$ rpki-client -vvf rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa File: 4B0C31680FA511EFA3249B35C4F9AE02.roa (raw, json) Hash identifier: I+MzgbGQV3Ix84rdhaAbWOK+GMavwSb8VU8kMKlSBXQ= Subject key identifier: 19:8C:AE:DD:BA:C4:9C:B0:75:8B:15:7C:D2:2B:73:08:97:60:3A:AE Certificate issuer: /CN=A91311BC/serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Certificate serial: 06 Authority key identifier: D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa Signing time: Sat 11 May 2024 14:47:52 +0000 ROA not before: Sat 11 May 2024 14:47:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 46015 IP address blocks: 103.18.244.0/22 maxlen: 22 103.18.244.0/24 maxlen: 24 137.59.108.0/22 maxlen: 22 137.59.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91311BC/serialNumber=D4B1DD3EB1A06FA262AB6C5EBF4AF53671ACD2F4 Validity Not Before: May 11 14:47:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=663f8518-a92c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:19:d0:ec:20:71:ce:f0:a4:88:97:00:1f: 23:17:49:cd:2a:05:9a:23:71:50:4f:4e:2c:0e:ad: 2c:cf:25:16:a9:41:12:cf:79:91:d0:cc:55:ef:aa: 0f:25:1a:7c:c4:30:fe:09:0e:26:3e:b1:e5:36:83: 9a:b0:cb:d6:d4:66:40:1b:7d:0b:0f:9d:40:28:a0: ef:15:9e:54:85:e7:93:09:14:ed:50:0d:8d:e0:50: 37:e3:1f:9e:4d:64:f7:4d:ee:d6:be:a7:d5:8f:4b: 35:89:c3:2a:6a:3c:95:80:b1:47:18:cc:0d:61:67: 7e:b9:12:89:d8:ed:c6:e1:91:4d:19:1b:e1:c1:b9: e6:80:36:c4:b6:71:1e:be:e5:db:61:65:f3:80:6b: 4a:06:97:ee:ff:05:4c:bc:07:29:54:df:9a:35:4f: 80:6f:2c:bd:96:c9:34:c4:ca:09:5b:a0:93:5e:f8: ae:df:f1:a4:f6:74:9e:bd:8c:42:36:cb:dd:2f:68: 78:4e:18:58:16:bc:64:06:64:4e:78:78:ce:48:5a: 67:fc:d4:e6:dd:be:ee:40:ac:6d:3c:db:5d:11:9a: 3d:8e:8f:53:c0:c3:9f:36:16:ad:ef:47:ec:cb:32: af:a5:6b:7c:5b:39:90:cc:97:0b:b5:93:48:f8:dc: 61:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:8C:AE:DD:BA:C4:9C:B0:75:8B:15:7C:D2:2B:73:08:97:60:3A:AE X509v3 Authority Key Identifier: keyid:D4:B1:DD:3E:B1:A0:6F:A2:62:AB:6C:5E:BF:4A:F5:36:71:AC:D2:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1LHdPrGgb6Jiq2xev0r1NnGs0vQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91311BC/05EEABFC0FA411EFA3AA8D33C4F9AE02/4B0C31680FA511EFA3249B35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.244.0/22 137.59.108.0/22 Signature Algorithm: sha256WithRSAEncryption ad:4d:40:e9:6f:5a:2a:85:a4:3e:ad:9a:64:1f:ba:c1:55:92: 1c:54:cf:d5:75:b3:8b:bb:02:77:41:6d:7c:9d:c9:89:b4:2e: 90:1b:34:c0:3a:41:16:d8:16:71:52:2d:37:c2:ed:2a:3f:60: 7d:87:6f:94:11:c9:68:6f:ba:20:26:9e:c7:36:42:2c:12:99: c6:48:a2:0f:ee:0d:2f:dc:c6:5e:e3:92:ae:48:cb:4b:9e:4d: f2:93:d1:82:86:18:5d:71:3a:69:4e:39:cf:41:51:4e:f9:4d: c9:5a:9f:c8:20:12:a5:1a:dd:12:0c:77:15:26:7c:8c:43:5c: 23:f9:3d:d9:42:9f:a6:35:da:e7:89:c5:d9:7f:97:5c:53:eb: 8b:70:17:c6:d2:e2:af:2c:e1:49:e4:bc:e5:47:29:65:d1:2f: 03:52:90:71:ce:6f:44:b5:e8:01:e2:fc:35:19:d7:11:58:72: 49:e7:35:27:a7:55:7a:53:f3:25:4f:97:d3:2a:9f:f0:05:64: 75:b8:29:63:12:dd:11:82:c4:1e:dc:95:0c:ff:e3:08:38:bb: 68:22:a4:80:0c:91:0b:3f:dd:7a:a5:c6:fb:5d:98:21:1e:74: 14:62:02:57:fc:35:b5:5b:0a:76:ac:72:fa:8d:02:0e:55:0c: 37:46:7c:3b -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTFCQzExMC8GA1UEBRMoRDRCMUREM0VCMUEwNkZBMjYyQUI2QzVFQkY0QUY1MzY3 MUFDRDJGNDAeFw0yNDA1MTExNDQ3NTJaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2Y4NTE4LWE5MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAWRnQ7CBxzvCkiJcAHyMXSc0qBZojcVBPTiwOrSzPJRapQRLPeZHQzFXvqg8l GnzEMP4JDiY+seU2g5qwy9bUZkAbfQsPnUAooO8VnlSF55MJFO1QDY3gUDfjH55N ZPdN7ta+p9WPSzWJwypqPJWAsUcYzA1hZ365EonY7cbhkU0ZG+HBueaANsS2cR6+ 5dthZfOAa0oGl+7/BUy8BylU35o1T4BvLL2WyTTEyglboJNe+K7f8aT2dJ69jEI2 y90vaHhOGFgWvGQGZE54eM5IWmf81Obdvu5ArG08210Rmj2Oj1PAw582Fq3vR+zL Mq+la3xbOZDMlwu1k0j43GEPAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUGYyu3brE nLB1ixV80itzCJdgOq4wHwYDVR0jBBgwFoAU1LHdPrGgb6Jiq2xev0r1NnGs0vQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMUJDLzA1RUVBQkZDMEZB NDExRUZBM0FBOEQzM0M0RjlBRTAyLzFMSGRQckdnYjZKaXEyeGV2MHIxTm5HczB2 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUxIZFByR2diNkppcTJ4ZXYwcjFObkdzMHZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTFCQy8wNUVFQUJGQzBGQTQxMUVGQTNBQThEMzNDNEY5QUUwMi80QjBDMzE2ODBG QTUxMUVGQTMyNDlCMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcS9AMEAok7bDANBgkqhkiG9w0BAQsFAAOCAQEArU1A6W9a KoWkPq2aZB+6wVWSHFTP1XWzi7sCd0FtfJ3JibQukBs0wDpBFtgWcVItN8LtKj9g fYdvlBHJaG+6ICaexzZCLBKZxkiiD+4NL9zGXuOSrkjLS55N8pPRgoYYXXE6aU45 z0FRTvlNyVqfyCASpRrdEgx3FSZ8jENcI/k92UKfpjXa54nF2X+XXFPri3AXxtLi ryzhSeS85UcpZdEvA1KQcc5vRLXoAeL8NRnXEVhySec1J6dVelPzJU+X0yqf8AVk dbgpYxLdEYLEHtyVDP/jCDi7aCKkgAyRCz/deqXG+12YIR50FGICV/w1tVsKdqxy +o0CDlUMN0Z8Ow== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:04 2024 by rpki-client on console-ams.rpki-client.org