$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa File: 11A843B467D811EEA0543B5CC4F9AE02.roa (raw, json) Hash identifier: C2POHe2THL0rS7QQam/RFbi9UJ+UKw6cNCZQX+7fstc= Subject key identifier: DB:86:9C:E6:26:F3:78:F1:51:14:9C:5D:9B:D7:8B:F2:74:EF:31:6E Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 10 Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa Signing time: Sun 29 Oct 2023 06:18:09 +0000 ROA not before: Sun 29 Oct 2023 06:18:09 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137263 IP address blocks: 103.129.252.0/22 maxlen: 22 103.129.252.0/23 maxlen: 23 103.129.252.0/24 maxlen: 24 103.129.254.0/23 maxlen: 23 2403:9d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Oct 29 06:18:09 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653df920-5fa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:f4:d8:0d:27:9a:08:e8:28:bf:d8:e8:7f: 32:26:9f:8c:0a:b0:53:1b:b5:06:42:3b:3c:ba:3c: a7:3e:ef:76:f3:49:db:25:9b:bc:ef:58:80:f1:e3: 05:59:db:32:e8:1f:cc:0c:86:82:ad:4b:e6:a0:d7: 95:ff:8d:f5:3e:2d:63:f5:69:55:e3:42:9f:ea:bb: eb:a5:7f:67:c3:3c:38:d2:b5:5f:b3:0c:dc:20:e7: 50:81:df:ca:9b:73:8a:43:40:b5:a3:0c:0a:dc:94: b9:95:b7:23:a7:a2:fb:5b:5b:af:54:32:31:da:4e: 86:54:0f:04:72:8b:c8:7f:46:a9:4b:c5:c3:2e:ec: 69:09:93:ab:b2:93:41:ce:87:e7:97:1f:77:78:53: 9d:97:ed:76:6e:cb:64:59:cc:8f:db:63:4b:7d:31: 19:79:2e:9b:3c:bc:0e:4c:d5:f3:1a:a2:57:18:77: a1:f9:e4:d3:40:35:b1:ca:47:9c:fd:8b:43:43:a8: 6e:30:d3:58:49:c0:4a:84:a4:97:7f:7c:48:b4:47: 77:bd:61:e3:ce:1b:ef:fa:99:15:ec:ed:9a:c3:ce: 6a:d8:38:55:21:4f:97:72:95:41:4a:90:88:d4:54: d1:e7:82:66:59:37:41:e4:17:4e:07:3e:97:16:91: ce:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:86:9C:E6:26:F3:78:F1:51:14:9C:5D:9B:D7:8B:F2:74:EF:31:6E X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/11A843B467D811EEA0543B5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.252.0/22 IPv6: 2403:9d40::/32 Signature Algorithm: sha256WithRSAEncryption 93:40:08:40:69:74:cc:1b:bb:a0:48:14:6f:1e:62:b9:ab:9f: 0d:b7:7f:8f:a4:24:55:db:0f:18:9a:4a:bc:15:eb:fe:34:92: 92:a7:04:05:c2:09:09:d9:02:8d:f5:07:af:87:06:f3:34:f0: 27:6c:b8:2b:9e:a7:4b:0e:80:af:ff:f7:d0:ff:ac:c7:04:b1: ed:bc:55:12:20:b0:c7:b4:cb:f7:51:36:bc:dc:5a:37:c0:e5: 0e:f9:74:25:06:49:ac:19:c1:1a:4c:47:6f:6a:90:2d:8f:26: 8a:58:64:0f:97:38:02:d9:00:dc:40:1a:b3:c9:70:0b:6d:6a: 41:57:85:8e:84:cc:9b:5d:46:c8:08:9c:62:c4:3f:19:16:3a: e7:00:01:83:48:b8:71:48:59:88:f2:7a:05:60:9b:b9:4c:d6: 8d:38:9b:07:0b:5c:ca:6b:14:0a:9c:e8:e3:ac:f2:19:e5:9d: 40:aa:68:c5:5f:53:2e:8b:4c:61:21:c6:c3:b1:42:f8:d4:27: 75:16:06:5e:fb:89:b5:71:08:6a:42:c6:bb:27:f8:49:5a:c3: 98:bf:36:61:63:d9:ee:61:08:c9:43:62:0d:47:d1:a8:ea:7a: 90:9f:82:0e:74:1e:60:c3:23:98:2c:08:83:29:c4:49:ca:fd: 9c:82:a9:45 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 REM1NjExMC8GA1UEBRMoOUU2QTBBQTQzOUNGRTM0N0IwNEY3NDY4NDBBNkU0MzRD NTA5QjFBNzAeFw0yMzEwMjkwNjE4MDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1M2RmOTIwLTVmYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7bvTYDSeaCOgov9jofzImn4wKsFMbtQZCOzy6PKc+73bzSdslm7zvWIDx4wVZ 2zLoH8wMhoKtS+ag15X/jfU+LWP1aVXjQp/qu+ulf2fDPDjStV+zDNwg51CB38qb c4pDQLWjDArclLmVtyOnovtbW69UMjHaToZUDwRyi8h/RqlLxcMu7GkJk6uyk0HO h+eXH3d4U52X7XZuy2RZzI/bY0t9MRl5Lps8vA5M1fMaolcYd6H55NNANbHKR5z9 i0NDqG4w01hJwEqEpJd/fEi0R3e9YePOG+/6mRXs7ZrDzmrYOFUhT5dylUFKkIjU VNHngmZZN0HkF04HPpcWkc4bAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU24ac5ibz ePFRFJxdm9eL8nTvMW4wHwYDVR0jBBgwFoAUnmoKpDnP40ewT3RoQKbkNMUJsacw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREQzU2L0NEQkNGNjNBNjY5 MzExRUU5OENFQUE1MEM0RjlBRTAyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNh Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbm1vS3BEblA0MGV3VDNSb1FLYmtOTVVKc2FjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi8xMUE4NDNCNDY3 RDgxMUVFQTA1NDNCNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmeB/DANBAIAAjAHAwUAJAOdQDANBgkqhkiG9w0BAQsFAAOC AQEAk0AIQGl0zBu7oEgUbx5iuaufDbd/j6QkVdsPGJpKvBXr/jSSkqcEBcIJCdkC jfUHr4cG8zTwJ2y4K56nSw6Ar//30P+sxwSx7bxVEiCwx7TL91E2vNxaN8DlDvl0 JQZJrBnBGkxHb2qQLY8milhkD5c4AtkA3EAas8lwC21qQVeFjoTMm11GyAicYsQ/ GRY65wABg0i4cUhZiPJ6BWCbuUzWjTibBwtcymsUCpzo46zyGeWdQKpoxV9TLotM YSHGw7FC+NQndRYGXvuJtXEIakLGuyf4SVrDmL82YWPZ7mEIyUNiDUfRqOp6kJ+C DnQeYMMjmCwIgynEScr9nIKpRQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:05 2024 by rpki-client on console-ams.rpki-client.org