$ rpki-client -vvf rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5B9B8A1213F311EBA7343351C4F9AE02.roa File: 5B9B8A1213F311EBA7343351C4F9AE02.roa (raw, json) Hash identifier: iS95q1vYvQ9GK5PWTHTUyaiVNGKgbYepd5g+adxRhJ8= Subject key identifier: 5B:9B:BD:EF:99:E3:3A:A6:66:60:A0:84:A6:CC:E7:4B:0C:4D:C0:E9 Certificate issuer: /CN=A914450B/serialNumber=E4B32CF2A611F702DFD0913E3EA50B4FD61EC575 Certificate serial: 0678 Authority key identifier: E4:B3:2C:F2:A6:11:F7:02:DF:D0:91:3E:3E:A5:0B:4F:D6:1E:C5:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5LMs8qYR9wLf0JE-PqULT9YexXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5B9B8A1213F311EBA7343351C4F9AE02.roa Signing time: Tue 02 Jan 2024 23:01:03 +0000 ROA not before: Tue 02 Jan 2024 23:01:03 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.125.84.0/24 maxlen: 24 103.125.85.0/24 maxlen: 24 103.125.86.0/24 maxlen: 24 103.125.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5LMs8qYR9wLf0JE-PqULT9YexXU.crl rsync://rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5LMs8qYR9wLf0JE-PqULT9YexXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5LMs8qYR9wLf0JE-PqULT9YexXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914450B/serialNumber=E4B32CF2A611F702DFD0913E3EA50B4FD61EC575 Validity Not Before: Jan 2 23:01:03 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659495af-dde4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:10:2a:6e:be:f3:54:84:85:6f:96:ff:9f:f3: 18:c9:99:ab:de:e0:d4:cb:80:26:db:77:52:4e:67: 49:c2:37:1a:e1:f5:ee:6e:6a:a1:a5:86:9e:e5:1f: e9:13:e6:7c:fc:5b:bf:fd:46:a4:85:8e:05:0f:f0: 57:cd:1e:f3:18:94:64:dd:bb:07:31:50:d4:6d:4e: 0d:91:cb:27:30:0c:b5:be:d3:86:7c:ee:57:00:b9: 88:1e:44:89:31:d0:33:a5:04:b3:29:45:eb:08:d7: 34:28:d1:58:db:1b:76:55:bd:27:92:4b:e8:a2:c7: dd:92:52:99:bf:3a:b3:94:f7:59:00:ea:95:6d:50: 60:20:22:85:9b:7f:2d:04:c7:84:63:62:3b:4a:3e: d2:8e:b1:98:7b:61:0a:5d:b9:1d:1c:3c:1c:78:e6: ad:e5:a9:45:ee:18:61:2c:bd:a8:84:ec:cb:18:06: bf:09:bd:d8:53:7f:df:72:e6:4a:2a:77:52:23:44: a2:29:07:41:3a:c3:77:8a:a4:af:5d:4f:c1:4a:6e: 9c:59:de:cd:aa:63:21:a7:d1:e2:07:72:73:c4:92: 10:73:03:fa:fc:fe:8f:47:f8:7f:47:1c:6f:80:16: c4:f8:92:08:17:a5:54:eb:1f:f0:dd:be:6a:9b:ad: e4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9B:BD:EF:99:E3:3A:A6:66:60:A0:84:A6:CC:E7:4B:0C:4D:C0:E9 X509v3 Authority Key Identifier: keyid:E4:B3:2C:F2:A6:11:F7:02:DF:D0:91:3E:3E:A5:0B:4F:D6:1E:C5:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5LMs8qYR9wLf0JE-PqULT9YexXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5LMs8qYR9wLf0JE-PqULT9YexXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914450B/F7B9E30A13F111EBB8123950C4F9AE02/5B9B8A1213F311EBA7343351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.84.0/22 Signature Algorithm: sha256WithRSAEncryption 15:7f:9f:45:8b:c3:94:f4:82:1a:18:67:38:8d:25:85:fd:ed: 0e:71:16:e4:4f:a0:35:9f:31:72:2e:e3:0c:c2:df:00:a4:7c: d3:85:1e:2e:ff:7a:73:fa:f5:8b:c1:9a:60:dd:d3:6a:30:26: 91:64:f4:05:03:a3:8c:31:7f:34:24:d8:cc:8d:f9:22:5a:a0: 16:63:a0:2c:38:30:d9:29:2c:ec:51:6e:98:c9:66:38:a3:c8: 18:ba:be:2f:21:0e:e6:13:0d:88:d0:c7:2d:21:05:c4:9e:7a: 61:41:95:ab:b8:b7:ec:4f:62:3c:4d:f3:bd:ce:96:57:f0:ec: dc:36:44:e0:aa:89:a7:f3:06:e9:0f:55:17:e4:6b:60:fa:6b: 35:8e:2c:45:16:58:82:da:54:c9:27:6c:e7:2d:cb:32:a2:26: 81:fa:7f:bb:c7:72:f8:ee:48:08:04:8b:fb:62:90:20:60:ec: 3a:39:ae:4b:3e:5e:e5:59:bd:2f:f9:6e:84:a8:0b:7c:4a:3f: 4f:38:ed:c4:1e:54:1f:4e:83:5b:b1:b0:06:06:5d:17:fc:1c: 1f:b5:5b:66:de:65:b6:f3:62:b7:65:72:48:34:89:45:2c:30: 06:ca:0a:cb:e7:19:11:56:c7:1f:34:f0:ca:7e:52:a2:ef:82: 89:9e:d8:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ1MEIxMTAvBgNVBAUTKEU0QjMyQ0YyQTYxMUY3MDJERkQwOTEzRTNFQTUwQjRG RDYxRUM1NzUwHhcNMjQwMTAyMjMwMTAzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0OTVhZi1kZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBAqbr7zVISFb5b/n/MYyZmr3uDUy4Am23dSTmdJwjca4fXubmqhpYae5R/p E+Z8/Fu//UakhY4FD/BXzR7zGJRk3bsHMVDUbU4NkcsnMAy1vtOGfO5XALmIHkSJ MdAzpQSzKUXrCNc0KNFY2xt2Vb0nkkvoosfdklKZvzqzlPdZAOqVbVBgICKFm38t BMeEY2I7Sj7SjrGYe2EKXbkdHDwceOat5alF7hhhLL2ohOzLGAa/Cb3YU3/fcuZK KndSI0SiKQdBOsN3iqSvXU/BSm6cWd7NqmMhp9HiB3JzxJIQcwP6/P6PR/h/Rxxv gBbE+JIIF6VU6x/w3b5qm63kRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFubve+Z 4zqmZmCghKbM50sMTcDpMB8GA1UdIwQYMBaAFOSzLPKmEfcC39CRPj6lC0/WHsV1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDUwQi9GN0I5RTMwQTEz RjExMUVCQjgxMjM5NTBDNEY5QUUwMi81TE1zOHFZUjl3TGYwSkUtUHFVTFQ5WWV4 WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVMTXM4cVlSOXdMZjBKRS1QcVVMVDlZZXhYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ1MEIvRjdCOUUzMEExM0YxMTFFQkI4MTIzOTUwQzRGOUFFMDIvNUI5QjhBMTIx M0YzMTFFQkE3MzQzMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfVQwDQYJKoZIhvcNAQELBQADggEBABV/n0WLw5T0ghoY ZziNJYX97Q5xFuRPoDWfMXIu4wzC3wCkfNOFHi7/enP69YvBmmDd02owJpFk9AUD o4wxfzQk2MyN+SJaoBZjoCw4MNkpLOxRbpjJZjijyBi6vi8hDuYTDYjQxy0hBcSe emFBlau4t+xPYjxN873Ollfw7Nw2ROCqiafzBukPVRfka2D6azWOLEUWWILaVMkn bOctyzKiJoH6f7vHcvjuSAgEi/tikCBg7Do5rks+XuVZvS/5boSoC3xKP0847cQe VB9Og1uxsAYGXRf8HB+1W2beZbbzYrdlckg0iUUsMAbKCsvnGRFWxx808Mp+UqLv gome2J8= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:39 2024 by rpki-client on console-ams.rpki-client.org