtqZQLvlv9on45+jUBqrpBVBdIvcyQ200Ed4usB aEVh8SRXSTy2IokV66bTJ9L9ZYvsSb3esaCRW9CWgBl1NjeMfEQq9xtrWC/OuRkE /tEdmBpYU+s/bDAm1cq/DQoKy39mvcefsfPtMpcWFX2CsmNLzsnbHy/9exhiVCaq OFtItZ36jelmByiLZhKIrOQbxk3hL+W8 -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org