$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa File: 134B439A91B611ED8BA25C80C4F9AE02.roa (raw, json) Hash identifier: R6cxuKyJt5TX4itbVsaYIcRMQZ4Yj3JH6cPeKm7IwwQ= Subject key identifier: A2:DB:AC:1D:CA:37:BF:32:E3:39:56:2D:AE:69:26:7A:67:B4:62:CE Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 0130 Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa Signing time: Wed 01 Nov 2023 13:24:14 +0000 ROA not before: Wed 01 Nov 2023 13:24:14 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 150168 IP address blocks: 103.193.10.0/23 maxlen: 23 103.193.10.0/24 maxlen: 24 103.193.11.0/24 maxlen: 24 2001:df1:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Nov 1 13:24:14 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6542517e-468f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:74:f7:26:00:7a:af:7f:4a:e3:04:d4:6d: d9:f0:dc:2d:f1:9e:74:77:89:f9:4d:32:1c:25:66: 38:88:ba:0e:5e:75:fb:29:5f:94:da:00:0d:81:a5: 84:7e:b2:cf:bf:a6:6b:0d:fb:c6:af:bd:e3:5d:8e: dc:87:f7:82:d0:0c:bb:dc:ce:d0:5c:63:f5:57:8e: 07:f0:58:e0:f6:7c:bb:79:b6:2e:8a:74:fa:5c:27: 90:37:21:90:42:8d:93:12:35:7e:96:cc:bf:4d:7b: 3b:c8:e6:39:79:e7:d1:b6:ed:ee:2a:63:7f:9e:21: 68:ac:84:46:5b:85:2a:0f:1f:60:6b:e2:59:04:c7: 28:9e:33:c8:13:7c:b0:62:ec:ad:1f:24:0e:c9:bf: 73:e1:bf:e6:b2:71:75:54:d3:9b:ee:25:04:f9:8b: de:a9:16:2c:be:0e:e3:7f:03:70:0c:f8:18:69:c3: 14:e2:12:22:98:9b:12:05:24:ba:29:da:1b:72:45: 51:e2:ae:4a:2e:6b:26:83:3e:e7:b5:81:75:49:8d: d9:6d:66:24:b5:3d:60:d1:52:0c:fa:a4:1b:2e:a2: 72:9d:b8:c9:13:e9:98:86:ea:0e:2d:63:a8:17:eb: ac:60:02:35:8f:94:5f:88:e4:3e:1b:b0:8a:22:3e: f5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DB:AC:1D:CA:37:BF:32:E3:39:56:2D:AE:69:26:7A:67:B4:62:CE X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.10.0/23 IPv6: 2001:df1:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 30:c6:02:2d:86:60:a6:55:33:15:f2:27:e6:a2:c6:98:09:82: 6c:04:e5:fe:0f:ab:a1:39:28:39:c2:8a:6d:d8:f7:4b:60:27: 3b:02:e8:98:70:9a:ed:c9:c5:7d:39:d6:3a:09:97:79:45:7e: fe:34:61:5a:ac:69:5e:4c:65:ea:8c:83:76:36:7c:3f:48:0f: 84:1c:46:e8:a0:25:3a:42:d1:4a:3e:d0:1d:ba:10:46:51:95: d8:60:6b:b3:b9:20:d8:81:55:bc:d3:7d:31:7d:c7:68:75:34: 92:0b:c0:74:3a:d0:63:da:0f:cc:23:6e:18:f0:38:c8:ae:cb: 5a:b9:c2:e8:b8:ac:df:03:a9:09:bd:d7:d4:d9:cb:33:07:7c: 6a:eb:b5:d3:00:83:a0:89:93:99:40:87:55:81:23:a5:34:e7: 50:fa:5c:c5:55:b5:28:9d:60:b2:05:01:20:57:61:6d:77:2f: c6:14:42:c3:4b:86:77:25:64:50:65:95:72:01:53:e4:06:dd: 20:44:87:43:5e:d3:fa:04:8c:73:2b:89:4a:90:92:aa:82:32: c9:27:a4:e0:36:de:c4:d3:3f:3e:e7:80:b8:54:a0:d3:b6:96: 64:95:73:0e:00:33:39:6c:ad:94:c1:6d:27:02:95:76:bd:29: 2b:28:b2:e0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjMxMTAxMTMyNDE0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQyNTE3ZS00NjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo109yYAeq9/SuME1G3Z8Nwt8Z50d4n5TTIcJWY4iLoOXnX7KV+U2gANgaWE frLPv6ZrDfvGr73jXY7ch/eC0Ay73M7QXGP1V44H8Fjg9ny7ebYuinT6XCeQNyGQ Qo2TEjV+lsy/TXs7yOY5eefRtu3uKmN/niForIRGW4UqDx9ga+JZBMconjPIE3yw YuytHyQOyb9z4b/msnF1VNOb7iUE+YveqRYsvg7jfwNwDPgYacMU4hIimJsSBSS6 KdobckVR4q5KLmsmgz7ntYF1SY3ZbWYktT1g0VIM+qQbLqJynbjJE+mYhuoOLWOo F+usYAI1j5RfiOQ+G7CKIj71KwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKLbrB3K N78y4zlWLa5pJnpntGLOMB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YzMzMvREVDQjY1QTQyMzk4MTFFRDkwNjcyMjZGQzRGOUFFMDIvMTM0QjQzOUE5 MUI2MTFFRDhCQTI1QzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnwQowDwQCAAIwCQMHACABDfEsQDANBgkqhkiG9w0BAQsF AAOCAQEAMMYCLYZgplUzFfIn5qLGmAmCbATl/g+roTkoOcKKbdj3S2AnOwLomHCa 7cnFfTnWOgmXeUV+/jRhWqxpXkxl6oyDdjZ8P0gPhBxG6KAlOkLRSj7QHboQRlGV 2GBrs7kg2IFVvNN9MX3HaHU0kgvAdDrQY9oPzCNuGPA4yK7LWrnC6Lis3wOpCb3X 1NnLMwd8auu10wCDoImTmUCHVYEjpTTnUPpcxVW1KJ1gsgUBIFdhbXcvxhRCw0uG dyVkUGWVcgFT5AbdIESHQ17T+gSMcyuJSpCSqoIyySek4DbexNM/PueAuFSg07aW ZJVzDgAzOWytlMFtJwKVdr0pKyiy4A== -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org