$ rpki-client -vvf rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/8BAD4414095B11EFA680B941C4F9AE02.roa File: 8BAD4414095B11EFA680B941C4F9AE02.roa (raw, json) Hash identifier: rnA3FToG0PnJ+ONyXSzkQprTT8atCq2mRTBIP9Porw0= Subject key identifier: C9:D2:F4:A9:F8:D7:AC:A3:92:2A:C4:D7:B2:8B:90:29:FA:45:03:22 Certificate issuer: /CN=A911C20D/serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D Certificate serial: 12 Authority key identifier: A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/8BAD4414095B11EFA680B941C4F9AE02.roa Signing time: Sun 05 May 2024 14:15:13 +0000 ROA not before: Sun 05 May 2024 14:15:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152713 IP address blocks: 103.49.70.0/23 maxlen: 23 103.49.70.0/24 maxlen: 24 103.49.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.crl rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C20D/serialNumber=A749788CB4F41FD85E7AC263C875B7EAF2C0E78D Validity Not Before: May 5 14:15:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66379471-0ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:1f:79:74:17:5b:1d:21:2c:56:e7:2a:28: 3b:0c:39:3a:bf:76:07:8c:d1:11:a6:77:fa:61:75: 34:5d:66:0e:f5:f2:20:13:db:79:8a:a7:a4:e8:6a: 6e:77:36:bb:0f:25:ec:1a:ba:41:ba:e3:03:ea:90: a6:83:2e:66:9f:d2:23:a9:de:95:a6:04:1e:ed:0f: c1:6f:de:8a:e2:2f:fe:b5:40:42:0b:2b:21:d1:89: 51:b4:48:5f:ee:4a:46:3d:36:3d:7e:9f:6a:ff:f5: 7c:ce:74:d2:55:c7:ce:ad:f0:7c:64:dd:38:69:f7: 4a:19:59:ca:c4:fe:3c:4d:b2:d0:26:6b:20:ee:93: 94:ff:cf:5d:d2:da:6e:e1:9d:4a:3f:41:f0:d6:1e: c9:b1:ef:72:1a:57:bc:4c:41:cb:57:c0:a6:d0:11: c1:5e:5a:ef:f0:aa:35:f8:d0:ea:32:76:11:f4:cc: af:79:aa:1c:d9:9e:9c:d5:d2:bd:dd:60:91:f0:79: b8:2d:5b:be:a7:dc:69:b1:c5:4d:50:19:59:64:5b: 9b:35:d9:8f:71:4b:e0:f9:b6:28:6d:26:f4:31:0b: 7e:39:9c:cc:b0:d3:e7:ec:89:c2:e0:92:2c:7e:03: 8a:9f:c8:d1:a7:e5:3e:ee:8f:fc:56:fb:79:92:e4: 09:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D2:F4:A9:F8:D7:AC:A3:92:2A:C4:D7:B2:8B:90:29:FA:45:03:22 X509v3 Authority Key Identifier: keyid:A7:49:78:8C:B4:F4:1F:D8:5E:7A:C2:63:C8:75:B7:EA:F2:C0:E7:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/p0l4jLT0H9heesJjyHW36vLA540.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0l4jLT0H9heesJjyHW36vLA540.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C20D/8868A11E03A111EF8926C02AC4F9AE02/8BAD4414095B11EFA680B941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.70.0/23 Signature Algorithm: sha256WithRSAEncryption a0:8f:e9:80:1d:df:1a:d0:e5:ad:d8:e3:b6:4c:eb:59:bf:4f: d2:e6:db:d3:52:ab:8e:63:83:d3:cb:2a:0c:14:71:d1:17:22: a5:e0:82:28:4a:58:9a:16:50:5a:ec:da:a7:9c:a5:34:05:35: 14:2c:3a:24:51:1e:f8:e3:e6:a0:1f:1a:5b:72:10:59:38:b5: c6:13:6d:89:df:02:c5:6d:e2:00:ce:59:85:1e:d6:a7:cb:78: 52:ef:2b:bf:ec:14:f9:d4:8d:0f:0a:c1:1f:81:4f:22:af:f1: e5:8d:f8:33:af:b3:a2:36:15:4b:09:ae:1a:1f:75:2a:82:44: b3:dd:16:2e:e6:9b:fe:f4:4c:31:c1:12:6e:2d:cb:66:91:f4: 6a:5a:35:79:c8:f5:48:46:e8:0c:b6:20:9d:83:6c:f4:f7:41: 24:b7:ff:ef:c3:b3:c6:e3:9f:ed:09:8a:92:e8:79:bb:79:1a: 9d:88:25:13:70:0a:7a:b2:45:6d:ed:4b:55:79:b3:8e:f3:02: 71:87:77:a6:bb:1d:10:72:62:40:e7:01:28:e3:13:de:22:a8: 22:c8:9b:34:b6:54:a7:96:c4:93:30:f8:91:fb:d8:01:bb:ad: 74:43:03:f8:0b:78:9e:e9:7d:be:27:15:dd:00:16:af:2f:5b: 77:0b:ca:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzIwRDExMC8GA1UEBRMoQTc0OTc4OENCNEY0MUZEODVFN0FDMjYzQzg3NUI3RUFG MkMwRTc4RDAeFw0yNDA1MDUxNDE1MTNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Mzc5NDcxLTBiYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC53h95dBdbHSEsVucqKDsMOTq/dgeM0RGmd/phdTRdZg718iAT23mKp6Toam53 NrsPJewaukG64wPqkKaDLmaf0iOp3pWmBB7tD8Fv3oriL/61QEILKyHRiVG0SF/u SkY9Nj1+n2r/9XzOdNJVx86t8Hxk3Thp90oZWcrE/jxNstAmayDuk5T/z13S2m7h nUo/QfDWHsmx73IaV7xMQctXwKbQEcFeWu/wqjX40OoydhH0zK95qhzZnpzV0r3d YJHwebgtW76n3GmxxU1QGVlkW5s12Y9xS+D5tihtJvQxC345nMyw0+fsicLgkix+ A4qfyNGn5T7uj/xW+3mS5Am1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUydL0qfjX rKOSKsTXsouQKfpFAyIwHwYDVR0jBBgwFoAUp0l4jLT0H9heesJjyHW36vLA540w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDMjBELzg4NjhBMTFFMDNB MTExRUY4OTI2QzAyQUM0RjlBRTAyL3AwbDRqTFQwSDloZWVzSmp5SFczNnZMQTU0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDBsNGpMVDBIOWhlZXNKanlIVzM2dkxBNTQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzIwRC84ODY4QTExRTAzQTExMUVGODkyNkMwMkFDNEY5QUUwMi84QkFENDQxNDA5 NUIxMUVGQTY4MEI5NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcxRjANBgkqhkiG9w0BAQsFAAOCAQEAoI/pgB3fGtDlrdjj tkzrWb9P0ubb01KrjmOD08sqDBRx0RcipeCCKEpYmhZQWuzap5ylNAU1FCw6JFEe +OPmoB8aW3IQWTi1xhNtid8CxW3iAM5ZhR7Wp8t4Uu8rv+wU+dSNDwrBH4FPIq/x 5Y34M6+zojYVSwmuGh91KoJEs90WLuab/vRMMcESbi3LZpH0alo1ecj1SEboDLYg nYNs9PdBJLf/78OzxuOf7QmKkuh5u3kanYglE3AKerJFbe1LVXmzjvMCcYd3prsd EHJiQOcBKOMT3iKoIsibNLZUp5bEkzD4kfvYAbutdEMD+At4nul9vicV3QAWry9b dwvKRA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org