$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa File: E458D4E0F4A011E98C19332EC4F9AE02.roa (raw, json) Hash identifier: 7jk/rr6LxzX1IditaP54a6jKieqp/It8jKrxJlUcU9U= Subject key identifier: 64:0D:29:AB:3A:B9:E7:F3:CA:30:2E:3D:5E:8D:6D:5F:71:3B:58:51 Certificate issuer: /CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Certificate serial: 0BA5 Authority key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa Signing time: Tue 30 Jan 2024 19:27:19 +0000 ROA not before: Tue 30 Jan 2024 19:27:19 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138587 IP address blocks: 103.133.252.0/22 maxlen: 24 2404:57c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2981 (0xba5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Validity Not Before: Jan 30 19:27:19 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b94d97-b821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:81:7b:2f:50:af:43:04:da:1e:1c:89:5d: 2d:a6:65:8b:3d:8d:95:b8:14:48:f8:a5:f5:40:76: 48:4d:51:a7:1a:94:63:1c:2f:fb:2b:b3:1d:d7:a6: bd:0d:f2:e9:57:61:a5:21:8c:84:46:17:7b:3f:41: fa:5c:e2:74:9a:2e:67:d1:ea:4d:8a:57:ad:5e:0a: ff:b5:da:b0:f2:70:a2:17:0c:7e:a3:42:86:e7:33: 3c:56:27:03:f1:77:43:bc:f0:44:6e:19:39:92:4d: 15:9a:fb:04:46:07:e6:f6:c0:1a:e8:a2:94:fa:66: e7:b3:50:67:77:70:6f:19:24:5e:04:bb:4d:20:90: be:37:27:9d:71:50:cc:2d:b6:eb:82:03:f6:45:5f: a5:cc:1d:f5:40:89:cb:7d:fc:5e:81:e7:84:26:20: 95:91:7f:55:6c:f6:25:31:41:e6:2a:66:06:d1:73: 91:e9:ba:e9:b2:21:3f:15:d2:71:88:fc:24:41:68: 25:53:14:96:db:ac:a8:ee:a7:e1:e8:8a:18:f0:d8: 64:b9:47:c9:04:86:b2:7f:78:04:0f:82:4a:2d:da: d6:bc:e5:59:0e:4f:56:94:09:c9:47:e9:5b:8c:eb: cf:3b:64:92:48:17:7e:8f:2c:b9:c5:34:7a:3b:87: ae:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0D:29:AB:3A:B9:E7:F3:CA:30:2E:3D:5E:8D:6D:5F:71:3B:58:51 X509v3 Authority Key Identifier: keyid:B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.252.0/22 IPv6: 2404:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 38:3a:d9:9b:9d:50:45:2a:22:a4:fe:28:cd:75:e4:ac:b5:f7: 69:9b:86:9d:1b:2e:b0:67:c1:40:90:22:4f:8b:fb:4e:ef:94: aa:94:ba:f1:98:ce:73:57:a4:dc:dc:c1:b2:6c:cb:f0:05:1a: db:6d:0a:a1:93:b5:1f:a2:95:2d:14:16:b1:4d:46:6d:de:8d: 1f:f3:56:c4:1e:ec:ed:bd:bc:6c:03:a0:5a:cf:a3:86:e2:49: 88:c1:d1:41:e2:7e:de:8e:1f:cd:65:88:6b:dd:c4:e7:fb:8f: 7a:08:80:a9:11:9d:cb:25:e3:e5:b8:e7:36:19:ce:85:28:ec: 64:37:d8:c6:25:b1:30:36:d4:f4:3b:e6:57:4f:af:7b:66:78: e0:62:98:6c:32:59:4a:27:85:f8:c1:58:42:b5:b6:7a:fb:e3: 34:ba:79:ec:a0:20:92:a8:8f:6d:a5:3f:3b:f2:bf:9d:de:eb: e6:47:59:83:40:f3:df:fb:90:d9:28:af:4e:e6:c4:60:65:7b: f6:dc:97:08:8c:a9:12:b1:11:5a:8f:5b:8b:5e:c2:23:0c:36: 0f:8c:45:a1:94:21:8f:49:8c:05:54:a4:31:13:b5:73:6d:09: d9:a8:c1:69:9f:ad:3d:ce:ef:93:48:2a:c7:1d:85:00:b9:a3: a2:f3:c3:32 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFDQzFGRTZFRDhC RDJGMzEyMTMwHhcNMjQwMTMwMTkyNzE5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NGQ5Ny1iODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjaBey9Qr0ME2h4ciV0tpmWLPY2VuBRI+KX1QHZITVGnGpRjHC/7K7Md16a9 DfLpV2GlIYyERhd7P0H6XOJ0mi5n0epNiletXgr/tdqw8nCiFwx+o0KG5zM8VicD 8XdDvPBEbhk5kk0VmvsERgfm9sAa6KKU+mbns1Bnd3BvGSReBLtNIJC+NyedcVDM LbbrggP2RV+lzB31QInLffxegeeEJiCVkX9VbPYlMUHmKmYG0XOR6brpsiE/FdJx iPwkQWglUxSW26yo7qfh6IoY8NhkuUfJBIayf3gED4JKLdrWvOVZDk9WlAnJR+lb jOvPO2SSSBd+jyy5xTR6O4eu3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGQNKas6 uefzyjAuPV6NbV9xO1hRMB8GA1UdIwQYMBaAFLV0hHWr9ZB3gYlRzB/m7YvS8xIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREE1MC9ENDlCRDIxMEY0 OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtIZUJpVkhNSC1idGk5THpF aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RYU0VkYXYxa0hlQmlWSE1ILWJ0aTlMekVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RBNTAvRDQ5QkQyMTBGNDlGMTFFOThCRkZGODJDQzRGOUFFMDIvRTQ1OEQ0RTBG NEEwMTFFOThDMTkzMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhfwwDQQCAAIwBwMFACQEV8AwDQYJKoZIhvcNAQELBQAD ggEBADg62ZudUEUqIqT+KM115Ky192mbhp0bLrBnwUCQIk+L+07vlKqUuvGYznNX pNzcwbJsy/AFGtttCqGTtR+ilS0UFrFNRm3ejR/zVsQe7O29vGwDoFrPo4biSYjB 0UHift6OH81liGvdxOf7j3oIgKkRncsl4+W45zYZzoUo7GQ32MYlsTA21PQ75ldP r3tmeOBimGwyWUonhfjBWEK1tnr74zS6eeygIJKoj22lPzvyv53e6+ZHWYNA89/7 kNkor07mxGBle/bclwiMqRKxEVqPW4tewiMMNg+MRaGUIY9JjAVUpDETtXNtCdmo wWmfrT3O75NIKscdhQC5o6LzwzI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org