$ rpki-client -vvf rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa File: 0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa (raw, json) Hash identifier: 5LtQSX5vsNltnL8EwaCWb4W4bCqyFzBXrqfQ3KUZW5E= Subject key identifier: 87:35:2D:92:48:14:72:68:9B:A5:2A:0B:1A:49:BF:D3:E7:F8:0B:4A Certificate issuer: /CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Certificate serial: 020F Authority key identifier: 44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa Signing time: Wed 31 Jul 2024 03:34:37 +0000 ROA not before: Wed 31 Jul 2024 03:34:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150005 IP address blocks: 103.190.136.0/23 maxlen: 23 103.190.136.0/24 maxlen: 24 103.190.137.0/24 maxlen: 24 2001:df0:edc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913442A/serialNumber=4421F3A9D7E41D6F47B786FDD3E7A88DE42B07B9 Validity Not Before: Jul 31 03:34:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9b0cd-c999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:0d:e8:d6:d3:f8:72:56:c9:77:b2:17:b2: b5:ec:df:3a:a1:67:ee:ff:d2:cc:3c:dc:db:fc:bd: b9:39:3d:56:bc:49:69:49:97:4c:69:4b:d0:af:28: dc:be:b9:f1:c0:12:09:50:e6:48:a0:74:47:9f:64: fd:c1:f7:43:e5:81:ca:91:ff:bd:9a:bc:51:82:8d: ca:1d:94:29:9c:d1:3d:c1:13:a6:5a:92:6d:81:ca: 69:d3:9c:20:d7:f0:08:cf:c5:2d:e9:9c:68:df:89: 9c:77:c7:dc:a2:59:e8:a6:f3:5f:0a:39:43:71:ef: 6d:61:a9:da:e8:d7:af:9a:83:87:f2:c2:74:b8:38: e0:52:2b:77:2e:78:52:f0:ff:62:51:73:16:51:fc: 7e:14:49:a8:58:b0:de:84:5d:a2:b1:29:0f:8c:a5: d2:d7:87:e4:07:ef:46:51:a9:86:fe:76:bb:e4:70: 3d:1d:ac:62:5f:0f:01:71:d9:b6:60:32:84:b4:bb: 9c:6f:b2:45:97:3f:80:ab:c4:51:3f:46:98:11:ac: c3:db:1b:9e:f4:6d:cc:f8:c4:41:5b:ef:df:d8:a5: eb:29:dc:93:38:a2:a1:ea:47:9e:ad:63:25:1c:f3: cf:c7:9f:8a:74:c9:5c:4c:da:fd:99:32:76:42:fc: a9:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:35:2D:92:48:14:72:68:9B:A5:2A:0B:1A:49:BF:D3:E7:F8:0B:4A X509v3 Authority Key Identifier: keyid:44:21:F3:A9:D7:E4:1D:6F:47:B7:86:FD:D3:E7:A8:8D:E4:2B:07:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/RCHzqdfkHW9Ht4b90-eojeQrB7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RCHzqdfkHW9Ht4b90-eojeQrB7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913442A/AB4E5244FC3911EC95C81387C4F9AE02/0F9DB8E0FC3D11ECAD619C35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.136.0/23 IPv6: 2001:df0:edc0::/48 Signature Algorithm: sha256WithRSAEncryption 4d:a8:bc:da:c1:4a:3e:e7:6d:f3:4d:3b:9b:be:db:ad:35:36: 90:2c:69:88:74:55:98:16:ec:a2:06:7d:f1:80:9e:14:11:e0: 1f:38:dc:ae:69:a5:c3:5f:1c:f9:2f:fe:1c:8d:40:f5:9d:94: f5:67:93:9f:c7:c1:ef:7e:6d:eb:4c:0c:b6:75:db:54:37:69: 2f:39:13:c6:18:8f:10:d8:e4:50:54:13:14:5b:5a:62:23:d7: 7e:59:6e:40:f1:41:2d:95:51:fe:ed:f3:51:b6:ed:c4:ac:50: e4:3a:98:f5:0f:fb:e2:45:64:0d:cd:77:8e:a2:d0:49:b1:61: d6:7a:2c:11:99:d8:22:d7:dc:3d:ca:33:6b:de:6f:61:4e:a8: 54:57:55:4e:ed:a9:67:67:8a:d1:c2:54:05:a7:2d:cc:de:36: c7:b0:fc:f1:28:11:ac:ba:0e:b2:48:62:6c:56:13:1e:32:1b: 41:1f:5d:3d:16:55:31:75:7a:03:81:b6:0e:36:e0:35:ff:1c: 91:d7:10:97:88:a3:e9:6a:48:b9:eb:c3:1e:7a:00:57:68:55: f1:8f:9c:32:21:08:be:b7:4d:6b:72:d7:60:57:8f:29:25:ee: cd:81:e8:3e:74:7c:3f:b6:7d:79:a4:4b:f3:c7:8f:1d:21:83: 60:00:14:ec -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ0MkExMTAvBgNVBAUTKDQ0MjFGM0E5RDdFNDFENkY0N0I3ODZGREQzRTdBODhE RTQyQjA3QjkwHhcNMjQwNzMxMDMzNDM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YjBjZC1jOTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz0N6NbT+HJWyXeyF7K17N86oWfu/9LMPNzb/L25OT1WvElpSZdMaUvQryjc vrnxwBIJUOZIoHRHn2T9wfdD5YHKkf+9mrxRgo3KHZQpnNE9wROmWpJtgcpp05wg 1/AIz8Ut6Zxo34mcd8fcolnopvNfCjlDce9tYana6NevmoOH8sJ0uDjgUit3LnhS 8P9iUXMWUfx+FEmoWLDehF2isSkPjKXS14fkB+9GUamG/na75HA9HaxiXw8Bcdm2 YDKEtLucb7JFlz+Aq8RRP0aYEazD2xue9G3M+MRBW+/f2KXrKdyTOKKh6keerWMl HPPPx5+KdMlcTNr9mTJ2QvypLwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIc1LZJI FHJom6UqCxpJv9Pn+AtKMB8GA1UdIwQYMBaAFEQh86nX5B1vR7eG/dPnqI3kKwe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDQyQS9BQjRFNTI0NEZD MzkxMUVDOTVDODEzODdDNEY5QUUwMi9SQ0h6cWRma0hXOUh0NGI5MC1lb2plUXJC N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JDSHpxZGZrSFc5SHQ0YjkwLWVvamVRckI3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ0MkEvQUI0RTUyNDRGQzM5MTFFQzk1QzgxMzg3QzRGOUFFMDIvMEY5REI4RTBG QzNEMTFFQ0FENjE5QzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvogwDwQCAAIwCQMHACABDfDtwDANBgkqhkiG9w0BAQsF AAOCAQEATai82sFKPudt8007m77brTU2kCxpiHRVmBbsogZ98YCeFBHgHzjcrmml w18c+S/+HI1A9Z2U9WeTn8fB735t60wMtnXbVDdpLzkTxhiPENjkUFQTFFtaYiPX flluQPFBLZVR/u3zUbbtxKxQ5DqY9Q/74kVkDc13jqLQSbFh1nosEZnYItfcPcoz a95vYU6oVFdVTu2pZ2eK0cJUBactzN42x7D88SgRrLoOskhibFYTHjIbQR9dPRZV MXV6A4G2DjbgNf8ckdcQl4ij6WpIuevDHnoAV2hV8Y+cMiEIvrdNa3LXYFePKSXu zYHoPnR8P7Z9eaRL88ePHSGDYAAU7A== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org