$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/0E50DF10261311EAAD88B67EC4F9AE02.roa File: 0E50DF10261311EAAD88B67EC4F9AE02.roa (raw, json) Hash identifier: w2bZ1Vy5tJz/xtNGpIMywBX1w2FBfB12WPfrA4jI4ZM= Subject key identifier: A3:D2:AA:10:34:D6:8E:97:CB:F5:95:7F:60:5A:40:F7:09:3C:D6:5A Certificate issuer: /CN=A9153AC4/serialNumber=5A8FC6D9B992322F2D7C07734543F79897ED8037 Certificate serial: 0B09 Authority key identifier: 5A:8F:C6:D9:B9:92:32:2F:2D:7C:07:73:45:43:F7:98:97:ED:80:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wo_G2bmSMi8tfAdzRUP3mJftgDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/0E50DF10261311EAAD88B67EC4F9AE02.roa Signing time: Wed 24 Jul 2024 19:57:19 +0000 ROA not before: Wed 24 Jul 2024 19:57:19 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.71.236.0/22 maxlen: 22 103.71.236.0/23 maxlen: 23 103.71.236.0/24 maxlen: 24 103.71.237.0/24 maxlen: 24 103.71.238.0/24 maxlen: 24 103.71.239.0/24 maxlen: 24 103.72.164.0/22 maxlen: 22 103.72.164.0/23 maxlen: 23 103.72.164.0/24 maxlen: 24 103.72.165.0/24 maxlen: 24 103.72.166.0/24 maxlen: 24 103.72.167.0/24 maxlen: 24 160.19.48.0/22 maxlen: 22 160.19.48.0/23 maxlen: 23 160.19.48.0/24 maxlen: 24 160.19.49.0/24 maxlen: 24 160.19.50.0/24 maxlen: 24 160.19.51.0/24 maxlen: 24 203.78.140.0/22 maxlen: 22 203.78.140.0/23 maxlen: 23 203.78.140.0/24 maxlen: 24 203.78.141.0/24 maxlen: 24 203.78.142.0/24 maxlen: 24 203.78.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/Wo_G2bmSMi8tfAdzRUP3mJftgDc.crl rsync://rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/Wo_G2bmSMi8tfAdzRUP3mJftgDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wo_G2bmSMi8tfAdzRUP3mJftgDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AC4/serialNumber=5A8FC6D9B992322F2D7C07734543F79897ED8037 Validity Not Before: Jul 24 19:57:19 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a15c9f-e3d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:86:5e:1a:10:f8:1c:3f:c0:94:1f:4b:c3:24: 91:4d:b4:b4:ea:17:2c:f7:5b:de:e1:76:4e:4c:32: 52:b4:d9:1e:32:ca:e5:28:78:ce:18:53:4a:44:db: 3f:21:81:43:16:f3:ac:05:fe:28:1b:02:10:bf:84: 34:e9:7a:05:ac:6b:2f:c6:dc:42:2d:78:eb:1e:38: 17:d7:01:fa:9e:43:02:79:26:9d:1e:fd:ed:c7:69: d4:85:eb:f9:d1:66:f1:d3:7d:e4:c6:57:cf:a5:ec: 14:79:e7:47:18:be:0b:26:c4:f6:72:49:c2:5e:b5: bd:42:ce:b6:76:bf:e0:cb:c3:0f:e1:b3:81:75:b2: c0:2c:5e:b8:dd:51:f7:10:2d:78:1b:76:30:dd:80: df:8c:41:4b:16:55:5f:df:0a:fd:11:52:3d:e6:70: f1:4a:0a:9b:44:74:16:0f:84:c4:3c:9a:07:02:d6: e7:1e:96:83:f6:52:9f:74:32:b3:96:aa:9b:8c:2c: 98:69:b2:1f:50:db:48:b6:91:1a:c3:00:0e:4f:cf: 6f:01:4f:71:e0:ed:bb:2e:24:7c:50:ca:86:75:ea: c9:41:19:f0:89:c3:69:31:44:0d:78:42:c6:7c:0f: eb:d5:3c:ca:c9:7b:94:31:1a:c0:13:1f:31:9d:89: ec:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D2:AA:10:34:D6:8E:97:CB:F5:95:7F:60:5A:40:F7:09:3C:D6:5A X509v3 Authority Key Identifier: keyid:5A:8F:C6:D9:B9:92:32:2F:2D:7C:07:73:45:43:F7:98:97:ED:80:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/Wo_G2bmSMi8tfAdzRUP3mJftgDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wo_G2bmSMi8tfAdzRUP3mJftgDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AC4/3BF4A698261011EAAD746978C4F9AE02/0E50DF10261311EAAD88B67EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.236.0/22 103.72.164.0/22 160.19.48.0/22 203.78.140.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:0d:6a:8b:3d:ab:ec:a4:6c:c0:82:b7:8c:23:bb:03:23:40: 77:3d:68:1d:e4:38:ac:0b:c7:56:eb:58:24:43:00:6b:a8:bb: 61:ae:a1:84:5c:db:72:94:89:e1:05:e9:3c:49:d7:b5:f5:83: 33:c1:ff:a3:5a:34:29:a6:12:55:a9:20:e3:c6:10:ee:e9:cc: 73:79:db:f2:b1:a0:db:47:ae:05:11:ab:35:04:74:66:ae:9c: d1:8d:f1:fd:f1:9f:84:59:d2:9e:6d:08:27:bd:06:32:38:37: ff:02:67:9c:bf:bd:0a:6c:8d:56:e3:e4:4d:bb:c6:99:bb:0c: 39:a4:8c:f2:96:d1:e4:27:3c:ca:5d:cb:23:c7:ea:ea:11:c3: f6:65:a7:b6:de:54:a9:fd:92:6c:ea:09:aa:46:b0:17:26:6d: df:48:e4:5d:5a:d9:6b:9c:0c:f5:2d:a9:42:68:ec:a9:5f:2d: 36:e0:24:cc:97:fd:f3:a0:09:c8:a1:81:6d:3b:d6:84:74:77: eb:3c:ae:3f:e0:c3:3a:68:37:1e:2a:3f:f2:82:51:ce:7e:52: 88:27:30:cc:f6:e1:51:81:5d:18:7a:2b:94:a7:56:2d:09:a2: a2:80:1c:7b:40:d0:a2:ca:f8:15:67:f6:0d:7e:b4:25:49:46: bc:21:72:ed -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQzQxMTAvBgNVBAUTKDVBOEZDNkQ5Qjk5MjMyMkYyRDdDMDc3MzQ1NDNGNzk4 OTdFRDgwMzcwHhcNMjQwNzI0MTk1NzE5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExNWM5Zi1lM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IZeGhD4HD/AlB9LwySRTbS06hcs91ve4XZOTDJStNkeMsrlKHjOGFNKRNs/ IYFDFvOsBf4oGwIQv4Q06XoFrGsvxtxCLXjrHjgX1wH6nkMCeSadHv3tx2nUhev5 0Wbx033kxlfPpewUeedHGL4LJsT2cknCXrW9Qs62dr/gy8MP4bOBdbLALF643VH3 EC14G3Yw3YDfjEFLFlVf3wr9EVI95nDxSgqbRHQWD4TEPJoHAtbnHpaD9lKfdDKz lqqbjCyYabIfUNtItpEawwAOT89vAU9x4O27LiR8UMqGderJQRnwicNpMUQNeELG fA/r1TzKyXuUMRrAEx8xnYnsgwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKPSqhA0 1o6Xy/WVf2BaQPcJPNZaMB8GA1UdIwQYMBaAFFqPxtm5kjIvLXwHc0VD95iX7YA3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FDNC8zQkY0QTY5ODI2 MTAxMUVBQUQ3NDY5NzhDNEY5QUUwMi9Xb19HMmJtU01pOHRmQWR6UlVQM21KZnRn RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dvX0cyYm1TTWk4dGZBZHpSVVAzbUpmdGdEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNBQzQvM0JGNEE2OTgyNjEwMTFFQUFENzQ2OTc4QzRGOUFFMDIvMEU1MERGMTAy NjEzMTFFQUFEODhCNjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnR+wDBAJnSKQDBAKgEzADBALLTowwDQYJKoZIhvcNAQEL BQADggEBAG8Naos9q+ykbMCCt4wjuwMjQHc9aB3kOKwLx1brWCRDAGuou2GuoYRc 23KUieEF6TxJ17X1gzPB/6NaNCmmElWpIOPGEO7pzHN52/KxoNtHrgURqzUEdGau nNGN8f3xn4RZ0p5tCCe9BjI4N/8CZ5y/vQpsjVbj5E27xpm7DDmkjPKW0eQnPMpd yyPH6uoRw/Zlp7beVKn9kmzqCapGsBcmbd9I5F1a2WucDPUtqUJo7KlfLTbgJMyX /fOgCcihgW071oR0d+s8rj/gwzpoNx4qP/KCUc5+UognMMz24VGBXRh6K5SnVi0J oqKAHHtA0KLK+BVn9g1+tCVJRrwhcu0= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:48 2024 by rpki-client on console-ams.rpki-client.org