$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa File: AA5485827F3611ECBED94963C4F9AE02.roa (raw, json) Hash identifier: 6fC5uJsYuT7amsDta892a0EU/d7pcupqa3A43Hhp7pY= Subject key identifier: 19:3D:E0:F3:53:2B:3F:02:92:AF:39:60:15:91:07:04:BA:9E:C9:01 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 03B6 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa Signing time: Sat 23 Mar 2024 02:14:53 +0000 ROA not before: Sat 23 Mar 2024 02:14:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141752 IP address blocks: 103.163.61.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Mar 23 02:14:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fe3b1d-ffeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:57:6d:5d:d7:26:8b:f4:8e:c4:22:1a:ba:a2: 2c:f8:55:9e:6d:1d:7b:12:e9:af:95:3f:40:7c:8c: 6c:1d:4e:59:3a:db:fa:cd:73:5e:bb:c3:94:62:61: e4:ab:1b:c8:d2:c7:f0:4e:df:c3:2b:67:95:7a:79: b9:58:24:a5:eb:ae:a7:a3:ba:11:91:59:a2:38:f0: ed:49:93:58:e0:78:07:dc:e8:e3:1b:e0:66:bd:94: c4:4a:71:ab:0c:e4:bf:d1:27:1a:5f:0b:d0:42:fe: 46:48:04:50:28:63:d4:74:50:3a:fb:68:a9:07:48: 9a:0b:b8:45:93:d4:89:f9:6f:f7:ff:62:96:3a:3e: ee:dd:b1:2f:d4:f1:3e:60:43:71:bf:4c:33:40:64: 83:3d:ab:90:95:90:8d:fc:2b:3c:9b:80:68:20:3d: 4c:13:f0:5e:47:83:d1:d3:81:b5:ef:76:3c:63:a8: 1f:89:89:cc:01:c0:7a:b9:2c:a8:3a:51:3c:6d:1a: 55:a0:21:94:c1:6a:36:e4:cf:f3:64:58:66:fe:c9: 90:0c:81:7c:2a:e3:7e:54:9e:0f:39:01:fe:ad:d0: fa:d2:51:19:68:c5:9f:36:56:36:6e:61:41:69:72: b6:d7:62:13:83:ea:68:ba:21:e8:8e:80:64:8a:84: 5e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3D:E0:F3:53:2B:3F:02:92:AF:39:60:15:91:07:04:BA:9E:C9:01 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.61.0/24 Signature Algorithm: sha256WithRSAEncryption 96:cf:4c:d0:5d:19:73:4b:b1:4b:bb:e0:79:ed:f1:7d:eb:08: 74:be:96:ed:4b:ce:5e:c5:b7:18:91:45:49:68:85:55:97:82: 85:e9:5d:c0:35:2e:a1:e1:e0:88:b2:3b:b7:75:ca:57:92:5b: 9a:75:3d:d5:5a:7a:d3:1e:24:3b:7d:49:2f:7b:d6:63:a0:78: 47:81:64:99:ff:f0:8a:18:52:f7:c8:cc:13:dd:6d:c2:dd:5a: 38:1c:21:f9:36:b1:74:19:4a:80:79:59:0a:e1:d3:03:8b:b0: 66:4e:fb:ee:97:ba:b0:6a:26:80:5e:1c:ec:ce:6f:ca:c9:38: 6a:9a:8d:a7:e2:67:e8:4a:0f:da:eb:12:06:40:13:4a:72:5d: 84:2b:22:3d:85:c7:33:44:ed:14:c9:b3:28:e9:60:b5:80:3a: 9f:7b:7d:cb:52:f1:83:f0:62:38:ea:f0:4f:14:7f:7d:3f:47: a7:d7:2d:a3:1b:10:fa:c3:f1:e6:ec:ba:c1:d6:89:64:57:f2: d2:b6:8a:a3:73:1e:aa:52:00:de:96:55:43:47:d8:f0:be:ae: 12:5f:1c:c9:ad:b2:53:fd:cb:55:0f:87:e9:98:ff:93:b9:a8: 9f:19:f5:b7:fd:b1:b2:a2:10:b1:87:ca:b2:0c:a1:6d:69:a5: c4:af:0c:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjQwMzIzMDIxNDUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlM2IxZC1mZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ldtXdcmi/SOxCIauqIs+FWebR17EumvlT9AfIxsHU5ZOtv6zXNeu8OUYmHk qxvI0sfwTt/DK2eVenm5WCSl666no7oRkVmiOPDtSZNY4HgH3OjjG+BmvZTESnGr DOS/0ScaXwvQQv5GSARQKGPUdFA6+2ipB0iaC7hFk9SJ+W/3/2KWOj7u3bEv1PE+ YENxv0wzQGSDPauQlZCN/Cs8m4BoID1ME/BeR4PR04G173Y8Y6gfiYnMAcB6uSyo OlE8bRpVoCGUwWo25M/zZFhm/smQDIF8KuN+VJ4POQH+rdD60lEZaMWfNlY2bmFB aXK212ITg+pouiHojoBkioRecQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBk94PNT Kz8Ckq85YBWRBwS6nskBMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTREMjYvQzAwRDk3MjY0MTNCMTFFQ0IwNkFFMDMwQzRGOUFFMDIvQUE1NDg1ODI3 RjM2MTFFQ0JFRDk0OTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoz0wDQYJKoZIhvcNAQELBQADggEBAJbPTNBdGXNLsUu7 4Hnt8X3rCHS+lu1Lzl7FtxiRRUlohVWXgoXpXcA1LqHh4IiyO7d1yleSW5p1PdVa etMeJDt9SS971mOgeEeBZJn/8IoYUvfIzBPdbcLdWjgcIfk2sXQZSoB5WQrh0wOL sGZO++6XurBqJoBeHOzOb8rJOGqajafiZ+hKD9rrEgZAE0pyXYQrIj2FxzNE7RTJ syjpYLWAOp97fctS8YPwYjjq8E8Uf30/R6fXLaMbEPrD8ebsusHWiWRX8tK2iqNz HqpSAN6WVUNH2PC+rhJfHMmtslP9y1UPh+mY/5O5qJ8Z9bf9sbKiELGHyrIMoW1p pcSvDB8= -----END CERTIFICATE-----Generated at Sun May 19 02:59:07 2024 by rpki-client on console-ams.rpki-client.org