$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/B2F017A26BE311ED8B83B484C4F9AE02.roa File: B2F017A26BE311ED8B83B484C4F9AE02.roa (raw, json) Hash identifier: ++HbJPkCOwI7YEDmwMoGF4+5fvdyuTeBvdjkZ/did0w= Subject key identifier: 1A:C0:B8:AB:80:E4:EF:B3:9E:21:98:D6:2C:93:95:64:4D:8E:95:1C Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: CB Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/B2F017A26BE311ED8B83B484C4F9AE02.roa Signing time: Fri 15 Dec 2023 04:55:46 +0000 ROA not before: Fri 15 Dec 2023 04:55:46 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150441 IP address blocks: 103.42.52.0/23 maxlen: 23 103.42.52.0/24 maxlen: 24 103.42.53.0/24 maxlen: 24 2001:df1:8fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:07:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: Dec 15 04:55:46 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657bdc52-4809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7a:9c:32:01:8e:58:17:f5:41:1d:ff:c9:16: 4b:16:9f:9b:fe:ac:7f:cb:9a:9f:ab:35:e4:2b:b6: 1e:85:1d:ed:8c:7d:ef:c9:a3:d5:8f:22:60:e0:92: e7:d4:26:7d:b9:01:d7:ea:82:ab:7f:ea:e8:1f:08: 5d:ba:c5:e8:61:61:4d:d4:bd:e1:a4:d4:77:93:cd: ac:70:5a:25:6b:6f:4e:70:fc:a4:b1:5a:dc:e7:e0: 43:d9:5c:7a:0f:14:c9:21:55:4f:66:4e:ca:0d:b3: 5a:a0:60:4c:24:95:4c:71:40:9d:36:53:15:10:dc: 72:eb:fc:30:fd:30:b6:b4:78:ba:06:b6:8c:dc:8c: c5:cb:80:a5:41:4c:c9:4d:17:34:87:90:30:b0:87: 73:77:a2:30:57:0c:7d:e5:7c:cf:5b:03:f7:60:ea: a5:aa:11:9c:28:1e:51:3f:c5:a6:6c:25:8c:54:0c: 50:84:64:ec:82:0b:0e:bf:1e:fe:75:54:02:07:da: b5:c2:bc:76:06:aa:06:20:51:73:14:63:fd:96:43: da:43:56:0e:55:d8:5e:5f:0d:78:8a:af:35:1a:b1: f6:8c:a0:1e:a0:4f:40:a3:81:b8:51:5b:48:7e:4e: 36:ee:8f:29:c8:d8:41:c7:bf:89:53:36:5c:d0:6e: 0b:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C0:B8:AB:80:E4:EF:B3:9E:21:98:D6:2C:93:95:64:4D:8E:95:1C X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/B2F017A26BE311ED8B83B484C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.52.0/23 IPv6: 2001:df1:8fc0::/48 Signature Algorithm: sha256WithRSAEncryption 22:09:31:fa:9f:54:eb:83:ce:53:ed:79:a3:e8:5f:c6:9c:ae: 4b:a1:e8:09:ee:8d:a2:68:fe:53:bc:9a:b8:db:f8:b9:da:9e: 8b:03:21:3d:11:33:43:9a:8d:8d:27:bf:32:14:7e:f9:33:da: b0:81:6c:45:c3:54:da:7e:f9:fd:ff:09:b6:e8:f2:82:7f:03: 03:f7:f8:2f:a6:c5:4f:49:7a:20:b9:d5:1f:f7:1a:e6:84:a8: 19:3f:df:f2:23:32:9e:e4:d8:e9:2e:67:7d:34:d7:79:db:f1: 3b:dd:08:60:3d:bc:f4:0e:6e:51:fd:7f:5e:4f:dd:ca:b8:95: 74:d8:0d:ab:dc:ce:07:00:66:15:14:ea:29:73:a1:15:1f:09: e3:21:f0:a8:bf:1e:b8:8e:6e:56:d7:5f:a7:cc:cc:ea:a0:12: 9b:46:19:0f:06:fb:48:f9:a8:40:10:c3:e3:e5:a5:1d:36:63: 89:9e:31:d6:b1:80:38:3b:70:92:cf:14:36:0a:cf:ac:72:30: 44:21:ee:72:9c:d1:ac:09:61:09:10:f5:e1:9f:6a:b5:17:e1: d8:1d:ee:49:90:58:c5:1c:1a:7e:89:50:60:d9:e9:34:6b:00: 76:1e:74:f4:52:ef:42:ac:34:a9:43:8f:5d:30:39:97:3f:2a: 50:05:80:81 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjMxMjE1MDQ1NTQ2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiZGM1Mi00ODA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXqcMgGOWBf1QR3/yRZLFp+b/qx/y5qfqzXkK7YehR3tjH3vyaPVjyJg4JLn 1CZ9uQHX6oKrf+roHwhdusXoYWFN1L3hpNR3k82scFola29OcPyksVrc5+BD2Vx6 DxTJIVVPZk7KDbNaoGBMJJVMcUCdNlMVENxy6/ww/TC2tHi6BraM3IzFy4ClQUzJ TRc0h5AwsIdzd6IwVwx95XzPWwP3YOqlqhGcKB5RP8WmbCWMVAxQhGTsggsOvx7+ dVQCB9q1wrx2BqoGIFFzFGP9lkPaQ1YOVdheXw14iq81GrH2jKAeoE9Ao4G4UVtI fk427o8pyNhBx7+JUzZc0G4L6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBrAuKuA 5O+zniGY1iyTlWRNjpUcMB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI1MUMvRjhGN0UyNTA2QkUwMTFFRDk5MTk2RjYyQzRGOUFFMDIvQjJGMDE3QTI2 QkUzMTFFRDhCODNCNDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnKjQwDwQCAAIwCQMHACABDfGPwDANBgkqhkiG9w0BAQsF AAOCAQEAIgkx+p9U64POU+15o+hfxpyuS6HoCe6Nomj+U7yauNv4udqeiwMhPREz Q5qNjSe/MhR++TPasIFsRcNU2n75/f8Jtujygn8DA/f4L6bFT0l6ILnVH/ca5oSo GT/f8iMynuTY6S5nfTTXedvxO90IYD289A5uUf1/Xk/dyriVdNgNq9zOBwBmFRTq KXOhFR8J4yHwqL8euI5uVtdfp8zM6qASm0YZDwb7SPmoQBDD4+WlHTZjiZ4x1rGA ODtwks8UNgrPrHIwRCHucpzRrAlhCRD14Z9qtRfh2B3uSZBYxRwafolQYNnpNGsA dh509FLvQqw0qUOPXTA5lz8qUAWAgQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org