$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/EB17A8C2152511ECAD055780C4F9AE02.roa File: EB17A8C2152511ECAD055780C4F9AE02.roa (raw, json) Hash identifier: yhqcfLmydnSz1e+iNoZqgS7pcnwEqMjkKUaaJlx7sic= Subject key identifier: 3E:9C:7F:46:45:55:28:30:1B:EE:08:F5:72:FE:2C:42:7C:CA:15:8E Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 046B Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/EB17A8C2152511ECAD055780C4F9AE02.roa Signing time: Fri 16 Aug 2024 02:55:14 +0000 ROA not before: Fri 16 Aug 2024 02:55:14 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134497 IP address blocks: 103.161.60.0/23 maxlen: 23 103.161.60.0/24 maxlen: 24 103.161.61.0/24 maxlen: 24 2400:6860::/34 maxlen: 34 2400:6860:4000::/34 maxlen: 34 2400:6860:8000::/34 maxlen: 34 2400:6860:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Aug 16 02:55:14 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66bebf92-7d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:80:35:82:b9:2c:47:d7:be:4a:80:a2:6e: 76:50:30:1a:0f:26:0b:c9:9d:0e:73:e9:9e:26:c0: 1c:5d:74:8c:7c:14:8a:da:46:b0:54:b5:80:94:55: 87:ff:6d:cf:21:2d:f3:07:21:63:06:58:c6:08:66: e7:72:a1:bd:5f:a7:29:78:5e:7d:8a:23:4e:3d:7c: b9:42:0c:0e:e3:e8:d0:3c:8c:35:2a:73:d6:26:ce: 8c:0f:59:48:1f:47:22:30:e6:8b:9d:d4:8c:fe:0e: 5a:c2:5e:96:89:24:04:d1:d7:92:be:c2:dd:c4:37: e9:f1:ba:6f:83:48:12:92:9f:47:61:71:a7:c5:c9: 2f:72:c2:6f:12:d3:9f:6e:22:5d:1a:bd:6a:df:51: 93:83:67:41:e8:31:b7:c9:47:d4:b8:09:17:5d:4b: a7:43:ea:09:f9:70:a2:93:af:1e:20:19:a0:42:eb: bb:22:ed:a2:a5:3b:4d:1d:38:3e:ce:32:bb:17:f3: 61:41:74:0a:7d:e6:8c:24:23:ca:77:99:ea:f1:6c: c7:44:91:54:06:ac:4c:72:ba:80:24:1b:f9:db:98: 63:ba:05:57:b9:ae:46:62:53:81:d2:ac:52:3f:11: be:7a:b5:23:df:ed:69:54:3a:13:e3:e1:de:cf:c2: 94:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9C:7F:46:45:55:28:30:1B:EE:08:F5:72:FE:2C:42:7C:CA:15:8E X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/EB17A8C2152511ECAD055780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.60.0/23 IPv6: 2400:6860::/32 Signature Algorithm: sha256WithRSAEncryption 9f:e0:f9:93:d9:4a:59:2b:15:b9:ad:7e:9f:91:ca:12:31:68: 39:7f:06:e0:35:84:b5:ec:c9:4b:97:5e:83:8e:40:2a:6f:12: e9:d8:d0:18:a7:01:c9:0b:a1:4b:e7:4d:5c:49:bd:32:3e:5b: 91:af:a8:39:09:14:73:b9:bc:b9:ba:6f:2f:dc:3b:62:e6:ab: 44:5b:f1:87:4b:d1:c2:af:de:c3:fa:bf:9d:55:3a:77:f0:c8: a0:44:a4:27:0a:41:de:a6:bf:0e:7f:19:69:ca:e9:a6:0f:b0: 89:24:12:64:c2:00:c0:05:79:41:31:9a:24:67:bf:d8:91:24: 3e:80:5b:98:a1:84:e9:cf:49:fd:d3:a2:66:00:d0:b4:f9:68: 3d:7e:71:d2:30:32:d9:4b:c0:d0:6b:88:3b:02:bd:b8:26:80: ee:f6:bd:6f:d0:04:ae:ca:4b:61:de:42:c9:63:40:5f:18:c8: 62:ce:88:3a:89:c0:23:05:7e:c1:e6:ba:55:a6:19:eb:cc:9c: ed:2a:a2:a5:3f:09:0a:a9:04:57:72:db:c6:93:78:6d:af:5a: 5f:51:ed:7c:60:bf:c8:36:8b:ca:5b:7d:59:75:b5:25:9c:42: 0c:ff:e6:dd:03:9e:1c:c4:9d:cc:6c:e0:0e:73:e7:c2:89:a4: f3:6e:f8:5c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjQwODE2MDI1NTE0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJlYmY5Mi03ZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPWANYK5LEfXvkqAom52UDAaDyYLyZ0Oc+meJsAcXXSMfBSK2kawVLWAlFWH /23PIS3zByFjBljGCGbncqG9X6cpeF59iiNOPXy5QgwO4+jQPIw1KnPWJs6MD1lI H0ciMOaLndSM/g5awl6WiSQE0deSvsLdxDfp8bpvg0gSkp9HYXGnxckvcsJvEtOf biJdGr1q31GTg2dB6DG3yUfUuAkXXUunQ+oJ+XCik68eIBmgQuu7Iu2ipTtNHTg+ zjK7F/NhQXQKfeaMJCPKd5nq8WzHRJFUBqxMcrqAJBv525hjugVXua5GYlOB0qxS PxG+erUj3+1pVDoT4+Hez8KURwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD6cf0ZF VSgwG+4I9XL+LEJ8yhWOMB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERGNTYvQkQ3RkEwMzgxNTIzMTFFQ0I3NEYyMDgwQzRGOUFFMDIvRUIxN0E4QzIx NTI1MTFFQ0FEMDU1NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnoTwwDQQCAAIwBwMFACQAaGAwDQYJKoZIhvcNAQELBQAD ggEBAJ/g+ZPZSlkrFbmtfp+RyhIxaDl/BuA1hLXsyUuXXoOOQCpvEunY0BinAckL oUvnTVxJvTI+W5GvqDkJFHO5vLm6by/cO2Lmq0Rb8YdL0cKv3sP6v51VOnfwyKBE pCcKQd6mvw5/GWnK6aYPsIkkEmTCAMAFeUExmiRnv9iRJD6AW5ihhOnPSf3TomYA 0LT5aD1+cdIwMtlLwNBriDsCvbgmgO72vW/QBK7KS2HeQsljQF8YyGLOiDqJwCMF fsHmulWmGevMnO0qoqU/CQqpBFdy28aTeG2vWl9R7Xxgv8g2i8pbfVl1tSWcQgz/ 5t0DnhzEncxs4A5z58KJpPNu+Fw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org