$ rpki-client -vvf rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa File: F21C48F48AF811ED89B22845C4F9AE02.roa (raw, json) Hash identifier: YpeD3hofiypQ4UKB2agIyDeHN6KsPnhGs6LVUpcDCB0= Subject key identifier: 74:20:C7:B5:D4:96:3A:25:43:04:00:74:14:5B:15:F4:6A:19:E0:9C Certificate issuer: /CN=A911BFB0/serialNumber=5BACA76A1D3A00E358FFE5318B902498800D826C Certificate serial: 0147 Authority key identifier: 5B:AC:A7:6A:1D:3A:00:E3:58:FF:E5:31:8B:90:24:98:80:0D:82:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa Signing time: Tue 10 Sep 2024 18:26:32 +0000 ROA not before: Tue 10 Sep 2024 18:26:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132100 IP address blocks: 103.70.216.0/22 maxlen: 22 103.70.216.0/24 maxlen: 24 103.70.217.0/24 maxlen: 24 103.70.218.0/24 maxlen: 24 103.70.219.0/24 maxlen: 24 182.255.52.0/22 maxlen: 22 182.255.52.0/24 maxlen: 24 182.255.53.0/24 maxlen: 24 182.255.54.0/24 maxlen: 24 182.255.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.crl rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BFB0/serialNumber=5BACA76A1D3A00E358FFE5318B902498800D826C Validity Not Before: Sep 10 18:26:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e08f57-77b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:75:09:6a:ea:c2:95:3c:e6:89:c8:9f:ea:14: 31:c7:5d:5c:5b:35:f5:19:37:8e:5e:f0:96:19:53: 64:65:63:ee:1e:1b:54:e9:44:b2:a3:98:02:7d:b9: ec:53:88:bd:89:ae:7c:32:ad:9e:29:1c:96:9f:f0: 05:5d:59:b9:3e:7f:1e:f5:59:1a:52:50:dd:c2:27: 87:27:95:b4:a5:a1:db:ca:db:9c:c6:53:56:05:b0: b7:ca:68:24:dd:da:4f:bb:e2:ef:fc:60:2a:7d:2f: eb:6e:14:84:b2:d7:4c:8a:ad:52:46:f9:22:4d:54: fe:fa:e2:a6:fc:a3:ba:e1:a1:48:5d:6b:40:9f:ac: 96:47:62:12:8a:21:bb:04:e0:3e:5c:2c:42:ff:2d: 4a:bb:56:63:a2:d4:cb:67:33:64:c7:0f:6e:83:35: 21:16:a9:75:95:09:c8:8a:e4:b7:67:89:56:65:59: ca:81:f8:e1:b9:6c:21:cd:12:6f:10:66:ff:5f:90: 38:bb:9a:47:0a:43:14:57:6d:5d:a6:85:31:ed:28: 1a:22:5c:e4:13:23:e2:0c:96:d8:9c:ee:87:e5:e7: 3c:da:d4:73:d5:90:3d:46:7a:75:8e:2a:d7:5f:c0: 76:3c:1b:e6:77:10:ed:e6:83:c1:69:a2:59:bf:ee: cf:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:20:C7:B5:D4:96:3A:25:43:04:00:74:14:5B:15:F4:6A:19:E0:9C X509v3 Authority Key Identifier: keyid:5B:AC:A7:6A:1D:3A:00:E3:58:FF:E5:31:8B:90:24:98:80:0D:82:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.216.0/22 182.255.52.0/22 Signature Algorithm: sha256WithRSAEncryption 59:3d:5d:4f:80:cc:30:3d:78:82:49:ca:ea:b3:93:bb:99:26: c3:ac:a1:dc:79:f1:eb:9d:7d:6d:a4:23:e8:08:dd:6f:4f:0f: 38:b9:5f:bf:9a:ae:6d:ee:8c:9e:83:c0:ff:df:e4:01:ca:8e: 73:fd:92:f3:44:e6:aa:26:25:ef:ba:06:05:97:a9:83:08:2b: a2:6d:e6:28:e8:90:87:73:35:2a:a3:7c:35:72:3c:60:0c:78: 0f:7a:f0:2a:f4:d1:8a:d4:c4:15:50:30:65:47:24:bf:01:86: 3a:b7:7d:f5:34:aa:75:cd:eb:ff:68:b2:be:d4:3d:c4:3b:bd: 5e:db:72:0b:1e:8d:97:d7:cd:16:6e:af:29:9f:c9:ac:0b:fa: 8d:2f:1e:14:75:2d:12:22:79:47:dc:ad:7d:46:57:b5:7c:8a: ba:24:11:48:5e:10:c4:a0:74:10:20:05:45:1d:21:ef:61:f9: 7f:0e:22:86:17:a3:91:52:83:82:5b:ee:00:61:65:76:47:ac: 48:bf:ad:62:04:95:14:ef:00:c8:e0:30:b9:82:d6:3c:a3:f1: a9:97:13:5c:30:39:d5:45:01:9c:b3:96:a9:b4:8e:5b:5f:c4: d5:fe:1c:24:1d:ec:44:0e:fa:95:76:ae:30:4d:3f:47:e8:0e: 2b:7a:82:4f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJGQjAxMTAvBgNVBAUTKDVCQUNBNzZBMUQzQTAwRTM1OEZGRTUzMThCOTAyNDk4 ODAwRDgyNkMwHhcNMjQwOTEwMTgyNjMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwOGY1Ny03N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXUJaurClTzmicif6hQxx11cWzX1GTeOXvCWGVNkZWPuHhtU6USyo5gCfbns U4i9ia58Mq2eKRyWn/AFXVm5Pn8e9VkaUlDdwieHJ5W0paHbytucxlNWBbC3ymgk 3dpPu+Lv/GAqfS/rbhSEstdMiq1SRvkiTVT++uKm/KO64aFIXWtAn6yWR2ISiiG7 BOA+XCxC/y1Ku1ZjotTLZzNkxw9ugzUhFql1lQnIiuS3Z4lWZVnKgfjhuWwhzRJv EGb/X5A4u5pHCkMUV21dpoUx7SgaIlzkEyPiDJbYnO6H5ec82tRz1ZA9Rnp1jirX X8B2PBvmdxDt5oPBaaJZv+7POQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHQgx7XU ljolQwQAdBRbFfRqGeCcMB8GA1UdIwQYMBaAFFusp2odOgDjWP/lMYuQJJiADYJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkZCMC8yMkMyNTE0NjZD QzIxMUU5QTBENkFGNjdDNEY5QUUwMi9XNnluYWgwNkFPTllfLVV4aTVBa21JQU5n bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2eW5haDA2QU9OWV8tVXhpNUFrbUlBTmdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJGQjAvMjJDMjUxNDY2Q0MyMTFFOUEwRDZBRjY3QzRGOUFFMDIvRjIxQzQ4RjQ4 QUY4MTFFRDg5QjIyODQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRtgDBAK2/zQwDQYJKoZIhvcNAQELBQADggEBAFk9XU+A zDA9eIJJyuqzk7uZJsOsodx58eudfW2kI+gI3W9PDzi5X7+arm3ujJ6DwP/f5AHK jnP9kvNE5qomJe+6BgWXqYMIK6Jt5ijokIdzNSqjfDVyPGAMeA968Cr00YrUxBVQ MGVHJL8Bhjq3ffU0qnXN6/9osr7UPcQ7vV7bcgsejZfXzRZurymfyawL+o0vHhR1 LRIieUfcrX1GV7V8irokEUheEMSgdBAgBUUdIe9h+X8OIoYXo5FSg4Jb7gBhZXZH rEi/rWIElRTvAMjgMLmC1jyj8amXE1wwOdVFAZyzlqm0jltfxNX+HCQd7EQO+pV2 rjBNP0foDit6gk8= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:03 2024 by rpki-client on console-ams.rpki-client.org