$ rpki-client -vvf rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa File: FC3B44CE519A11EAB1229A87C4F9AE02.roa (raw, json) Hash identifier: mXaDebpxI+8jgolliV5kV+yxtxKp5QcapX21gE2juPA= Subject key identifier: 01:EE:33:F7:1C:B1:17:12:5D:74:0C:C6:39:DE:72:F1:D6:A4:78:62 Certificate issuer: /CN=A913FD96/serialNumber=34041FE399C0765961B79FE124694172872073BB Certificate serial: 0A37 Authority key identifier: 34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa Signing time: Tue 10 Sep 2024 20:58:21 +0000 ROA not before: Tue 10 Sep 2024 20:58:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134515 IP address blocks: 103.236.119.0/24 maxlen: 24 2001:df5:8400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2615 (0xa37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FD96, serialNumber=34041FE399C0765961B79FE124694172872073BB Validity Not Before: Sep 10 20:58:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e0b2ec-05d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:70:5b:cd:a9:aa:c6:d5:7c:00:74:92:17:43: b3:16:36:91:39:7f:58:59:6b:c5:81:b4:80:4e:f1: a6:b1:fa:5f:32:c1:72:ef:c5:2e:d7:b9:3b:d7:e5: ef:bd:90:d3:36:37:6c:f8:ce:1e:5d:7c:42:77:4b: a7:86:dc:bc:10:c2:3d:57:51:f4:fa:ee:ea:89:35: b6:28:1d:37:55:a3:db:2f:ff:83:13:85:a1:51:10: 0a:30:25:96:00:96:97:e6:9c:cc:ee:34:d0:8b:ed: b3:9e:e9:05:bd:c5:bd:7c:91:f5:db:f4:18:a8:15: 79:33:93:a4:e4:39:8f:24:05:b9:28:ce:58:70:c5: c5:c2:dc:6b:96:7d:ba:1c:33:72:be:ec:fc:76:15: 59:a9:4c:f0:53:34:a1:c8:7d:7f:51:93:70:51:e2: ca:87:3b:ea:12:e7:d6:cb:fc:8c:fe:ac:f9:ea:65: 52:05:44:7a:af:cb:d3:45:4b:1c:34:fa:da:ab:34: 31:2b:f6:43:4e:ef:74:a6:d4:51:0f:b6:ab:39:5c: 06:68:23:6c:08:1f:be:a8:37:1b:bb:bf:e3:14:3a: 82:64:9a:c0:4a:60:57:b4:49:f6:a4:f3:c4:3e:d5: e6:b2:7b:bf:36:fa:4f:6b:b6:1c:5e:20:9f:3e:d4: c2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EE:33:F7:1C:B1:17:12:5D:74:0C:C6:39:DE:72:F1:D6:A4:78:62 X509v3 Authority Key Identifier: keyid:34:04:1F:E3:99:C0:76:59:61:B7:9F:E1:24:69:41:72:87:20:73:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/NAQf45nAdllht5_hJGlBcocgc7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAQf45nAdllht5_hJGlBcocgc7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FD96/A624FC44519811EA97225983C4F9AE02/FC3B44CE519A11EAB1229A87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.119.0/24 IPv6: 2001:df5:8400::/48 Signature Algorithm: sha256WithRSAEncryption 0f:db:a5:ca:74:7e:86:be:8b:df:8f:3f:9d:4b:3f:c7:12:90: e7:3d:d6:64:ab:33:1a:d5:8e:92:04:71:24:21:a9:c4:1d:d9: 38:a2:83:f2:ec:cb:25:b9:a3:b1:93:75:a4:d9:4e:a3:0b:09: 5b:0d:16:23:84:4f:3f:1a:2d:16:5c:fd:1c:6a:ea:30:32:5c: 71:f0:94:28:6a:a1:57:71:78:2c:b5:bb:da:64:46:c4:d0:d0: f0:34:a3:8c:ab:b5:f0:b8:42:ea:48:21:2f:5b:aa:a9:bf:94: 4f:05:a7:18:24:50:1e:f4:58:f8:f2:f6:ed:c4:c6:ef:f0:1a: 71:1b:4a:d4:37:99:07:a3:68:4b:33:1a:82:59:8f:da:a8:b4: bf:39:2a:b6:f4:a0:4d:81:46:8a:6d:72:bd:25:37:ee:56:01: 37:c3:1c:3a:53:74:3a:1e:59:9c:6c:da:7d:79:33:26:93:be: 76:a0:e7:27:21:7f:78:c7:ba:7a:0b:ed:02:21:bb:fc:7d:b9: 21:9b:8f:b4:d9:47:02:b8:05:42:fe:62:56:32:13:d8:b9:27: 6b:fd:fc:29:f8:6e:7b:23:50:82:0e:60:19:a3:20:c9:b0:53: 0b:53:48:e3:87:d9:1a:52:bf:fe:41:90:98:03:1a:aa:c2:f6: 75:9d:eb:b7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZEOTYxMTAvBgNVBAUTKDM0MDQxRkUzOTlDMDc2NTk2MUI3OUZFMTI0Njk0MTcy ODcyMDczQkIwHhcNMjQwOTEwMjA1ODIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwYjJlYy0wNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXBbzamqxtV8AHSSF0OzFjaROX9YWWvFgbSATvGmsfpfMsFy78Uu17k71+Xv vZDTNjds+M4eXXxCd0unhty8EMI9V1H0+u7qiTW2KB03VaPbL/+DE4WhURAKMCWW AJaX5pzM7jTQi+2znukFvcW9fJH12/QYqBV5M5Ok5DmPJAW5KM5YcMXFwtxrln26 HDNyvuz8dhVZqUzwUzShyH1/UZNwUeLKhzvqEufWy/yM/qz56mVSBUR6r8vTRUsc NPraqzQxK/ZDTu90ptRRD7arOVwGaCNsCB++qDcbu7/jFDqCZJrASmBXtEn2pPPE PtXmsnu/NvpPa7YcXiCfPtTCiwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAHuM/cc sRcSXXQMxjnecvHWpHhiMB8GA1UdIwQYMBaAFDQEH+OZwHZZYbef4SRpQXKHIHO7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkQ5Ni9BNjI0RkM0NDUx OTgxMUVBOTcyMjU5ODNDNEY5QUUwMi9OQVFmNDVuQWRsbGh0NV9oSkdsQmNvY2dj N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05BUWY0NW5BZGxsaHQ1X2hKR2xCY29jZ2M3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZEOTYvQTYyNEZDNDQ1MTk4MTFFQTk3MjI1OTgzQzRGOUFFMDIvRkMzQjQ0Q0U1 MTlBMTFFQUIxMjI5QTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn7HcwDwQCAAIwCQMHACABDfWEADANBgkqhkiG9w0BAQsF AAOCAQEAD9ulynR+hr6L348/nUs/xxKQ5z3WZKszGtWOkgRxJCGpxB3ZOKKD8uzL JbmjsZN1pNlOowsJWw0WI4RPPxotFlz9HGrqMDJccfCUKGqhV3F4LLW72mRGxNDQ 8DSjjKu18LhC6kghL1uqqb+UTwWnGCRQHvRY+PL27cTG7/AacRtK1DeZB6NoSzMa glmP2qi0vzkqtvSgTYFGim1yvSU37lYBN8McOlN0Oh5ZnGzafXkzJpO+dqDnJyF/ eMe6egvtAiG7/H25IZuPtNlHArgFQv5iVjIT2Lkna/38KfhueyNQgg5gGaMgybBT C1NI44fZGlK//kGQmAMaqsL2dZ3rtw== -----END CERTIFICATE-----Generated at Sat Apr 26 08:37:02 2025 by rpki-client