$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa File: D58286CA1F9D11EDA5DD9842C4F9AE02.roa (raw, json) Hash identifier: L9Ip2okOSQMq2psn2x0tTtvnTzOcLa7ive90M13do6A= Subject key identifier: 53:3A:DA:10:17:96:89:F5:99:73:D2:6C:B9:D4:A7:95:99:7F:6B:94 Certificate issuer: /CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Certificate serial: 01EE Authority key identifier: 0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa Signing time: Tue 05 Nov 2024 01:45:23 +0000 ROA not before: Tue 05 Nov 2024 01:45:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140381 IP address blocks: 103.146.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF1E/serialNumber=0AB3F1149CF5C3BADA685B1C6A1379B688D74384 Validity Not Before: Nov 5 01:45:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=672978b3-a1d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5d:1a:8d:4c:1c:55:93:dd:38:bd:ab:95:a9: 2f:80:e5:fc:bc:fa:c1:6e:3e:81:af:59:17:f8:78: 97:a6:80:35:bf:c7:ae:68:e3:ed:d0:cd:20:93:cf: 0d:de:22:bd:40:2a:a8:fe:1e:48:09:49:e9:57:35: 21:b8:57:ee:03:e7:10:f8:df:7a:9b:75:38:0c:30: f8:0e:be:61:1e:84:d5:7d:7b:a9:eb:61:98:63:fc: 29:07:d1:f7:55:88:0f:3d:7c:b7:1c:e7:51:c1:c2: 50:c6:99:db:0f:90:14:aa:40:00:2e:db:7d:05:cd: 81:ee:2c:e3:97:e0:63:04:e6:9c:8c:38:eb:40:c5: 47:ec:c6:c3:6a:91:22:dd:c2:d6:8d:dd:63:9b:3b: 88:60:f1:6c:3b:e0:79:aa:b2:0f:a5:e1:70:50:2f: 06:25:ec:2a:d6:39:58:df:0d:a3:57:bd:b5:4c:2c: 63:3d:99:7a:b2:3a:18:4a:f9:a7:fd:35:e5:8e:38: 1a:18:92:3a:e6:a5:7e:c1:95:e3:6e:f2:e8:d4:ee: 29:23:3a:32:73:fb:3d:74:d4:d9:d5:ed:18:b7:58: 21:ba:6f:04:7d:b7:e1:94:b8:78:d0:87:80:c5:59: 45:18:58:e2:fd:4e:e9:79:0c:bc:a5:4b:38:57:09: 9e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3A:DA:10:17:96:89:F5:99:73:D2:6C:B9:D4:A7:95:99:7F:6B:94 X509v3 Authority Key Identifier: keyid:0A:B3:F1:14:9C:F5:C3:BA:DA:68:5B:1C:6A:13:79:B6:88:D7:43:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/CrPxFJz1w7raaFscahN5tojXQ4Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrPxFJz1w7raaFscahN5tojXQ4Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF1E/CC65A66A1F9A11ED835CAA3FC4F9AE02/D58286CA1F9D11EDA5DD9842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.56.0/24 Signature Algorithm: sha256WithRSAEncryption b3:8d:62:9b:75:e6:58:75:5f:f6:31:e2:90:e8:89:a0:9e:89: 7d:77:f1:f4:6d:3d:c4:ee:fe:39:df:b3:f9:00:3f:55:3d:56: 12:ee:9c:74:b1:33:a5:67:f7:15:49:11:a2:07:41:4d:e2:65: b3:6d:29:df:ca:89:4e:c5:1f:02:ca:3a:01:db:7f:c0:7b:ad: 17:ee:7a:e5:dc:1b:5b:8b:7f:a4:20:56:1f:a4:06:08:a0:f9: 6e:f6:39:33:1d:70:fb:58:aa:be:5e:5a:64:cd:8c:8e:4d:e0: f8:c4:44:0f:15:df:b7:df:46:b4:e8:61:85:5c:89:83:bb:56: c3:8e:e8:a8:e7:71:fe:d4:87:45:d4:3d:0d:cc:48:30:f9:e6: 5d:d5:62:93:63:ce:51:5c:6b:28:bd:c6:f2:f3:0b:d4:f1:fc: 72:83:ad:db:3a:a7:ba:52:38:29:42:1a:f3:ac:d4:5a:08:43: 30:90:7a:b8:97:ea:28:3b:3f:0d:c2:3d:9c:f3:0b:08:c5:d6: de:de:97:23:e9:22:b5:6a:9f:cb:0a:60:0e:0d:91:3a:6a:3a: 1e:73:f9:04:d4:27:6f:de:ec:9b:38:26:08:03:8a:62:f4:23: a5:49:92:67:5f:5e:00:e4:3c:22:6d:9d:ed:1f:f1:94:d9:04: 40:a8:62:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGMUUxMTAvBgNVBAUTKDBBQjNGMTE0OUNGNUMzQkFEQTY4NUIxQzZBMTM3OUI2 ODhENzQzODQwHhcNMjQxMTA1MDE0NTIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5NzhiMy1hMWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo10ajUwcVZPdOL2rlakvgOX8vPrBbj6Br1kX+HiXpoA1v8euaOPt0M0gk88N 3iK9QCqo/h5ICUnpVzUhuFfuA+cQ+N96m3U4DDD4Dr5hHoTVfXup62GYY/wpB9H3 VYgPPXy3HOdRwcJQxpnbD5AUqkAALtt9Bc2B7izjl+BjBOacjDjrQMVH7MbDapEi 3cLWjd1jmzuIYPFsO+B5qrIPpeFwUC8GJewq1jlY3w2jV721TCxjPZl6sjoYSvmn /TXljjgaGJI65qV+wZXjbvLo1O4pIzoyc/s9dNTZ1e0Yt1ghum8EfbfhlLh40IeA xVlFGFji/U7peQy8pUs4Vwme7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFM62hAX lon1mXPSbLnUp5WZf2uUMB8GA1UdIwQYMBaAFAqz8RSc9cO62mhbHGoTebaI10OE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYxRS9DQzY1QTY2QTFG OUExMUVEODM1Q0FBM0ZDNEY5QUUwMi9DclB4Rkp6MXc3cmFhRnNjYWhONXRvalhR NFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyUHhGSnoxdzdyYWFGc2NhaE41dG9qWFE0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RGMUUvQ0M2NUE2NkExRjlBMTFFRDgzNUNBQTNGQzRGOUFFMDIvRDU4Mjg2Q0Ex RjlEMTFFREE1REQ5ODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkjgwDQYJKoZIhvcNAQELBQADggEBALONYpt15lh1X/Yx 4pDoiaCeiX138fRtPcTu/jnfs/kAP1U9VhLunHSxM6Vn9xVJEaIHQU3iZbNtKd/K iU7FHwLKOgHbf8B7rRfueuXcG1uLf6QgVh+kBgig+W72OTMdcPtYqr5eWmTNjI5N 4PjERA8V37ffRrToYYVciYO7VsOO6Kjncf7Uh0XUPQ3MSDD55l3VYpNjzlFcayi9 xvLzC9Tx/HKDrds6p7pSOClCGvOs1FoIQzCQeriX6ig7Pw3CPZzzCwjF1t7elyPp IrVqn8sKYA4NkTpqOh5z+QTUJ2/e7Js4JggDimL0I6VJkmdfXgDkPCJtne0f8ZTZ BECoYsA= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org