$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/EA46D7ECE57F11EE96F8FB39C4F9AE02.roa File: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (raw, json) Hash identifier: a7kXfwNeuBzF/aeEMRcbCbD2kj3ZcaqnqO+KkH+rl/A= Subject key identifier: 03:1D:77:8D:26:31:2C:A8:2A:1D:C7:56:B7:47:A1:AE:5B:C3:A2:BF Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 04 Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/EA46D7ECE57F11EE96F8FB39C4F9AE02.roa Signing time: Tue 19 Mar 2024 04:27:04 +0000 ROA not before: Tue 19 Mar 2024 04:27:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138455 IP address blocks: 103.125.222.0/24 maxlen: 24 103.141.233.0/24 maxlen: 24 203.4.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Mar 19 04:27:04 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65f91418-8fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8b:02:ef:5b:c5:4b:24:81:5e:2c:c7:37:9b: b4:63:9f:fb:49:6c:65:85:29:34:74:aa:72:19:43: 88:17:db:a4:bd:97:1b:c0:f9:1c:89:c2:7d:43:06: fb:0f:e4:a6:d8:59:1d:6a:fc:1f:c1:e7:60:ec:fb: 02:50:6f:06:db:b6:20:7b:da:12:3c:44:94:22:61: f4:c8:fd:25:cc:d1:f7:fb:44:1b:40:d4:d6:c2:35: 45:83:a5:86:fd:64:53:09:93:fb:46:cc:b3:66:99: b9:da:70:09:f9:75:10:b3:2d:58:08:5a:99:d6:ea: f9:37:53:a1:66:ea:25:7d:bd:64:20:87:68:4e:26: 9a:2e:81:8b:22:a0:d8:2b:a0:6f:84:10:d1:de:c8: d6:d1:98:20:e3:d1:9b:d1:40:e4:5c:7e:b7:84:17: 3c:49:db:40:7a:22:3a:8c:3a:60:8c:c4:d8:60:9e: 23:c5:d8:0e:dd:f0:a4:1b:ec:38:27:45:6e:23:f6: f6:2e:95:3f:2f:f8:c0:0d:48:a3:47:d2:49:69:61: 13:de:72:2c:33:9b:6e:b1:9d:48:21:fc:a9:22:74: 99:f6:e5:13:60:6b:36:38:1c:b4:d8:02:c5:72:07: 2c:55:bb:3a:29:1f:f1:35:c8:25:4a:ca:44:c3:0b: 66:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:1D:77:8D:26:31:2C:A8:2A:1D:C7:56:B7:47:A1:AE:5B:C3:A2:BF X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/EA46D7ECE57F11EE96F8FB39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.222.0/24 103.141.233.0/24 203.4.161.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:19:d9:b5:63:3d:39:05:67:b5:b3:06:bc:ae:84:32:c5:0a: 4d:45:f1:9a:52:e0:66:ea:8d:18:f8:66:1f:2c:b6:65:7e:59: 85:01:58:2c:be:db:f2:cd:54:49:b9:f7:5e:ac:e6:05:fc:d7: 5b:37:a9:aa:56:b3:d8:75:fa:62:b0:e7:8a:6f:c4:e3:be:f3: d8:e3:a6:28:c2:9d:ed:ff:1f:a6:06:45:34:08:4c:68:8c:d3: 92:6c:a3:43:b4:53:a0:b0:2d:62:69:da:54:02:f8:d5:44:bb: 86:e7:b2:a3:4e:84:04:8f:71:a3:5b:b7:a1:66:88:3a:13:0b: 29:b8:99:2f:5d:82:1a:d6:4d:55:e2:db:1b:12:e9:a4:dc:2e: b4:3d:72:80:7c:b9:8f:4b:7e:65:f4:5f:fc:51:0f:96:a9:03: 4c:a3:87:b0:97:92:d1:ad:23:24:65:00:28:0e:b2:55:10:ab: 1d:46:f6:14:a0:5e:4d:3d:9c:84:33:c2:5c:85:6d:17:a5:f7: 55:7c:e7:3b:72:cd:68:bd:f4:c1:ad:a7:54:38:85:ef:e0:ca: 09:c4:fc:7a:51:c4:dd:0e:7a:a9:49:9c:d3:1a:fe:4d:f0:a0: 9d:66:45:42:3b:f3:d9:f6:8e:f6:8a:24:56:22:68:a3:2d:04: af:75:00:3f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDVENzExMC8GA1UEBRMoNjFFNEY4NjE2QjYyNDI2NjFBOTFGN0QwMTJCNkNEMUU0 MDkzODkwQjAeFw0yNDAzMTkwNDI3MDRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjkxNDE4LThmZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGiwLvW8VLJIFeLMc3m7Rjn/tJbGWFKTR0qnIZQ4gX26S9lxvA+RyJwn1DBvsP 5KbYWR1q/B/B52Ds+wJQbwbbtiB72hI8RJQiYfTI/SXM0ff7RBtA1NbCNUWDpYb9 ZFMJk/tGzLNmmbnacAn5dRCzLVgIWpnW6vk3U6Fm6iV9vWQgh2hOJpougYsioNgr oG+EENHeyNbRmCDj0ZvRQORcfreEFzxJ20B6IjqMOmCMxNhgniPF2A7d8KQb7Dgn RW4j9vYulT8v+MANSKNH0klpYRPeciwzm26xnUgh/KkidJn25RNgazY4HLTYAsVy ByxVuzopH/E1yCVKykTDC2Z/AgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUAx13jSYx LKgqHcdWt0ehrlvDor8wHwYDVR0jBBgwFoAUYeT4YWtiQmYakffQErbNHkCTiQsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwNUQ3LzNCNTBGMTMyRTU3 RjExRUVBRjFEMjkxQkM0RjlBRTAyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlR cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWVUNFlXdGlRbVlha2ZmUUVyYk5Ia0NUaVFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9FQTQ2RDdFQ0U1 N0YxMUVFOTZGOEZCMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAGd93gMEAGeN6QMEAMsEoTANBgkqhkiG9w0BAQsFAAOCAQEA XBnZtWM9OQVntbMGvK6EMsUKTUXxmlLgZuqNGPhmHyy2ZX5ZhQFYLL7b8s1USbn3 XqzmBfzXWzepqlaz2HX6YrDnim/E477z2OOmKMKd7f8fpgZFNAhMaIzTkmyjQ7RT oLAtYmnaVAL41US7hueyo06EBI9xo1u3oWaIOhMLKbiZL12CGtZNVeLbGxLppNwu tD1ygHy5j0t+ZfRf/FEPlqkDTKOHsJeS0a0jJGUAKA6yVRCrHUb2FKBeTT2chDPC XIVtF6X3VXznO3LNaL30wa2nVDiF7+DKCcT8elHE3Q56qUmc0xr+TfCgnWZFQjvz 2faO9ookViJooy0Er3UAPw== -----END CERTIFICATE-----Generated at Fri Jun 7 12:38:02 2024 by rpki-client on console-ams.rpki-client.org