$ rpki-client -vvf rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/E816DFFAA90111ED867DA161C4F9AE02.roa File: E816DFFAA90111ED867DA161C4F9AE02.roa (raw, json) Hash identifier: L5m4/4SXjjvS2j8nqBvUj87azUPAUA8e/WmFUHppLLc= Subject key identifier: F0:DD:C8:F3:41:C2:FC:E3:37:07:61:B7:24:C0:EE:DA:2D:6E:BE:7A Certificate issuer: /CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Certificate serial: AB Authority key identifier: 22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/E816DFFAA90111ED867DA161C4F9AE02.roa Signing time: Fri 05 Jan 2024 05:26:39 +0000 ROA not before: Fri 05 Jan 2024 05:26:39 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150431 IP address blocks: 103.39.146.0/23 maxlen: 23 103.39.146.0/24 maxlen: 24 103.39.147.0/24 maxlen: 24 2001:df1:8cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:29:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Validity Not Before: Jan 5 05:26:39 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6597930f-c3ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:9c:b9:83:a0:ac:c1:1c:57:a3:ec:01:6f: 36:a9:1e:ba:e7:82:0d:57:e1:54:3b:55:a2:7f:69: ed:67:47:24:12:0f:00:58:51:a1:d8:0b:e3:91:34: 24:df:1d:38:2f:65:61:75:3e:52:7c:67:fb:66:c3: fc:45:c6:56:ae:d9:e2:b7:c8:a2:33:2a:1f:17:af: de:dd:fb:47:6c:88:26:b3:94:a6:17:3a:06:98:44: 40:62:5b:4a:eb:7c:b0:b4:27:5b:30:2b:bd:6a:6c: 1e:bf:13:b1:6c:9a:90:9c:7a:19:30:45:cb:b9:82: ad:43:b7:92:2b:af:92:3b:65:38:06:6d:6f:f5:88: f5:68:0f:f6:96:50:2d:a2:c6:8b:f9:f7:5b:7c:ac: d0:e9:e6:4e:67:55:3a:22:0e:bd:00:7d:18:12:9b: a9:61:4a:fa:64:ea:45:e2:d4:08:d4:8d:e2:fb:2c: 2e:f9:ae:42:24:e1:89:82:52:76:e1:4c:23:59:33: ab:10:f8:aa:a0:2a:d5:a2:a4:50:9f:fc:28:e1:d5: 23:00:5f:05:b1:97:2f:c3:04:6f:59:c8:a5:13:b8: 3e:96:86:f0:25:65:6b:ee:df:23:a7:3c:45:dd:43: 65:d4:ee:7e:ea:f0:eb:23:56:bf:64:c3:13:a5:59: e3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DD:C8:F3:41:C2:FC:E3:37:07:61:B7:24:C0:EE:DA:2D:6E:BE:7A X509v3 Authority Key Identifier: keyid:22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/E816DFFAA90111ED867DA161C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.146.0/23 IPv6: 2001:df1:8cc0::/48 Signature Algorithm: sha256WithRSAEncryption 00:1c:ee:60:d3:e1:f2:9f:c4:f1:71:0c:56:fa:b5:f4:47:2a: 1a:7e:ad:c4:bd:bd:d9:7c:d0:f7:b0:c1:43:8e:2d:29:95:46: bd:da:3a:bb:a8:a2:6f:5e:68:f6:b1:8e:b2:d8:95:77:74:93: 29:cf:55:15:bb:72:4a:85:47:ff:23:fa:a0:9d:95:d2:aa:93: de:17:e4:94:fc:a8:b1:08:20:4e:e6:c6:54:15:6a:af:d0:74: aa:be:02:39:8e:5f:d9:05:84:7c:0b:d3:54:5d:95:4d:0f:84: 67:e0:8f:12:48:00:2c:4a:24:95:07:e6:6e:92:13:9a:f4:71: ff:09:74:64:e6:13:0d:94:5a:c2:78:3b:80:16:b1:88:d0:2d: b3:aa:83:f0:ba:39:97:ba:46:17:b9:8c:ff:07:68:c1:fa:f9: 09:ea:9b:7b:56:c5:3a:1b:8b:34:2c:42:c1:9a:48:8a:d6:5e: 74:52:4c:38:df:9e:97:58:7e:af:ea:df:88:33:ae:32:58:c9: 27:48:85:e6:82:c6:f8:15:73:b7:e9:7a:43:02:a5:c1:ce:11: 63:72:8d:3e:f1:eb:5e:c4:5c:fe:1f:0f:5f:c0:e6:f4:09:07: f7:0c:7b:11:a6:73:99:40:30:69:23:54:63:e7:56:a8:ca:2b: 89:3c:36:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE4MjgxMTAvBgNVBAUTKDIyNjAzRDZBMzNGMDZFMEE5RDEwRkJCMUVEOUUxRDM3 NDkyNDcwMDEwHhcNMjQwMTA1MDUyNjM5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3OTMwZi1jM2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DecuYOgrMEcV6PsAW82qR6654INV+FUO1Wif2ntZ0ckEg8AWFGh2AvjkTQk 3x04L2VhdT5SfGf7ZsP8RcZWrtnit8iiMyofF6/e3ftHbIgms5SmFzoGmERAYltK 63ywtCdbMCu9amwevxOxbJqQnHoZMEXLuYKtQ7eSK6+SO2U4Bm1v9Yj1aA/2llAt osaL+fdbfKzQ6eZOZ1U6Ig69AH0YEpupYUr6ZOpF4tQI1I3i+ywu+a5CJOGJglJ2 4UwjWTOrEPiqoCrVoqRQn/wo4dUjAF8FsZcvwwRvWcilE7g+lobwJWVr7t8jpzxF 3UNl1O5+6vDrI1a/ZMMTpVnjOwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPDdyPNB wvzjNwdhtyTA7totbr56MB8GA1UdIwQYMBaAFCJgPWoz8G4KnRD7se2eHTdJJHAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTgyOC9EREY5MDA1QUE4 RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2JncWRFUHV4N1o0ZE4wa2tj QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ltQTlhalB3YmdxZEVQdXg3WjRkTjBra2NBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUE4MjgvRERGOTAwNUFBOEZFMTFFRDlENTAxMDVEQzRGOUFFMDIvRTgxNkRGRkFB OTAxMTFFRDg2N0RBMTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJ5IwDwQCAAIwCQMHACABDfGMwDANBgkqhkiG9w0BAQsF AAOCAQEAABzuYNPh8p/E8XEMVvq19EcqGn6txL292XzQ97DBQ44tKZVGvdo6u6ii b15o9rGOstiVd3STKc9VFbtySoVH/yP6oJ2V0qqT3hfklPyosQggTubGVBVqr9B0 qr4COY5f2QWEfAvTVF2VTQ+EZ+CPEkgALEoklQfmbpITmvRx/wl0ZOYTDZRawng7 gBaxiNAts6qD8Lo5l7pGF7mM/wdowfr5Ceqbe1bFOhuLNCxCwZpIitZedFJMON+e l1h+r+rfiDOuMljJJ0iF5oLG+BVzt+l6QwKlwc4RY3KNPvHrXsRc/h8PX8Dm9AkH 9wx7EaZzmUAwaSNUY+dWqMoriTw2WA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org