$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa File: AEF266ECD34811EDAD96D95DC4F9AE02.roa (raw, json) Hash identifier: uEvVY1ok6a49Mu9d75rAbyeazYfnD3ESapA5YfOEXsM= Subject key identifier: 4D:7C:AD:4E:AB:EE:BA:25:5F:E7:22:AD:01:71:81:B2:58:20:12:A3 Certificate issuer: /CN=A914D2BF/serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Certificate serial: C9 Authority key identifier: E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa Signing time: Fri 19 Apr 2024 06:08:52 +0000 ROA not before: Fri 19 Apr 2024 06:08:52 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150315 IP address blocks: 103.99.132.0/24 maxlen: 24 103.99.133.0/24 maxlen: 24 2001:df2:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:49:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2BF/serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Validity Not Before: Apr 19 06:08:52 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66220a74-93ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d2:8b:1c:92:ef:9b:80:7e:41:55:48:83:74: 1c:60:63:63:af:f1:36:7e:e7:e8:05:10:33:a1:31: ea:c6:ac:90:90:a5:b4:08:91:c2:24:27:c3:d5:fa: 44:6b:b2:e3:44:d9:65:31:ac:a6:80:74:f1:58:5d: 33:7a:76:a2:f9:c6:28:0c:9e:5b:3e:a3:c4:02:f6: d3:ca:f7:02:e6:53:42:9d:0a:61:69:6e:00:2a:a7: 07:37:d2:a7:07:07:0a:d4:f5:0d:41:b9:17:e9:7e: bc:05:3a:13:ad:52:cb:94:a1:ba:26:f1:9f:b3:7a: 18:5f:48:e8:c0:0d:49:a8:80:58:88:76:4c:60:73: b0:ca:9d:a2:97:ee:53:5e:62:0b:72:31:b5:0d:82: e6:99:54:80:eb:dc:17:b0:b9:3e:3e:a5:56:05:cf: db:48:74:6c:97:92:c4:06:fa:19:f5:f1:63:b3:72: 8f:15:5e:32:79:99:83:06:b9:f2:0d:11:30:17:da: 23:44:cf:52:f0:42:56:4f:03:76:00:7a:18:c4:fb: 04:8c:97:ce:79:90:3a:27:96:92:19:51:c2:70:98: 27:94:58:66:e2:2f:a2:e8:ae:58:ce:d1:31:79:74: a4:49:d4:f8:b7:0a:fd:93:94:5b:76:74:21:02:73: cf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7C:AD:4E:AB:EE:BA:25:5F:E7:22:AD:01:71:81:B2:58:20:12:A3 X509v3 Authority Key Identifier: keyid:E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/AEF266ECD34811EDAD96D95DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.132.0/23 IPv6: 2001:df2:d40::/48 Signature Algorithm: sha256WithRSAEncryption 57:4f:52:e0:7a:59:fd:7b:ee:e9:04:49:96:ce:99:74:94:5f: ce:cb:1e:84:12:b8:25:a0:3b:9c:77:70:0e:36:a5:57:7e:df: 66:34:60:55:eb:f3:d6:e7:0a:f7:60:d8:d8:c9:48:07:87:e9: a0:64:ed:3c:c3:be:86:91:ad:b6:4d:c2:36:3c:fb:ef:d8:71: 65:f5:07:09:fb:95:9b:0e:5e:be:48:e1:6e:47:5f:2d:01:e5: 0d:06:40:c9:81:03:bc:c4:0c:79:f7:ca:23:c8:54:c9:47:df: 7f:7c:32:44:60:d3:48:33:d0:82:57:82:8f:ce:f2:a5:98:9e: 2e:62:e4:19:6a:3f:23:17:df:f2:ad:f2:50:4e:68:f3:ce:44: 0f:9a:5d:38:f9:a7:67:37:15:d7:4a:84:b2:4b:3a:7a:a7:aa: 25:2e:24:24:04:ed:17:ff:f1:ae:0b:82:6b:6a:56:08:d3:77: 9d:e8:bd:4f:3d:14:ec:24:a6:ef:18:06:d1:65:a5:00:bf:de: 70:0d:ec:c8:29:50:12:23:43:cb:b2:4e:bb:06:f8:26:06:8e: e1:9c:d3:3c:a1:86:b0:49:6a:e4:e4:fc:fe:93:9d:6c:ef:1c: 5f:f3:60:e6:6b:01:79:1a:7c:b5:e8:9c:09:8e:a2:52:b8:e5: 3a:29:d0:f1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyQkYxMTAvBgNVBAUTKEU2QkIwM0FBNThBMEMyNzBFQjY2QjNFQUVCMjQwOEZG RkFCQTVFQzcwHhcNMjQwNDE5MDYwODUyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjIyMGE3NC05M2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotKLHJLvm4B+QVVIg3QcYGNjr/E2fufoBRAzoTHqxqyQkKW0CJHCJCfD1fpE a7LjRNllMaymgHTxWF0zenai+cYoDJ5bPqPEAvbTyvcC5lNCnQphaW4AKqcHN9Kn BwcK1PUNQbkX6X68BToTrVLLlKG6JvGfs3oYX0jowA1JqIBYiHZMYHOwyp2il+5T XmILcjG1DYLmmVSA69wXsLk+PqVWBc/bSHRsl5LEBvoZ9fFjs3KPFV4yeZmDBrny DREwF9ojRM9S8EJWTwN2AHoYxPsEjJfOeZA6J5aSGVHCcJgnlFhm4i+i6K5YztEx eXSkSdT4twr9k5RbdnQhAnPP+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE18rU6r 7rolX+cirQFxgbJYIBKjMB8GA1UdIwQYMBaAFOa7A6pYoMJw62az6uskCP/6ul7H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJCRi8yQTcxRTZCQ0Qz NDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3duRHJaclBxNnlRSV9fcTZY c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyc0RxbGlnd25EclpyUHE2eVFJX19xNlhzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQyQkYvMkE3MUU2QkNEMzQ0MTFFRDhFMkM1NDY0QzRGOUFFMDIvQUVGMjY2RUNE MzQ4MTFFREFEOTZEOTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnY4QwDwQCAAIwCQMHACABDfINQDANBgkqhkiG9w0BAQsF AAOCAQEAV09S4HpZ/Xvu6QRJls6ZdJRfzssehBK4JaA7nHdwDjalV37fZjRgVevz 1ucK92DY2MlIB4fpoGTtPMO+hpGttk3CNjz779hxZfUHCfuVmw5evkjhbkdfLQHl DQZAyYEDvMQMeffKI8hUyUfff3wyRGDTSDPQgleCj87ypZieLmLkGWo/Ixff8q3y UE5o885ED5pdOPmnZzcV10qEsks6eqeqJS4kJATtF//xrguCa2pWCNN3nei9Tz0U 7CSm7xgG0WWlAL/ecA3syClQEiNDy7JOuwb4JgaO4ZzTPKGGsElq5OT8/pOdbO8c X/Ng5msBeRp8teicCY6iUrjlOinQ8Q== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:56 2024 by rpki-client on console-fra.rpki-client.org