$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/899B070834D511ED99B1921FC4F9AE02.roa File: 899B070834D511ED99B1921FC4F9AE02.roa (raw, json) Hash identifier: 59L53XZQZjjT2hN0a9eIPXDObrfGJobgfFbYtXLEctM= Subject key identifier: 2C:41:01:B5:24:4E:52:D0:0D:5E:68:F7:73:9B:BE:88:E7:A6:CA:21 Certificate issuer: /CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Certificate serial: 01EF Authority key identifier: 0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/899B070834D511ED99B1921FC4F9AE02.roa Signing time: Tue 05 Nov 2024 01:45:24 +0000 ROA not before: Tue 05 Nov 2024 01:45:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141723 IP address blocks: 103.146.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Validity Not Before: Nov 5 01:45:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=672978b4-35bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:44:e6:3f:7e:af:fd:e6:a5:97:b7:f6:90:24: 83:58:3c:84:d7:97:92:5a:02:51:c5:db:18:27:a9: 2e:1a:2a:8c:85:54:30:e7:94:4a:83:5a:ac:65:f6: b1:65:41:a0:26:da:f9:68:37:08:6d:74:d7:61:f9: d5:80:76:a8:51:f6:55:24:29:b9:b9:dd:3f:c1:bb: 37:ca:b6:5e:2e:4c:2f:8d:c9:58:52:fb:00:00:db: 06:06:db:2b:53:68:98:33:02:a0:7b:9f:90:3e:6e: 39:eb:72:73:9f:ad:84:ba:9c:af:66:58:68:96:10: 35:43:f5:8e:db:c9:ac:74:e6:c2:16:54:94:9b:57: 48:2a:a0:b3:07:06:6b:5b:12:22:62:49:aa:3a:dc: 72:5a:f8:26:31:0e:6e:73:eb:80:9a:68:2c:a0:de: 1b:dc:1a:d5:1d:85:da:89:93:a3:49:bb:fb:31:32: 42:6c:6c:7f:4a:b4:e6:09:19:b6:ac:0b:1d:6e:20: f7:d8:cb:90:c0:9e:77:67:84:39:b0:50:7f:f7:6b: 61:3d:a0:af:a4:96:72:b6:51:89:0b:39:53:88:bb: 5f:76:d6:49:18:95:d2:45:a1:6a:88:51:f5:5f:41: 40:10:6d:05:c1:21:07:2d:7d:e3:25:a7:0c:66:cc: 96:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:41:01:B5:24:4E:52:D0:0D:5E:68:F7:73:9B:BE:88:E7:A6:CA:21 X509v3 Authority Key Identifier: keyid:0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/899B070834D511ED99B1921FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.57.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:a5:4c:ee:5e:15:46:57:b7:31:23:cc:26:53:6e:31:84:c0: a0:02:35:f3:28:c6:35:52:4e:59:fa:f7:8f:d5:90:ee:29:da: 8f:7a:4a:e4:02:16:2d:91:18:33:32:b2:52:90:e7:81:13:04: 5b:75:d5:e2:ff:13:47:27:6f:88:ee:74:39:a4:56:54:61:00: ef:da:ab:2b:6b:c0:22:5c:1a:d5:46:ab:bf:58:c2:27:28:a6: c4:1e:22:c0:34:1f:74:5c:d1:1a:b8:0f:a1:dc:d3:a9:6d:b0: 53:8e:ae:be:47:e8:4b:d7:e3:25:be:dc:83:9a:26:f5:2e:de: 30:fb:bd:f1:05:3b:d9:8c:00:12:78:01:c2:5e:b2:db:d1:6b: 6b:66:48:41:2e:1f:a1:db:36:0b:d4:e6:ce:37:c2:6b:81:03: 76:56:6d:c2:d2:43:2a:6e:ea:a0:4e:52:79:e4:12:03:97:34: b1:eb:b0:ef:03:4e:47:bf:db:43:3c:3a:a0:82:e1:fa:38:f3: 09:73:dc:46:f3:26:14:1f:89:d3:54:e6:84:07:e4:ff:47:67: 9f:ce:e8:7a:78:34:dd:db:02:0c:e5:0e:d2:05:23:3e:a7:19: 3a:a5:fb:c4:8c:bf:dd:49:24:ae:9c:d4:7b:df:61:f4:ca:c1: 5f:27:b1:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGMUUxMTAvBgNVBAUTKDBBQjNGMTE0OUNGNUMzQkFEQTY4NUIxQzZBMTM3OUI2 ODhENzQzODQwHhcNMjQxMTA1MDE0NTI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5NzhiNC0zNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kTmP36v/eall7f2kCSDWDyE15eSWgJRxdsYJ6kuGiqMhVQw55RKg1qsZfax ZUGgJtr5aDcIbXTXYfnVgHaoUfZVJCm5ud0/wbs3yrZeLkwvjclYUvsAANsGBtsr U2iYMwKge5+QPm4563Jzn62EupyvZlholhA1Q/WO28msdObCFlSUm1dIKqCzBwZr WxIiYkmqOtxyWvgmMQ5uc+uAmmgsoN4b3BrVHYXaiZOjSbv7MTJCbGx/SrTmCRm2 rAsdbiD32MuQwJ53Z4Q5sFB/92thPaCvpJZytlGJCzlTiLtfdtZJGJXSRaFqiFH1 X0FAEG0FwSEHLX3jJacMZsyW3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCxBAbUk TlLQDV5o93ObvojnpsohMB8GA1UdIwQYMBaAFAqz8RSc9cO62mhbHGoTebaI10OE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYxRS9DQzY1QTY2QTFG OUExMUVEODM1Q0FBM0ZDNEY5QUUwMi9DclB4Rkp6MXc3cmFhRnNjYWhONXRvalhR NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyUHhGSnoxdzdyYWFGc2NhaE41dG9qWFE0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RGMUUvQ0M2NUE2NkExRjlBMTFFRDgzNUNBQTNGQzRGOUFFMDIvODk5QjA3MDgz NEQ1MTFFRDk5QjE5MjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkjkwDQYJKoZIhvcNAQELBQADggEBAJylTO5eFUZXtzEj zCZTbjGEwKACNfMoxjVSTln694/VkO4p2o96SuQCFi2RGDMyslKQ54ETBFt11eL/ E0cnb4judDmkVlRhAO/aqytrwCJcGtVGq79YwicopsQeIsA0H3Rc0Rq4D6Hc06lt sFOOrr5H6EvX4yW+3IOaJvUu3jD7vfEFO9mMABJ4AcJestvRa2tmSEEuH6HbNgvU 5s43wmuBA3ZWbcLSQypu6qBOUnnkEgOXNLHrsO8DTke/20M8OqCC4fo48wlz3Ebz JhQfidNU5oQH5P9HZ5/O6Hp4NN3bAgzlDtIFIz6nGTql+8SMv91JJK6c1HvfYfTK wV8nscI= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:38 2024 by rpki-client on console-ams.rpki-client.org