$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5BF89A782D5711EFAE93E757C4F9AE02.roa File: 5BF89A782D5711EFAE93E757C4F9AE02.roa (raw, json) Hash identifier: dSi1NwW5aublnpqHIZV7oD4mq6Mi82xJNfqumQwyVkQ= Subject key identifier: AD:7F:F5:D7:3F:47:3D:0E:AA:F1:03:C3:CC:2E:48:C0:07:27:58:D3 Certificate issuer: /CN=A9140D69/serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35 Certificate serial: 0217 Authority key identifier: 10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5BF89A782D5711EFAE93E757C4F9AE02.roa Signing time: Wed 07 Aug 2024 03:24:38 +0000 ROA not before: Wed 07 Aug 2024 03:24:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 64021 IP address blocks: 103.237.101.0/24 maxlen: 24 163.53.244.0/24 maxlen: 24 163.53.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D69 Validity Not Before: Aug 7 03:24:38 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b2e8f5-5d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:66:76:6e:53:c7:2e:93:84:69:75:74:b2:a2: e6:7c:51:62:01:d3:13:d6:9e:1b:f7:5b:a0:26:52: 5a:6e:c0:e4:e3:13:80:93:d9:a5:16:9d:7a:d9:72: 9b:c9:78:18:a5:3b:ee:d0:0f:5d:11:a0:f0:e8:85: 27:f6:4c:33:ef:07:a3:29:75:3f:dd:b7:5e:46:46: 8f:1a:eb:19:ab:ae:86:25:44:43:99:22:20:54:91: 4b:d3:17:4d:62:1c:35:72:28:c2:f7:ae:f4:40:49: e9:d2:1d:ff:59:fe:96:33:50:6b:2c:c6:e6:b7:3d: f7:3b:1d:f7:1d:98:d4:c2:7f:d3:d9:6a:06:49:f9: d1:01:54:aa:fe:05:7e:33:d8:21:71:e3:1a:52:1a: a9:db:3f:69:32:f8:25:93:7c:35:4b:91:28:d8:e5: 32:1b:40:cd:fa:ed:1d:40:b7:c6:b1:ec:05:03:b9: 69:8d:7d:f6:86:3a:cd:0b:13:39:e0:e3:6d:00:ed: e7:3c:25:64:c5:71:2a:bc:fc:0f:c8:c7:a6:24:b2: 1e:20:02:66:d9:8e:54:e5:81:0e:69:0b:82:8e:8b: 73:92:82:41:94:9c:16:67:ec:48:f0:f6:45:a4:aa: 38:45:f7:db:cd:84:38:f5:58:be:e2:41:90:25:d9: 76:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7F:F5:D7:3F:47:3D:0E:AA:F1:03:C3:CC:2E:48:C0:07:27:58:D3 X509v3 Authority Key Identifier: keyid:10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/5BF89A782D5711EFAE93E757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.101.0/24 163.53.244.0/24 163.53.247.0/24 Signature Algorithm: sha256WithRSAEncryption 91:ae:c3:ce:7f:92:39:25:50:4a:78:a9:14:b3:34:5e:34:fb: bd:89:d6:1d:01:ca:de:5a:15:4d:de:22:35:b9:49:8a:0b:ca: 6f:cb:c4:fe:c3:64:2d:4a:1a:36:cf:d2:4e:bb:b9:5d:24:21: 53:73:29:5e:52:7a:48:26:aa:eb:77:4f:90:14:1d:eb:e2:27: dd:79:50:ca:f8:6d:19:df:cb:4f:ab:e6:ca:fc:b2:64:68:37: f5:f7:41:2b:9e:72:90:df:33:19:14:f2:30:19:45:bb:56:30: 35:33:c7:09:0e:ef:39:dd:46:10:e7:cc:5c:31:bf:b8:27:00: 6b:1d:14:81:61:88:71:ff:fa:6f:d7:49:25:91:10:3d:21:e1: ca:f8:e5:20:5a:bd:4c:e9:94:2a:12:c4:da:28:42:63:4e:b5: 5d:42:e3:a6:51:8a:57:42:53:1a:fc:f7:7a:26:7c:3a:7a:f0: 25:cb:09:34:3b:74:fa:ce:fa:79:29:1a:21:0b:fe:43:5b:e2: 63:6e:c1:83:f5:2c:f2:9e:03:54:65:cd:a6:67:84:30:49:1b: 50:14:13:89:9b:67:db:f9:d2:65:51:97:65:7c:51:61:cc:81: 73:71:c5:6a:a9:27:e7:8d:89:22:17:5b:de:38:1a:25:ca:4d: 6e:de:e0:1e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBENjkxMTAvBgNVBAUTKDEwM0ZBOEJERkZGQjlGMDU1NzA3MkM0NzMzMkI4MUE5 RTgwRUREMzUwHhcNMjQwODA3MDMyNDM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyZThmNS01ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmZ2blPHLpOEaXV0sqLmfFFiAdMT1p4b91ugJlJabsDk4xOAk9mlFp162XKb yXgYpTvu0A9dEaDw6IUn9kwz7wejKXU/3bdeRkaPGusZq66GJURDmSIgVJFL0xdN Yhw1cijC9670QEnp0h3/Wf6WM1BrLMbmtz33Ox33HZjUwn/T2WoGSfnRAVSq/gV+ M9ghceMaUhqp2z9pMvglk3w1S5Eo2OUyG0DN+u0dQLfGsewFA7lpjX32hjrNCxM5 4ONtAO3nPCVkxXEqvPwPyMemJLIeIAJm2Y5U5YEOaQuCjotzkoJBlJwWZ+xI8PZF pKo4RffbzYQ49Vi+4kGQJdl2ZQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFK1/9dc/ Rz0OqvEDw8wuSMAHJ1jTMB8GA1UdIwQYMBaAFBA/qL3/+58FVwcsRzMrganoDt01 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQ2OS8wRTE3N0Q1QTA1 OEMxMUVEQURENjYwMTFDNEY5QUUwMi9FRC1vdmZfN253VlhCeXhITXl1QnFlZ08z VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VELW92Zl83bndWWEJ5eEhNeXVCcWVnTzNUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBENjkvMEUxNzdENUEwNThDMTFFREFERDY2MDExQzRGOUFFMDIvNUJGODlBNzgy RDU3MTFFRkFFOTNFNzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABn7WUDBACjNfQDBACjNfcwDQYJKoZIhvcNAQELBQADggEB AJGuw85/kjklUEp4qRSzNF40+72J1h0Byt5aFU3eIjW5SYoLym/LxP7DZC1KGjbP 0k67uV0kIVNzKV5Sekgmqut3T5AUHeviJ915UMr4bRnfy0+r5sr8smRoN/X3QSue cpDfMxkU8jAZRbtWMDUzxwkO7zndRhDnzFwxv7gnAGsdFIFhiHH/+m/XSSWRED0h 4cr45SBavUzplCoSxNooQmNOtV1C46ZRildCUxr893omfDp68CXLCTQ7dPrO+nkp GiEL/kNb4mNuwYP1LPKeA1RlzaZnhDBJG1AUE4mbZ9v50mVRl2V8UWHMgXNxxWqp J+eNiSIXW944GiXKTW7e4B4= -----END CERTIFICATE-----Generated at Sun Feb 16 20:30:26 2025 by rpki-client