$ rpki-client -vvf rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa File: 0294C902459511EE982FBC6DC4F9AE02.roa (raw, json) Hash identifier: ImURD0YXIXR8XStDPLYGz5z7015ogkyNT0YFkxGE7dU= Subject key identifier: 3E:89:A3:73:BA:4F:7C:AE:BF:A4:0F:B3:EE:F6:F0:27:4F:F3:20:65 Certificate issuer: /CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Certificate serial: E0 Authority key identifier: 17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa Signing time: Sun 27 Oct 2024 04:14:58 +0000 ROA not before: Sun 27 Oct 2024 04:14:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151781 IP address blocks: 103.26.28.0/24 maxlen: 24 2001:df2:db40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BEA7/serialNumber=17AD605D06C7ED0A14485C02A12F001709A22D62 Validity Not Before: Oct 27 04:14:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671dbe42-f0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9c:87:5b:e3:75:d9:70:92:38:a9:de:69:6f: 3e:af:88:34:a7:5d:8e:54:4f:85:00:8e:b4:31:b7: 95:9e:bd:fa:97:b3:b0:a7:42:2a:ec:7b:53:31:72: 57:91:40:36:0a:4a:0d:8c:c4:19:e1:2d:13:b1:8f: 74:b9:75:c1:02:bd:d1:a2:ed:c0:c7:85:54:e6:c8: e8:96:17:11:75:1c:97:4d:bf:e4:63:0a:08:e0:a1: 99:56:1c:08:30:16:bf:8d:21:9d:15:a0:1a:70:c1: 94:b6:67:78:50:0b:24:2f:39:22:5f:53:ad:40:8b: d9:ed:19:15:fc:24:06:30:81:1c:a2:b0:a6:6d:7f: 46:fe:70:04:fe:b5:6f:b5:98:62:7e:77:00:0e:21: d8:b3:69:cf:48:b1:d1:36:9d:3e:e3:91:4d:0d:3d: 1b:66:b5:42:8c:f8:d7:33:19:e3:0b:b4:ac:84:e7: 84:57:51:06:d9:7d:a2:66:a3:64:9c:4f:fc:45:ee: fd:17:60:e8:bd:bb:fa:02:04:1e:f4:53:83:9c:60: 45:02:55:49:99:c0:ce:bf:2e:32:c9:f4:a0:ee:1e: 5f:03:21:11:12:f4:57:f4:61:46:e8:0b:16:6d:39: c2:6b:13:19:3a:a8:e9:b6:b6:bf:7b:d9:0b:cf:3b: 72:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:89:A3:73:BA:4F:7C:AE:BF:A4:0F:B3:EE:F6:F0:27:4F:F3:20:65 X509v3 Authority Key Identifier: keyid:17:AD:60:5D:06:C7:ED:0A:14:48:5C:02:A1:2F:00:17:09:A2:2D:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/F61gXQbH7QoUSFwCoS8AFwmiLWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F61gXQbH7QoUSFwCoS8AFwmiLWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BEA7/BE67D710459411EE85452E6DC4F9AE02/0294C902459511EE982FBC6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.28.0/24 IPv6: 2001:df2:db40::/48 Signature Algorithm: sha256WithRSAEncryption 23:9f:cf:60:66:12:e2:b0:d5:7e:13:49:e1:e4:09:e8:1a:9e: 6b:bf:49:3c:0b:54:02:70:22:de:68:6b:25:51:ad:29:f2:63: 58:c8:88:4d:5c:5f:bb:46:18:1d:24:e0:b9:c5:db:d3:34:9d: cc:78:5e:de:5b:1f:2c:7c:9f:75:e6:ad:ef:5e:8f:ce:c6:8d: e2:fd:99:b2:16:7f:f9:77:04:d8:c6:8f:b8:aa:8b:69:68:58: 04:24:63:ed:c5:06:7f:e8:f0:4b:fb:8a:99:a6:7e:20:17:d9: 74:9b:e7:11:f3:6d:24:07:6e:8f:00:a2:f8:2b:50:a2:dd:78: 8f:67:8e:5b:c3:fb:6c:31:fa:f4:b6:ab:4b:af:4e:9a:6d:77: 58:86:57:f1:03:a0:c8:11:9f:99:cb:e7:2e:46:bd:0b:14:0a: 5c:4b:e4:b8:23:a0:45:e7:aa:e1:8c:85:54:5d:de:dc:d3:a5: 9b:af:f1:e5:44:05:ab:12:e8:a2:08:47:dc:c7:33:cd:e8:86: 12:e3:eb:d5:ae:93:a1:3d:48:2f:5a:a1:60:c0:f9:99:c7:6e: be:16:d3:1f:aa:71:eb:e6:e9:39:1d:f5:fc:a4:ac:41:20:39: 32:bf:d0:33:6d:89:f9:ac:89:a0:2a:5e:9c:c7:95:2b:0b:7d: 9a:33:64:ba -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJFQTcxMTAvBgNVBAUTKDE3QUQ2MDVEMDZDN0VEMEExNDQ4NUMwMkExMkYwMDE3 MDlBMjJENjIwHhcNMjQxMDI3MDQxNDU4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkYmU0Mi1mMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpyHW+N12XCSOKneaW8+r4g0p12OVE+FAI60MbeVnr36l7Owp0Iq7HtTMXJX kUA2CkoNjMQZ4S0TsY90uXXBAr3Rou3Ax4VU5sjolhcRdRyXTb/kYwoI4KGZVhwI MBa/jSGdFaAacMGUtmd4UAskLzkiX1OtQIvZ7RkV/CQGMIEcorCmbX9G/nAE/rVv tZhifncADiHYs2nPSLHRNp0+45FNDT0bZrVCjPjXMxnjC7SshOeEV1EG2X2iZqNk nE/8Re79F2Dovbv6AgQe9FODnGBFAlVJmcDOvy4yyfSg7h5fAyEREvRX9GFG6AsW bTnCaxMZOqjptra/e9kLzztykwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD6Jo3O6 T3yuv6QPs+728CdP8yBlMB8GA1UdIwQYMBaAFBetYF0Gx+0KFEhcAqEvABcJoi1i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkVBNy9CRTY3RDcxMDQ1 OTQxMUVFODU0NTJFNkRDNEY5QUUwMi9GNjFnWFFiSDdRb1VTRndDb1M4QUZ3bWlM V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2MWdYUWJIN1FvVVNGd0NvUzhBRndtaUxXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJFQTcvQkU2N0Q3MTA0NTk0MTFFRTg1NDUyRTZEQzRGOUFFMDIvMDI5NEM5MDI0 NTk1MTFFRTk4MkZCQzZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnGhwwDwQCAAIwCQMHACABDfLbQDANBgkqhkiG9w0BAQsF AAOCAQEAI5/PYGYS4rDVfhNJ4eQJ6Bqea79JPAtUAnAi3mhrJVGtKfJjWMiITVxf u0YYHSTgucXb0zSdzHhe3lsfLHyfdeat716PzsaN4v2ZshZ/+XcE2MaPuKqLaWhY BCRj7cUGf+jwS/uKmaZ+IBfZdJvnEfNtJAdujwCi+CtQot14j2eOW8P7bDH69Lar S69Omm13WIZX8QOgyBGfmcvnLka9CxQKXEvkuCOgReeq4YyFVF3e3NOlm6/x5UQF qxLooghH3MczzeiGEuPr1a6ToT1IL1qhYMD5mcduvhbTH6px6+bpOR31/KSsQSA5 Mr/QM22J+ayJoCpenMeVKwt9mjNkug== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org