$ rpki-client -vvf rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/AA12544E5AAF11EF86AAA442C4F9AE02.roa File: AA12544E5AAF11EF86AAA442C4F9AE02.roa (raw, json) Hash identifier: 8ltsRSMx/O4P5xBIXkQL3DQXOAFh4xAYUfE8ZE3IXvQ= Subject key identifier: 5F:58:34:FC:90:EB:43:95:3D:C0:80:4A:3F:27:EF:CE:44:33:07:A5 Certificate issuer: /CN=A913B31D/serialNumber=2E9C11C6D2945D52F95F24C39DD1F4187A3417E5 Certificate serial: 0146 Authority key identifier: 2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/AA12544E5AAF11EF86AAA442C4F9AE02.roa Signing time: Sat 23 Nov 2024 02:45:50 +0000 ROA not before: Sat 23 Nov 2024 02:45:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136000 IP address blocks: 103.21.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.crl rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B31D/serialNumber=2E9C11C6D2945D52F95F24C39DD1F4187A3417E5 Validity Not Before: Nov 23 02:45:50 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674141de-1c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:ad:7e:fc:82:c2:f8:5d:04:4d:61:5b:92: e6:c8:cf:6e:57:32:d5:1d:30:d4:c8:8f:90:56:65: c4:0b:18:27:d3:6d:d0:1a:89:29:ec:d8:70:b4:86: b1:b8:f3:bb:02:46:ed:cf:99:1f:7a:1c:f6:6f:57: c8:b9:0c:ef:76:8a:f9:8e:77:ef:d5:4a:8e:9f:15: 4c:78:22:20:32:e1:34:3a:bd:5d:5b:1f:9a:b2:61: 36:20:0d:94:d1:ad:10:21:e9:36:df:ea:20:67:4f: a0:50:cd:da:f0:41:f1:64:39:75:bd:d7:3a:f3:53: 06:d7:43:4a:47:2d:ab:4a:0a:d1:34:20:90:82:93: 19:6f:e6:4c:e6:8a:4d:d4:56:17:24:04:49:d5:3d: 36:ae:48:f7:86:1b:83:d4:5a:7a:59:f5:ee:64:5b: 90:e5:b8:bb:56:a2:1c:67:a5:3a:23:aa:fd:1d:a5: 29:e6:db:bb:e4:9c:e0:4d:f4:59:51:dc:76:33:4a: 85:4f:68:0d:88:8d:a0:f3:f7:13:27:e4:7c:cf:0e: 90:7b:31:2c:4a:56:24:b1:e8:87:cf:e3:b4:cc:0a: 38:fe:7e:6b:8e:d2:57:9c:85:9a:c6:37:dc:e0:25: dd:65:32:09:2d:6d:fc:dd:ab:9d:40:9a:1f:ed:74: cd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:58:34:FC:90:EB:43:95:3D:C0:80:4A:3F:27:EF:CE:44:33:07:A5 X509v3 Authority Key Identifier: keyid:2E:9C:11:C6:D2:94:5D:52:F9:5F:24:C3:9D:D1:F4:18:7A:34:17:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/LpwRxtKUXVL5XyTDndH0GHo0F-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpwRxtKUXVL5XyTDndH0GHo0F-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B31D/E7E7EC50BD6911ED9B55226EC4F9AE02/AA12544E5AAF11EF86AAA442C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.4.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:cd:89:74:47:a7:ae:78:0e:a3:77:c6:07:f8:e2:30:45:a2: 30:17:7a:e3:f5:20:1b:c8:2f:16:5c:c4:38:05:dc:36:54:c8: 2c:a0:98:86:97:f4:72:b4:ff:87:48:ae:44:d3:24:79:5d:b1: ac:be:ec:b7:1a:7b:7a:ff:66:7d:ff:12:8b:7a:57:63:4d:eb: 20:82:6e:29:b2:63:89:79:5d:15:65:ab:46:17:7c:e5:bb:ab: 68:5b:07:22:8d:f5:a9:aa:42:ee:93:64:01:53:64:72:e5:25: a9:2e:d7:07:e4:72:6a:85:4f:ad:95:aa:03:55:7f:2b:36:66: 2e:40:e4:24:26:e9:56:06:2f:95:48:a5:e2:3c:f6:d2:19:9f: 08:64:3f:58:62:5f:9c:99:9a:37:d6:f2:63:91:c6:9d:fa:51: e0:e4:9b:e1:c1:c1:8e:85:4d:fb:06:4e:f8:15:d7:ca:60:2a: f5:17:5e:8e:a0:18:55:1b:61:2a:3a:25:c9:1b:d7:ec:59:57: 41:cf:fb:54:b5:53:5d:75:b8:af:45:f4:85:dd:e4:19:5f:e0: 03:65:34:c6:e1:2c:4d:40:27:c9:60:16:06:84:c8:3c:86:ed: 2a:72:90:64:63:d2:59:a6:19:02:2e:f2:cc:dc:18:ee:c8:bc: 7f:e4:d8:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IzMUQxMTAvBgNVBAUTKDJFOUMxMUM2RDI5NDVENTJGOTVGMjRDMzlERDFGNDE4 N0EzNDE3RTUwHhcNMjQxMTIzMDI0NTUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxNDFkZS0xYzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4etfvyCwvhdBE1hW5LmyM9uVzLVHTDUyI+QVmXECxgn023QGokp7NhwtIax uPO7Akbtz5kfehz2b1fIuQzvdor5jnfv1UqOnxVMeCIgMuE0Or1dWx+asmE2IA2U 0a0QIek23+ogZ0+gUM3a8EHxZDl1vdc681MG10NKRy2rSgrRNCCQgpMZb+ZM5opN 1FYXJARJ1T02rkj3hhuD1Fp6WfXuZFuQ5bi7VqIcZ6U6I6r9HaUp5tu75JzgTfRZ Udx2M0qFT2gNiI2g8/cTJ+R8zw6QezEsSlYkseiHz+O0zAo4/n5rjtJXnIWaxjfc 4CXdZTIJLW383audQJof7XTNEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF9YNPyQ 60OVPcCASj8n785EMwelMB8GA1UdIwQYMBaAFC6cEcbSlF1S+V8kw53R9Bh6NBfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjMxRC9FN0U3RUM1MEJE NjkxMUVEOUI1NTIyNkVDNEY5QUUwMi9McHdSeHRLVVhWTDVYeVREbmRIMEdIbzBG LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xwd1J4dEtVWFZMNVh5VERuZEgwR0hvMEYtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0IzMUQvRTdFN0VDNTBCRDY5MTFFRDlCNTUyMjZFQzRGOUFFMDIvQUExMjU0NEU1 QUFGMTFFRjg2QUFBNDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnFQQwDQYJKoZIhvcNAQELBQADggEBAHvNiXRHp654DqN3 xgf44jBFojAXeuP1IBvILxZcxDgF3DZUyCygmIaX9HK0/4dIrkTTJHldsay+7Lca e3r/Zn3/Eot6V2NN6yCCbimyY4l5XRVlq0YXfOW7q2hbByKN9amqQu6TZAFTZHLl Jaku1wfkcmqFT62VqgNVfys2Zi5A5CQm6VYGL5VIpeI89tIZnwhkP1hiX5yZmjfW 8mORxp36UeDkm+HBwY6FTfsGTvgV18pgKvUXXo6gGFUbYSo6Jckb1+xZV0HP+1S1 U111uK9F9IXd5Blf4ANlNMbhLE1AJ8lgFgaEyDyG7SpykGRj0lmmGQIu8szcGO7I vH/k2PE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org