$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/D6AEA2D20DE311EFA1E24F25C4F9AE02.roa File: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (raw, json) Hash identifier: nDgnRwgmZ7bsNv+cYxklBGsN8gkMFm1vGl/SBkHHb6k= Subject key identifier: 30:FA:94:E5:98:EE:9E:61:EA:17:15:43:01:03:AA:58:74:EC:CC:DF Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 02 Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/D6AEA2D20DE311EFA1E24F25C4F9AE02.roa Signing time: Thu 09 May 2024 09:09:28 +0000 ROA not before: Thu 09 May 2024 09:09:28 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 131268 IP address blocks: 103.35.92.0/24 maxlen: 24 103.35.93.0/24 maxlen: 24 103.35.94.0/24 maxlen: 24 103.35.95.0/24 maxlen: 24 202.4.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: May 9 09:09:28 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=663c92c8-c7d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3e:2d:4a:7e:02:6f:a4:98:cf:7f:7b:02:08: ee:80:38:7d:b4:a9:1c:a2:f6:14:d4:5f:bb:1c:99: cb:a5:4f:33:42:c1:6e:57:4d:46:7d:2c:a5:8e:1f: 5d:e6:9f:e4:90:08:0f:31:4c:c1:99:81:af:2c:c1: 75:da:89:da:a1:ff:15:4d:3d:a0:7e:60:b4:e4:9c: 3b:56:b0:99:1b:89:12:22:42:05:7d:d4:5b:3b:ca: 1a:c7:7e:b8:44:f8:b1:b1:3a:db:a3:c6:35:85:c1: 3a:9d:aa:48:a2:a4:aa:cb:2b:bd:7d:47:13:7e:ce: ce:0f:af:20:d4:29:bd:d0:06:49:2d:89:85:7a:bb: 26:b8:77:b4:94:13:ec:de:55:88:e0:45:c4:b3:f4: 5c:17:75:ce:42:6b:b3:36:a9:a4:5d:75:8c:21:d1: b5:a6:4a:21:fb:3a:e5:a6:92:51:a5:86:75:c8:a7: 92:a9:06:85:1a:f4:71:2a:bb:88:f3:17:8e:7a:8b: 89:fc:d1:2d:f8:4d:8d:94:f7:ee:7d:22:ad:33:69: 1d:ca:bb:cd:0b:c5:49:aa:10:3b:ed:07:55:99:01: b8:f8:9f:b8:36:3c:b5:b3:dc:12:24:38:cf:57:61: 67:c6:21:aa:c4:b6:a7:bb:da:d1:90:fe:6d:50:81: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:FA:94:E5:98:EE:9E:61:EA:17:15:43:01:03:AA:58:74:EC:CC:DF X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/D6AEA2D20DE311EFA1E24F25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.92.0/22 202.4.188.0/24 Signature Algorithm: sha256WithRSAEncryption 61:71:1b:8e:56:ba:37:47:a8:51:55:e6:b5:5f:a4:5e:ea:c2: 38:87:d6:03:81:59:c1:a6:79:9f:11:3c:0f:5c:93:7d:f6:66: 0d:fb:3b:f7:89:52:be:6f:06:e1:26:46:66:2d:b2:dc:46:92: 83:ea:99:df:a2:72:42:70:02:5e:72:20:bb:65:ca:12:a3:1c: c0:56:1b:f9:74:e9:90:2e:17:81:a9:57:91:2f:cb:b6:dd:8f: f8:13:29:dc:7b:c6:7e:20:78:05:f4:da:e5:95:6d:01:45:70: cc:f7:4d:87:a3:12:f0:33:c9:50:41:d9:c5:a4:ef:cf:22:9d: 4f:d6:ec:a0:14:0a:eb:25:f6:86:a4:51:1f:ff:81:49:aa:9c: d4:9f:18:c5:05:f9:4c:75:e6:d0:d4:96:84:6d:69:c7:46:83: de:b2:67:9c:a1:b3:15:60:4b:16:0d:be:03:67:41:fe:7c:9f: 2a:9d:16:eb:df:d0:00:d9:ef:fd:f0:64:c5:a1:1d:66:29:6f: 7a:08:72:14:5b:77:e2:58:61:5c:15:de:d7:fb:24:64:50:d7: f3:bf:49:73:db:62:d6:83:4c:be:bb:c6:92:b6:23:cf:9d:09: 84:80:39:39:3f:7b:6f:82:a4:47:e1:7f:bc:35:b8:d8:f3:df: d6:86:1e:1a -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTJCMjExMC8GA1UEBRMoQjcwREVBNkM3N0I5RThFQ0NFNTgzOTEzMjgxOUVGOTEz NzNGQzUyNzAeFw0yNDA1MDkwOTA5MjhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2M5MmM4LWM3ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Pi1KfgJvpJjPf3sCCO6AOH20qRyi9hTUX7scmculTzNCwW5XTUZ9LKWOH13m n+SQCA8xTMGZga8swXXaidqh/xVNPaB+YLTknDtWsJkbiRIiQgV91Fs7yhrHfrhE +LGxOtujxjWFwTqdqkiipKrLK719RxN+zs4PryDUKb3QBkktiYV6uya4d7SUE+ze VYjgRcSz9FwXdc5Ca7M2qaRddYwh0bWmSiH7OuWmklGlhnXIp5KpBoUa9HEqu4jz F456i4n80S34TY2U9+59Iq0zaR3Ku80LxUmqEDvtB1WZAbj4n7g2PLWz3BIkOM9X YWfGIarEtqe72tGQ/m1QgRlPAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUMPqU5Zju nmHqFxVDAQOqWHTszN8wHwYDVR0jBBgwFoAUtw3qbHe56OzOWDkTKBnvkTc/xScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMkIyLzJCNDZFQTU4MERF MzExRUY4MDNGNkYwRUM0RjlBRTAyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdHczcWJIZTU2T3pPV0RrVEtCbnZrVGNfeFNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTJCMi8yQjQ2RUE1ODBERTMxMUVGODAzRjZGMEVDNEY5QUUwMi9ENkFFQTJEMjBE RTMxMUVGQTFFMjRGMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcjXAMEAMoEvDANBgkqhkiG9w0BAQsFAAOCAQEAYXEbjla6 N0eoUVXmtV+kXurCOIfWA4FZwaZ5nxE8D1yTffZmDfs794lSvm8G4SZGZi2y3EaS g+qZ36JyQnACXnIgu2XKEqMcwFYb+XTpkC4XgalXkS/Ltt2P+BMp3HvGfiB4BfTa 5ZVtAUVwzPdNh6MS8DPJUEHZxaTvzyKdT9bsoBQK6yX2hqRRH/+BSaqc1J8YxQX5 THXm0NSWhG1px0aD3rJnnKGzFWBLFg2+A2dB/nyfKp0W69/QANnv/fBkxaEdZilv eghyFFt34lhhXBXe1/skZFDX879Jc9ti1oNMvrvGkrYjz50JhIA5OT97b4KkR+F/ vDW42PPf1oYeGg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org