$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/25E6E72899FE11EAB3E30513C4F9AE02.roa File: 25E6E72899FE11EAB3E30513C4F9AE02.roa (raw, json) Hash identifier: rjzGIvptWhz9SrTPyNL/UbNFgu4AqImIMWcg32gAnNE= Subject key identifier: BD:4C:44:CD:A5:5E:91:E8:B5:20:20:8C:4B:9B:2C:ED:9D:0A:EC:6B Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 084C Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/25E6E72899FE11EAB3E30513C4F9AE02.roa Signing time: Fri 12 Jan 2024 21:28:44 +0000 ROA not before: Fri 12 Jan 2024 21:28:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137419 IP address blocks: 103.107.228.0/24 maxlen: 24 103.107.229.0/24 maxlen: 24 103.107.230.0/24 maxlen: 24 103.107.231.0/24 maxlen: 24 2402:5fc0::/32 maxlen: 32 2402:5fc0:1::/48 maxlen: 48 2402:5fc0:2::/48 maxlen: 48 2402:5fc0:3::/48 maxlen: 48 2402:5fc0:4::/48 maxlen: 48 2402:5fc0:5::/48 maxlen: 48 2402:5fc0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2124 (0x84c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Jan 12 21:28:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a1af0c-0085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:24:d0:ff:de:bf:9f:a3:00:79:aa:91:29:73: 73:c1:d9:1a:f3:6f:27:02:cf:e3:d3:38:92:44:39: cd:0f:16:aa:90:df:e4:2a:3e:d4:69:6f:29:31:89: 03:f7:bb:af:d3:30:61:8c:b3:b7:9a:9d:4d:ed:03: f6:9c:72:5a:5e:1c:ab:41:7e:4d:26:7f:43:b8:dd: b5:69:08:05:05:bb:8e:20:bb:18:83:d7:56:67:87: 1b:62:fe:61:eb:33:b8:e8:1b:f2:84:ca:81:53:3e: ac:96:91:47:c7:14:88:aa:03:aa:10:0c:bb:50:d4: 19:4d:18:73:18:1b:11:44:b3:1e:d6:a9:7e:12:60: ad:1d:23:df:7f:07:33:09:e5:fd:e9:e9:a5:11:2c: 5b:d0:64:b2:59:38:3a:8b:61:15:00:10:e3:7d:99: 61:56:75:1e:eb:7b:2d:95:a4:48:bd:de:12:94:de: 37:53:26:b2:6d:4e:a3:2d:1a:e0:66:c4:2f:90:54: d9:57:4d:a8:fa:36:37:e6:00:c2:47:9b:b7:4a:c5: c0:6d:e9:61:81:0d:95:89:4a:29:f8:37:a4:9b:0b: ec:0c:fc:a5:e5:98:75:1f:1e:f5:4e:8a:1c:f3:fd: 24:cb:ad:0a:a3:3d:db:a5:0d:ab:3d:72:34:c7:c1: cc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4C:44:CD:A5:5E:91:E8:B5:20:20:8C:4B:9B:2C:ED:9D:0A:EC:6B X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/25E6E72899FE11EAB3E30513C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.228.0/22 IPv6: 2402:5fc0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:40:f9:6b:df:90:a5:75:de:4d:71:96:1e:dc:6a:6c:3d:12: 67:34:c8:62:a1:a7:69:c4:36:92:27:42:b2:d0:2c:61:7f:ef: 27:a3:ae:31:40:48:0a:ee:0e:9d:2c:57:d5:81:2d:37:94:ac: 9e:e7:27:b7:8e:84:06:08:fb:bc:0a:f5:25:98:56:47:d6:34: d4:f1:a2:63:e8:f0:5d:ca:5a:1a:77:62:69:ae:58:66:3b:cc: f3:09:c3:41:2c:1d:43:c5:2f:2e:c2:5f:ef:12:ee:6c:77:1a: f0:fd:14:17:cf:ed:b0:a5:03:66:f7:ed:36:eb:78:c7:cf:b3: a0:aa:b6:a1:b1:1c:06:6b:46:09:eb:fa:8b:6d:ee:a2:ad:0e: fb:84:59:f6:e9:09:96:73:f6:f6:1d:07:3e:cd:96:3c:64:58: a7:41:bd:64:10:25:1f:1f:61:05:ec:4b:8f:f5:d2:6d:2c:ff: 05:4e:3f:6e:a9:89:1b:19:94:12:d4:8c:69:e2:57:6b:97:33: d8:ac:ea:25:c7:6c:69:ca:90:87:a0:6a:c2:7c:85:ce:e3:24: 92:8f:14:8c:d1:67:cd:a3:c1:e5:b3:48:4e:19:a0:69:d2:7a: df:0b:2b:e3:8b:e3:79:b6:49:b9:19:bb:68:b7:b7:65:07:25: ce:f7:a3:86 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjQwMTEyMjEyODQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExYWYwYy0wMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSTQ/96/n6MAeaqRKXNzwdka828nAs/j0ziSRDnNDxaqkN/kKj7UaW8pMYkD 97uv0zBhjLO3mp1N7QP2nHJaXhyrQX5NJn9DuN21aQgFBbuOILsYg9dWZ4cbYv5h 6zO46BvyhMqBUz6slpFHxxSIqgOqEAy7UNQZTRhzGBsRRLMe1ql+EmCtHSPffwcz CeX96emlESxb0GSyWTg6i2EVABDjfZlhVnUe63stlaRIvd4SlN43UyaybU6jLRrg ZsQvkFTZV02o+jY35gDCR5u3SsXAbelhgQ2ViUop+DekmwvsDPyl5Zh1Hx71Tooc 8/0ky60Koz3bpQ2rPXI0x8HMAwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFL1MRM2l XpHotSAgjEubLO2dCuxrMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FDRjQvNzBFMzAzNkM5OUZDMTFFQTk2NTU0NTEwQzRGOUFFMDIvMjVFNkU3Mjg5 OUZFMTFFQUIzRTMwNTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJna+QwDQQCAAIwBwMFACQCX8AwDQYJKoZIhvcNAQELBQAD ggEBAA1A+WvfkKV13k1xlh7camw9Emc0yGKhp2nENpInQrLQLGF/7yejrjFASAru Dp0sV9WBLTeUrJ7nJ7eOhAYI+7wK9SWYVkfWNNTxomPo8F3KWhp3YmmuWGY7zPMJ w0EsHUPFLy7CX+8S7mx3GvD9FBfP7bClA2b37TbreMfPs6CqtqGxHAZrRgnr+ott 7qKtDvuEWfbpCZZz9vYdBz7NljxkWKdBvWQQJR8fYQXsS4/10m0s/wVOP26piRsZ lBLUjGniV2uXM9is6iXHbGnKkIegasJ8hc7jJJKPFIzRZ82jweWzSE4ZoGnSet8L K+OL43m2SbkZu2i3t2UHJc73o4Y= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org