$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5D65041A1BD711EEB9597921C4F9AE02.roa File: 5D65041A1BD711EEB9597921C4F9AE02.roa (raw, json) Hash identifier: 0tguVCAYaAyn9w1hHGLli6ifeQjvVH99Nuz9PQZPNtg= Subject key identifier: E4:97:8A:44:C1:7C:D1:16:8C:A8:55:F1:29:B7:6F:CC:79:43:13:8A Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B4 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5D65041A1BD711EEB9597921C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:00 +0000 ROA not before: Thu 24 Oct 2024 23:43:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 146952 IP address blocks: 103.48.168.0/24 maxlen: 24 163.53.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1716 (0x6b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb84-c08b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c6:4f:14:6d:ec:29:cc:4c:af:1d:00:95:4c: 49:ce:d4:5d:91:6f:86:26:8b:3a:0f:76:f0:21:44: d0:9b:82:97:a7:b3:6d:32:8d:39:2a:e7:b9:9d:72: b1:08:b8:31:9d:61:e0:30:fa:b2:9e:36:ec:ce:ae: ed:af:d4:e7:70:60:46:bf:13:ab:68:b6:2d:75:9f: 82:45:f8:4f:89:7b:3b:26:f9:37:9a:1c:1f:3b:6d: 24:03:ca:ec:3b:c9:7e:ec:3e:53:a2:1b:1e:38:d5: 48:3c:89:8e:d2:ed:83:f2:61:0f:ba:c7:43:4e:0d: ac:90:29:21:79:fd:bb:ca:ae:73:1d:f7:b2:11:c3: 6a:bd:8f:ed:a9:40:ad:ac:7d:49:cc:6b:c3:75:65: 93:4f:7c:94:b9:d4:49:7a:c6:b6:e0:e9:c2:b5:da: 3a:a0:56:59:d5:22:d8:87:13:5a:56:73:2e:e8:f3: 81:3c:0b:1e:dc:ae:8c:51:09:37:3d:32:55:be:b1: 33:7f:a3:65:10:78:cc:e6:e5:a8:c6:68:69:76:8a: 23:1e:dd:50:69:33:2d:d8:21:05:78:f4:cf:da:10: 87:65:38:c5:d7:e2:72:e0:a0:e0:a9:96:84:02:f8: 8f:e5:66:80:c8:6b:b9:f0:15:43:2f:61:39:f1:33: 35:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:97:8A:44:C1:7C:D1:16:8C:A8:55:F1:29:B7:6F:CC:79:43:13:8A X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/5D65041A1BD711EEB9597921C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.168.0/24 163.53.16.0/24 Signature Algorithm: sha256WithRSAEncryption a4:0e:5b:a0:68:24:56:d5:ad:6e:85:f8:71:db:57:d8:3a:5d: ca:e2:ca:4b:33:9a:c5:d3:84:14:21:92:e1:4a:fa:4e:0a:30: f6:5f:11:76:0a:ea:dc:86:0b:d9:8c:f3:62:35:62:74:70:66: 30:82:44:66:44:44:a0:66:c8:13:2a:b7:f7:63:5f:35:52:9a: 50:c5:63:1c:0f:37:d5:69:94:08:97:fb:ef:ef:27:d4:67:fd: 00:b0:87:69:73:8e:74:13:a0:a8:7b:77:e0:d0:65:88:b9:96: b7:45:07:fe:b2:09:a1:2e:b0:6e:fd:75:85:fe:05:95:77:0d: 6e:ba:52:26:d7:37:8a:07:ba:b1:7a:dc:56:2d:fc:68:89:35: 65:a8:f2:12:13:5a:bd:04:db:d3:64:bb:94:98:41:59:24:76: cf:a2:cd:f2:43:a5:33:29:7c:f4:88:0d:2f:b6:0a:ca:24:2f: 68:35:f3:cf:7c:22:d0:91:74:12:c8:ae:c2:83:28:c9:ba:3b: fd:c6:69:af:1b:16:2b:b5:a7:f1:df:46:27:f4:e5:7c:71:cc: dd:53:28:db:8e:3d:0f:bb:6b:4b:6e:f9:f4:57:b7:e5:ea:a0: 3e:a5:bc:19:90:0a:bb:31:0e:5f:ba:f7:30:cf:cf:51:f8:0e: de:5d:cc:d8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBrQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4NC1jMDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysZPFG3sKcxMrx0AlUxJztRdkW+GJos6D3bwIUTQm4KXp7NtMo05Kue5nXKx CLgxnWHgMPqynjbszq7tr9TncGBGvxOraLYtdZ+CRfhPiXs7Jvk3mhwfO20kA8rs O8l+7D5TohseONVIPImO0u2D8mEPusdDTg2skCkhef27yq5zHfeyEcNqvY/tqUCt rH1JzGvDdWWTT3yUudRJesa24OnCtdo6oFZZ1SLYhxNaVnMu6POBPAse3K6MUQk3 PTJVvrEzf6NlEHjM5uWoxmhpdoojHt1QaTMt2CEFePTP2hCHZTjF1+Jy4KDgqZaE AviP5WaAyGu58BVDL2E58TM1uwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOSXikTB fNEWjKhV8Sm3b8x5QxOKMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNUQ2NTA0MUEx QkQ3MTFFRUI5NTk3OTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnMKgDBACjNRAwDQYJKoZIhvcNAQELBQADggEBAKQOW6Bo JFbVrW6F+HHbV9g6XcriykszmsXThBQhkuFK+k4KMPZfEXYK6tyGC9mM82I1YnRw ZjCCRGZERKBmyBMqt/djXzVSmlDFYxwPN9VplAiX++/vJ9Rn/QCwh2lzjnQToKh7 d+DQZYi5lrdFB/6yCaEusG79dYX+BZV3DW66UibXN4oHurF63FYt/GiJNWWo8hIT Wr0E29Nku5SYQVkkds+izfJDpTMpfPSIDS+2CsokL2g18898ItCRdBLIrsKDKMm6 O/3Gaa8bFiu1p/HfRif05XxxzN1TKNuOPQ+7a0tu+fRXt+XqoD6lvBmQCrsxDl+6 9zDPz1H4Dt5dzNg= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:18 2024 by rpki-client on console-fra.rpki-client.org