$ rpki-client -vvf rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/5BE1A39CDFF411EDAF183A6BC4F9AE02.roa File: 5BE1A39CDFF411EDAF183A6BC4F9AE02.roa (raw, json) Hash identifier: BX3eFxEq9yeeBZjSPRYwxqXIGZjkAuVHkNY/0eO84s0= Subject key identifier: E9:83:24:B4:64:E4:11:FB:94:92:80:38:98:4D:72:66:95:7E:52:B3 Certificate issuer: /CN=A9111C49/serialNumber=410D8E68431818774B30B19BE5CEF53D47190B2C Certificate serial: AA Authority key identifier: 41:0D:8E:68:43:18:18:77:4B:30:B1:9B:E5:CE:F5:3D:47:19:0B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ2OaEMYGHdLMLGb5c71PUcZCyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/5BE1A39CDFF411EDAF183A6BC4F9AE02.roa Signing time: Sun 03 Mar 2024 05:58:09 +0000 ROA not before: Sun 03 Mar 2024 05:58:09 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9294 IP address blocks: 103.101.176.0/24 maxlen: 24 103.101.177.0/24 maxlen: 24 103.101.178.0/24 maxlen: 24 103.101.179.0/24 maxlen: 24 103.181.134.0/24 maxlen: 24 103.181.135.0/24 maxlen: 24 116.204.184.0/24 maxlen: 24 116.204.185.0/24 maxlen: 24 116.204.186.0/24 maxlen: 24 116.204.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/QQ2OaEMYGHdLMLGb5c71PUcZCyw.crl rsync://rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/QQ2OaEMYGHdLMLGb5c71PUcZCyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ2OaEMYGHdLMLGb5c71PUcZCyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111C49/serialNumber=410D8E68431818774B30B19BE5CEF53D47190B2C Validity Not Before: Mar 3 05:58:09 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e41171-7b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6c:b2:fa:91:bc:6f:c6:e5:db:eb:52:06:d7: 8c:56:be:79:28:76:25:9c:8b:e5:2c:eb:e7:5a:b8: e5:e8:db:73:3f:a9:56:5d:eb:38:30:0f:25:18:83: 21:69:78:ff:5d:5b:4a:35:24:6a:23:05:5b:21:ab: 43:35:32:c2:1f:8a:53:0b:40:d9:19:07:9a:19:aa: ca:57:1a:8e:23:dc:17:6a:43:a8:6f:5b:9b:8b:3f: 55:c6:2f:93:3c:08:93:a1:36:38:ea:2a:fa:a8:33: 5f:5b:63:d8:0d:9a:10:f6:72:83:61:f7:99:33:a1: 93:0b:9e:08:ec:ee:bc:af:42:45:b5:43:cf:12:83: d6:c1:df:ff:ea:9c:fa:b0:3e:2b:5e:9d:06:7b:b1: 8d:3a:42:ff:24:b5:50:03:4b:60:e5:ba:ce:43:39: 3d:7a:e1:04:07:63:7d:1b:f4:6d:b1:7d:75:5b:f2: 76:14:30:bb:10:c5:1c:23:e6:98:26:6c:a5:04:a5: 73:02:8c:68:ac:5b:b8:10:9d:a9:25:fe:81:33:ce: ce:31:d6:91:65:b8:b8:8a:71:3a:83:4f:9a:17:10: b0:ea:b2:87:37:15:af:c3:57:d4:d5:d7:08:e1:5e: d9:ff:73:15:79:b4:17:e5:72:d4:44:6d:e2:9a:4f: 9c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:83:24:B4:64:E4:11:FB:94:92:80:38:98:4D:72:66:95:7E:52:B3 X509v3 Authority Key Identifier: keyid:41:0D:8E:68:43:18:18:77:4B:30:B1:9B:E5:CE:F5:3D:47:19:0B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/QQ2OaEMYGHdLMLGb5c71PUcZCyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ2OaEMYGHdLMLGb5c71PUcZCyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111C49/7A7F1972DFF111EDB0CAEB69C4F9AE02/5BE1A39CDFF411EDAF183A6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.176.0/22 103.181.134.0/23 116.204.184.0/22 Signature Algorithm: sha256WithRSAEncryption ce:50:32:93:b3:ff:5a:8e:3e:95:17:71:84:1c:dc:b1:cb:0e: 3c:11:28:18:75:20:ed:9a:8e:d2:43:39:30:e3:0d:35:24:c0: 38:28:4c:ce:32:5a:24:75:0b:fb:80:f1:44:4a:78:8e:49:fa: 71:a3:00:da:d4:fc:6e:c5:19:0c:62:20:96:0b:b9:6f:f2:06: fd:1f:f0:ab:86:19:c3:ae:28:74:de:44:2a:78:28:bc:14:19: 27:db:ff:bd:6a:e8:d9:f7:c7:2c:06:eb:d5:ee:4b:4a:f3:03: ef:b1:09:43:d0:15:bb:a2:34:c4:c7:7b:8f:0e:1d:64:4c:15: e2:02:53:2f:23:5b:5f:9a:e0:cb:99:01:60:88:b2:f4:8e:d5: c6:42:68:3f:6e:d3:f7:25:01:ce:23:c3:49:b0:cd:6d:31:df: f7:66:1c:37:ca:29:20:6f:18:a7:cd:bc:ef:cf:f2:3d:94:39: 82:5e:96:94:73:b8:11:ca:39:f2:e3:8d:a0:8c:25:9c:80:a8: 85:48:18:c5:7b:c7:d3:4f:9d:a0:c5:c5:78:cc:da:98:64:3b: 21:8f:f6:61:62:89:e4:5c:d9:44:91:7f:4b:83:fd:f2:4a:9d: e3:70:85:52:4f:e3:aa:4f:0b:49:04:d8:94:f9:9b:4f:4d:b5: 3e:d5:d6:f3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFDNDkxMTAvBgNVBAUTKDQxMEQ4RTY4NDMxODE4Nzc0QjMwQjE5QkU1Q0VGNTNE NDcxOTBCMkMwHhcNMjQwMzAzMDU1ODA5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU0MTE3MS03Yjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGyy+pG8b8bl2+tSBteMVr55KHYlnIvlLOvnWrjl6NtzP6lWXes4MA8lGIMh aXj/XVtKNSRqIwVbIatDNTLCH4pTC0DZGQeaGarKVxqOI9wXakOob1ubiz9Vxi+T PAiToTY46ir6qDNfW2PYDZoQ9nKDYfeZM6GTC54I7O68r0JFtUPPEoPWwd//6pz6 sD4rXp0Ge7GNOkL/JLVQA0tg5brOQzk9euEEB2N9G/RtsX11W/J2FDC7EMUcI+aY JmylBKVzAoxorFu4EJ2pJf6BM87OMdaRZbi4inE6g0+aFxCw6rKHNxWvw1fU1dcI 4V7Z/3MVebQX5XLURG3imk+cRwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOmDJLRk 5BH7lJKAOJhNcmaVflKzMB8GA1UdIwQYMBaAFEENjmhDGBh3SzCxm+XO9T1HGQss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUM0OS83QTdGMTk3MkRG RjExMUVEQjBDQUVCNjlDNEY5QUUwMi9RUTJPYUVNWUdIZExNTEdiNWM3MVBVY1pD eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FRMk9hRU1ZR0hkTE1MR2I1YzcxUFVjWkN5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFDNDkvN0E3RjE5NzJERkYxMTFFREIwQ0FFQjY5QzRGOUFFMDIvNUJFMUEzOUNE RkY0MTFFREFGMTgzQTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnZbADBAFntYYDBAJ0zLgwDQYJKoZIhvcNAQELBQADggEB AM5QMpOz/1qOPpUXcYQc3LHLDjwRKBh1IO2ajtJDOTDjDTUkwDgoTM4yWiR1C/uA 8URKeI5J+nGjANrU/G7FGQxiIJYLuW/yBv0f8KuGGcOuKHTeRCp4KLwUGSfb/71q 6Nn3xywG69XuS0rzA++xCUPQFbuiNMTHe48OHWRMFeICUy8jW1+a4MuZAWCIsvSO 1cZCaD9u0/clAc4jw0mwzW0x3/dmHDfKKSBvGKfNvO/P8j2UOYJelpRzuBHKOfLj jaCMJZyAqIVIGMV7x9NPnaDFxXjM2phkOyGP9mFiieRc2USRf0uD/fJKneNwhVJP 46pPC0kE2JT5m09NtT7V1vM= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:52 2024 by rpki-client on console-fra.rpki-client.org