$ rpki-client -vvf rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa File: A16739B2F89011EE9EB9D42BC4F9AE02.roa (raw, json) Hash identifier: ey0oQHiSGpH4+EnFGwizJ9b66lbUXNoAkMqUMUf/z8g= Subject key identifier: 2A:52:17:6D:90:2A:70:37:32:92:35:A0:DD:30:E1:83:68:7F:DF:07 Certificate issuer: /CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Certificate serial: 44 Authority key identifier: 42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa Signing time: Thu 01 Aug 2024 07:48:03 +0000 ROA not before: Thu 01 Aug 2024 07:48:03 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140956 IP address blocks: 103.153.194.0/23 maxlen: 23 103.153.194.0/24 maxlen: 24 2001:df4:5780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914524B/serialNumber=42792CF43DFDB486AD7A07B123CB2A61A33E23E3 Validity Not Before: Aug 1 07:48:03 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ab3db3-3f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bf:2a:d9:ca:4f:8b:23:c5:f7:0e:cc:69:f5: 76:ca:e0:d2:d1:e1:15:0b:5d:65:a8:f0:20:04:06: e9:97:ad:de:cc:fc:28:36:c0:76:01:9d:ce:b1:d0: 2f:e5:29:35:9b:b7:09:e4:63:63:33:78:86:fd:0e: 8c:b1:0a:59:7c:b7:e3:f0:d8:c8:7c:9d:12:7c:e5: 22:f2:82:4d:d5:85:77:e9:54:e6:94:89:d2:ec:77: 7a:87:ba:80:36:0f:38:bc:60:63:ec:16:1e:7a:a1: fa:02:c7:f4:e5:c9:45:b9:e7:f3:5e:2c:89:b7:6a: e2:b7:c5:55:53:42:0b:1d:95:14:e8:a0:d4:4e:9f: 86:5d:e6:f4:5b:1c:d2:f1:81:13:b1:13:9b:9e:ff: 13:71:04:c5:2e:9b:9e:7a:46:13:71:93:39:13:ae: 99:e7:4f:21:70:88:89:25:a7:fc:cf:8e:41:a5:06: 42:7a:ae:c6:6c:ef:e8:85:c4:ee:79:f8:96:26:11: 8c:e4:19:71:9a:b2:55:86:dd:32:6d:15:73:99:a1: b9:90:fa:5c:e1:4e:78:bf:46:3d:54:b1:8e:f4:f5: b5:1e:18:d5:63:10:3b:84:c5:62:0d:11:3d:b8:03: e0:17:33:05:6e:9c:7b:47:5c:7d:f8:d3:b4:47:70: b7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:52:17:6D:90:2A:70:37:32:92:35:A0:DD:30:E1:83:68:7F:DF:07 X509v3 Authority Key Identifier: keyid:42:79:2C:F4:3D:FD:B4:86:AD:7A:07:B1:23:CB:2A:61:A3:3E:23:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/Qnks9D39tIategexI8sqYaM-I-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qnks9D39tIategexI8sqYaM-I-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914524B/B51022D6F88F11EE976C1E2AC4F9AE02/A16739B2F89011EE9EB9D42BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.194.0/23 IPv6: 2001:df4:5780::/48 Signature Algorithm: sha256WithRSAEncryption 67:af:4e:5e:92:de:f2:9d:96:7a:8f:e1:10:d2:ab:1f:b3:60: 42:5a:59:68:96:8a:74:c7:9b:7f:bf:f3:c0:c3:ec:e1:10:80: ef:fe:22:90:73:86:8e:c6:57:02:05:c4:bf:d2:76:01:fc:6c: a4:5d:17:ce:d1:cb:98:cc:e8:eb:a9:47:27:b3:7d:d1:a6:bf: 9e:2c:b4:77:8b:f8:54:b0:b6:07:97:c1:a5:7b:a5:dc:8c:ed: 45:60:f5:90:49:44:1a:ee:a5:ed:65:f6:8b:92:85:52:80:5b: e7:7e:20:21:96:bc:2a:13:92:bb:f3:38:b4:1a:50:af:5a:f2: ea:a4:c8:02:a3:3e:cb:29:29:72:b6:91:ea:7f:44:25:42:49: b0:ff:84:81:9b:ee:4e:2b:12:bb:58:a1:b5:64:2e:27:f8:91: 23:e3:4b:8c:94:82:a9:0d:d2:28:a3:80:70:aa:2e:40:9c:e5: 1b:1c:31:48:f0:ce:8e:d3:81:06:40:b4:eb:06:67:fc:1b:ce: 86:e0:92:10:37:48:41:b0:81:d4:50:56:c5:b3:c1:d8:96:f6: 53:64:5a:ea:a6:2c:8a:c5:f0:54:10:99:48:f9:91:fb:78:01: 24:17:e7:66:dc:ff:0e:fb:82:c2:cf:99:9f:aa:c6:04:af:11: 53:31:9d:b9 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTI0QjExMC8GA1UEBRMoNDI3OTJDRjQzREZEQjQ4NkFEN0EwN0IxMjNDQjJBNjFB MzNFMjNFMzAeFw0yNDA4MDEwNzQ4MDNaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YWIzZGIzLTNmNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZvyrZyk+LI8X3Dsxp9XbK4NLR4RULXWWo8CAEBumXrd7M/Cg2wHYBnc6x0C/l KTWbtwnkY2MzeIb9DoyxCll8t+Pw2Mh8nRJ85SLygk3VhXfpVOaUidLsd3qHuoA2 Dzi8YGPsFh56ofoCx/TlyUW55/NeLIm3auK3xVVTQgsdlRTooNROn4Zd5vRbHNLx gROxE5ue/xNxBMUum556RhNxkzkTrpnnTyFwiIklp/zPjkGlBkJ6rsZs7+iFxO55 +JYmEYzkGXGaslWG3TJtFXOZobmQ+lzhTni/Rj1UsY709bUeGNVjEDuExWINET24 A+AXMwVunHtHXH3407RHcLc7AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUKlIXbZAq cDcykjWg3TDhg2h/3wcwHwYDVR0jBBgwFoAUQnks9D39tIategexI8sqYaM+I+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1MjRCL0I1MTAyMkQ2Rjg4 RjExRUU5NzZDMUUyQUM0RjlBRTAyL1Fua3M5RDM5dElhdGVnZXhJOHNxWWFNLUkt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUW5rczlEMzl0SWF0ZWdleEk4c3FZYU0tSS1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTI0Qi9CNTEwMjJENkY4OEYxMUVFOTc2QzFFMkFDNEY5QUUwMi9BMTY3MzlCMkY4 OTAxMUVFOUVCOUQ0MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeZwjAPBAIAAjAJAwcAIAEN9FeAMA0GCSqGSIb3DQEBCwUA A4IBAQBnr05ekt7ynZZ6j+EQ0qsfs2BCWllolop0x5t/v/PAw+zhEIDv/iKQc4aO xlcCBcS/0nYB/GykXRfO0cuYzOjrqUcns33Rpr+eLLR3i/hUsLYHl8Gle6XcjO1F YPWQSUQa7qXtZfaLkoVSgFvnfiAhlrwqE5K78zi0GlCvWvLqpMgCoz7LKSlytpHq f0QlQkmw/4SBm+5OKxK7WKG1ZC4n+JEj40uMlIKpDdIoo4Bwqi5AnOUbHDFI8M6O 04EGQLTrBmf8G86G4JIQN0hBsIHUUFbFs8HYlvZTZFrqpiyKxfBUEJlI+ZH7eAEk F+dm3P8O+4LCz5mfqsYErxFTMZ25 -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:02 2024 by rpki-client on console-ams.rpki-client.org