$ rpki-client -vvf rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/D4B06AAA3A6E11ED8266115DC4F9AE02.roa File: D4B06AAA3A6E11ED8266115DC4F9AE02.roa (raw, json) Hash identifier: TVDVEAcyy/AEflArfcqFC77C1KGTIMHM0wpYYMewUMA= Subject key identifier: 91:8F:72:AA:E3:46:CC:DC:6D:74:F1:30:56:6F:C4:33:BF:FA:7B:B8 Certificate issuer: /CN=A9135B44/serialNumber=E46E189DC8E910A1ABBE2E364DD081775CE48460 Certificate serial: 0124 Authority key identifier: E4:6E:18:9D:C8:E9:10:A1:AB:BE:2E:36:4D:D0:81:77:5C:E4:84:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5G4YncjpEKGrvi42TdCBd1zkhGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/D4B06AAA3A6E11ED8266115DC4F9AE02.roa Signing time: Sun 03 Mar 2024 04:36:41 +0000 ROA not before: Sun 03 Mar 2024 04:36:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141686 IP address blocks: 103.161.250.0/23 maxlen: 23 103.161.250.0/24 maxlen: 24 103.161.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/5G4YncjpEKGrvi42TdCBd1zkhGA.crl rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/5G4YncjpEKGrvi42TdCBd1zkhGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5G4YncjpEKGrvi42TdCBd1zkhGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135B44/serialNumber=E46E189DC8E910A1ABBE2E364DD081775CE48460 Validity Not Before: Mar 3 04:36:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e3fe58-cf14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0f:53:57:ce:87:59:8b:70:41:2e:95:60:6d: ed:1f:41:01:39:6d:4d:a2:e6:56:18:62:e0:f0:38: 9c:fe:f7:89:c6:2b:bb:bb:57:58:a9:75:cb:79:9a: 2e:df:e7:06:1c:ad:d5:25:c2:e5:17:c2:00:17:fd: 04:ae:5c:85:db:6a:c1:1a:89:ee:9e:a1:0d:09:d4: da:33:1c:53:31:01:49:6e:7a:b8:d1:11:78:29:38: cf:43:fd:02:50:ea:2d:2d:fe:2a:0b:45:1a:67:58: 11:c3:90:f5:55:e3:df:14:4f:5e:dd:6c:66:89:4f: 4f:a1:02:d2:ea:bd:f8:26:f8:14:5f:66:c2:1c:34: 31:a4:ed:c4:40:bf:fa:8c:3f:b0:60:21:98:a7:62: a2:d2:be:a6:48:c0:b1:04:a3:51:ed:99:ad:14:9e: d9:8a:d0:62:a5:b9:ca:ad:81:81:77:27:a9:d3:da: 13:62:77:c6:a5:f5:49:7f:44:ff:77:d0:da:92:3b: 37:c2:65:d3:82:17:c1:1c:41:23:cf:82:87:2f:1e: ec:ac:a3:57:5b:25:7c:63:28:40:00:57:10:94:bf: fd:0d:05:58:f8:7a:c3:f5:89:70:c9:76:9b:bd:d0: 7d:5e:2a:16:56:ab:43:cc:9c:44:d7:88:d9:6f:fb: bd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8F:72:AA:E3:46:CC:DC:6D:74:F1:30:56:6F:C4:33:BF:FA:7B:B8 X509v3 Authority Key Identifier: keyid:E4:6E:18:9D:C8:E9:10:A1:AB:BE:2E:36:4D:D0:81:77:5C:E4:84:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/5G4YncjpEKGrvi42TdCBd1zkhGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5G4YncjpEKGrvi42TdCBd1zkhGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135B44/AD0D61F83A6C11ED9941F55CC4F9AE02/D4B06AAA3A6E11ED8266115DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.250.0/23 Signature Algorithm: sha256WithRSAEncryption 67:df:c2:3c:eb:2e:1c:db:11:3d:8f:7b:73:ec:98:5e:0e:89: ea:03:4f:54:aa:30:ed:1a:98:af:d2:9d:e2:7b:a0:2b:c3:be: 28:40:33:04:c2:80:08:f2:c7:4d:22:23:63:d7:d2:6a:50:7a: 48:70:44:76:f8:a2:cf:8d:59:33:92:d9:fa:45:e6:7a:7a:5c: 78:68:71:33:c6:33:c9:52:d3:e3:aa:49:e0:cc:13:9c:5f:9e: ca:19:b0:fd:9f:0b:4f:b7:63:72:88:76:20:85:97:79:f8:22: d6:e6:6d:d6:09:c2:84:d5:34:01:5e:49:8c:5c:01:0d:b0:34: 98:45:a4:c1:d2:a7:e2:fe:f6:38:2d:f9:b9:31:40:02:af:8a: a0:42:51:81:27:ca:7f:d1:da:a8:64:7e:b5:e8:83:99:ce:83: 8d:87:57:62:d3:36:0f:e6:6e:18:66:26:9d:b1:73:a4:f0:ab: 5b:1a:25:ca:7e:5f:53:ab:a5:bd:35:55:2f:73:3e:b0:38:2c: 04:04:e5:05:86:9f:4f:99:f6:1a:5f:ef:7c:4b:18:21:15:32: d6:70:29:ce:62:7b:2f:c2:23:be:a5:20:76:d7:fb:82:1a:2c: bb:f4:e3:46:49:28:fe:fe:ce:02:93:0d:84:de:bc:8b:a9:57: ee:f0:34:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVCNDQxMTAvBgNVBAUTKEU0NkUxODlEQzhFOTEwQTFBQkJFMkUzNjRERDA4MTc3 NUNFNDg0NjAwHhcNMjQwMzAzMDQzNjQxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzZmU1OC1jZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Q9TV86HWYtwQS6VYG3tH0EBOW1NouZWGGLg8Dic/veJxiu7u1dYqXXLeZou 3+cGHK3VJcLlF8IAF/0ErlyF22rBGonunqENCdTaMxxTMQFJbnq40RF4KTjPQ/0C UOotLf4qC0UaZ1gRw5D1VePfFE9e3WxmiU9PoQLS6r34JvgUX2bCHDQxpO3EQL/6 jD+wYCGYp2Ki0r6mSMCxBKNR7ZmtFJ7ZitBipbnKrYGBdyep09oTYnfGpfVJf0T/ d9Dakjs3wmXTghfBHEEjz4KHLx7srKNXWyV8YyhAAFcQlL/9DQVY+HrD9YlwyXab vdB9XioWVqtDzJxE14jZb/u9NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJGPcqrj RszcbXTxMFZvxDO/+nu4MB8GA1UdIwQYMBaAFORuGJ3I6RChq74uNk3QgXdc5IRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUI0NC9BRDBENjFGODNB NkMxMUVEOTk0MUY1NUNDNEY5QUUwMi81RzRZbmNqcEVLR3J2aTQyVGRDQmQxemto R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHNFluY2pwRUtHcnZpNDJUZENCZDF6a2hHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzVCNDQvQUQwRDYxRjgzQTZDMTFFRDk5NDFGNTVDQzRGOUFFMDIvRDRCMDZBQUEz QTZFMTFFRDgyNjYxMTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnofowDQYJKoZIhvcNAQELBQADggEBAGffwjzrLhzbET2P e3PsmF4OieoDT1SqMO0amK/SneJ7oCvDvihAMwTCgAjyx00iI2PX0mpQekhwRHb4 os+NWTOS2fpF5np6XHhocTPGM8lS0+OqSeDME5xfnsoZsP2fC0+3Y3KIdiCFl3n4 ItbmbdYJwoTVNAFeSYxcAQ2wNJhFpMHSp+L+9jgt+bkxQAKviqBCUYEnyn/R2qhk frXog5nOg42HV2LTNg/mbhhmJp2xc6Twq1saJcp+X1Orpb01VS9zPrA4LAQE5QWG n0+Z9hpf73xLGCEVMtZwKc5iey/CI76lIHbX+4IaLLv040ZJKP7+zgKTDYTevIup V+7wNII= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org