$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa File: A79D17F2361111EA95391375C4F9AE02.roa (raw, json) Hash identifier: p66qkovQD+y8kyu8b01IhCcUiOjmRpwpO7Lv11hX31A= Subject key identifier: E7:B1:B4:25:AD:AE:E6:CB:F9:60:FE:26:95:86:31:CD:AD:34:9F:34 Certificate issuer: /CN=A916FA51/serialNumber=F4ECB53EC230539C0B57E59B467D154FADEB3989 Certificate serial: 0A45 Authority key identifier: F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa Signing time: Thu 14 Dec 2023 20:08:26 +0000 ROA not before: Thu 14 Dec 2023 20:08:26 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134749 IP address blocks: 103.199.152.0/24 maxlen: 24 103.199.153.0/24 maxlen: 24 103.199.154.0/24 maxlen: 24 103.199.155.0/24 maxlen: 24 203.78.144.0/24 maxlen: 24 203.78.145.0/24 maxlen: 24 203.78.146.0/24 maxlen: 24 203.78.147.0/24 maxlen: 24 2407:fe80::/32 maxlen: 32 2407:fe80::/40 maxlen: 40 2407:fe80:2::/48 maxlen: 48 2407:fe80:100::/40 maxlen: 40 2407:fe80:100::/48 maxlen: 48 2407:fe80:300::/40 maxlen: 40 2407:fe80:8100::/40 maxlen: 40 2407:fe80:8200::/40 maxlen: 40 2407:fe80:8300::/40 maxlen: 40 2407:fe80:8400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.crl rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA51/serialNumber=F4ECB53EC230539C0B57E59B467D154FADEB3989 Validity Not Before: Dec 14 20:08:26 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657b60b9-d772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e4:81:a5:d1:8d:9b:fc:c5:d2:7c:cf:7b:18: 92:64:f7:56:dc:53:af:c1:f8:7f:d0:c0:91:a6:7d: 1f:eb:e4:d8:83:55:90:26:20:36:a6:e1:1a:8e:cd: ac:51:bf:bb:09:ab:25:d5:2e:73:f0:a0:10:ae:46: 2d:e3:9a:84:fd:38:e7:13:ee:f9:b9:fe:73:20:48: f1:d8:d1:76:3c:60:39:ae:b4:c9:5d:62:c8:e0:87: 07:57:77:64:dc:01:55:37:ae:8d:ac:9d:1f:4a:c9: 8c:a8:60:d4:a5:6f:db:b6:c7:53:68:ff:47:8f:fa: 46:0f:94:ec:1e:32:d4:4e:2c:2b:94:b1:a2:3d:5f: db:98:49:00:a1:c5:dd:ce:6b:82:84:6e:c2:16:07: 82:b3:ec:fb:bd:ab:73:88:10:c8:8a:d2:f9:41:46: ca:06:43:74:af:c5:cf:58:05:3b:ec:5b:c4:b4:e7: b8:bd:78:77:8a:ca:ce:e2:3a:62:c9:e4:76:84:f6: 29:04:22:92:28:53:ff:c5:39:98:3c:57:c4:ba:17: 99:0b:6d:77:99:d7:1d:e2:07:0e:e6:3e:85:9a:fa: 36:d2:12:bb:7e:a5:2f:c6:69:5f:93:8b:0c:54:7e: ca:ab:53:22:b2:37:82:4b:96:4c:a6:fd:07:a6:12: b8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B1:B4:25:AD:AE:E6:CB:F9:60:FE:26:95:86:31:CD:AD:34:9F:34 X509v3 Authority Key Identifier: keyid:F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.152.0/22 203.78.144.0/22 IPv6: 2407:fe80::/32 Signature Algorithm: sha256WithRSAEncryption 7b:df:42:86:35:c1:05:69:f8:a7:9a:1b:82:7c:7b:1d:4c:a8: f3:8e:63:b4:50:87:ce:e5:6a:29:bf:0e:42:71:9c:b3:5b:2d: b9:4b:4a:cf:9b:ef:1c:b6:9e:93:e9:fc:12:3b:62:65:c6:80: 8f:2e:07:76:13:58:14:2d:0a:62:73:ff:93:95:43:00:cb:81: b9:6f:92:79:54:77:e1:93:65:20:62:72:9c:a2:d3:b3:66:61: b9:8f:88:8e:f4:6c:bf:66:b4:c1:bf:7f:e1:db:4d:d1:05:ca: 56:f2:56:b0:a9:43:ac:c4:8b:aa:5f:13:4f:13:23:95:e6:f7: de:74:d7:7b:b4:5e:c3:23:9e:5b:12:7f:e4:42:ce:89:96:0b: 61:b4:49:d8:43:e3:30:d4:cf:41:63:6e:e2:dc:3e:87:6d:b5: 75:63:98:67:df:b1:ce:10:c2:90:f1:25:68:5f:b3:b1:cd:43: 41:f9:13:b2:52:b6:9e:21:68:f4:f7:d3:24:fa:b2:d5:ce:51: 19:d2:25:05:96:03:c2:3c:57:cc:11:45:d4:87:ab:1c:e7:e1: 12:9d:d3:42:65:aa:70:4f:b0:f8:ad:74:41:23:a4:e6:a7:b4: bd:89:6d:69:95:25:a3:d9:99:14:38:fe:a2:e7:ba:2f:c6:aa: 04:9a:b7:96 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNTExMTAvBgNVBAUTKEY0RUNCNTNFQzIzMDUzOUMwQjU3RTU5QjQ2N0QxNTRG QURFQjM5ODkwHhcNMjMxMjE0MjAwODI2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiNjBiOS1kNzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOSBpdGNm/zF0nzPexiSZPdW3FOvwfh/0MCRpn0f6+TYg1WQJiA2puEajs2s Ub+7Casl1S5z8KAQrkYt45qE/TjnE+75uf5zIEjx2NF2PGA5rrTJXWLI4IcHV3dk 3AFVN66NrJ0fSsmMqGDUpW/btsdTaP9Hj/pGD5TsHjLUTiwrlLGiPV/bmEkAocXd zmuChG7CFgeCs+z7vatziBDIitL5QUbKBkN0r8XPWAU77FvEtOe4vXh3isrO4jpi yeR2hPYpBCKSKFP/xTmYPFfEuheZC213mdcd4gcO5j6Fmvo20hK7fqUvxmlfk4sM VH7Kq1MisjeCS5ZMpv0HphK4gwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOextCWt rubL+WD+JpWGMc2tNJ80MB8GA1UdIwQYMBaAFPTstT7CMFOcC1flm0Z9FU+t6zmJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE1MS9GOTI1QjM1MDM2 MTAxMUVBOUJEMTc0NzRDNEY5QUUwMi85T3kxUHNJd1U1d0xWLVdiUm4wVlQ2M3JP WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlPeTFQc0l3VTV3TFYtV2JSbjBWVDYzck9Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkZBNTEvRjkyNUIzNTAzNjEwMTFFQTlCRDE3NDc0QzRGOUFFMDIvQTc5RDE3RjIz NjExMTFFQTk1MzkxMzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnx5gDBALLTpAwDQQCAAIwBwMFACQH/oAwDQYJKoZIhvcN AQELBQADggEBAHvfQoY1wQVp+KeaG4J8ex1MqPOOY7RQh87laim/DkJxnLNbLblL Ss+b7xy2npPp/BI7YmXGgI8uB3YTWBQtCmJz/5OVQwDLgblvknlUd+GTZSBicpyi 07NmYbmPiI70bL9mtMG/f+HbTdEFylbyVrCpQ6zEi6pfE08TI5Xm995013u0XsMj nlsSf+RCzomWC2G0SdhD4zDUz0FjbuLcPodttXVjmGffsc4QwpDxJWhfs7HNQ0H5 E7JStp4haPT30yT6stXOURnSJQWWA8I8V8wRRdSHqxzn4RKd00JlqnBPsPitdEEj pOantL2JbWmVJaPZmRQ4/qLnui/GqgSat5Y= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org