$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/2CDBC1B0251111E997B74770C4F9AE02.roa File: 2CDBC1B0251111E997B74770C4F9AE02.roa (raw, json) Hash identifier: /+y+JZvdgDvleCapwUXYIThVyUcKdFkPONIIfNbMybY= Subject key identifier: 22:AD:4F:13:FC:3B:1C:BB:54:8B:D8:0A:A9:F5:14:2C:27:1A:E4:6D Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 1029 Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/2CDBC1B0251111E997B74770C4F9AE02.roa Signing time: Wed 14 Aug 2024 17:55:13 +0000 ROA not before: Wed 14 Aug 2024 17:55:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137989 IP address blocks: 103.119.152.0/22 maxlen: 22 103.119.152.0/24 maxlen: 24 103.119.153.0/24 maxlen: 24 103.119.154.0/24 maxlen: 24 103.119.155.0/24 maxlen: 24 2403:45c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: Aug 14 17:55:13 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bcef81-9632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:da:84:df:69:f3:76:ca:d5:44:37:8b:17:2b: 96:1f:80:a9:d6:36:d6:77:76:ea:01:06:91:20:2e: 75:44:5c:b2:ae:d5:a3:f2:19:49:5e:98:68:e3:2b: 2e:e6:c7:21:c1:4c:04:a4:51:71:13:86:09:9a:3b: cb:bd:5a:6b:15:2a:ec:74:d4:12:ff:0d:82:07:63: fa:3d:11:0d:e2:f5:20:a1:ae:98:33:78:4b:08:62: 1d:0d:96:e9:dd:db:5e:26:4c:96:67:54:4c:8f:f1: 86:45:b4:6e:99:f9:f0:ab:b1:45:a0:c6:a1:0c:bf: 76:de:48:01:f5:ba:89:21:f8:4d:f3:e2:fc:ff:de: 7b:76:86:86:10:f6:03:06:58:ad:f2:bb:b2:65:6e: 1b:0b:9a:e4:2a:22:fb:67:8a:0b:12:29:be:be:4d: a9:e8:7d:d4:ed:e5:bc:c4:4f:0e:64:58:61:08:ed: f9:37:57:90:c5:b3:aa:57:31:ad:16:30:ea:27:71: 33:3a:da:e3:af:88:23:06:dd:df:48:eb:d2:25:68: 48:16:db:5d:4c:de:e3:10:a6:9b:43:60:c8:c0:d9: 43:95:59:47:67:ba:91:e0:20:8c:6f:0c:9d:0b:89: a3:fa:27:e0:3b:ea:94:73:00:bd:14:c1:3c:f9:20: 8b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AD:4F:13:FC:3B:1C:BB:54:8B:D8:0A:A9:F5:14:2C:27:1A:E4:6D X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/2CDBC1B0251111E997B74770C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.152.0/22 IPv6: 2403:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:68:aa:f0:50:93:41:86:47:40:07:8c:d6:a6:bb:25:2b:92: 5f:51:50:e1:b3:99:7e:2a:a4:c1:a7:13:ed:94:84:da:0a:b9: 04:b6:36:1e:51:7f:a9:07:c6:39:be:12:6e:40:36:97:fe:a3: 8f:b8:f8:3c:de:ff:05:2c:64:a9:df:98:c0:cc:58:dc:70:74: 75:19:58:43:7e:fd:52:40:9e:9d:11:a9:96:84:e6:e6:ed:8e: a1:20:38:58:f1:9d:1d:46:ae:e6:11:c8:4b:18:35:7d:5a:99: 33:03:22:5b:5f:03:61:f0:2e:5c:7b:44:06:2f:5a:ad:87:95: e6:eb:d2:94:f3:54:00:d8:ef:21:9d:c0:c4:c9:ae:2d:e9:c5: 22:31:24:c0:c6:94:35:63:ec:f1:d8:bd:de:46:7c:f0:75:be: 6f:47:ac:59:c2:4e:43:04:28:bd:5b:bd:5b:1c:d5:5a:85:3d: d4:e2:d4:35:12:70:ca:af:b1:93:e2:7c:7b:f4:23:5f:9a:da: 7f:8e:ba:a8:0b:6b:e3:3b:37:ac:22:fb:96:f4:a7:3a:0e:09: 2a:20:51:8f:54:ed:e0:47:0b:7d:4b:91:f3:68:e4:e0:e9:e5: 01:4e:ba:65:07:df:9d:1c:52:02:95:ac:8d:49:e1:43:1d:c4: ce:72:a6:88 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjQwODE0MTc1NTEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJjZWY4MS05NjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5NqE32nzdsrVRDeLFyuWH4Cp1jbWd3bqAQaRIC51RFyyrtWj8hlJXpho4ysu 5schwUwEpFFxE4YJmjvLvVprFSrsdNQS/w2CB2P6PREN4vUgoa6YM3hLCGIdDZbp 3dteJkyWZ1RMj/GGRbRumfnwq7FFoMahDL923kgB9bqJIfhN8+L8/957doaGEPYD Blit8ruyZW4bC5rkKiL7Z4oLEim+vk2p6H3U7eW8xE8OZFhhCO35N1eQxbOqVzGt FjDqJ3EzOtrjr4gjBt3fSOvSJWhIFttdTN7jEKabQ2DIwNlDlVlHZ7qR4CCMbwyd C4mj+ifgO+qUcwC9FME8+SCLGwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCKtTxP8 Oxy7VIvYCqn1FCwnGuRtMB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM0NEYvOTRGRkJBQTAyNTBGMTFFOTkwRERFMzZDQzRGOUFFMDIvMkNEQkMxQjAy NTExMTFFOTk3Qjc0NzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnd5gwDQQCAAIwBwMFACQDRcAwDQYJKoZIhvcNAQELBQAD ggEBABtoqvBQk0GGR0AHjNamuyUrkl9RUOGzmX4qpMGnE+2UhNoKuQS2Nh5Rf6kH xjm+Em5ANpf+o4+4+Dze/wUsZKnfmMDMWNxwdHUZWEN+/VJAnp0RqZaE5ubtjqEg OFjxnR1GruYRyEsYNX1amTMDIltfA2HwLlx7RAYvWq2Hlebr0pTzVADY7yGdwMTJ ri3pxSIxJMDGlDVj7PHYvd5GfPB1vm9HrFnCTkMEKL1bvVsc1VqFPdTi1DUScMqv sZPifHv0I1+a2n+OuqgLa+M7N6wi+5b0pzoOCSogUY9U7eBHC31LkfNo5ODp5QFO umUH350cUgKVrI1J4UMdxM5ypog= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org