$ rpki-client -vvf rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/960BB902A6F111EF9E720A74C4F9AE02.roa File: 960BB902A6F111EF9E720A74C4F9AE02.roa (raw, json) Hash identifier: JGNqu80Q4bQ4N4fKYYstAS8XMwoDYz9gJMT0zxatq+8= Subject key identifier: 19:04:47:81:49:6E:26:CB:19:9D:A0:3A:60:A1:CA:49:A7:7A:C4:E0 Certificate issuer: /CN=A9119363/serialNumber=788FB4D96B601DBA616DDDC99CFE465D60C38F21 Certificate serial: 03 Authority key identifier: 78:8F:B4:D9:6B:60:1D:BA:61:6D:DD:C9:9C:FE:46:5D:60:C3:8F:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eI-02WtgHbphbd3JnP5GXWDDjyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/960BB902A6F111EF9E720A74C4F9AE02.roa Signing time: Wed 20 Nov 2024 03:43:20 +0000 ROA not before: Wed 20 Nov 2024 03:43:20 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136969 IP address blocks: 103.163.48.0/23 maxlen: 23 103.163.48.0/24 maxlen: 24 103.163.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/eI-02WtgHbphbd3JnP5GXWDDjyE.crl rsync://rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/eI-02WtgHbphbd3JnP5GXWDDjyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eI-02WtgHbphbd3JnP5GXWDDjyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119363/serialNumber=788FB4D96B601DBA616DDDC99CFE465D60C38F21 Validity Not Before: Nov 20 03:43:20 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=673d5ad8-16fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5c:fe:21:d0:c0:30:6c:3d:b5:3b:0f:e4:6f: 02:28:bf:2f:b8:c0:83:5d:9a:de:a9:40:c0:44:63: bb:0d:c5:2f:8a:5a:30:8f:5c:f2:92:ee:e8:0f:2b: 5f:b1:31:8c:4c:f7:51:2a:24:74:1d:13:52:fb:05: 3c:b6:5f:4c:1c:d0:4c:77:bf:cc:04:6f:6f:58:5c: e5:27:c5:71:17:22:4d:d7:85:5d:08:cb:5c:b3:ae: fe:af:67:9f:78:e2:c2:c1:a5:8a:64:b6:a6:64:1f: 24:00:b7:7b:1a:37:05:f0:c2:42:70:97:fe:94:bc: 9c:33:1e:ab:1e:cd:04:a0:b3:b3:17:aa:ee:de:e9: a6:b4:3d:99:c2:ee:d6:54:79:28:a6:db:c2:29:62: 3f:bf:13:78:6c:3a:ff:43:e7:4a:53:1e:8d:fd:c6: b7:5b:32:14:99:85:86:8e:9a:24:da:09:a3:c8:2f: a9:6c:6c:d1:69:ae:c8:5a:0d:32:21:fc:41:b0:c2: fa:06:78:a2:83:f0:2f:27:0d:b6:c3:d0:db:4a:ba: 16:ba:1a:87:4c:04:4a:e9:b2:2f:d4:e9:77:f0:cc: fc:45:4b:0f:3c:ae:53:20:9c:13:aa:5b:55:7c:a4: a9:d1:bd:c4:b2:15:55:00:f9:a9:b4:7e:c4:8d:0c: a1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:04:47:81:49:6E:26:CB:19:9D:A0:3A:60:A1:CA:49:A7:7A:C4:E0 X509v3 Authority Key Identifier: keyid:78:8F:B4:D9:6B:60:1D:BA:61:6D:DD:C9:9C:FE:46:5D:60:C3:8F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/eI-02WtgHbphbd3JnP5GXWDDjyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eI-02WtgHbphbd3JnP5GXWDDjyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119363/31EADFA45CBA11EC8AA13E24C4F9AE02/960BB902A6F111EF9E720A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.48.0/23 Signature Algorithm: sha256WithRSAEncryption ae:27:06:a3:0b:05:bb:19:47:e7:47:27:df:90:7a:d9:de:22: bd:c3:bd:88:19:25:ee:2f:57:6c:95:2f:2f:56:4c:e1:5d:59: d6:17:8b:1b:ac:38:d8:c4:53:30:ef:e5:6c:57:7f:1d:2a:9f: c4:10:79:5b:f8:c9:ff:13:6a:ed:64:da:db:df:3c:f4:69:e9: a2:c5:39:22:e7:2b:35:3f:22:19:4b:53:3b:cd:c0:88:a7:17: 3e:04:65:98:12:25:dd:54:16:ee:95:81:26:7d:06:ad:b5:f9: eb:26:59:6a:6f:82:a0:8a:6d:74:c3:fd:8d:fd:f8:6a:2a:57: fe:4e:2c:6d:eb:af:ea:c9:f1:4f:d3:fe:59:a4:92:dd:30:86: 7f:c9:9e:92:20:3e:a4:a3:9b:18:c9:3e:db:a0:19:48:a7:44: 71:09:7d:c6:ea:a5:ad:49:45:c3:eb:3e:1c:ad:da:13:2f:5f: 1d:dd:9a:ed:95:49:da:7d:45:40:57:25:6d:9a:3c:eb:f2:42: 62:31:43:ea:a2:f9:53:4d:c4:ee:22:af:59:95:27:f4:db:de: 13:3f:6b:72:e0:ab:e8:a2:06:97:4b:a0:d7:ec:55:af:0c:cd: 2f:b4:41:6f:82:6a:16:9f:bc:83:30:02:5c:18:00:d9:03:e1: 95:01:c8:84 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTM2MzExMC8GA1UEBRMoNzg4RkI0RDk2QjYwMURCQTYxNkREREM5OUNGRTQ2NUQ2 MEMzOEYyMTAeFw0yNDExMjAwMzQzMjBaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3M2Q1YWQ4LTE2ZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsXP4h0MAwbD21Ow/kbwIovy+4wINdmt6pQMBEY7sNxS+KWjCPXPKS7ugPK1+x MYxM91EqJHQdE1L7BTy2X0wc0Ex3v8wEb29YXOUnxXEXIk3XhV0Iy1yzrv6vZ594 4sLBpYpktqZkHyQAt3saNwXwwkJwl/6UvJwzHqsezQSgs7MXqu7e6aa0PZnC7tZU eSim28IpYj+/E3hsOv9D50pTHo39xrdbMhSZhYaOmiTaCaPIL6lsbNFprshaDTIh /EGwwvoGeKKD8C8nDbbD0NtKuha6GodMBErpsi/U6XfwzPxFSw88rlMgnBOqW1V8 pKnRvcSyFVUA+am0fsSNDKHHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGQRHgUlu JssZnaA6YKHKSad6xOAwHwYDVR0jBBgwFoAUeI+02WtgHbphbd3JnP5GXWDDjyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5MzYzLzMxRUFERkE0NUNC QTExRUM4QUExM0UyNEM0RjlBRTAyL2VJLTAyV3RnSGJwaGJkM0puUDVHWFdERGp5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZUktMDJXdGdIYnBoYmQzSm5QNUdYV0REanlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTM2My8zMUVBREZBNDVDQkExMUVDOEFBMTNFMjRDNEY5QUUwMi85NjBCQjkwMkE2 RjExMUVGOUU3MjBBNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWejMDANBgkqhkiG9w0BAQsFAAOCAQEAricGowsFuxlH50cn 35B62d4ivcO9iBkl7i9XbJUvL1ZM4V1Z1heLG6w42MRTMO/lbFd/HSqfxBB5W/jJ /xNq7WTa29889GnposU5IucrNT8iGUtTO83AiKcXPgRlmBIl3VQW7pWBJn0GrbX5 6yZZam+CoIptdMP9jf34aipX/k4sbeuv6snxT9P+WaSS3TCGf8mekiA+pKObGMk+ 26AZSKdEcQl9xuqlrUlFw+s+HK3aEy9fHd2a7ZVJ2n1FQFclbZo86/JCYjFD6qL5 U03E7iKvWZUn9NveEz9rcuCr6KIGl0ug1+xVrwzNL7RBb4JqFp+8gzACXBgA2QPh lQHIhA== -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:50 2024 by rpki-client on console-fra.rpki-client.org