$ rpki-client -vvf rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa File: 0EA2B2D62BB011ED90F41820C4F9AE02.roa (raw, json) Hash identifier: AjNBzFUDqt6+IEyEaHnoFf3U+H667eB/MqDhSUBVYx4= Subject key identifier: 8A:46:44:D0:CF:A2:B6:16:40:17:32:23:22:FF:3F:21:EF:A8:2E:69 Certificate issuer: /CN=A91136B5/serialNumber=5AECEAD54CB36CBF1B4A00C4CD410846D23141EF Certificate serial: 0151 Authority key identifier: 5A:EC:EA:D5:4C:B3:6C:BF:1B:4A:00:C4:CD:41:08:46:D2:31:41:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa Signing time: Sun 17 Mar 2024 04:26:39 +0000 ROA not before: Sun 17 Mar 2024 04:26:39 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136266 IP address blocks: 103.85.192.0/22 maxlen: 24 2400:af40::/32 maxlen: 32 2400:af40::/33 maxlen: 33 2400:af40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.crl rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91136B5/serialNumber=5AECEAD54CB36CBF1B4A00C4CD410846D23141EF Validity Not Before: Mar 17 04:26:39 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f670ff-b3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5c:36:b8:ad:9b:dc:4d:1c:c3:b3:1b:f7:e2: 2c:80:9e:e0:c5:bb:b9:fd:ef:37:16:6e:c8:1d:cb: 5f:6c:52:60:61:b0:c2:24:31:33:dd:b9:b7:8b:42: fc:86:45:16:67:4a:98:37:74:f3:e2:de:5e:ee:3e: f1:54:e0:f5:38:23:1b:e2:17:94:7c:82:bc:cc:72: df:43:f1:5d:f7:94:52:06:e8:ea:7c:71:5c:7a:65: 7e:6d:e4:45:d3:bd:c5:1f:bb:27:83:ae:58:36:70: 07:03:8d:b9:65:81:81:27:71:24:7e:37:d3:55:74: 9f:80:93:49:42:5e:fb:a7:f6:30:76:9f:a6:75:61: ba:c7:45:96:11:42:1a:1b:f8:ad:ba:24:09:e9:db: ca:aa:eb:f7:bf:35:9e:e4:85:a7:53:6c:99:7c:65: 25:d9:38:39:50:a9:3b:8b:a7:b9:48:92:88:3a:c3: 6a:8f:e0:f9:8e:0a:d1:b5:28:41:a2:05:cd:b3:1e: 31:86:8f:5c:7f:d8:76:55:be:83:f7:79:52:00:ec: cc:f3:16:59:25:09:af:68:b9:09:e3:bb:29:b9:dd: 8b:26:29:0c:10:d5:44:98:e9:05:1c:e2:48:a2:66: ba:12:f0:30:ca:a8:53:df:cf:85:2b:a8:74:12:71: e5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:46:44:D0:CF:A2:B6:16:40:17:32:23:22:FF:3F:21:EF:A8:2E:69 X509v3 Authority Key Identifier: keyid:5A:EC:EA:D5:4C:B3:6C:BF:1B:4A:00:C4:CD:41:08:46:D2:31:41:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wuzq1UyzbL8bSgDEzUEIRtIxQe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91136B5/F4115DBC2BAC11ED8D42AB19C4F9AE02/0EA2B2D62BB011ED90F41820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.192.0/22 IPv6: 2400:af40::/32 Signature Algorithm: sha256WithRSAEncryption 64:07:58:08:c5:ef:e9:39:15:17:0e:a2:81:ae:78:57:a4:f5: 19:79:94:09:74:28:6f:bf:c4:2f:d5:3a:4c:81:7b:a0:7e:f3: cc:7a:47:f9:97:f7:70:c1:2a:ff:8c:15:1c:30:40:2c:a0:f5: 94:4f:2a:95:dd:cf:cc:0e:7c:84:24:67:33:56:7c:4b:0a:f9: 4d:b6:56:fc:fe:cc:3f:dc:b8:8a:29:50:2f:f6:01:8a:65:b4: 1d:66:6e:0f:fd:e9:b3:26:c5:ac:51:a4:30:4d:0c:9f:33:3e: dc:17:c0:45:db:02:5f:52:d2:b2:51:b3:6e:b2:e1:8c:cf:0f: a8:c5:46:9c:16:42:aa:08:25:67:4c:5c:65:97:cc:b2:41:17: 47:0b:6e:b0:d8:a4:89:67:f2:7f:f5:84:cc:a4:ba:21:5a:87: ad:e0:00:5f:15:82:76:1f:7a:f9:27:49:b9:88:e1:c0:27:5f: 3c:af:22:86:03:d7:12:98:e2:8d:4c:bd:35:24:bf:f4:af:a8: b0:3f:10:77:3f:8e:43:61:92:a2:17:e4:e9:ed:1c:e3:16:7a: 43:83:37:9b:ec:0f:e7:fa:ab:a7:16:13:04:0e:52:c1:4a:50: 97:ea:a2:60:b2:a8:32:46:e3:3a:b4:d0:88:88:8c:6c:82:ff: 9b:1b:0f:c0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2QjUxMTAvBgNVBAUTKDVBRUNFQUQ1NENCMzZDQkYxQjRBMDBDNENENDEwODQ2 RDIzMTQxRUYwHhcNMjQwMzE3MDQyNjM5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY2NzBmZi1iM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFw2uK2b3E0cw7Mb9+IsgJ7gxbu5/e83Fm7IHctfbFJgYbDCJDEz3bm3i0L8 hkUWZ0qYN3Tz4t5e7j7xVOD1OCMb4heUfIK8zHLfQ/Fd95RSBujqfHFcemV+beRF 073FH7sng65YNnAHA425ZYGBJ3EkfjfTVXSfgJNJQl77p/Ywdp+mdWG6x0WWEUIa G/ituiQJ6dvKquv3vzWe5IWnU2yZfGUl2Tg5UKk7i6e5SJKIOsNqj+D5jgrRtShB ogXNsx4xho9cf9h2Vb6D93lSAOzM8xZZJQmvaLkJ47spud2LJikMENVEmOkFHOJI oma6EvAwyqhT38+FK6h0EnHlgQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIpGRNDP orYWQBcyIyL/PyHvqC5pMB8GA1UdIwQYMBaAFFrs6tVMs2y/G0oAxM1BCEbSMUHv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzZCNS9GNDExNURCQzJC QUMxMUVEOEQ0MkFCMTlDNEY5QUUwMi9XdXpxMVV5emJMOGJTZ0RFelVFSVJ0SXhR ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d1enExVXl6Ykw4YlNnREV6VUVJUnRJeFFlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM2QjUvRjQxMTVEQkMyQkFDMTFFRDhENDJBQjE5QzRGOUFFMDIvMEVBMkIyRDYy QkIwMTFFRDkwRjQxODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVcAwDQQCAAIwBwMFACQAr0AwDQYJKoZIhvcNAQELBQAD ggEBAGQHWAjF7+k5FRcOooGueFek9Rl5lAl0KG+/xC/VOkyBe6B+88x6R/mX93DB Kv+MFRwwQCyg9ZRPKpXdz8wOfIQkZzNWfEsK+U22Vvz+zD/cuIopUC/2AYpltB1m bg/96bMmxaxRpDBNDJ8zPtwXwEXbAl9S0rJRs26y4YzPD6jFRpwWQqoIJWdMXGWX zLJBF0cLbrDYpIln8n/1hMykuiFah63gAF8VgnYfevknSbmI4cAnXzyvIoYD1xKY 4o1MvTUkv/SvqLA/EHc/jkNhkqIX5OntHOMWekODN5vsD+f6q6cWEwQOUsFKUJfq omCyqDJG4zq00IiIjGyC/5sbD8A= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org