$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa File: E61E258895F611EC88E42C7EC4F9AE02.roa (raw, json) Hash identifier: IBhhnGT/LDWxhpFmUfJvAC1XxzhmOqtNwlJxeyVAKjs= Subject key identifier: FC:EA:7B:34:82:05:F8:EE:62:50:FE:B4:7E:AB:60:7C:0D:6C:AC:98 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 0358 Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa Signing time: Sun 03 Nov 2024 00:34:18 +0000 ROA not before: Sun 03 Nov 2024 00:34:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4775 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 856 (0x358) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Nov 3 00:34:18 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6726c50a-6254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:07:6e:d1:0f:b6:54:98:59:e8:b6:9c:4d: 9b:08:3e:91:41:25:05:88:16:45:80:1f:ce:4e:90: 3b:6a:0e:f7:53:85:ac:ea:2e:2a:53:a9:f3:97:71: 3a:9a:36:28:65:bd:c9:32:2e:d0:a6:e1:80:bf:b8: cc:9c:61:69:97:0b:37:14:1a:4e:fd:88:38:7e:a4: af:8c:b1:0b:b6:b3:9c:76:fd:26:45:41:55:fd:77: 6c:c4:29:ae:c1:85:e9:1e:49:4c:b7:c3:7a:48:8b: 8c:fb:fd:8b:c0:8a:8b:e4:3c:2c:4d:f1:41:0d:cc: 55:03:d6:cf:71:e8:b1:f9:b0:b6:9f:f9:33:26:a8: ce:98:e2:df:5f:4e:65:15:45:c9:d6:cf:84:05:0a: 84:c8:22:36:8b:33:e9:66:a7:29:76:53:55:58:55: 71:92:6f:3b:5a:65:f8:03:c6:e6:03:2e:75:49:5c: 86:d7:58:b5:9f:d6:22:f8:fc:09:8c:ff:47:de:2c: 66:da:e0:0d:0e:9a:e1:e9:04:2c:b9:97:36:e8:53: 7a:97:a9:08:a9:7c:de:0b:3c:b1:e9:e8:d2:c2:55: c2:ae:f5:36:66:85:48:9c:1f:9e:f8:c7:a8:d2:eb: 8c:d9:a6:01:cf:1e:14:ab:62:96:4b:24:4f:d1:97: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EA:7B:34:82:05:F8:EE:62:50:FE:B4:7E:AB:60:7C:0D:6C:AC:98 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 21:cc:c6:51:52:ff:f5:b9:78:b5:99:51:d2:62:1f:6f:e0:63: 1e:b9:07:1d:d8:47:6c:df:3c:b0:96:2a:1e:92:0e:d6:93:3b: d2:04:3a:74:ce:2d:53:45:48:58:3c:08:c8:bf:5b:68:9c:eb: 10:c6:62:1b:45:02:17:cf:1d:d0:d4:7f:f5:2f:34:19:b7:c6: 07:f7:ce:9e:e1:ef:d9:df:ba:22:c8:00:22:f1:df:8f:7e:e3: b0:2d:7a:bb:7f:1d:de:cf:d9:19:58:11:72:ff:be:ea:fa:6c: c4:95:ee:b0:22:e5:b1:f8:4a:cc:7d:ef:75:94:d9:a6:e5:94: cf:85:0c:7c:cb:70:55:7f:ff:00:f6:06:7f:46:61:22:fa:87: 72:65:2f:85:75:92:91:75:58:1f:2c:98:c8:96:6b:af:a1:7d: d9:6d:7a:ca:e9:68:e7:d2:b2:c7:39:4f:73:66:b4:de:53:06: 0d:47:b4:ce:1b:e0:54:24:0d:eb:af:8e:31:b4:af:6b:06:9e: d2:a5:25:5a:e7:b2:a1:6a:3a:c8:4d:bd:fe:3f:2f:de:a6:e8: d4:b3:b8:68:de:69:40:b3:e0:18:aa:78:21:f0:11:95:c5:8b: e2:19:c0:14:ce:81:5c:f4:57:0a:ed:be:8f:ca:7c:58:60:fa: 8c:92:6a:23 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjQxMTAzMDAzNDE4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YzUwYS02MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMsHbtEPtlSYWei2nE2bCD6RQSUFiBZFgB/OTpA7ag73U4Ws6i4qU6nzl3E6 mjYoZb3JMi7QpuGAv7jMnGFplws3FBpO/Yg4fqSvjLELtrOcdv0mRUFV/XdsxCmu wYXpHklMt8N6SIuM+/2LwIqL5DwsTfFBDcxVA9bPceix+bC2n/kzJqjOmOLfX05l FUXJ1s+EBQqEyCI2izPpZqcpdlNVWFVxkm87WmX4A8bmAy51SVyG11i1n9Yi+PwJ jP9H3ixm2uANDprh6QQsuZc26FN6l6kIqXzeCzyx6ejSwlXCrvU2ZoVInB+e+Meo 0uuM2aYBzx4Uq2KWSyRP0ZeVpQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPzqezSC BfjuYlD+tH6rYHwNbKyYMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvRTYxRTI1ODg5 NUY2MTFFQzg4RTQyQzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkjsDBADKAHQwDwQCAAIwCQMHACABDfJNgDANBgkqhkiG 9w0BAQsFAAOCAQEAIczGUVL/9bl4tZlR0mIfb+BjHrkHHdhHbN88sJYqHpIO1pM7 0gQ6dM4tU0VIWDwIyL9baJzrEMZiG0UCF88d0NR/9S80GbfGB/fOnuHv2d+6IsgA IvHfj37jsC16u38d3s/ZGVgRcv++6vpsxJXusCLlsfhKzH3vdZTZpuWUz4UMfMtw VX//APYGf0ZhIvqHcmUvhXWSkXVYHyyYyJZrr6F92W16yulo59KyxzlPc2a03lMG DUe0zhvgVCQN66+OMbSvawae0qUlWueyoWo6yE29/j8v3qbo1LO4aN5pQLPgGKp4 IfARlcWL4hnAFM6BXPRXCu2+j8p8WGD6jJJqIw== -----END CERTIFICATE-----Generated at Mon Nov 25 02:48:54 2024 by rpki-client on console-ams.rpki-client.org