$ rpki-client -vvf rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/111B4450EBC211EEB58D4343C4F9AE02.roa File: 111B4450EBC211EEB58D4343C4F9AE02.roa (raw, json) Hash identifier: PfS7sj8JuzbZWvFSduxB9myZEDnDdag+xb2aWz/6R/s= Subject key identifier: 14:FC:93:41:8C:19:26:CF:D8:14:AE:01:35:9A:57:3E:F9:B4:6C:85 Certificate issuer: /CN=A9146514/serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Certificate serial: 21 Authority key identifier: 4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/111B4450EBC211EEB58D4343C4F9AE02.roa Signing time: Tue 21 May 2024 08:42:35 +0000 ROA not before: Tue 21 May 2024 08:42:35 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 23934 IP address blocks: 103.16.174.0/24 maxlen: 24 115.126.128.0/21 maxlen: 21 115.126.132.0/22 maxlen: 23 115.126.132.0/24 maxlen: 24 115.126.134.0/24 maxlen: 24 202.162.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146514/serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Validity Not Before: May 21 08:42:35 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664c5e7b-841a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d0:fc:c0:6c:05:e5:1a:ca:5a:6f:ad:d7:db: 93:26:24:ea:79:e6:94:f7:d3:d6:e2:95:40:a7:70: f1:26:3c:f3:e1:a0:b3:b8:8f:f0:38:34:8f:a7:00: 17:8f:a9:2a:a2:89:fb:42:87:4b:e6:9a:0d:75:58: ed:0b:8b:00:de:81:d6:d4:56:7c:18:69:88:ed:da: b1:df:01:17:b0:42:d8:ae:cc:fc:41:03:bf:d2:b4: f5:48:fb:54:df:14:e8:5b:87:f6:e7:9d:cb:9b:1c: 86:0f:27:5e:e0:e1:45:ce:01:49:bd:66:4d:86:98: 46:e5:0d:f2:e0:c7:c4:6e:42:bb:cb:fe:b8:95:6e: cf:6d:a5:04:e8:8a:af:f2:03:cb:97:65:91:f8:ec: 11:e2:bf:d9:7f:f8:e2:ab:af:a6:18:0c:88:70:a1: 3d:56:ca:2c:3b:4c:cd:15:a3:ba:bb:b7:8c:fd:dc: b9:09:5a:69:6d:35:be:a4:98:ab:62:05:04:fa:87: b6:60:b4:3c:c4:f2:62:ec:b4:fc:0f:3d:2b:3c:4e: 48:1e:f6:1d:8b:90:75:c8:6d:ce:92:d8:2c:e2:01: b9:11:e3:7f:cb:66:0c:01:fa:27:3e:c0:e6:84:81: 2c:4c:73:fa:76:a7:f6:41:a9:48:bc:31:39:eb:45: 12:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FC:93:41:8C:19:26:CF:D8:14:AE:01:35:9A:57:3E:F9:B4:6C:85 X509v3 Authority Key Identifier: keyid:4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/111B4450EBC211EEB58D4343C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.174.0/24 115.126.128.0/21 202.162.176.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:e5:9a:cd:e1:38:3c:93:38:ec:97:2f:23:9c:ab:02:53:1c: e4:f7:a7:31:38:01:bf:48:4c:b3:82:e3:ee:97:02:c0:5c:ee: 36:bb:30:00:b2:35:b9:fc:fa:dd:e5:67:a4:21:27:ea:83:6e: 99:0f:83:2a:65:de:31:0f:99:5c:85:1e:a1:7e:f0:51:e3:0c: a4:15:6b:7e:95:9a:17:5c:80:ba:a6:6c:b5:af:a1:a7:06:56: 9b:22:a2:38:0f:79:c6:7d:0b:b6:b0:87:af:f6:ef:c4:46:34: 2b:fb:f8:67:51:d9:08:83:9d:65:a9:bc:7a:1a:19:46:52:73: 87:17:4b:52:3b:a6:9e:d0:56:d5:b5:13:70:31:ba:20:5c:cd: 9c:5a:21:48:34:f6:9e:07:cd:f9:22:36:ce:db:1e:ce:4c:93: 6c:c5:0a:54:13:8e:24:4d:9f:e2:44:0d:f1:72:85:99:0e:e3: f8:9d:a0:a4:4b:81:f6:4b:6a:51:e8:e0:c5:d8:da:2b:93:13: d4:ef:cd:c3:0b:bf:49:ae:ff:5a:05:40:de:0e:16:2c:f1:c1: da:2e:68:b2:6f:99:6d:75:a2:b8:59:d4:44:14:8b:80:2f:41: c9:2b:d3:57:be:da:0f:7f:61:7b:cb:77:9a:6e:ff:fe:1e:98: fb:5a:f7:7f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjUxNDExMC8GA1UEBRMoNEE0RDdGNThFRkJENDhCODYzNkRCNkEwQkY3QzJERTUw RjA0MzYyMTAeFw0yNDA1MjEwODQyMzVaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGM1ZTdiLTg0MWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCk0PzAbAXlGspab63X25MmJOp55pT309bilUCncPEmPPPhoLO4j/A4NI+nABeP qSqiiftCh0vmmg11WO0LiwDegdbUVnwYaYjt2rHfARewQtiuzPxBA7/StPVI+1Tf FOhbh/bnncubHIYPJ17g4UXOAUm9Zk2GmEblDfLgx8RuQrvL/riVbs9tpQToiq/y A8uXZZH47BHiv9l/+OKrr6YYDIhwoT1Wyiw7TM0Vo7q7t4z93LkJWmltNb6kmKti BQT6h7ZgtDzE8mLstPwPPSs8Tkge9h2LkHXIbc6S2CziAbkR43/LZgwB+ic+wOaE gSxMc/p2p/ZBqUi8MTnrRRKbAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUFPyTQYwZ Js/YFK4BNZpXPvm0bIUwHwYDVR0jBBgwFoAUSk1/WO+9SLhjbbagv3wt5Q8ENiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NTE0L0I3NzNBMTY0RUJD MDExRUU5QkIzRjQzRkM0RjlBRTAyL1NrMV9XTy05U0xoamJiYWd2M3d0NVE4RU5p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2sxX1dPLTlTTGhqYmJhZ3Yzd3Q1UThFTmlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUxNC9CNzczQTE2NEVCQzAxMUVFOUJCM0Y0M0ZDNEY5QUUwMi8xMTFCNDQ1MEVC QzIxMUVFQjU4RDQzNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAGcQrgMEA3N+gAMEA8qisDANBgkqhkiG9w0BAQsFAAOCAQEA bOWazeE4PJM47JcvI5yrAlMc5PenMTgBv0hMs4Lj7pcCwFzuNrswALI1ufz63eVn pCEn6oNumQ+DKmXeMQ+ZXIUeoX7wUeMMpBVrfpWaF1yAuqZsta+hpwZWmyKiOA95 xn0LtrCHr/bvxEY0K/v4Z1HZCIOdZam8ehoZRlJzhxdLUjumntBW1bUTcDG6IFzN nFohSDT2ngfN+SI2ztsezkyTbMUKVBOOJE2f4kQN8XKFmQ7j+J2gpEuB9ktqUejg xdjaK5MT1O/Nwwu/Sa7/WgVA3g4WLPHB2i5osm+ZbXWiuFnURBSLgC9BySvTV77a D39he8t3mm7//h6Y+1r3fw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:06 2024 by rpki-client on console-ams.rpki-client.org