$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa File: 9FA735ECEAF811ED9E2D1958C4F9AE02.roa (raw, json) Hash identifier: FWIDt/35tjXzYDAaJr6JPEdTAM9ltuTBwSshOGLzQq8= Subject key identifier: C5:43:4B:24:2D:93:F1:59:E0:41:5B:F6:1E:64:0D:F3:4D:48:38:1C Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 1477 Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa Signing time: Tue 11 Jun 2024 22:24:08 +0000 ROA not before: Tue 11 Jun 2024 22:24:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140867 IP address blocks: 103.100.141.0/24 maxlen: 24 103.100.142.0/23 maxlen: 24 103.113.45.0/24 maxlen: 24 103.113.46.0/23 maxlen: 24 2402:b740:8000::/33 maxlen: 33 2402:b740:8001::/48 maxlen: 48 2402:b740:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5239 (0x1477) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Jun 11 22:24:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6668ce87-ee01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:a2:cd:49:66:d3:ca:f3:49:72:d5:73:0a: 90:94:db:eb:3f:43:e6:50:41:96:51:69:07:2b:91: 3e:b7:70:89:f2:fa:da:49:77:50:e4:7f:a6:61:f3: 9e:6e:00:b4:46:7e:f8:ad:f3:ba:8b:81:23:99:57: 4f:df:c6:4a:fc:da:3d:6c:ac:d4:27:25:f4:a4:67: 11:b2:8f:ae:cf:47:23:f1:02:95:f6:56:46:ea:d8: 05:35:be:ff:ce:bd:b3:8c:5e:31:fa:86:f1:db:d2: f3:f2:ce:e3:f2:fb:ca:aa:be:b2:5d:a7:5f:3b:03: 0a:0c:e6:35:9b:7f:73:a6:0a:f6:d4:ba:64:bc:44: 85:d1:8d:10:42:b9:59:35:61:b9:b1:9d:29:a8:1c: a1:80:fe:a6:0c:59:d0:2a:98:ce:1a:86:40:85:66: 10:a9:e6:23:de:e8:06:7e:3e:d1:de:90:c5:c6:49: 47:fb:7a:28:5a:3e:15:d2:2d:8d:a8:a9:45:3d:85: 07:f3:bb:9d:d0:9f:03:ff:06:6a:55:ce:70:0e:e7: 39:a0:90:c0:41:a3:65:d1:7a:52:12:ac:d8:d6:da: 68:13:86:1d:1a:34:6d:27:be:37:8c:2e:38:21:63: 15:23:16:bd:4a:ea:1d:5f:ba:6a:33:43:68:9d:0b: 0e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:43:4B:24:2D:93:F1:59:E0:41:5B:F6:1E:64:0D:F3:4D:48:38:1C X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/9FA735ECEAF811ED9E2D1958C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.141.0-103.100.143.255 103.113.45.0-103.113.47.255 IPv6: 2402:b740:8000::/33 Signature Algorithm: sha256WithRSAEncryption b5:b1:6b:c3:c1:51:1f:a6:34:06:d8:9e:90:1d:4f:34:17:33: e3:50:81:8b:b0:9b:16:bc:b6:61:f5:de:b6:dc:54:29:b0:46: 0c:80:7b:13:bb:46:ff:7e:ca:3d:db:99:1c:56:14:2a:5b:a6: 21:12:46:99:54:f4:2f:28:22:ef:13:0e:de:03:15:ae:63:5e: a8:70:ab:57:3a:8b:8d:ea:57:7b:21:12:10:5f:cc:28:e8:84: b7:dd:0d:d4:f3:d1:00:ad:b9:be:9f:a5:4f:2c:97:f4:82:5c: f8:67:9d:57:70:4e:29:a2:c0:75:49:9d:ea:29:bd:ed:18:e2: 0b:a5:4c:3b:cf:da:d9:79:a8:01:c6:f1:45:d7:7a:99:e1:e3: 9f:e1:82:99:97:94:6f:8b:64:c5:85:56:57:eb:b9:1d:cd:ab: f0:74:5c:89:d9:5f:e1:11:6b:03:84:d4:99:3b:bb:13:f8:83: e5:e6:a2:1f:06:43:53:61:6e:6f:cf:47:48:4f:b8:f3:1e:f3: e1:f9:7d:f3:d5:f0:2e:3e:cc:42:0f:f4:a4:ed:19:f5:47:45: 36:72:af:78:bb:17:32:6d:08:ea:36:ab:83:97:1b:56:0f:8d: e7:40:b8:2a:96:5c:85:6e:d7:c5:39:73:2a:95:b7:74:20:33: 00:5d:1a:bb -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICFHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjQwNjExMjIyNDA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY4Y2U4Ny1lZTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvW+izUlm08rzSXLVcwqQlNvrP0PmUEGWUWkHK5E+t3CJ8vraSXdQ5H+mYfOe bgC0Rn74rfO6i4EjmVdP38ZK/No9bKzUJyX0pGcRso+uz0cj8QKV9lZG6tgFNb7/ zr2zjF4x+obx29Lz8s7j8vvKqr6yXadfOwMKDOY1m39zpgr21LpkvESF0Y0QQrlZ NWG5sZ0pqByhgP6mDFnQKpjOGoZAhWYQqeYj3ugGfj7R3pDFxklH+3ooWj4V0i2N qKlFPYUH87ud0J8D/wZqVc5wDuc5oJDAQaNl0XpSEqzY1tpoE4YdGjRtJ743jC44 IWMVIxa9SuodX7pqM0NonQsOsQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFMVDSyQt k/FZ4EFb9h5kDfNNSDgcMB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvOUZBNzM1RUNF QUY4MTFFRDlFMkQxOTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MCIEAgABMBwwDAMEAGdkjQMEBGdkgDAMAwQAZ3EtAwQEZ3EgMA4EAgACMAgD BgckArdAgDANBgkqhkiG9w0BAQsFAAOCAQEAtbFrw8FRH6Y0BtiekB1PNBcz41CB i7CbFry2YfXettxUKbBGDIB7E7tG/37KPduZHFYUKlumIRJGmVT0Lygi7xMO3gMV rmNeqHCrVzqLjepXeyESEF/MKOiEt90N1PPRAK25vp+lTyyX9IJc+GedV3BOKaLA dUmd6im97RjiC6VMO8/a2XmoAcbxRdd6meHjn+GCmZeUb4tkxYVWV+u5Hc2r8HRc idlf4RFrA4TUmTu7E/iD5eaiHwZDU2Fub89HSE+48x7z4fl989XwLj7MQg/0pO0Z 9UdFNnKveLsXMm0I6jarg5cbVg+N50C4KpZchW7XxTlzKpW3dCAzAF0auw== -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:03 2024 by rpki-client on console-fra.rpki-client.org