$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4E211A5C408A11EE91A09746C4F9AE02.roa File: 4E211A5C408A11EE91A09746C4F9AE02.roa (raw, json) Hash identifier: kxKdU/JmPTZM9krhUbKPrtFUj5nm0D45xWRYs28QjJs= Subject key identifier: 8F:F2:6C:BC:AA:8E:13:B5:54:17:4C:41:F0:1B:2C:F6:94:AB:9A:8F Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35F1 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4E211A5C408A11EE91A09746C4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:24 +0000 ROA not before: Fri 16 Aug 2024 14:40:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.104.86.0/24 maxlen: 24 103.182.250.0/24 maxlen: 24 103.182.251.0/24 maxlen: 24 103.188.89.0/24 maxlen: 24 103.253.240.0/22 maxlen: 22 144.48.40.0/22 maxlen: 24 203.191.134.0/24 maxlen: 24 203.191.135.0/24 maxlen: 24 211.44.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13809 (0x35f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:24 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64d8-33ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:cc:f7:68:20:4c:eb:03:54:c9:a8:51:ed: 2c:80:5a:c1:52:7e:dd:67:38:4a:e1:9b:54:74:04: c0:e7:46:b7:21:e9:14:a2:45:2d:42:5b:b7:af:04: 1a:58:3a:23:6a:fd:30:24:d4:3f:fc:fd:1d:87:ff: 6a:86:24:26:58:af:56:10:c4:8a:d9:24:0e:d3:d6: 5a:cc:72:22:0c:9c:73:2c:47:a2:56:4f:49:a6:73: 6e:04:7a:58:07:c6:b0:da:42:4d:10:a2:75:f8:0d: 71:5d:3d:da:f6:53:c5:98:2d:83:4b:c3:60:b4:47: 93:30:36:d8:fd:1e:09:96:b5:e2:fa:33:16:bd:e2: 45:1e:49:c5:c9:0f:8b:be:66:57:37:90:e7:87:52: 18:c3:b7:a4:18:42:2a:7a:e0:0b:62:79:cd:ec:9b: 50:ea:c2:17:81:af:5f:05:20:69:bf:8b:2b:4b:00: fe:79:95:10:48:a9:f4:d0:e6:0e:8c:dd:a5:f6:d9: 6b:df:3d:0b:be:d2:42:33:a4:5b:78:f5:b8:28:08: 67:f5:a8:b3:36:09:3b:5b:a4:2e:de:3f:f9:05:83: e5:a3:bf:c4:f1:e5:1a:ce:50:85:7c:8c:71:98:17: 3a:e9:a0:da:80:c8:02:6b:f3:73:e2:62:3a:57:8b: f4:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F2:6C:BC:AA:8E:13:B5:54:17:4C:41:F0:1B:2C:F6:94:AB:9A:8F X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4E211A5C408A11EE91A09746C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.86.0/24 103.182.250.0/23 103.188.89.0/24 103.253.240.0/22 144.48.40.0/22 203.191.134.0/23 211.44.103.0/24 Signature Algorithm: sha256WithRSAEncryption 45:f1:61:54:67:ca:d0:a7:f9:52:cd:de:6a:0b:c7:74:b6:1e: b4:92:c0:17:d8:c0:26:7a:b2:d9:c7:e2:7a:a6:1c:b3:d5:83: 8f:55:28:7b:2d:4c:fa:32:5f:1d:9d:45:76:8a:32:c1:7e:26: ab:76:43:17:11:6c:2a:4f:1f:5f:ae:2e:0c:a6:4a:fb:f4:ea: 98:da:18:6c:a3:73:90:b9:3b:d6:95:51:2c:09:7e:02:f1:8b: 21:74:e7:e7:55:03:a2:b9:86:10:fa:9f:e4:7d:86:ac:62:19: c9:0f:4e:b8:ac:b3:b0:6a:c4:5b:4d:34:2c:f8:15:d4:3d:3e: 59:bc:39:09:b7:5b:e5:4e:f6:b6:dc:3a:e4:b1:69:94:2b:32: 38:b6:7d:3d:86:68:74:a8:23:f2:e9:73:c8:45:54:1b:15:a7: 0d:fd:11:3a:e7:d2:53:97:14:1a:97:fe:8e:c5:61:ec:4d:7e: 24:ba:52:d2:70:1c:f3:4b:34:80:39:ed:af:76:ed:9c:5b:5f: d0:37:98:a9:71:6b:82:38:5c:84:9d:78:6f:15:1b:19:26:8e: 31:0d:f7:27:47:0f:ff:db:15:a3:d5:a9:5a:f7:8e:e5:ce:e1: 0d:d1:d7:73:59:57:18:4d:9a:21:3c:52:0b:3d:29:b8:94:dd: 1c:dc:1f:a4 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICNfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRkOC0zM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FfM92ggTOsDVMmoUe0sgFrBUn7dZzhK4ZtUdATA50a3IekUokUtQlu3rwQa WDojav0wJNQ//P0dh/9qhiQmWK9WEMSK2SQO09ZazHIiDJxzLEeiVk9JpnNuBHpY B8aw2kJNEKJ1+A1xXT3a9lPFmC2DS8NgtEeTMDbY/R4JlrXi+jMWveJFHknFyQ+L vmZXN5Dnh1IYw7ekGEIqeuALYnnN7JtQ6sIXga9fBSBpv4srSwD+eZUQSKn00OYO jN2l9tlr3z0LvtJCM6RbePW4KAhn9aizNgk7W6Qu3j/5BYPlo7/E8eUazlCFfIxx mBc66aDagMgCa/Nz4mI6V4v0nQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFI/ybLyq jhO1VBdMQfAbLPaUq5qPMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNEUyMTFBNUM0 MDhBMTFFRTkxQTA5NzQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBABnaFYDBAFntvoDBABnvFkDBAJn/fADBAKQMCgDBAHLv4YD BADTLGcwDQYJKoZIhvcNAQELBQADggEBAEXxYVRnytCn+VLN3moLx3S2HrSSwBfY wCZ6stnH4nqmHLPVg49VKHstTPoyXx2dRXaKMsF+Jqt2QxcRbCpPH1+uLgymSvv0 6pjaGGyjc5C5O9aVUSwJfgLxiyF05+dVA6K5hhD6n+R9hqxiGckPTriss7BqxFtN NCz4FdQ9Plm8OQm3W+VO9rbcOuSxaZQrMji2fT2GaHSoI/Lpc8hFVBsVpw39ETrn 0lOXFBqX/o7FYexNfiS6UtJwHPNLNIA57a927ZxbX9A3mKlxa4I4XISdeG8VGxkm jjEN9ydHD//bFaPVqVr3juXO4Q3R13NZVxhNmiE8Ugs9KbiU3RzcH6Q= -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:14 2024 by rpki-client on console-ams.rpki-client.org