$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa File: 0D53ED80D2BA11ED8E06CC13C4F9AE02.roa (raw, json) Hash identifier: S559gsIWXVd6S5Op4XFYguV0V2ZXge3n4rHa7okd57c= Subject key identifier: 24:8C:24:5A:D3:4F:E5:D5:55:AD:20:BC:90:9B:26:89:1A:D0:BA:FA Certificate issuer: /CN=A91A0C5F/serialNumber=C06FF005DE1D5EF13BA8F0C260E963034A5A22CA Certificate serial: CB Authority key identifier: C0:6F:F0:05:DE:1D:5E:F1:3B:A8:F0:C2:60:E9:63:03:4A:5A:22:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa Signing time: Sat 27 Apr 2024 06:20:31 +0000 ROA not before: Sat 27 Apr 2024 06:20:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151060 IP address blocks: 103.124.30.0/23 maxlen: 23 103.124.30.0/24 maxlen: 24 103.124.31.0/24 maxlen: 24 2001:df2:3540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.crl rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0C5F/serialNumber=C06FF005DE1D5EF13BA8F0C260E963034A5A22CA Validity Not Before: Apr 27 06:20:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c992f-e5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8d:59:7b:85:33:9c:89:35:e5:fe:fa:8a:65: fa:f1:1e:b8:83:c0:58:af:56:08:a9:66:20:bf:78: fd:bb:f8:01:d0:29:0d:89:f4:f5:27:b7:08:fb:fe: 0c:44:40:de:18:be:b2:26:0b:9e:29:0e:9f:bb:8a: c9:6b:32:a6:c4:64:17:50:9d:d4:b5:3d:53:45:19: 4e:74:6f:cb:e2:b9:97:7e:13:88:68:05:51:c8:3f: 85:11:c9:9a:87:8f:f1:8f:d0:f5:66:8a:6d:83:f3: 4a:e9:96:f4:0d:c9:6c:47:72:17:18:55:dc:91:ef: 43:d2:e2:c0:24:e4:4f:bf:3e:28:7e:49:6c:7e:5d: bc:d9:83:d3:22:c1:15:46:d9:80:a9:3d:e7:a2:3b: e8:41:46:4c:5a:d1:67:a4:3a:13:15:20:2a:61:7b: 24:83:a3:2d:8a:56:73:de:33:fe:f8:35:4a:63:8a: cd:e8:2d:8f:b0:c1:f7:63:00:ce:a6:78:c1:b7:b4: 8f:86:81:7a:c4:31:09:ea:3c:76:1f:49:f4:5a:93: 0e:5c:63:91:6a:cb:e6:e4:72:46:8d:79:8a:ce:57: 07:ec:e8:4b:ae:b8:27:6d:21:ca:30:1f:64:35:7e: 61:31:30:09:1f:7a:7d:7b:58:53:da:44:2d:07:48: f7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8C:24:5A:D3:4F:E5:D5:55:AD:20:BC:90:9B:26:89:1A:D0:BA:FA X509v3 Authority Key Identifier: keyid:C0:6F:F0:05:DE:1D:5E:F1:3B:A8:F0:C2:60:E9:63:03:4A:5A:22:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/wG_wBd4dXvE7qPDCYOljA0paIso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wG_wBd4dXvE7qPDCYOljA0paIso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0C5F/F7455AAAD2B511EDACC74A1CC4F9AE02/0D53ED80D2BA11ED8E06CC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.30.0/23 IPv6: 2001:df2:3540::/48 Signature Algorithm: sha256WithRSAEncryption b3:05:8e:cf:79:0d:e4:6f:4b:ba:d2:70:f1:28:42:7c:4a:2d: 0c:61:a9:35:5b:1f:9d:3e:c1:be:60:7f:6b:ed:0f:ef:bb:38: f6:24:0e:e8:90:56:45:82:c1:4d:b9:9a:1f:3d:c1:9a:3f:09: 4a:19:d5:53:63:e4:14:b4:fe:ad:ef:bd:72:6a:0f:b1:80:ca: 92:85:a8:04:d2:d8:db:27:e8:85:0a:94:f5:ab:ad:7a:aa:72: fc:b9:3b:5a:dc:91:00:8e:55:97:0b:22:b1:95:57:0a:6d:cb: a5:ec:7c:7f:54:c2:30:85:fd:c1:07:95:81:b7:04:5a:07:78: aa:db:49:96:a1:f9:da:9e:fa:14:14:19:d2:bd:e3:6c:4e:7e: 12:13:b7:44:b5:9b:bd:d3:3f:f2:84:79:9c:a1:8a:24:a9:8c: d1:ba:21:04:b7:7a:1f:3e:35:ee:c1:8b:cd:67:10:ca:cd:5d: 4c:93:ab:9c:81:de:a3:e3:38:d2:5a:c0:24:35:e4:34:d8:8c: 2a:18:b3:0f:91:eb:49:c9:c2:1a:39:18:b0:65:c3:4a:56:10: 5e:84:5a:0a:7f:35:94:ea:df:d6:a7:e4:b0:aa:20:4f:07:8a: 8c:ba:25:2d:9f:45:61:87:ec:74:60:82:07:9a:4c:d6:92:4f: 3e:26:ea:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBDNUYxMTAvBgNVBAUTKEMwNkZGMDA1REUxRDVFRjEzQkE4RjBDMjYwRTk2MzAz NEE1QTIyQ0EwHhcNMjQwNDI3MDYyMDMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjOTkyZi1lNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA141Ze4UznIk15f76imX68R64g8BYr1YIqWYgv3j9u/gB0CkNifT1J7cI+/4M REDeGL6yJgueKQ6fu4rJazKmxGQXUJ3UtT1TRRlOdG/L4rmXfhOIaAVRyD+FEcma h4/xj9D1Zoptg/NK6Zb0DclsR3IXGFXcke9D0uLAJORPvz4ofklsfl282YPTIsEV RtmAqT3nojvoQUZMWtFnpDoTFSAqYXskg6MtilZz3jP++DVKY4rN6C2PsMH3YwDO pnjBt7SPhoF6xDEJ6jx2H0n0WpMOXGORasvm5HJGjXmKzlcH7OhLrrgnbSHKMB9k NX5hMTAJH3p9e1hT2kQtB0j3EQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCSMJFrT T+XVVa0gvJCbJoka0Lr6MB8GA1UdIwQYMBaAFMBv8AXeHV7xO6jwwmDpYwNKWiLK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEM1Ri9GNzQ1NUFBQUQy QjUxMUVEQUNDNzRBMUNDNEY5QUUwMi93R193QmQ0ZFh2RTdxUERDWU9sakEwcGFJ c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dHX3dCZDRkWHZFN3FQRENZT2xqQTBwYUlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBDNUYvRjc0NTVBQUFEMkI1MTFFREFDQzc0QTFDQzRGOUFFMDIvMEQ1M0VEODBE MkJBMTFFRDhFMDZDQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnfB4wDwQCAAIwCQMHACABDfI1QDANBgkqhkiG9w0BAQsF AAOCAQEAswWOz3kN5G9LutJw8ShCfEotDGGpNVsfnT7BvmB/a+0P77s49iQO6JBW RYLBTbmaHz3Bmj8JShnVU2PkFLT+re+9cmoPsYDKkoWoBNLY2yfohQqU9auteqpy /Lk7WtyRAI5VlwsisZVXCm3Lpex8f1TCMIX9wQeVgbcEWgd4qttJlqH52p76FBQZ 0r3jbE5+EhO3RLWbvdM/8oR5nKGKJKmM0bohBLd6Hz417sGLzWcQys1dTJOrnIHe o+M40lrAJDXkNNiMKhizD5HrScnCGjkYsGXDSlYQXoRaCn81lOrf1qfksKogTweK jLolLZ9FYYfsdGCCB5pM1pJPPibqTQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:46 2024 by rpki-client on console-ams.rpki-client.org