$ rpki-client -vvf rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/CC70CB68724B11EDA156B97BC4F9AE02.roa File: CC70CB68724B11EDA156B97BC4F9AE02.roa (raw, json) Hash identifier: HPAweJ5AgvKWJyiKKcipqvvFPZGOjwLjKkEzF7wcgEo= Subject key identifier: B7:1C:89:5E:12:BC:C7:F4:36:81:9C:40:6D:B1:DA:90:14:FF:B4:8A Certificate issuer: /CN=A919CFF5/serialNumber=25608B1C3FCCD3DCCEBF994B9325F3A2EFE7CCEF Certificate serial: 015F Authority key identifier: 25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWCLHD_M09zOv5lLkyXzou_nzO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/CC70CB68724B11EDA156B97BC4F9AE02.roa Signing time: Sat 05 Oct 2024 03:06:37 +0000 ROA not before: Sat 05 Oct 2024 03:06:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150347 IP address blocks: 103.68.139.0/24 maxlen: 24 2400:b4a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.crl rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWCLHD_M09zOv5lLkyXzou_nzO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CFF5/serialNumber=25608B1C3FCCD3DCCEBF994B9325F3A2EFE7CCEF Validity Not Before: Oct 5 03:06:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6700ad3d-037f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ac:c1:5e:a8:9c:29:a1:a6:4a:2d:98:0f:df: dc:75:27:b6:9f:e6:fe:89:40:d3:34:a5:77:e1:9d: 35:d7:ba:18:d3:4c:9c:b5:69:8e:06:0f:79:a9:da: 25:58:bf:af:8f:b0:bd:72:59:4d:df:bf:3c:d7:7f: fb:63:58:fd:10:87:81:0d:6b:ee:15:80:39:cb:c7: 70:70:21:7a:b3:ed:b0:b4:c3:d1:fe:f7:69:d6:cd: db:37:7d:8e:81:0e:9f:ed:0c:f2:7e:15:58:03:a6: 84:1a:4d:c3:fd:a4:e1:e7:53:6d:6a:b2:6a:01:f0: e7:a7:20:c9:87:b6:f3:3b:71:85:f7:d3:6f:58:00: f3:40:39:83:eb:ea:bb:19:98:e2:1d:a2:d8:6a:97: 0b:f6:9c:69:66:d9:37:94:69:07:5a:15:93:18:b2: 3d:bc:81:04:56:66:a6:30:b6:b8:06:56:c1:15:4f: 8d:5d:bb:84:d2:52:c8:fb:0f:cb:91:4b:6c:41:8e: 4e:15:28:22:98:bf:25:c7:bb:7b:be:11:88:10:ce: 2b:a7:8a:74:36:e7:49:f0:f4:fa:72:7a:01:42:b5: bd:1d:77:14:3f:b2:cf:ad:a4:b9:f6:35:79:7f:3c: 7b:50:95:24:64:ce:d5:bc:70:f3:27:9a:18:ed:4c: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1C:89:5E:12:BC:C7:F4:36:81:9C:40:6D:B1:DA:90:14:FF:B4:8A X509v3 Authority Key Identifier: keyid:25:60:8B:1C:3F:CC:D3:DC:CE:BF:99:4B:93:25:F3:A2:EF:E7:CC:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/JWCLHD_M09zOv5lLkyXzou_nzO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWCLHD_M09zOv5lLkyXzou_nzO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CFF5/3FE5CA8E724811ED9BC2BA76C4F9AE02/CC70CB68724B11EDA156B97BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.139.0/24 IPv6: 2400:b4a0::/32 Signature Algorithm: sha256WithRSAEncryption a8:bf:f2:c5:23:72:3b:4e:a5:fd:7b:1e:13:2c:7f:e1:c1:b0: a6:20:a0:52:97:d9:5b:26:5e:16:ae:60:4a:38:d1:30:72:b7: 1d:c7:8e:49:48:9d:14:f9:29:85:6e:f4:f1:a0:e7:b1:9c:35: 55:27:5c:9e:96:a7:57:1f:1f:b2:3c:bc:c2:c7:dd:e8:1f:46: 33:5b:c8:cf:f8:dd:a1:21:8a:35:0b:36:2b:e4:d4:6a:da:6c: 5d:1f:51:0d:7a:35:e2:1a:01:01:0b:37:28:a8:3f:16:59:bc: df:60:ef:ff:83:4a:ee:41:5d:4a:66:0c:d4:3b:29:98:b2:13: ff:66:07:0c:d0:f9:3c:d2:c2:b9:6d:79:3a:7c:93:10:89:60: 6c:f1:a7:4c:b2:99:ee:e0:3d:89:33:b2:31:5d:64:1e:34:5f: f9:1b:65:ae:a4:26:19:8b:ac:f3:18:39:77:61:47:73:fd:12: 6e:5c:e6:85:35:ee:2f:fc:7c:67:53:51:d8:02:40:6d:ee:3f: bf:df:13:0c:89:6c:30:26:4d:dd:70:01:48:9e:8a:ea:dc:5f: ff:b4:a9:09:f3:d6:12:46:c1:a2:16:f4:48:5e:71:4e:55:a3: 86:1c:db:6a:d7:14:38:91:7b:39:b6:46:50:b1:2b:f6:bf:36: 76:25:ef:f6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGRjUxMTAvBgNVBAUTKDI1NjA4QjFDM0ZDQ0QzRENDRUJGOTk0QjkzMjVGM0Ey RUZFN0NDRUYwHhcNMjQxMDA1MDMwNjM3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYWQzZC0wMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6zBXqicKaGmSi2YD9/cdSe2n+b+iUDTNKV34Z0117oY00yctWmOBg95qdol WL+vj7C9cllN378813/7Y1j9EIeBDWvuFYA5y8dwcCF6s+2wtMPR/vdp1s3bN32O gQ6f7QzyfhVYA6aEGk3D/aTh51NtarJqAfDnpyDJh7bzO3GF99NvWADzQDmD6+q7 GZjiHaLYapcL9pxpZtk3lGkHWhWTGLI9vIEEVmamMLa4BlbBFU+NXbuE0lLI+w/L kUtsQY5OFSgimL8lx7t7vhGIEM4rp4p0NudJ8PT6cnoBQrW9HXcUP7LPraS59jV5 fzx7UJUkZM7VvHDzJ5oY7UzwCQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLcciV4S vMf0NoGcQG2x2pAU/7SKMB8GA1UdIwQYMBaAFCVgixw/zNPczr+ZS5Ml86Lv58zv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ZGNS8zRkU1Q0E4RTcy NDgxMUVEOUJDMkJBNzZDNEY5QUUwMi9KV0NMSERfTTA5ek92NWxMa3lYem91X256 TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXQ0xIRF9NMDl6T3Y1bExreVh6b3VfbnpPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGRjUvM0ZFNUNBOEU3MjQ4MTFFRDlCQzJCQTc2QzRGOUFFMDIvQ0M3MENCNjg3 MjRCMTFFREExNTZCOTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnRIswDQQCAAIwBwMFACQAtKAwDQYJKoZIhvcNAQELBQAD ggEBAKi/8sUjcjtOpf17HhMsf+HBsKYgoFKX2VsmXhauYEo40TBytx3HjklInRT5 KYVu9PGg57GcNVUnXJ6Wp1cfH7I8vMLH3egfRjNbyM/43aEhijULNivk1GrabF0f UQ16NeIaAQELNyioPxZZvN9g7/+DSu5BXUpmDNQ7KZiyE/9mBwzQ+TzSwrlteTp8 kxCJYGzxp0yyme7gPYkzsjFdZB40X/kbZa6kJhmLrPMYOXdhR3P9Em5c5oU17i/8 fGdTUdgCQG3uP7/fEwyJbDAmTd1wAUieiurcX/+0qQnz1hJGwaIW9EhecU5Vo4Yc 22rXFDiRezm2RlCxK/a/NnYl7/Y= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org