$ rpki-client -vvf rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa File: C512161E3AF711ED8065EF72C4F9AE02.roa (raw, json) Hash identifier: VMCvy2D42txsl0/aqoqVsB8PZuXPBoPnAzm2gWsBwaU= Subject key identifier: C8:8B:A2:87:EA:11:CA:38:47:4B:4D:5D:4A:80:B9:E3:9A:0B:3E:90 Certificate issuer: /CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Certificate serial: 01A4 Authority key identifier: 53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa Signing time: Wed 13 Nov 2024 01:45:00 +0000 ROA not before: Wed 13 Nov 2024 01:45:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150319 IP address blocks: 103.10.194.0/23 maxlen: 23 103.10.194.0/24 maxlen: 24 103.10.195.0/24 maxlen: 24 2001:df1:4dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BAD6/serialNumber=5332F9AF3052CF3F85EABDD0AAD681523952E656 Validity Not Before: Nov 13 01:45:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6734049c-db3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:61:d5:75:87:e0:2c:9d:a3:2a:dc:f7:f2:4f: 09:f3:e4:3b:75:dd:de:9e:46:61:88:27:bf:3e:53: 54:2f:c6:d0:39:20:03:05:92:1a:93:47:52:01:98: 63:60:9c:a4:38:21:e1:fd:5c:4b:1d:ad:d0:f4:ca: bf:49:e4:f1:59:54:72:36:65:eb:7f:0b:2d:90:4f: 2e:57:22:e8:85:9e:3a:df:f3:d1:50:e2:34:64:11: b5:cc:ce:3c:5c:1b:da:93:2c:a2:6c:ee:33:1d:76: 21:60:2e:85:63:e3:fd:2c:d0:ae:2d:5d:ad:e8:1c: 2e:b4:3a:41:cf:ee:c1:e2:9e:dc:ed:32:e5:3b:ce: 9c:05:8d:cb:f2:4f:d6:e0:59:f9:90:bd:1c:95:31: 82:81:55:c7:f3:52:15:99:a9:11:60:e3:92:00:97: ab:3b:33:26:6a:4e:46:13:f6:8e:4c:14:e0:0b:59: ca:7a:82:3e:3a:5e:1a:45:57:02:4a:8a:7f:5b:b3: 8a:33:99:fb:05:37:b6:af:db:9b:02:70:ef:12:26: d2:19:8a:f6:ca:c5:e6:f2:9c:9f:bb:0f:71:df:eb: fa:29:4f:01:3c:62:73:ea:49:57:46:16:9b:47:92: 5a:24:6f:19:f1:c2:c7:96:b1:f4:5a:f4:f7:8f:31: 67:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8B:A2:87:EA:11:CA:38:47:4B:4D:5D:4A:80:B9:E3:9A:0B:3E:90 X509v3 Authority Key Identifier: keyid:53:32:F9:AF:30:52:CF:3F:85:EA:BD:D0:AA:D6:81:52:39:52:E6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/UzL5rzBSzz-F6r3QqtaBUjlS5lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzL5rzBSzz-F6r3QqtaBUjlS5lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BAD6/D64F4E9C3AF211EDA842C576C4F9AE02/C512161E3AF711ED8065EF72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.194.0/23 IPv6: 2001:df1:4dc0::/48 Signature Algorithm: sha256WithRSAEncryption a3:10:bd:d6:ad:fa:a4:15:cf:bb:b0:c6:ce:e6:fe:8d:bc:f0: 1e:27:37:26:25:bc:2f:58:38:6e:5e:98:88:ff:4d:cd:6a:c5: 64:ac:10:99:91:e9:24:ac:75:b7:be:9e:b1:c7:f7:fa:46:0c: 74:ce:b0:6f:58:eb:f1:cd:64:ee:bd:5b:bf:e7:eb:12:fb:ad: 44:88:3d:30:5b:19:3b:42:60:44:af:40:25:1c:73:ef:c9:de: 43:7c:28:87:40:f4:c0:13:20:0c:b2:85:06:37:1a:30:b1:72: 46:c4:dc:05:44:7d:b7:0d:5f:1c:a6:bb:d9:fc:e5:56:bd:36: 17:4c:e9:15:25:d5:cc:1b:73:1d:25:5d:59:04:ec:6c:8d:a6: 28:bc:0c:79:34:cb:1a:17:41:cd:b0:71:04:da:9e:de:11:64: 05:41:0c:b7:23:41:21:d2:83:50:49:3d:8a:12:4e:fb:af:fd: a2:75:d5:84:98:c8:37:af:f3:1b:b6:cb:ef:93:ac:99:f5:65: ab:e0:e4:67:88:1f:60:48:e3:e9:3a:df:03:15:77:9c:6a:b8: 4a:45:66:86:18:a3:00:f8:a1:6f:7c:53:79:8a:c3:66:f6:d4: 3c:6b:62:72:84:94:75:b5:98:df:e2:a1:7d:e5:16:6f:6c:6c: 1b:43:72:1a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBRDYxMTAvBgNVBAUTKDUzMzJGOUFGMzA1MkNGM0Y4NUVBQkREMEFBRDY4MTUy Mzk1MkU2NTYwHhcNMjQxMTEzMDE0NTAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM0MDQ5Yy1kYjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmHVdYfgLJ2jKtz38k8J8+Q7dd3enkZhiCe/PlNUL8bQOSADBZIak0dSAZhj YJykOCHh/VxLHa3Q9Mq/SeTxWVRyNmXrfwstkE8uVyLohZ463/PRUOI0ZBG1zM48 XBvakyyibO4zHXYhYC6FY+P9LNCuLV2t6BwutDpBz+7B4p7c7TLlO86cBY3L8k/W 4Fn5kL0clTGCgVXH81IVmakRYOOSAJerOzMmak5GE/aOTBTgC1nKeoI+Ol4aRVcC Sop/W7OKM5n7BTe2r9ubAnDvEibSGYr2ysXm8pyfuw9x3+v6KU8BPGJz6klXRhab R5JaJG8Z8cLHlrH0WvT3jzFnRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMiLoofq Eco4R0tNXUqAueOaCz6QMB8GA1UdIwQYMBaAFFMy+a8wUs8/heq90KrWgVI5UuZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkFENi9ENjRGNEU5QzNB RjIxMUVEQTg0MkM1NzZDNEY5QUUwMi9Vekw1cnpCU3p6LUY2cjNRcXRhQlVqbFM1 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6TDVyekJTenotRjZyM1FxdGFCVWpsUzVsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJBRDYvRDY0RjRFOUMzQUYyMTFFREE4NDJDNTc2QzRGOUFFMDIvQzUxMjE2MUUz QUY3MTFFRDgwNjVFRjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnCsIwDwQCAAIwCQMHACABDfFNwDANBgkqhkiG9w0BAQsF AAOCAQEAoxC91q36pBXPu7DGzub+jbzwHic3JiW8L1g4bl6YiP9NzWrFZKwQmZHp JKx1t76escf3+kYMdM6wb1jr8c1k7r1bv+frEvutRIg9MFsZO0JgRK9AJRxz78ne Q3woh0D0wBMgDLKFBjcaMLFyRsTcBUR9tw1fHKa72fzlVr02F0zpFSXVzBtzHSVd WQTsbI2mKLwMeTTLGhdBzbBxBNqe3hFkBUEMtyNBIdKDUEk9ihJO+6/9onXVhJjI N6/zG7bL75OsmfVlq+DkZ4gfYEjj6TrfAxV3nGq4SkVmhhijAPihb3xTeYrDZvbU PGticoSUdbWY3+KhfeUWb2xsG0NyGg== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:33 2024 by rpki-client on console-ams.rpki-client.org