$ rpki-client -vvf rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/5DE0E22C86D611EFBC773E7AC4F9AE02.roa File: 5DE0E22C86D611EFBC773E7AC4F9AE02.roa (raw, json) Hash identifier: 8bgY9X9zB6LmnNiLcUdgoM67gP9VrDi2wsZPTMT2X3c= Subject key identifier: AC:0F:CE:FB:BF:F7:61:A5:C5:C6:3C:10:3F:F9:33:8C:B5:22:A4:BE Certificate issuer: /CN=A913F547/serialNumber=0EE3EA222C398CD760C767561D582FC0FC5D23FF Certificate serial: 13D9 Authority key identifier: 0E:E3:EA:22:2C:39:8C:D7:60:C7:67:56:1D:58:2F:C0:FC:5D:23:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DuPqIiw5jNdgx2dWHVgvwPxdI_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/5DE0E22C86D611EFBC773E7AC4F9AE02.roa Signing time: Fri 22 Nov 2024 23:03:34 +0000 ROA not before: Fri 22 Nov 2024 23:03:34 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137561 IP address blocks: 103.113.100.0/24 maxlen: 24 103.113.101.0/24 maxlen: 24 103.113.102.0/24 maxlen: 24 103.113.103.0/24 maxlen: 24 103.137.68.0/24 maxlen: 24 103.137.69.0/24 maxlen: 24 103.137.70.0/24 maxlen: 24 103.137.71.0/24 maxlen: 24 2402:ba40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/DuPqIiw5jNdgx2dWHVgvwPxdI_8.crl rsync://rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/DuPqIiw5jNdgx2dWHVgvwPxdI_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DuPqIiw5jNdgx2dWHVgvwPxdI_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5081 (0x13d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F547/serialNumber=0EE3EA222C398CD760C767561D582FC0FC5D23FF Validity Not Before: Nov 22 23:03:34 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67410dc6-6092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3e:5e:c4:08:2b:34:f1:de:e9:9d:e0:7b:4c: c4:29:61:70:8b:af:f3:9c:23:d9:5a:de:78:9b:e1: 48:c6:8d:53:4b:1b:05:4d:45:f4:5a:85:5e:fd:0c: 64:ed:15:90:d3:c4:ac:ee:e0:3e:7b:f6:2d:3b:26: 20:2d:8d:9d:35:18:6d:af:8f:94:6c:0d:42:c1:59: 8c:b3:43:98:f6:f6:8c:95:94:4c:80:82:04:f7:da: 15:33:af:c3:e2:6e:d3:15:b4:dd:59:31:59:e5:26: 9a:3b:c6:3d:e2:10:00:54:22:ff:3c:c7:7e:3e:12: 88:6f:2c:ad:ad:41:3c:b5:85:47:1c:d9:92:39:2a: eb:57:7d:07:d6:b1:5b:e6:58:31:4d:11:d1:33:59: b3:75:73:76:30:e8:9c:fe:fe:c9:4d:76:93:cd:f4: ce:6b:ac:56:b2:b9:13:f0:fe:dc:ee:0b:b1:1e:2d: 9b:7e:89:b7:8a:78:56:35:6c:52:1b:f8:b6:07:17: 69:12:e5:d8:cb:1b:d9:f0:4a:cb:31:af:34:35:44: 03:8c:fb:a8:04:b8:35:0e:aa:fb:86:69:00:0c:10: 70:35:0d:7b:fa:b1:82:19:aa:66:69:4d:b7:00:62: 2b:dd:50:cb:29:e2:29:d0:a3:b0:17:68:42:9a:f7: c2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0F:CE:FB:BF:F7:61:A5:C5:C6:3C:10:3F:F9:33:8C:B5:22:A4:BE X509v3 Authority Key Identifier: keyid:0E:E3:EA:22:2C:39:8C:D7:60:C7:67:56:1D:58:2F:C0:FC:5D:23:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/DuPqIiw5jNdgx2dWHVgvwPxdI_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DuPqIiw5jNdgx2dWHVgvwPxdI_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F547/4A82F124805311E8B727F156C4F9AE02/5DE0E22C86D611EFBC773E7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.100.0/22 103.137.68.0/22 IPv6: 2402:ba40::/32 Signature Algorithm: sha256WithRSAEncryption 0d:e7:b0:35:6c:97:65:6b:6c:3a:2c:15:1c:89:94:2d:1e:49: 44:2c:a0:6e:4f:1a:79:91:6e:db:99:e2:b4:23:02:16:b6:3e: 75:f7:a0:84:fd:5f:73:31:01:fe:57:71:ce:99:a1:8e:31:e1: 65:26:19:77:ec:88:12:67:e2:e4:07:9b:38:7d:2a:ed:37:7e: ce:f7:c5:61:89:e0:b0:fa:9d:25:51:07:4b:20:44:cf:20:9a: 7e:ea:77:17:13:13:d5:24:e5:ec:05:a4:2a:fc:4e:fe:53:9e: e9:96:5a:c0:8c:fd:2a:4f:45:e1:18:90:17:28:bd:8a:61:2e: a3:f1:af:13:52:a6:2d:df:fb:d2:2c:4d:1b:63:f8:27:1e:71: 17:22:07:c4:18:d5:c3:2f:f8:f9:5a:7d:0c:d6:a4:f8:86:56: 15:6d:cc:b7:c0:cd:20:55:c0:05:9f:ac:6f:d6:53:f7:e6:83: 7b:89:33:98:30:2e:4c:57:9f:58:2a:6c:1c:34:9b:78:d4:d3: c4:7d:fd:62:60:97:57:cd:d9:79:08:c5:3c:c7:ac:ae:2f:e1: f6:b8:94:72:a2:15:b4:92:74:2e:85:c0:3b:dd:58:e4:52:d7: 6a:23:62:18:e5:94:90:10:7a:33:47:20:e0:e8:92:9c:bc:64: d7:fa:d1:71 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y1NDcxMTAvBgNVBAUTKDBFRTNFQTIyMkMzOThDRDc2MEM3Njc1NjFENTgyRkMw RkM1RDIzRkYwHhcNMjQxMTIyMjMwMzM0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxMGRjNi02MDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyD5exAgrNPHe6Z3ge0zEKWFwi6/znCPZWt54m+FIxo1TSxsFTUX0WoVe/Qxk 7RWQ08Ss7uA+e/YtOyYgLY2dNRhtr4+UbA1CwVmMs0OY9vaMlZRMgIIE99oVM6/D 4m7TFbTdWTFZ5SaaO8Y94hAAVCL/PMd+PhKIbyytrUE8tYVHHNmSOSrrV30H1rFb 5lgxTRHRM1mzdXN2MOic/v7JTXaTzfTOa6xWsrkT8P7c7guxHi2bfom3inhWNWxS G/i2BxdpEuXYyxvZ8ErLMa80NUQDjPuoBLg1Dqr7hmkADBBwNQ17+rGCGapmaU23 AGIr3VDLKeIp0KOwF2hCmvfCRQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKwPzvu/ 92GlxcY8ED/5M4y1IqS+MB8GA1UdIwQYMBaAFA7j6iIsOYzXYMdnVh1YL8D8XSP/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjU0Ny80QTgyRjEyNDgw NTMxMUU4QjcyN0YxNTZDNEY5QUUwMi9EdVBxSWl3NWpOZGd4MmRXSFZndndQeGRJ XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R1UHFJaXc1ak5kZ3gyZFdIVmd2d1B4ZElfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Y1NDcvNEE4MkYxMjQ4MDUzMTFFOEI3MjdGMTU2QzRGOUFFMDIvNURFMEUyMkM4 NkQ2MTFFRkJDNzczRTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJncWQDBAJniUQwDQQCAAIwBwMFACQCukAwDQYJKoZIhvcN AQELBQADggEBAA3nsDVsl2VrbDosFRyJlC0eSUQsoG5PGnmRbtuZ4rQjAha2PnX3 oIT9X3MxAf5Xcc6ZoY4x4WUmGXfsiBJn4uQHmzh9Ku03fs73xWGJ4LD6nSVRB0sg RM8gmn7qdxcTE9Uk5ewFpCr8Tv5TnumWWsCM/SpPReEYkBcovYphLqPxrxNSpi3f +9IsTRtj+CcecRciB8QY1cMv+PlafQzWpPiGVhVtzLfAzSBVwAWfrG/WU/fmg3uJ M5gwLkxXn1gqbBw0m3jU08R9/WJgl1fN2XkIxTzHrK4v4fa4lHKiFbSSdC6FwDvd WORS12ojYhjllJAQejNHIODokpy8ZNf60XE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org