$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/CD4CD0B654F311E7AC64ED3AC4F9AE02.roa File: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: sxrNxCTJ+45si1boAQwArYewZOdeGJ/p8B0/QcUtSi8= Subject key identifier: C4:D8:FC:82:35:03:D7:04:36:A7:E0:B7:3C:D6:C3:9F:E1:30:AF:21 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2101 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/CD4CD0B654F311E7AC64ED3AC4F9AE02.roa Signing time: Sat 20 Jan 2024 16:13:19 +0000 ROA not before: Sat 20 Jan 2024 16:13:19 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133923 IP address blocks: 103.48.88.0/24 maxlen: 24 103.212.64.0/23 maxlen: 24 2001:df2:1400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8449 (0x2101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Jan 20 16:13:19 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65abf11f-0304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:81:91:51:f9:4f:17:b0:17:e7:ea:82:7a: 90:2c:25:79:7e:86:f7:cc:31:c3:a0:7c:4e:61:2a: 5c:89:d4:90:39:72:07:47:af:a8:8f:d4:79:c7:8a: d7:fc:62:36:38:54:0c:de:11:a3:30:37:af:97:7e: 49:f4:20:51:3c:8d:c3:de:fe:4d:ac:d6:80:ea:72: 85:d4:93:4c:f9:03:05:6b:7a:54:7f:57:ee:9b:a8: a6:7d:89:2b:90:64:ea:39:62:a8:1d:2e:b4:bc:29: ff:0c:20:58:42:55:8f:82:4f:55:ff:eb:f8:c9:f1: a1:cf:1b:3e:01:81:ca:59:08:95:04:26:a0:54:58: d6:c3:0e:3f:4f:4d:ec:98:86:e3:95:17:f0:01:bb: 0e:88:0f:74:31:55:c5:d9:48:7c:ee:d3:08:de:70: f4:7d:a4:16:b1:25:a1:cb:09:08:74:b5:66:04:34: aa:73:58:6e:03:28:ce:1c:27:9e:21:54:4a:40:de: ea:5d:8c:dc:30:51:6f:8e:93:0a:de:0d:f0:2c:9f: 5a:a9:11:76:48:af:09:6b:b5:f5:ae:a4:73:1e:7b: 34:3d:f5:5c:c4:35:02:a3:f5:42:48:ea:11:f4:dd: 5a:06:98:53:01:68:91:ac:77:fb:c1:34:a9:e2:ec: 80:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D8:FC:82:35:03:D7:04:36:A7:E0:B7:3C:D6:C3:9F:E1:30:AF:21 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/CD4CD0B654F311E7AC64ED3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.88.0/24 103.212.64.0/23 IPv6: 2001:df2:1400::/48 Signature Algorithm: sha256WithRSAEncryption 0b:ca:05:61:db:ff:8a:66:eb:9d:f3:98:21:aa:d6:70:72:83: 14:e0:fa:a7:52:a5:e9:1b:a3:96:25:35:94:ab:c5:18:d8:58: 8b:44:20:50:a2:77:35:c5:37:3a:28:76:a1:b0:16:6d:8d:41: dd:62:cb:7f:00:af:ea:b8:44:92:59:a3:a9:7b:d5:55:49:86: 61:14:c2:73:ea:ef:3e:ae:4a:ce:66:b8:32:cf:84:47:f1:86: 6d:fb:15:7d:f2:d9:a9:f2:d3:7e:8d:f3:44:d2:10:ad:67:df: 7f:6a:3c:21:ca:e1:bf:e8:4a:99:5b:e1:c2:18:ef:17:e1:75: ea:08:f7:cd:24:9e:1d:5b:4a:8e:fa:a2:e6:61:2c:2a:35:f4: 06:b7:10:bc:0e:54:d8:e2:0f:44:28:7e:bb:00:68:03:48:f7: 11:d4:ca:d4:6e:6b:57:64:13:af:d1:5d:57:93:79:86:ba:9a: f6:f7:7a:91:b9:44:27:08:a7:a2:dc:9e:6a:3f:0e:26:a1:eb: 8c:3b:c5:51:d2:28:52:2a:7f:11:ab:f6:5b:86:88:b4:c7:48: 83:bb:a0:3f:26:b9:1b:0e:e4:e6:06:70:b3:b5:74:e9:98:01: 73:13:12:ca:e6:bb:4e:8a:c8:7c:82:bd:a5:eb:68:5a:62:fe: 80:9d:f7:01 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICIQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjQwMTIwMTYxMzE5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFiZjExZi0wMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArieBkVH5TxewF+fqgnqQLCV5fob3zDHDoHxOYSpcidSQOXIHR6+oj9R5x4rX /GI2OFQM3hGjMDevl35J9CBRPI3D3v5NrNaA6nKF1JNM+QMFa3pUf1fum6imfYkr kGTqOWKoHS60vCn/DCBYQlWPgk9V/+v4yfGhzxs+AYHKWQiVBCagVFjWww4/T03s mIbjlRfwAbsOiA90MVXF2Uh87tMI3nD0faQWsSWhywkIdLVmBDSqc1huAyjOHCee IVRKQN7qXYzcMFFvjpMK3g3wLJ9aqRF2SK8Ja7X1rqRzHns0PfVcxDUCo/VCSOoR 9N1aBphTAWiRrHf7wTSp4uyAWwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMTY/II1 A9cENqfgtzzWw5/hMK8hMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUUwMDUvOUJFNzgxRkVDNjk5MTFFNUIwQUZFNTRFQzRGOUFFMDIvQ0Q0Q0QwQjY1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnMFgDBAFn1EAwDwQCAAIwCQMHACABDfIUADANBgkqhkiG 9w0BAQsFAAOCAQEAC8oFYdv/imbrnfOYIarWcHKDFOD6p1Kl6RujliU1lKvFGNhY i0QgUKJ3NcU3Oih2obAWbY1B3WLLfwCv6rhEklmjqXvVVUmGYRTCc+rvPq5Kzma4 Ms+ER/GGbfsVffLZqfLTfo3zRNIQrWfff2o8Icrhv+hKmVvhwhjvF+F16gj3zSSe HVtKjvqi5mEsKjX0BrcQvA5U2OIPRCh+uwBoA0j3EdTK1G5rV2QTr9FdV5N5hrqa 9vd6kblEJwinotyeaj8OJqHrjDvFUdIoUip/Eav2W4aItMdIg7ugPya5Gw7k5gZw s7V06ZgBcxMSyua7TorIfIK9petoWmL+gJ33AQ== -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org