$ rpki-client -vvf rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa File: 134B439A91B611ED8BA25C80C4F9AE02.roa (raw, json) Hash identifier: YssH476E2tgxPdw+/0l4VE/a3GZaUyUxDjk4z13BJXU= Subject key identifier: E0:D3:63:EF:F6:9C:5D:CA:E9:A5:85:EF:90:4E:7B:4D:58:A0:7A:41 Certificate issuer: /CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Certificate serial: 01DA Authority key identifier: 36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa Signing time: Mon 23 Sep 2024 02:05:53 +0000 ROA not before: Mon 23 Sep 2024 02:05:53 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150168 IP address blocks: 103.193.10.0/23 maxlen: 23 103.193.10.0/24 maxlen: 24 103.193.11.0/24 maxlen: 24 2001:df1:2c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F333/serialNumber=36408C11C5472B82248AFFEBEEDBB20E3E07A6CD Validity Not Before: Sep 23 02:05:53 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f0cd00-37e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:28:e7:d2:af:7a:fa:56:c2:26:00:32:47:d5: 29:ac:35:de:50:48:1b:2c:1b:44:d8:df:d4:3a:a4: a9:1a:42:eb:1b:7b:92:f3:b3:49:7f:07:11:74:4a: 12:02:11:96:64:e1:9e:f2:ae:5a:2f:6e:cf:27:37: 15:d4:51:1b:21:db:8c:7a:be:7e:57:36:14:80:0d: 1c:fc:60:bc:3b:40:9c:ce:23:fd:27:32:e7:f6:50: 0d:b5:c6:a7:26:f0:84:55:16:d4:fb:89:f8:80:5c: f0:8d:7a:b1:f0:7e:2d:e9:82:6c:18:b2:89:83:40: e1:e0:1c:cd:25:1b:cb:d5:d3:8f:60:d8:1c:88:c1: fa:6c:4e:36:c9:d5:c1:87:4a:36:fe:48:e0:8e:01: 1a:f9:a5:a1:45:28:55:64:e8:86:15:62:d4:d7:de: 60:90:3b:d4:a2:8d:d2:51:bf:8f:de:0c:7e:03:35: b3:91:93:62:8a:28:4a:dc:10:f0:3c:99:32:da:81: 3e:db:90:d9:15:e3:15:9b:5c:63:21:b3:7f:cf:64: 10:c2:4a:76:d1:50:3f:28:fc:85:d4:11:0f:06:a6: db:81:3e:47:fc:c9:ed:4a:38:09:0e:57:e3:31:33: 4d:c1:21:fc:7f:7e:b4:09:49:ea:06:41:75:24:00: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D3:63:EF:F6:9C:5D:CA:E9:A5:85:EF:90:4E:7B:4D:58:A0:7A:41 X509v3 Authority Key Identifier: keyid:36:40:8C:11:C5:47:2B:82:24:8A:FF:EB:EE:DB:B2:0E:3E:07:A6:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkCMEcVHK4Ikiv_r7tuyDj4Hps0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F333/DECB65A4239811ED9067226FC4F9AE02/134B439A91B611ED8BA25C80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.10.0/23 IPv6: 2001:df1:2c40::/48 Signature Algorithm: sha256WithRSAEncryption 33:68:c0:1a:85:4f:77:93:fb:76:b5:8f:33:90:90:35:a3:a4: 52:d9:8f:46:e4:4a:41:09:93:c0:ff:ef:4d:f0:c5:29:a3:43: 9a:9e:3d:36:51:9e:38:74:db:99:6c:65:4b:42:a8:ba:07:e8: 65:f6:52:4a:2c:8d:59:b2:00:56:c7:2d:60:d7:7c:3d:b1:20: 5f:86:5a:af:df:e1:1b:ae:6a:8d:8c:ee:9c:0d:fd:74:b6:17: c2:86:c0:4a:47:5f:aa:77:4e:f4:a9:08:44:ec:78:72:c0:37: 5c:d4:20:f0:31:2a:79:4c:70:3d:f4:94:a4:5c:6f:02:cd:ff: 29:74:7f:4d:ff:c3:ca:ef:63:e8:0f:5c:7f:31:07:23:ab:4b: 1b:b2:54:54:9b:a6:f9:fe:c4:fa:d6:2a:7b:60:73:0b:11:af: 8e:df:ee:17:8d:53:61:94:29:7c:13:0e:b5:50:53:6f:53:51: 93:5a:bd:d9:b5:0d:1a:5b:22:5e:f7:3c:39:9c:02:9e:2f:24: e5:24:0e:8b:fb:df:aa:db:09:bc:4b:30:63:64:99:8d:9d:59: 1c:2d:0b:98:64:2a:55:35:d4:18:72:9a:61:ab:00:43:9c:87: e0:c0:b5:13:ef:fb:d3:0f:5d:2d:04:93:62:23:d5:d8:3c:66: 66:9e:12:bf -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YzMzMxMTAvBgNVBAUTKDM2NDA4QzExQzU0NzJCODIyNDhBRkZFQkVFREJCMjBF M0UwN0E2Q0QwHhcNMjQwOTIzMDIwNTUzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwY2QwMC0zN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwijn0q96+lbCJgAyR9UprDXeUEgbLBtE2N/UOqSpGkLrG3uS87NJfwcRdEoS AhGWZOGe8q5aL27PJzcV1FEbIduMer5+VzYUgA0c/GC8O0CcziP9JzLn9lANtcan JvCEVRbU+4n4gFzwjXqx8H4t6YJsGLKJg0Dh4BzNJRvL1dOPYNgciMH6bE42ydXB h0o2/kjgjgEa+aWhRShVZOiGFWLU195gkDvUoo3SUb+P3gx+AzWzkZNiiihK3BDw PJky2oE+25DZFeMVm1xjIbN/z2QQwkp20VA/KPyF1BEPBqbbgT5H/MntSjgJDlfj MTNNwSH8f360CUnqBkF1JAAYZQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFODTY+/2 nF3K6aWF75BOe01YoHpBMB8GA1UdIwQYMBaAFDZAjBHFRyuCJIr/6+7bsg4+B6bN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjMzMy9ERUNCNjVBNDIz OTgxMUVEOTA2NzIyNkZDNEY5QUUwMi9Oa0NNRWNWSEs0SWtpdl9yN3R1eURqNEhw czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rQ01FY1ZISzRJa2l2X3I3dHV5RGo0SHBzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YzMzMvREVDQjY1QTQyMzk4MTFFRDkwNjcyMjZGQzRGOUFFMDIvMTM0QjQzOUE5 MUI2MTFFRDhCQTI1QzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnwQowDwQCAAIwCQMHACABDfEsQDANBgkqhkiG9w0BAQsF AAOCAQEAM2jAGoVPd5P7drWPM5CQNaOkUtmPRuRKQQmTwP/vTfDFKaNDmp49NlGe OHTbmWxlS0KougfoZfZSSiyNWbIAVsctYNd8PbEgX4Zar9/hG65qjYzunA39dLYX wobASkdfqndO9KkIROx4csA3XNQg8DEqeUxwPfSUpFxvAs3/KXR/Tf/Dyu9j6A9c fzEHI6tLG7JUVJum+f7E+tYqe2BzCxGvjt/uF41TYZQpfBMOtVBTb1NRk1q92bUN GlsiXvc8OZwCni8k5SQOi/vfqtsJvEswY2SZjZ1ZHC0LmGQqVTXUGHKaYasAQ5yH 4MC1E+/70w9dLQSTYiPV2DxmZp4Svw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org