$ rpki-client -vvf rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa File: ABD61D2E06D611EA8EBBEA50C4F9AE02.roa (raw, json) Hash identifier: /H4A2Af8EG8CLowec7MEwbNHL59DoJ0Pi5kDeNhhtig= Subject key identifier: 2C:7B:BA:91:E9:50:1F:07:8F:1E:37:1B:91:17:6E:87:F8:72:34:D7 Certificate issuer: /CN=A9156E6F/serialNumber=7CE3722D1ECB00839B2467FD5C39A6AD46A62261 Certificate serial: 0B1E Authority key identifier: 7C:E3:72:2D:1E:CB:00:83:9B:24:67:FD:5C:39:A6:AD:46:A6:22:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa Signing time: Thu 02 Nov 2023 19:27:09 +0000 ROA not before: Thu 02 Nov 2023 19:27:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139786 IP address blocks: 103.145.57.0/24 maxlen: 24 103.157.35.0/24 maxlen: 24 2001:df1:fe80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.crl rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156E6F/serialNumber=7CE3722D1ECB00839B2467FD5C39A6AD46A62261 Validity Not Before: Nov 2 19:27:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6543f80c-00df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:cd:05:b8:b4:5d:e6:fe:5b:29:1f:1b:24:20: 8d:ed:cd:7a:65:16:ad:f0:aa:8e:db:6b:20:4a:f7: 60:2c:83:27:fa:1c:f4:2d:a6:ff:f4:47:f6:79:50: 8f:0d:75:cc:76:13:5b:28:5c:ae:52:56:98:ea:4b: bc:f4:46:c6:f5:2f:28:e8:f0:66:30:ad:63:da:4f: eb:df:ae:97:2d:8e:cb:c8:01:4d:ec:83:fc:fe:aa: 03:3e:82:e9:fa:e0:0d:e7:23:b3:86:bc:ee:85:13: 4d:2b:40:6f:ee:55:25:d8:87:7a:7f:21:45:38:c0: 2b:8e:17:2b:77:50:5f:11:0e:3b:07:2c:98:9b:b9: ac:b9:26:fc:3b:85:78:f2:be:2e:4c:cb:d9:e7:96: 45:f6:ee:45:30:55:0c:7c:aa:e2:b9:c1:98:b4:a5: cb:55:5a:e5:55:ed:06:85:71:f8:6e:f3:5e:0e:44: 8c:19:23:d6:cb:33:1b:32:6e:1a:74:2c:56:12:b8: ae:4c:d3:7a:34:fd:bc:97:af:0b:c6:e2:ed:18:3c: 8d:c7:5e:92:52:57:e0:6c:af:be:97:98:ec:91:de: 10:b2:f8:fa:43:8c:a8:0f:9e:22:80:3f:60:b2:b4: a1:95:dc:9d:66:93:45:77:52:85:c9:4c:5f:4f:30: a9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7B:BA:91:E9:50:1F:07:8F:1E:37:1B:91:17:6E:87:F8:72:34:D7 X509v3 Authority Key Identifier: keyid:7C:E3:72:2D:1E:CB:00:83:9B:24:67:FD:5C:39:A6:AD:46:A6:22:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/fONyLR7LAIObJGf9XDmmrUamImE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fONyLR7LAIObJGf9XDmmrUamImE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156E6F/B1B5B3D606D511EAA8BA3E4FC4F9AE02/ABD61D2E06D611EA8EBBEA50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.57.0/24 103.157.35.0/24 IPv6: 2001:df1:fe80::/48 Signature Algorithm: sha256WithRSAEncryption 07:c1:9a:41:5b:f9:26:bc:51:8a:a5:9a:d3:d0:c5:ba:4d:8e: 20:a6:a1:f4:b1:37:71:91:df:78:79:64:3c:0c:96:d6:5a:d5: e1:33:d6:c8:24:d3:fb:de:c2:c3:cb:82:52:67:60:48:58:61: b7:53:1e:ec:c3:4c:09:98:e9:57:f4:f6:f8:87:78:14:2a:0b: ff:32:6b:92:a9:65:27:e0:cc:a1:06:d1:3e:67:79:8b:01:c7: e1:b0:80:d9:75:34:53:4f:ea:73:fc:49:12:52:ae:cd:a0:ea: 8b:6c:94:d9:c4:07:69:f2:40:24:b0:25:38:92:62:95:f9:b7: 13:fd:2e:1a:ba:93:3f:91:be:3a:4b:27:2a:a4:db:0b:86:06: 46:b1:1b:32:01:0d:13:31:78:79:0b:7b:a4:dd:6e:a7:0e:47: b3:4f:10:ac:aa:a8:2d:39:b1:4f:f4:55:de:72:c6:0b:7c:54: 07:12:13:f3:48:39:0a:b1:f2:c1:de:1e:dc:b6:e2:b6:2b:70: 1b:2c:b8:4a:a9:d8:8a:67:2b:60:26:d8:7c:10:36:7d:67:73: e1:0a:25:69:ac:c4:8b:d5:69:e1:cd:01:62:9b:43:1b:36:87: 6d:81:2c:d0:c8:e7:9e:c1:26:66:f9:13:e3:ba:2a:70:9e:ec: 2b:69:0a:11 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZFNkYxMTAvBgNVBAUTKDdDRTM3MjJEMUVDQjAwODM5QjI0NjdGRDVDMzlBNkFE NDZBNjIyNjEwHhcNMjMxMTAyMTkyNzA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzZjgwYy0wMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA780FuLRd5v5bKR8bJCCN7c16ZRat8KqO22sgSvdgLIMn+hz0Lab/9Ef2eVCP DXXMdhNbKFyuUlaY6ku89EbG9S8o6PBmMK1j2k/r366XLY7LyAFN7IP8/qoDPoLp +uAN5yOzhrzuhRNNK0Bv7lUl2Id6fyFFOMArjhcrd1BfEQ47ByyYm7msuSb8O4V4 8r4uTMvZ55ZF9u5FMFUMfKriucGYtKXLVVrlVe0GhXH4bvNeDkSMGSPWyzMbMm4a dCxWEriuTNN6NP28l68LxuLtGDyNx16SUlfgbK++l5jskd4Qsvj6Q4yoD54igD9g srShldydZpNFd1KFyUxfTzCpPQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFCx7upHp UB8Hjx43G5EXbof4cjTXMB8GA1UdIwQYMBaAFHzjci0eywCDmyRn/Vw5pq1GpiJh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkU2Ri9CMUI1QjNENjA2 RDUxMUVBQThCQTNFNEZDNEY5QUUwMi9mT055TFI3TEFJT2JKR2Y5WERtbXJVYW1J bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZPTnlMUjdMQUlPYkpHZjlYRG1tclVhbUltRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTZFNkYvQjFCNUIzRDYwNkQ1MTFFQUE4QkEzRTRGQzRGOUFFMDIvQUJENjFEMkUw NkQ2MTFFQThFQkJFQTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkTkDBABnnSMwDwQCAAIwCQMHACABDfH+gDANBgkqhkiG 9w0BAQsFAAOCAQEAB8GaQVv5JrxRiqWa09DFuk2OIKah9LE3cZHfeHlkPAyW1lrV 4TPWyCTT+97Cw8uCUmdgSFhht1Me7MNMCZjpV/T2+Id4FCoL/zJrkqllJ+DMoQbR Pmd5iwHH4bCA2XU0U0/qc/xJElKuzaDqi2yU2cQHafJAJLAlOJJilfm3E/0uGrqT P5G+OksnKqTbC4YGRrEbMgENEzF4eQt7pN1upw5Hs08QrKqoLTmxT/RV3nLGC3xU BxIT80g5CrHywd4e3LbititwGyy4SqnYimcrYCbYfBA2fWdz4QolaazEi9Vp4c0B YptDGzaHbYEs0MjnnsEmZvkT47oqcJ7sK2kKEQ== -----END CERTIFICATE-----Generated at Mon May 20 20:02:28 2024 by rpki-client on console-fra.rpki-client.org