$ rpki-client -vvf rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa File: ABD61D2E06D611EA8EBBEA50C4F9AE02.roa (raw, json) Hash identifier: oMSMtDUOK/K2eVg/KodU05EhZSFOtXitxY9io4e/C/0= Subject key identifier: 2F:EC:DE:72:64:47:94:64:B4:E0:DE:BE:00:77:A8:23:79:AD:E9:CF Certificate issuer: /CN=A9156E6F/serialNumber=7CE3722D1ECB00839B2467FD5C39A6AD46A62261 Certificate serial: 0BD7 Authority key identifier: 7C:E3:72:2D:1E:CB:00:83:9B:24:67:FD:5C:39:A6:AD:46:A6:22:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa Signing time: Thu 24 Oct 2024 18:57:25 +0000 ROA not before: Thu 24 Oct 2024 18:57:25 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139786 IP address blocks: 103.145.57.0/24 maxlen: 24 103.157.35.0/24 maxlen: 24 2001:df1:fe80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.crl rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3031 (0xbd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156E6F/serialNumber=7CE3722D1ECB00839B2467FD5C39A6AD46A62261 Validity Not Before: Oct 24 18:57:25 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=671a9895-a39e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c7:91:b6:63:00:a6:52:bc:9b:7e:8e:54:a6: 48:c6:d1:5d:7a:b2:f6:45:2d:f7:56:9b:2e:d1:ca: 6b:c4:35:95:b3:cc:a0:52:7d:eb:ad:4d:76:18:32: 36:ab:9d:39:c6:64:42:c4:fb:fa:fa:77:1c:b5:97: 45:f9:0d:2e:ed:11:ca:78:2b:0c:ee:5a:d9:90:3a: 03:74:27:58:7d:99:49:47:d6:b4:ce:91:8b:8f:1d: 1f:1b:ba:84:c4:28:6a:cc:e9:00:07:fd:99:2f:8b: fb:e4:af:d5:91:45:57:2c:89:a8:0f:d9:fe:93:75: 98:64:23:87:bd:5a:64:23:8a:bd:fb:fa:9d:1c:0a: 17:dd:c6:04:9c:24:ff:5a:00:02:b0:39:5e:2b:e7: 34:c2:ea:16:65:58:98:42:9b:cf:0b:f6:cd:d7:db: 12:29:f0:62:80:92:85:d2:84:1f:26:0b:9e:8d:f5: f2:33:d5:c5:34:98:96:cc:57:17:3a:cb:20:a6:9d: 86:47:66:65:ef:0f:03:10:5d:86:d5:b7:ac:06:0a: 43:b1:b9:ae:7e:18:4d:02:fb:e6:14:57:a8:1e:c9: f2:dc:48:43:29:9d:e9:95:ae:16:10:14:b3:cf:66: 88:92:cf:c1:a7:29:bd:31:43:c3:6d:26:3b:1d:d4: c4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EC:DE:72:64:47:94:64:B4:E0:DE:BE:00:77:A8:23:79:AD:E9:CF X509v3 Authority Key Identifier: keyid:7C:E3:72:2D:1E:CB:00:83:9B:24:67:FD:5C:39:A6:AD:46:A6:22:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.57.0/24 103.157.35.0/24 IPv6: 2001:df1:fe80::/48 Signature Algorithm: sha256WithRSAEncryption a2:a3:b8:30:5c:6b:e3:e7:72:56:3b:52:08:26:bc:1b:45:d8: 1a:73:97:5f:d8:e0:35:73:12:cc:4a:23:7c:04:f8:be:5f:64: 1a:42:f7:64:cb:21:d6:bd:af:ab:a7:83:b0:cb:6b:c7:42:fd: 97:1e:5f:d8:01:b8:f6:f0:21:9b:6d:0c:ab:d6:0c:9e:68:05: 97:1b:7e:ad:c8:90:08:da:2a:8f:da:3e:f7:b0:16:78:0d:c1: de:33:a1:2a:b2:5a:5b:80:8c:52:db:82:09:73:4f:66:22:1a: ba:67:4f:81:b7:87:72:0b:f3:0f:30:40:e3:1c:68:55:01:9e: 6e:48:34:90:46:29:74:21:e9:b6:22:0b:e1:df:d2:5d:b8:e7: f4:48:20:f3:60:da:9f:d5:dc:51:02:2a:81:cf:cc:24:2a:b2: cc:39:53:42:94:1a:ba:47:4d:ff:fa:4d:90:33:f7:54:e2:9a: 35:2f:73:ee:87:dc:cf:63:57:55:c8:e8:64:39:4c:80:ee:64: b6:03:c0:20:b4:2f:df:d9:61:4a:01:38:6c:92:66:4d:3b:89: 6e:48:67:20:fb:18:87:8d:4e:1d:b4:f3:b3:6e:7c:3e:dc:96: 52:0e:16:5d:aa:e9:de:6b:62:86:3b:a3:4a:39:8c:ae:4a:84: 72:1a:56:75 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICC9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZFNkYxMTAvBgNVBAUTKDdDRTM3MjJEMUVDQjAwODM5QjI0NjdGRDVDMzlBNkFE NDZBNjIyNjEwHhcNMjQxMDI0MTg1NzI1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhOTg5NS1hMzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8eRtmMAplK8m36OVKZIxtFderL2RS33Vpsu0cprxDWVs8ygUn3rrU12GDI2 q505xmRCxPv6+ncctZdF+Q0u7RHKeCsM7lrZkDoDdCdYfZlJR9a0zpGLjx0fG7qE xChqzOkAB/2ZL4v75K/VkUVXLImoD9n+k3WYZCOHvVpkI4q9+/qdHAoX3cYEnCT/ WgACsDleK+c0wuoWZViYQpvPC/bN19sSKfBigJKF0oQfJguejfXyM9XFNJiWzFcX Ossgpp2GR2Zl7w8DEF2G1besBgpDsbmufhhNAvvmFFeoHsny3EhDKZ3pla4WEBSz z2aIks/Bpym9MUPDbSY7HdTEBQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFC/s3nJk R5RktODevgB3qCN5renPMB8GA1UdIwQYMBaAFHzjci0eywCDmyRn/Vw5pq1GpiJh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkU2Ri9CMUI1QjNENjA2 RDUxMUVBQThCQTNFNEZDNEY5QUUwMi9mT055TFI3TEFJT2JKR2Y5WERtbXJVYW1J bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZPTnlMUjdMQUlPYkpHZjlYRG1tclVhbUltRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTZFNkYvQjFCNUIzRDYwNkQ1MTFFQUE4QkEzRTRGQzRGOUFFMDIvQUJENjFEMkUw NkQ2MTFFQThFQkJFQTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkTkDBABnnSMwDwQCAAIwCQMHACABDfH+gDANBgkqhkiG 9w0BAQsFAAOCAQEAoqO4MFxr4+dyVjtSCCa8G0XYGnOXX9jgNXMSzEojfAT4vl9k GkL3ZMsh1r2vq6eDsMtrx0L9lx5f2AG49vAhm20Mq9YMnmgFlxt+rciQCNoqj9o+ 97AWeA3B3jOhKrJaW4CMUtuCCXNPZiIaumdPgbeHcgvzDzBA4xxoVQGebkg0kEYp dCHptiIL4d/SXbjn9Egg82Dan9XcUQIqgc/MJCqyzDlTQpQaukdN//pNkDP3VOKa NS9z7ofcz2NXVcjoZDlMgO5ktgPAILQv39lhSgE4bJJmTTuJbkhnIPsYh41OHbTz s258PtyWUg4WXarp3mtihjujSjmMrkqEchpWdQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org